ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.icons.css
1.8 kB URL ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.icons.css
IP
File type ASCII text, with very long lines (5783), with no line terminators
Hash c1dca44b5e78547bfc06865272af1986
5775eae10158058eb7b03fdb852e6800a1d78b10
eb2b31b56400b568b2a766d3f20f289f49adb02ecf4fb27a4b7399ae7180b7ca
GET /wp-content/themes/dooplay/assets/css/front.icons.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=7099
etag: W/"1bbb-5b611d3488dc0"
last-modified: Thu, 10 Dec 2020 01:09:19 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 191170845
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1455470
server: cloudflare
cf-ray: 8332c303590356a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay-child%20barra%20v2/style.css
742 B URL ww3.animeonline.ninja/wp-content/themes/dooplay-child%20barra%20v2/style.css
IP
File type ASCII text, with very long lines (631), with no line terminators
Hash d4e3ecf4bf87621d72f6f5fa9a549c78
740fb4222ea469fa76b3b62770d77d4143556f87
86cf3f2087094dd245d0c739df3bc71696427f0aff54b60a3c5bd89f407c3a2f
GET /wp-content/themes/dooplay-child%20barra%20v2/style.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1215
etag: W/"4bf-5e27828527a00"
last-modified: Tue, 28 Jun 2022 01:43:04 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 130216265
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1109605
server: cloudflare
cf-ray: 8332c303690956a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-includes/css/classic-themes.min.css
176 B URL ww3.animeonline.ninja/wp-includes/css/classic-themes.min.css
IP
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/css; charset=utf-8
last-modified: Thu, 13 Apr 2023 09:28:11 GMT
etag: W/"123-5f93457d8e0c0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 112271653
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c303590156a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1
1.2 kB URL fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1
IP
File type gzip compressed data, max compression
- data
Hash c3487e269505500ba88873fa368d0adc
8718cc96c9385831da2990667b84ce59ad7acfd8
aebdbb4facbd27f4855ca66f56cdae4a74c1c8b740c46992f2c75b3d7c391468
GET /css?family=Roboto%3A300%2C400%2C500%2C700&ver=2.4.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 10 Dec 2023 04:32:03 GMT
date: Sun, 10 Dec 2023 04:32:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
5.3 kB URL ww3.animeonline.ninja/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP
File type ASCII text, with very long lines (6274)
Hash c0dc04a574108028bf6bde0c0e6d8e88
61237ccd1f8af2ae508382ded36af62bd54cb6c2
1a54a1907a6443e3c81608130bfed4546eb0ce5d0c8897e1d7a3b43d89ecc367
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
last-modified: Thu, 28 Sep 2023 12:55:26 GMT
etag: W/"1883-6066ad267290e"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 428279766
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1544081
server: cloudflare
cf-ray: 8332c303590056a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-includes/js/comment-reply.min.js
200 OK 1.8 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-includes/js/comment-reply.min.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (2946)
Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 19 Mar 2023 15:38:14 GMT
etag: W/"ba5-5f74299376580"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 791354975
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
server: cloudflare
cf-ray: 8332c305b9a256a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
gorgetmobiles.com/faTgqko0Zpbt/70993
26 B URL gorgetmobiles.com/faTgqko0Zpbt/70993
IP
File type ASCII text, with no line terminators
Hash 4fc71bf68a1d477bd1523733e34d1e90
15119105cffbe108b6cf290146ab02c9aa8517ba
74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce
GET /faTgqko0Zpbt/70993 HTTP/1.1
Host: gorgetmobiles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:03 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWXVBJ%2BEAHqFVQXz0Za%2FgIyntH6wL7aZU0NtLTPRtMvlNJgiCqLpFuGYp4k9R414NvJGs5fKhfmRNUz8JRkPfvvTtc8MFa3Gll86LfiKf4LDMwvnOrwmOIxlyWnbSKipwt6u%2F5mzsZhKkvRNGFUjnXUwF8t7ZbSFXxUiMmAn5STsa7NcuxId1iDmr96zNnkOGyC5VXF4jf9NG7cvyiIizsswC3Fwm4Qfr5k6rLEQ6OqEI4SsOUngarftGrmg5e3sB7KS6f%2F97HG%2BcIVO0aklIrX8n9wNBjE5s; expires=Mon, 11-Dec-2023 04:32:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Mon, 11-Dec-2023 04:32:03 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
www.googletagmanager.com/gtag/js?id=G-ES0BC9NXD9
86 kB URL www.googletagmanager.com/gtag/js?id=G-ES0BC9NXD9
IP
File type ASCII text, with very long lines (3034)
Hash 69a07ce79f41ee1d8086aff8dbf269aa
7e8226c753ad3183ccfdc24de32cbdde638ad2e0
13c3d06efa022e44db5906dbd20ef4666d4ad709ba8de09bf1d0e11c7fb804d1
GET /gtag/js?id=G-ES0BC9NXD9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 10 Dec 2023 04:32:03 GMT
expires: Sun, 10 Dec 2023 04:32:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/owlcarousel.js
200 OK 23 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/owlcarousel.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (12985)
Hash e20ca9bbf3596b9e173e2cfd8d78dbdc
5b4864511215a3dec6ab647b204ba216e02b58b8
54e9c6e5d30ad2b1002cd5b8f049302f9db5df342508b83d76e4355041f33630
GET /wp-content/themes/dooplay/assets/js/lib/owlcarousel.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=23938
etag: W/"5d82-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 219515886
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1197786
server: cloudflare
cf-ray: 8332c305c9b056a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/fonts/icomoon.ttf?k4wkth
29 kB URL ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/fonts/icomoon.ttf?k4wkth
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
- data
Hash 14295f67edc73c8347d68095bae61600
d22548eafa28fb00605e26878c56178baa2687fb
0833e6c75b1caf281d32e8a8aaa4e97bb814b603296828245b2bd7d2dec43aff
GET /wp-content/themes/dooplay/assets/css/fonts/icomoon.ttf?k4wkth HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.icons.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: font/ttf
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
etag: W/"5074-5a88d52a5b580"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 544481326
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 456617
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c306d9e856a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js
200 OK 12 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (38606), with no line terminators
Hash dfd05556f6dd25a901f07243fc0921a5
cb64d0445d44671f73488ec3a4dd5c2bf81f14af
43a8aeb106db48020a09288416fec675fca2fd7fceda275a26bc7adca98832bf
GET /wp-content/themes/dooplay/assets/js/lib/mcsbscrollbar.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=38615
etag: W/"96d7-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 543994490
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1368563
server: cloudflare
cf-ray: 8332c305e9b756a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 218738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 257669
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg
15 kB URL ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
- data
Hash da1dc0d7c3b4f30a945fed6ff0062228
2cb09a95d334f7e984cff9b22b452a1eca0d92b9
467a13b124564e14a6dd9a8db90ea78ad89e4b4f1c2d8b4495faf8a85f2ab458
GET /wp-content/uploads/2019/09/cropped-avatar2-1-300x300.jpg HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: image/jpeg
content-length: 14884
last-modified: Wed, 20 May 2020 10:59:38 GMT
etag: "3a24-5a6124acb1a80"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 186041338
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1025366
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c3089a3b56a2-OSL
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg
6.2 kB URL ww3.animeonline.ninja/wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3
- data
Hash 315f7c13cbb68dd4122c5f8ef40e4193
456d944dc97172a844e2aff1d296d48084d3f1d9
72da16cc30a9a3a69bb5bb109eea463a980db759a71eeee35c215585de3facaa
GET /wp-content/uploads/2019/09/cropped-avatar2-1-150x150.jpg HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: image/jpeg
content-length: 6160
last-modified: Wed, 20 May 2020 10:59:38 GMT
etag: "1810-5a6124acb1a80"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
x-varnish: 96277347
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1109604
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c3089a4156a2-OSL
X-Firefox-Spdy: h2
static.tumblr.com/ftv85bp/MIXmud4tx/search-icon.png
850 B URL static.tumblr.com/ftv85bp/MIXmud4tx/search-icon.png
IP
File type PNG image data, 18 x 19, 8-bit/color RGBA, non-interlaced
- data
Hash eb6e4dd954c97644c6f29c59d72a9181
a20de89922265981ab67952330a755ef82e1b99a
20f3ea6786d16edfa8d6c3020aa3fc3cb7651612014df44a10d1108cddcfbcdb
GET /ftv85bp/MIXmud4tx/search-icon.png HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: image/png
content-length: 850
last-modified: Tue, 08 Oct 2013 18:32:22 GMT
etag: "eb6e4dd954c97644c6f29c59d72a9181"
age: 8
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 2
strict-transport-security: max-age=31536000; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
scl6gc5l.site/api/data/analytics_ads
200 OK 0 B URL POST HTTP/1.1 scl6gc5l.site/api/data/analytics_ads
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGlobalSign nv-sa
Subjectwww.scl6gc5l.site
FingerprintC4:63:2C:B2:9F:48:F2:11:12:9F:DB:A3:7E:39:90:6E:99:72:24:85
ValidityTue, 21 Nov 2023 19:15:40 GMT - Sun, 22 Dec 2024 19:15:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/data/analytics_ads HTTP/1.1
Host: scl6gc5l.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ww3.animeonline.ninja/
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 10 Dec 2023 04:32:04 GMT
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
syndication.exdynsrv.com/v1/api.php
773 B URL syndication.exdynsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data
- exported SGML document, ASCII text, with very long lines (1067), with no line terminators
Hash db3f044e2f9ef79fbe1ec849f7e26379
89023ab4cdcf5424dc3ed65ff47a1754b2330599
2faebfa5419b8915096b9d78077ab8409e5df59b15763577b4ad42836063bed2
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 339
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:04 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D; expires=Tue, 09-Dec-2025 04:32:04 GMT; Max-Age=63072000; path=/; domain=exdynsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
whoursie.com/tag.min.js
26 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89db423572db9fc9a9d05744cc8f3311
6abebfc29ef9482a13c86bcae4ba97917d0ce83f
d30f02bc7f12210b8f45388e88c7049b591293829a62ec1e5bcf8410eb262f9b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/javascript; charset=utf-8
content-length: 25677
content-encoding: br
x-trace-id: 9711788f396a30355b5d68ef66e83efd
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 08 Dec 2023 18:33:34 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
scl6gc5l.site/api/data/analytics_ads
200 OK 358 B URL POST HTTP/1.1 scl6gc5l.site/api/data/analytics_ads
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGlobalSign nv-sa
Subjectwww.scl6gc5l.site
FingerprintC4:63:2C:B2:9F:48:F2:11:12:9F:DB:A3:7E:39:90:6E:99:72:24:85
ValidityTue, 21 Nov 2023 19:15:40 GMT - Sun, 22 Dec 2024 19:15:39 GMT
File type JSON data
- , ASCII text, with very long lines (358), with no line terminators
Hash fdb49411ebc98358599484d693b58198
2a16f3ae2e781b68c4d9003bd0e7b031238cf064
e6fe6c1ffe3219617385b94d8693aa608190ac1c175aac85164de62cb484f559
POST /api/data/analytics_ads HTTP/1.1
Host: scl6gc5l.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 158
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 10 Dec 2023 04:32:04 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
whoursie.com/5/5951045/?oo=1&aab=1
200 OK 1.9 kB URL GET HTTP/2 whoursie.com/5/5951045/?oo=1&aab=1
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
File type gzip compressed data, max speed, from Unix
- data
Hash b9f76847606cde09dfa41c96e1e82a8b
1c9f1987450e9f14a0c7bb12fb195fe6a095b06c
0ca66b683bad582f1236ef95493a57459f381692012d28249cef2bb8bb38f586
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/5951045/?oo=1&aab=1 HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: application/json
x-trace-id: ee94b64a75b8be3c9ba2f824b1d42d46
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://ww3.animeonline.ninja
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0494d9b7d60048b2be1a053171ac8a99; expires=Mon, 09 Dec 2024 04:32:04 GMT; path=/; secure; SameSite=None
oaidts=1702182724; expires=Mon, 09 Dec 2024 04:32:04 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/rd09xygqsawI3vAm6XjMFjF5OfT.jpg
8.7 kB URL image.tmdb.org/t/p/w300/rd09xygqsawI3vAm6XjMFjF5OfT.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 1f56d85d373ff9245384207aa27cd4d2
ee2296bc89cb9332e71a613ab9de5f2d95cff29a
3dd387fb51bf46df6cea4889228d08890205be5f55fd56374754c27242c27080
GET /t/p/w300/rd09xygqsawI3vAm6XjMFjF5OfT.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 8680
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6556b1e5-21e8"
last-modified: Fri, 17 Nov 2023 00:20:53 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 719
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 11/17/2023 19:17:12
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 71cb217c737d9dc06683442d1efdf729
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QW04DMQy8Chdo5FeSdb/hF6SiHiDdTaRFkCJAtEg+PM4KVcT5mDjjmUkIiHdIO9A74j3THsQUg0IQChjFHp8OJmjf9aP09a2Gr/O7oTIhWWIVjTZBBskmnGnSySJm44RA4yqmKCBgvtnAiyKLDBQAKCVyij0cD3Z8vveeYmRDI2OAK0VwPPzN1Uz8ANehIYqqEUrB2maFhqfY5rYgtcySZxxEu1w4bInP/XXtNfS1v5QtwmaOjJsR3Go3phiFyQP6Atva5fOnz2b/iOOhCslRvAmMWftD/n95plNtlVCK1GUpJbUs3Hhapsz6C3gBDWt0AQAA
200 OK 20 B URL GET HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QW04DMQy8Chdo5FeSdb/hF6SiHiDdTaRFkCJAtEg+PM4KVcT5mDjjmUkIiHdIO9A74j3THsQUg0IQChjFHp8OJmjf9aP09a2Gr/O7oTIhWWIVjTZBBskmnGnSySJm44RA4yqmKCBgvtnAiyKLDBQAKCVyij0cD3Z8vveeYmRDI2OAK0VwPPzN1Uz8ANehIYqqEUrB2maFhqfY5rYgtcySZxxEu1w4bInP/XXtNfS1v5QtwmaOjJsR3Go3phiFyQP6Atva5fOnz2b/iOOhCslRvAmMWftD/n95plNtlVCK1GUpJbUs3Hhapsz6C3gBDWt0AQAA
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01QW04DMQy8Chdo5FeSdb/hF6SiHiDdTaRFkCJAtEg+PM4KVcT5mDjjmUkIiHdIO9A74j3THsQUg0IQChjFHp8OJmjf9aP09a2Gr/O7oTIhWWIVjTZBBskmnGnSySJm44RA4yqmKCBgvtnAiyKLDBQAKCVyij0cD3Z8vveeYmRDI2OAK0VwPPzN1Uz8ANehIYqqEUrB2maFhqfY5rYgtcySZxxEu1w4bInP/XXtNfS1v5QtwmaOjJsR3Go3phiFyQP6Atva5fOnz2b/iOOhCslRvAmMWftD/n95plNtlVCK1GUpJbUs3Hhapsz6C3gBDWt0AQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D; expires=Tue, 09 Dec 2025 04:32:04 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
image.tmdb.org/t/p/w300/4QVb9s4udAvtLbh3DeCwogBYd0X.jpg
7.3 kB URL image.tmdb.org/t/p/w300/4QVb9s4udAvtLbh3DeCwogBYd0X.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 18226782e0962fbe4b92f1da75d1adfe
6520f0cc7df4c19b12284abd8c862548552cb00a
3520f86ef6628e6a6d81fdf436ba79e38552e364017fdc7946a7fccb9601bc5c
GET /t/p/w300/4QVb9s4udAvtLbh3DeCwogBYd0X.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 7255
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "657233d5-1c57"
last-modified: Thu, 07 Dec 2023 21:06:29 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 717
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/08/2023 01:39:08
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 792a302ed8dab96c1518190fd31e5773
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/pewEqBjkdtoRc8PEDB1OqrboNnf.jpg
200 OK 7.7 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/pewEqBjkdtoRc8PEDB1OqrboNnf.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash b77683ff495a26bcf79a88a112e648be
5b9b7ff1d710bce1e4ba4a67697aaddc8dd1e386
03a406a2788a514af3e36fad513bbffb8cebcfa4c19718a0cf7a99632572c32c
GET /t/p/w300/pewEqBjkdtoRc8PEDB1OqrboNnf.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 7741
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65727fb1-1e3d"
last-modified: Fri, 08 Dec 2023 02:30:09 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 629
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/08/2023 20:41:10
cdn-edgestorageid: 1076
cdn-status: 200
cdn-requestid: 49ba00bc818a190d4eab6d1678eab107
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/xrLFILXPdXtdBXC0Zji6mVpKmuW.jpg
11 kB URL image.tmdb.org/t/p/w300/xrLFILXPdXtdBXC0Zji6mVpKmuW.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 0d1ba1d390e89d64f6b48dc8a8e56bfd
7d8f788c144b33c617008ab155d48290ab75fbb2
ab291970451b32f58353d7183427372b097f2aa970cbe0a40c94fbc5d28c9858
GET /t/p/w300/xrLFILXPdXtdBXC0Zji6mVpKmuW.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 11165
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65724185-2b9d"
last-modified: Thu, 07 Dec 2023 22:04:53 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 707
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/08/2023 00:56:44
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 3f788e8950a9cda3adfedf90a587bf69
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/brTsGje2MKuCHQuj8UVF1VjTSUv.jpg
9.1 kB URL image.tmdb.org/t/p/w300/brTsGje2MKuCHQuj8UVF1VjTSUv.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash ce7b94fe7b25072e692f780697111627
1ad02c1f0dfa18dd2f39879a06b976b0470d096c
6489ab79db5ae51c4e9320d723e38624b5c5a868d74edfd71964e569454cc22a
GET /t/p/w300/brTsGje2MKuCHQuj8UVF1VjTSUv.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 9068
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6572eb1b-236c"
last-modified: Fri, 08 Dec 2023 10:08:27 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 719
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/08/2023 10:10:15
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: d8171887cc4bc60abe72b0449e2215ad
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/nIHp6fz2MX33blJKYa9BSbhct7W.jpg
200 OK 11 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/nIHp6fz2MX33blJKYa9BSbhct7W.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 0ec8c3ba51fc52f8046575888e79aabd
e53c41ba4a4eaf34b7583caf16adf324418afdf6
431d07eb69802968cae74a15650531f22f210483325793e34901ffdf05af2b38
GET /t/p/w300/nIHp6fz2MX33blJKYa9BSbhct7W.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 11419
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6272c32d-2c9b"
last-modified: Wed, 04 May 2022 18:17:17 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 10/27/2022 08:38:15
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: ca1f30b026cce92c8a0854d99ecb1332
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/dbEXBqAAQp8uvWs0qs78ZZmUa4O.jpg
8.4 kB URL image.tmdb.org/t/p/w300/dbEXBqAAQp8uvWs0qs78ZZmUa4O.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 4136f477ccbc9f4c335e1d7a00a4ff6a
740d2bc12a9c49abed2ea0daccd624a70ddcd826
e022580a113b39a22e040110e2bd4eca0c4e27355d9da8afe46757533de164a0
GET /t/p/w300/dbEXBqAAQp8uvWs0qs78ZZmUa4O.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 8445
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6272ec42-20fd"
last-modified: Wed, 04 May 2022 21:12:34 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/05/2023 10:12:44
cdn-edgestorageid: 1055
cdn-status: 200
cdn-requestid: b3f585cf869e0292569b284a5ce84d2c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags=
200 OK 1.5 kB URL GET HTTP/2 ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectads.adxadserv.com
Fingerprint70:CD:DE:2A:A2:EF:09:F0:B6:28:0D:89:0D:62:5D:45:FA:43:AF:0D
ValidityFri, 13 Oct 2023 20:21:22 GMT - Thu, 11 Jan 2024 20:21:21 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (579)
Hash 45863bbfa19df107f674a12d4f4f479d
415962f4da749e339ad0abe8156fdd87513997d4
cb1853582fdd9fdfa22fdec66aa79c0b3968420e08d328d4987826b26de5c049
GET /ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/html; charset=utf-8
content-length: 1479
cache-control: no-cache
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/jjoHTAtKwTQ0u7ZUzhtEgQ8vuvS.jpg
6.6 kB URL image.tmdb.org/t/p/w300/jjoHTAtKwTQ0u7ZUzhtEgQ8vuvS.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 9b902cfeeae139cf1f4409483780c10d
28ab01b221dee19619229bb1d5037e17c8eeef6e
6d224c8f395f041b3f67e096be5b2dfb4424a230307de24c108b404b9d4ee431
GET /t/p/w300/jjoHTAtKwTQ0u7ZUzhtEgQ8vuvS.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 6632
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6274b701-19e8"
last-modified: Fri, 06 May 2022 05:49:53 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 268
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 22:22:52
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requestid: cec1a1d42ffc932d307f49161114a9cd
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/slEDvLKx007Auietiom9gAXjXWa.jpg
8.7 kB URL image.tmdb.org/t/p/w300/slEDvLKx007Auietiom9gAXjXWa.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 837d130e50eb00135598ad1eee168458
568394aeadc20cc9caaec9e86225694bdc1c9bea
e2bb370e51b9d89fe8811287a6856d36f5192980997f9ac30ed5db8cfb953a9d
GET /t/p/w300/slEDvLKx007Auietiom9gAXjXWa.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 8674
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65560218-21e2"
last-modified: Thu, 16 Nov 2023 11:50:48 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 704
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 11/16/2023 12:05:58
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 3e7202b6348d8fd3097bae515be39978
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/A2KXTD1sdInwB8GrJUCkwxwlH9u.jpg
200 OK 5.9 kB URL GET HTTP/2 image.tmdb.org/t/p/w300/A2KXTD1sdInwB8GrJUCkwxwlH9u.jpg
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectimage.tmdb.org
FingerprintCF:B7:E8:C7:7D:07:EB:E8:16:FA:B8:1B:32:66:3E:29:66:0A:5D:01
ValidityThu, 30 Nov 2023 13:08:23 GMT - Wed, 28 Feb 2024 13:08:22 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3
- data
Hash 4d392fec3787ab2ee0ca19351d5b210e
ff9d7f28895a1ede3cbed5a49c26eb45741d75dd
11d1668660f010313141728953f2831b43e8bc45e5d7365fa5fc25812d5014c9
GET /t/p/w300/A2KXTD1sdInwB8GrJUCkwxwlH9u.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 5864
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "627437ea-16e8"
last-modified: Thu, 05 May 2022 20:47:38 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 22:22:52
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requestid: 6f64fe373c2f58e0245ceb032ee54607
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/11YhLRucLdmIj0t3m9MtuQZec7V.jpg
18 kB URL image.tmdb.org/t/p/w300/11YhLRucLdmIj0t3m9MtuQZec7V.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x225, components 3
- data
Hash 4f05feaf95f05f2004014619e744a58b
fb27f315178aea8cfc9f29e08e24f29725176c5d
9fced1ad77372dfb31fa21a54c1112f1741844af8aaa65614cf29c3e4cbf2aec
GET /t/p/w300/11YhLRucLdmIj0t3m9MtuQZec7V.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: image/jpeg
content-length: 17599
server: BunnyCDN-DE1-860
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "629bf3ea-44bf"
last-modified: Sun, 05 Jun 2022 00:08:10 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/09/2023 18:09:31
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: e6f14e75f0eed9c9e18a46407c6e5b5e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.adxadserv.com/js/adb.js
200 OK 2.2 kB URL GET HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type gzip compressed data, from Unix
- data
Hash 0332a817ef724a0f09b747adb5a4edc4
5b18ed5fde209558fdec4c415ba5b7dfa341bac3
1116074a95c764e230ef24cdb3a185490a1d36fa494b1f1613a9af60607b1223
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Sep 2023 14:53:26 GMT
etag: W/"64f740e6-510"
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3CAIBAA
x-77-nzt-ray: c0a4cc28f5629dce443f756583d5e105
x-accel-expires: @1702834895
x-accel-date: 1702116668
x-cache-lb: HIT
x-age-lb: 66056
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 66056
content-encoding: gzip
X-Firefox-Spdy: h2
static.adxadserv.com/js/adb.js
200 OK 2.2 kB URL GET HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type gzip compressed data, from Unix
- data
Hash e3a37a26562a4f0761c63526d763676f
25a0e40882bdffc5c0f04c02359326f27e539fc2
1e1d73f146e0192d8fadfd94b2560fae7feeac63f10bd8faf1e043de41e31b62
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 05 Sep 2023 14:53:26 GMT
etag: W/"64f740e6-510"
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3CAIBAA
x-77-nzt-ray: c0a4cc28f5629dce443f75652a9af705
x-accel-expires: @1702834895
x-accel-date: 1702116668
x-cache-lb: HIT
x-age-lb: 66056
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 66056
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
200 OK 1.5 kB URL GET HTTP/2 ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectads.adxadserv.com
Fingerprint70:CD:DE:2A:A2:EF:09:F0:B6:28:0D:89:0D:62:5D:45:FA:43:AF:0D
ValidityFri, 13 Oct 2023 20:21:22 GMT - Thu, 11 Jan 2024 20:21:21 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (581)
Hash 09d4088943e50f0923fb55d2583ef085
8f044ad03887164300d8822670569c4aa2782d7a
93c95a30c5e2aaa62b9a49be68e7b4773b61dbbc501cb741428a26eddde17c4e
GET /ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/html; charset=utf-8
content-length: 1520
cache-control: no-cache
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=0494d9b7d60048b2be1a053171ac8a99
65 B URL my.rtmark.net/gid.js?userId=0494d9b7d60048b2be1a053171ac8a99
IP
Hash e7d74f6ef2787961c36ee150cf68c294
dfe27242326f3a9a85eda70813cf85c05f282201
1cf86dca1d1b4f579c0b53be0f273fe2c3b35467e4b3fe8ed29a6ffce2dbf06c
GET /gid.js?userId=0494d9b7d60048b2be1a053171ac8a99 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ww3.animeonline.ninja
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0494d9b7d60048b2be1a053171ac8a99; expires=Mon, 09 Dec 2024 04:32:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
browser.sentry-cdn.com/6.2.2/bundle.min.js
200 OK 21 kB URL GET HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
FingerprintF4:BF:96:D1:20:5D:BA:52:63:EB:1F:F7:56:39:FA:81:01:A3:64:DE
ValidityTue, 01 Aug 2023 14:42:24 GMT - Sun, 01 Sep 2024 14:42:23 GMT
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:05 GMT
age: 18547202
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
browser.sentry-cdn.com/6.2.2/bundle.min.js
200 OK 21 kB URL GET HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
FingerprintF4:BF:96:D1:20:5D:BA:52:63:EB:1F:F7:56:39:FA:81:01:A3:64:DE
ValidityTue, 01 Aug 2023 14:42:24 GMT - Sun, 01 Sep 2024 14:42:23 GMT
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:05 GMT
age: 18547202
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed
43 B URL my.rtmark.net/img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed
IP
File type GIF image data, version 89a, 1 x 1
- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=sync&lr=1&partner=3c31714cb43d8cad76b686191340e198fbf9abb01c60cc8f2696befec37406ed HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ID=0494d9b7d60048b2be1a053171ac8a99
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0494d9b7d60048b2be1a053171ac8a99; expires=Mon, 09 Dec 2024 04:32:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r.trackwilltrk.com/s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv1=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_
200 OK 1.2 kB URL GET HTTP/1.1 r.trackwilltrk.com/s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv1=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintA8:53:A6:ED:2C:DE:1B:AD:FC:D4:34:DD:83:A1:60:B4:8F:B1:28:DC
ValidityMon, 30 Oct 2023 07:27:38 GMT - Sun, 28 Jan 2024 07:27:37 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (450)
Hash 5cb358aa0bb2c254f1da4db69bae0474
d09cc5b23d977ebe27332629c0c4ea6024fd51fe
919c42664e3a353ced7efcbc5d0c7ab38e1e629b0c54e3a0a62e2fcc6a2ce89a
GET /s1/e766d629-8aa2-4f64-800f-7458117d07a9?externalId=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv1=1d6ba78a-2111-443e-bbed-da5f3e8d84fd&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d833161d6e27cf559bde1&cv5=623d831361d6e2739a0c4ca4&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64b61d6e272e90b980b&cv10=exim_adxad_stub1_300x250_ HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=uV5aIgc-M; Path=/; Domain=trackwilltrk.com; Expires=Mon, 11 Dec 2023 04:32:05 GMT; HttpOnly
X-Request-Id: 488fa513-f144-49f8-bf2b-f57bf01995a9
Content-Encoding: gzip
r.trackwilltrk.com/s1/1c3d665f-a99b-4b9e-a1f0-d2344b1d3854?externalId=55fa1968-421e-4e06-8753-9e77694cd02a&cv1=55fa1968-421e-4e06-8753-9e77694cd02a&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64cd06ae61d6e2749522effb&cv5=64cd06a261d6e27424278eff&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=qpas_adxad_stub3_300x250
436 B URL r.trackwilltrk.com/s1/1c3d665f-a99b-4b9e-a1f0-d2344b1d3854?externalId=55fa1968-421e-4e06-8753-9e77694cd02a&cv1=55fa1968-421e-4e06-8753-9e77694cd02a&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64cd06ae61d6e2749522effb&cv5=64cd06a261d6e27424278eff&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=qpas_adxad_stub3_300x250
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintA8:53:A6:ED:2C:DE:1B:AD:FC:D4:34:DD:83:A1:60:B4:8F:B1:28:DC
ValidityMon, 30 Oct 2023 07:27:38 GMT - Sun, 28 Jan 2024 07:27:37 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text
Hash 96e0ee47807ea2986a3b066f649fee4c
d2fc07c19a130d92721bf2809e05a81de0be4c34
488d799d8000251e0657a1b21189d41180250ae3b3f2a1223a0f73a80e3a1ca7
GET /s1/1c3d665f-a99b-4b9e-a1f0-d2344b1d3854?externalId=55fa1968-421e-4e06-8753-9e77694cd02a&cv1=55fa1968-421e-4e06-8753-9e77694cd02a&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64cd06ae61d6e2749522effb&cv5=64cd06a261d6e27424278eff&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=qpas_adxad_stub3_300x250 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 436
Connection: close
Set-Cookie: uid=5_8tIgn-p; Path=/; Domain=trackwilltrk.com; Expires=Mon, 11 Dec 2023 04:32:05 GMT; HttpOnly
X-Request-Id: 84315ea9-3a9d-4e27-ba35-e9487a05d99f
r.trackwilltrk.com/s1/6f077301-542e-438f-9945-662f1f933fe8?externalId=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv1=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64c90bb261d6e24e4a75a4a1&cv5=64c90ba461d6e255f81c8f58&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=qp_adxad_stub3_300x250
436 B URL r.trackwilltrk.com/s1/6f077301-542e-438f-9945-662f1f933fe8?externalId=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv1=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64c90bb261d6e24e4a75a4a1&cv5=64c90ba461d6e255f81c8f58&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=qp_adxad_stub3_300x250
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintA8:53:A6:ED:2C:DE:1B:AD:FC:D4:34:DD:83:A1:60:B4:8F:B1:28:DC
ValidityMon, 30 Oct 2023 07:27:38 GMT - Sun, 28 Jan 2024 07:27:37 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text
Hash cbd63a168366057828408a39b05f4d93
84f4e61632503439c4321a73554f298f3aeae782
5bbddc536f4427f82e4073a863562815c972075ff3b59df2cc65edf14db9f754
GET /s1/6f077301-542e-438f-9945-662f1f933fe8?externalId=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv1=2959bd6b-8d52-40e4-8625-c04ce9c0ce1e&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64c90bb261d6e24e4a75a4a1&cv5=64c90ba461d6e255f81c8f58&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b63761d6e272165ed9c5&cv10=qp_adxad_stub3_300x250 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 436
Connection: close
Set-Cookie: uid=NV8aIPczp; Path=/; Domain=trackwilltrk.com; Expires=Mon, 11 Dec 2023 04:32:05 GMT; HttpOnly
X-Request-Id: 890566cd-b9b8-4b46-b29a-0e042335e215
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
631 B URL cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP
File type ASCII text, with very long lines (1796)
Hash 877f174ba71fcbb4bd316accf30ab613
0efbe27a5658c93f3e2ae08b57204ba7fe5e3900
a12ac29d1617bc71b7d520627ea3f63ccd6e8deed2254c97d274f03b6449579e
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 950816
expires: Fri, 29 Nov 2024 04:32:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r3C5pr5QuBuZfHbrz6NsVqq4g5DUbr3NvUHT7nIO8ROtujoq6XnqEieHXnCzQOokVMLxUdAbjJnxAOwZwJ6xLaSz%2Fug1XN0Sky8%2FeiL2TeGvq7tKYGeNwVo4aRyEHrBjS54Jo6bw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8332c3124efbb517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-json/dooplayer/v1/post/83053?type=tv&source=1
200 OK 401 B URL GET HTTP/2 ww3.animeonline.ninja/wp-json/dooplayer/v1/post/83053?type=tv&source=1
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 38c2d85d4537de852e2e41c0704a27e2
6454dfe8332f780ab28bd730aab379f770eee9c6
5de55921ab305c9fb50642afcfdab194cc227d378e4ec7138b0deb997837b462
GET /wp-json/dooplayer/v1/post/83053?type=tv&source=1 HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: _ga_ES0BC9NXD9=GS1.1.1702182731.1.0.1702182731.0.0.0; _ga=GA1.1.317084018.1702182731
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://ww3.animeonline.ninja/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff, nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 242486973
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
last-modified: Sun, 10 Dec 2023 04:31:08 GMT
cf-cache-status: HIT
server: cloudflare
cf-ray: 8332c3105c4756a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
200 OK 85 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (63194)
Hash de8ab4879bd77ebe629c721339d42f65
fdb117223b56b52fc13256fa0288723785631d2a
7a4a51ab0b9301083e145526762d065e622a0ec8cfb5a866cd6b20c87087ff08
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"de8ab4879bd77ebe629c721339d42f65"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: riK/3ctSFIGOyIA3dzAveZ99ExDSDOKZx7ERd98X89Jx0EEGCu94uhCobwfZVX7uNl7IEjI3+jA=
x-amz-request-id: BDV2A2K6BGQDME16
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 74567d4cb31218f78cc30534eec0ea08
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
s2.googleusercontent.com/s2/favicons?domain=bit.ly
301 Moved Permanently 326 B URL GET HTTP/2 s2.googleusercontent.com/s2/favicons?domain=bit.ly
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF, LF line terminators
Hash e4952630f9674c9e156e799bcff19f91
093f9998f3e4ac6339434cbaba8ccff6cfeb6bf5
7c1a0de9b087af7fea518c2ca61df07f2d018759bc21181fc121e85f9e267e05
GET /s2/favicons?domain=bit.ly HTTP/1.1
Host: s2.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:32:05 GMT
expires: Sun, 10 Dec 2023 05:02:05 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 326
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
syndication.exdynsrv.com/v1/api.php
3.0 kB URL syndication.exdynsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data
- , ASCII text, with very long lines (6368), with no line terminators
Hash 1b9a5d23b202fa6ef3a4001532b4c41f
6dfb4bc74c16ef2f1e5a263f40e596cc34983275
2c4266f5c0f60218266d72eacf787ff097808bf4413fd048fb4f53af75039d51
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://a.exdynsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.exdynsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
fonts.googleapis.com/css?family=Ubuntu&display=swap
200 OK 25 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Ubuntu&display=swap
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731272&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 88470bc7f26c0a85c502e50daf5d46a9
77fbfcaa95e52e64efdf82dfb10963535cae8a7c
42343d531629ca6fc650f66c6b7301372424c9def5629d0221467e757c79cd05
GET /css?family=Ubuntu&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.adxadserv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 10 Dec 2023 04:32:05 GMT
date: Sun, 10 Dec 2023 04:32:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:41 GMT
ETag: W/"5f6dbe9d-12fee"
Expires: Sun, 10 Dec 2023 07:59:26 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBj/QqHwH35yABAAwBuUwKAQH3AAAAAAgB1GY4EQFB
X-77-NZT-Ray: 1317b72c51456b89453f756566f66f26
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702108766
X-77-Age: 73959
X-Cache-LB: HIT, HIT
X-Age-LB: 0, 73959
X-77-POP: amsterdamNL
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 191408
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:41 GMT
ETag: W/"5f6dbe9d-12fee"
Expires: Sun, 10 Dec 2023 07:59:26 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBw7WsGQH35yABAAwBuUwKAQGTgVEBAAgB1GY4EQFB
X-77-NZT-Ray: f5ba4623ff3cdb2c453f75656ffbae2e
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702108766
X-77-Age: 160360
X-Cache-LB: EXPIRED, HIT
X-Age-LB: 86401, 73959
X-77-POP: amsterdamNL
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 191408
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adxadserv.com/ascripts/pxl.js
200 OK 24 kB URL GET HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2020 09:55:41 GMT
ETag: W/"5f6dbe9d-12fee"
Expires: Sun, 10 Dec 2023 07:59:26 GMT
Cache-Control: max-age=86400, public
X-77-NZT: EwwBw7WsGQH35yABAAwBuUwKAQGTgVEBAAgB1GY4EQFB
X-77-NZT-Ray: f5ba46238b2fdc2c453f75653da8b12e
X-77-Cache: HIT
Content-Encoding: gzip
X-Accel-Date: 1702108766
X-77-Age: 160360
X-Cache-LB: EXPIRED, HIT
X-Age-LB: 86401, 73959
X-77-POP: amsterdamNL
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 191408
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64b61d6e272e90b980b&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731277&screen=1280x1024&tags=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0
- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:57 GMT
expires: Fri, 06 Dec 2024 23:21:57 GMT
cache-control: public, max-age=31536000
age: 191408
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRU9L2+9+t9DSA3jtNTU0TklDSEGH764D0SAxCDEzIiA+IB0gPxE/Mz2DRsaUIQklVInXt/cQjGs9j9t6rF91u4zraftet5oup59AQTYKQx9QIpuTUogrIUggQqi5EHs4ZsmuHgLBAQ2kLNJZAgDEMIjPj5e9sYGijW4fTd8bhxvEoKa8SKshz5oGzwMQMCmSGgLnoKEiISvWYl5srDSZ6mLLVMCYtQvFmOpt/tt+z9c0nY57mj0H490ZHjj0c0ZhallbQezrdTmPxxrxuLt/ErbLU1fopL8g3nlMY8lKsxUqFbPVeZpoKTAz++I62z8k3kiMigEAAA==
20 B URL syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRU9L2+9+t9DSA3jtNTU0TklDSEGH764D0SAxCDEzIiA+IB0gPxE/Mz2DRsaUIQklVInXt/cQjGs9j9t6rF91u4zraftet5oup59AQTYKQx9QIpuTUogrIUggQqi5EHs4ZsmuHgLBAQ2kLNJZAgDEMIjPj5e9sYGijW4fTd8bhxvEoKa8SKshz5oGzwMQMCmSGgLnoKEiISvWYl5srDSZ6mLLVMCYtQvFmOpt/tt+z9c0nY57mj0H490ZHjj0c0ZhallbQezrdTmPxxrxuLt/ErbLU1fopL8g3nlMY8lKsxUqFbPVeZpoKTAz++I62z8k3kiMigEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1PW2rDQAy8Si+QRU9L2+9+t9DSA3jtNTU0TklDSEGH764D0SAxCDEzIiA+IB0gPxE/Mz2DRsaUIQklVInXt/cQjGs9j9t6rF91u4zraftet5oup59AQTYKQx9QIpuTUogrIUggQqi5EHs4ZsmuHgLBAQ2kLNJZAgDEMIjPj5e9sYGijW4fTd8bhxvEoKa8SKshz5oGzwMQMCmSGgLnoKEiISvWYl5srDSZ6mLLVMCYtQvFmOpt/tt+z9c0nY57mj0H490ZHjj0c0ZhallbQezrdTmPxxrxuLt/ErbLU1fopL8g3nlMY8lKsxUqFbPVeZpoKTAz++I62z8k3kiMigEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.exdynsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.exdynsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%2265753f444469d5.689602032512571039%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%7C517.019701%22%7D; expires=Tue, 09 Dec 2025 04:32:05 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
663 B URL a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
IP
ASN #60068 Datacamp Limited
File type gzip compressed data, from Unix
- data
Hash 17da0144e4af4b8f3839dec39cf9b390
c61e0ac20a5201fc868c821ea905374242ef1047
50f89eb12d45da83556ec180ed29190512624a8bafa30de85b26db93c3d26d41
GET /iframe.php?idzone=4852104&size=300x250 HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch:
expires: Sun, 10 Dec 2023 06:57:47 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3IAIAAAwBuUwKCQH36QUAAAwB1GY4AQGzMSoAAA
x-77-nzt-ray: c0a4cc28e16496cd443f756551491324
x-accel-expires: @1702191467
x-accel-date: 1702182180
x-77-cache: HIT
x-77-age: 12858
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 1513, 544
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
static.arc.io/widget/js/brokers.js?cfaaa772
200 OK 12 kB URL GET HTTP/2 static.arc.io/widget/js/brokers.js?cfaaa772
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (21470)
Hash e1f31a1f2266b21d5986026408c6b7ae
16583ba6436fb94cf4d05cb8ec6cb5d601d83926
58936974bff4521fdc89cd5eb181ec9187a06458235ddab4a1c36486bf3150a8
GET /widget/js/brokers.js?cfaaa772 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"e1f31a1f2266b21d5986026408c6b7ae"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: 6I1+nX728/K2CMcrIwuct2vJxb8s64G7tmAh1volqACmT6JPBsIl7bGUESxACPt9cUFsu6xM7Ws=
x-amz-request-id: T9MBZ2F1DD7SM1N9
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:28
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5b81def6a6bf3f23c1976289292b19a2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64461d6e27e372dcee6%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731272%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732213&t_i=1702182732630&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f62ab2-9715-11ee-91ec-e25a5bb9767f&spid=60e4b64461d6e27e372dcee6&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.518
200 OK 0 B URL GET HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64461d6e27e372dcee6%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731272%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732213&t_i=1702182732630&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f62ab2-9715-11ee-91ec-e25a5bb9767f&spid=60e4b64461d6e27e372dcee6&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.518
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731272&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64461d6e27e372dcee6%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731272%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732213&t_i=1702182732630&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f62ab2-9715-11ee-91ec-e25a5bb9767f&spid=60e4b64461d6e27e372dcee6&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.518 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:06 GMT
Content-Length: 0
Connection: keep-alive
saidochesto.top/static/lang/SUB.png
200 OK 7.3 kB URL GET HTTP/3 saidochesto.top/static/lang/SUB.png
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
Fingerprint4D:59:4C:DD:80:83:BF:56:CC:40:B6:35:B0:27:15:F6:C0:A4:F6:1F
ValidityFri, 13 Oct 2023 01:05:53 GMT - Thu, 11 Jan 2024 01:05:52 GMT
File type PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced
- data
Hash f9dfcd9466bd34c3aca15973774cb48a
68f9a56211fc26c6177479eef5b9d3249a9b3020
80d3784153d1a2ed0437eaf123c1b97c9b05eef2be760f99d14fbd12bba5a55f
GET /static/lang/SUB.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=9197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/png
content-length: 7310
cache-control: public, max-age=604800
expires: Sun, 10 Dec 2023 09:05:20 GMT
last-modified: Sat, 21 Nov 2020 19:34:54 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 588406
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gg2TZXmPrGcNjQ4Co08xlfQ9P6kJm2saCgxzNI%2FS%2B5%2F2Tr%2Bs5lJ14qw5fh0UL1ohtu4x%2FJwwxCe5O55RWTM95KPNOp7a5ILvAPOggTGOcnRXjjpICxIP4vHIS5JgW5x9I%2FE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c315fef71c06-OSL
saidochesto.top/static/lang/ES.png
200 OK 887 B URL GET HTTP/3 saidochesto.top/static/lang/ES.png
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
Fingerprint4D:59:4C:DD:80:83:BF:56:CC:40:B6:35:B0:27:15:F6:C0:A4:F6:1F
ValidityFri, 13 Oct 2023 01:05:53 GMT - Thu, 11 Jan 2024 01:05:52 GMT
File type PNG image data, 112 x 112, 8-bit colormap, non-interlaced
- data
Hash 6d3a7adc0672d17890c91ebe8e218166
b7584e240b489ab63048af9963fe0c25029ca9e7
75076e7667a29226a398127ee71b104b813909d0ce6ab398de766ac437f6d8ed
GET /static/lang/ES.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=9197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/png
content-length: 887
cache-control: public, max-age=604800
expires: Sun, 10 Dec 2023 15:28:18 GMT
last-modified: Sun, 18 Oct 2020 15:47:00 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 565428
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QSV2ZxJkwBL22Nf%2F6LRqM%2FFGYAuIzZmJQtJ%2FXFim3nFCzZrF%2FkrmjSXSSXQF6GWrplQM%2BaU9goR4eebDh3D0KFAhuEf%2BG9HxjxQpNM%2BFmMEhM0VRvOSJBWN74WTEtjLEPPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c315fef91c06-OSL
static.arc.io/widget/js/core.js?a633436
200 OK 108 kB URL GET HTTP/2 static.arc.io/widget/js/core.js?a633436
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Size 108 kB (107502 bytes)
Hash ba2f4ad6daf959334bb5c8a10a100974
a6f4bbd15a345a9ddd95cc898999c7e492aa0f03
f82dcfb9cb5d6ca8fe5c0524893874d9bf0b1594f7aee17a42b4531cb5c8caf9
GET /widget/js/core.js?a633436 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"ba2f4ad6daf959334bb5c8a10a100974"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: cg3CfINp0UChhyUcJc2ji+6ZQG8ldo3iIRs2DUjzzEwerBjqsvBjM+kTMO2SL920aPxcuCWgSu0=
x-amz-request-id: SF0W6H45MEZVAN9S
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:55
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 547ec2927d10b79a83a723dc782fabfa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/idtabs.js
200 OK 172 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/idtabs.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (1541), with no line terminators
Size 172 kB (171479 bytes)
Hash d96d08755c4c573440104e2854602307
4f29944141ddf1ac30eabc29f654b6e93a972116
b24ccde4c9432756c63f7d5d4a2cc183ce5cb95df68ea8ea36fb6dd80c237107
GET /wp-content/themes/dooplay/assets/js/lib/idtabs.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1543
etag: W/"607-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 149364301
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1561129
server: cloudflare
cf-ray: 8332c305c9af56a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
saidochesto.top/embed.php?id=9197
39 kB URL saidochesto.top/embed.php?id=9197
IP
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
Fingerprint4D:59:4C:DD:80:83:BF:56:CC:40:B6:35:B0:27:15:F6:C0:A4:F6:1F
ValidityFri, 13 Oct 2023 01:05:53 GMT - Thu, 11 Jan 2024 01:05:52 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash c0d3f41af5e112092f1e13a79e995915
0484a409f772d433c3196365c44bde588e6ad1e9
185c7881a1eb4fc9c482beaf9e582d05a0339a2d005003ca68a63fa7bde68df3
GET /embed.php?id=9197 HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lq6C5vhhtxbmX8iPO%2FSVhoBdNAW3t6kePSQK3jrdujjIBsLRG6k6TxIQHsH7R3DIpS7x3rZks0JI8ve7JWixmg8qCsE%2BrxESENDg1CzBWGi2Vn3%2B0XFCVpMQ7LKyJolabh0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8332c312e93ab524-OSL
content-encoding: br
X-Firefox-Spdy: h2
saidochesto.top/static/server/mixdrop.sx.png
200 OK 20 kB URL GET HTTP/3 saidochesto.top/static/server/mixdrop.sx.png
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
Fingerprint4D:59:4C:DD:80:83:BF:56:CC:40:B6:35:B0:27:15:F6:C0:A4:F6:1F
ValidityFri, 13 Oct 2023 01:05:53 GMT - Thu, 11 Jan 2024 01:05:52 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
- data
Hash a1d6f593667503649c3013bd2a86943d
883f67c03fd56f65cb901d1c368f7353c0aee5bc
de8f51367228af8d1d0ecb8a22fcde30e282eec357778c3693d129dbd1f50b91
GET /static/server/mixdrop.sx.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=9197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/png
content-length: 19887
cache-control: public, max-age=604800
expires: Sat, 16 Dec 2023 19:56:57 GMT
last-modified: Thu, 08 Apr 2021 18:18:23 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 30909
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k4uvooNqGZZhZoUaoHVgmcEUnkM2JYJg8ye%2F4syVo3TwHXL73Gn2IdFknx0zj0Q4KWh%2BDfF9%2FHjeA3pNQR0qhg9YwsVt8oPxOjDm0IB%2BPBIX6XLyD5lgZv6iI885AwU%2FwgY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c315fefc1c06-OSL
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16
755 B URL t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash 584bf3fdcec029db6b1e3d9cb3402ebc
cd992f76d760ca7d37228bfdbfec6634077acd93
29e4d97ddb8613ac22af2eb4eb9f539d50a05f4e95ccbdd501e4ed9463880eb6
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://docrdsfx76ssb.cloudfront.net/static/1700176406/pages/wp-content/uploads/2019/02/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:04:13 GMT
expires: Thu, 14 Dec 2023 16:04:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
content-type: image/png
age: 217673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
726 B URL t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:32:06 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/141372/bae8205c2ed324b63858c4685f7583c125e7be10.webp
200 OK 9.3 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/141372/bae8205c2ed324b63858c4685f7583c125e7be10.webp
IP
ASN #60068 Datacamp Limited
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash de119b46f984695767fe3ee87a7868dc
bae8205c2ed324b63858c4685f7583c125e7be10
675071e3bd163214431efaf081d6890c5e3fd558d7b975c5e01aabc6d9224472
GET /library/141372/bae8205c2ed324b63858c4685f7583c125e7be10.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/webp
content-length: 9348
last-modified: Fri, 05 May 2023 12:45:17 GMT
etag: "6454fa5d-2484"
expires: Sat, 04 May 2024 13:01:09 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3wDwgAQ
x-77-nzt-ray: c0a4cc282f5626e2463f7565d9755606
x-accel-expires: @1714828806
x-accel-date: 1683292806
x-cache-lb: HIT
x-age-lb: 18889920
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 18889920
accept-ranges: bytes
X-Firefox-Spdy: h2
static.arc.io/widget/js/lazy-modules.js?fe421cd5
200 OK 278 B URL GET HTTP/2 static.arc.io/widget/js/lazy-modules.js?fe421cd5
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (385)
Hash bf3693cfb405887329f70b7d8af75778
fda421baca4cc4e728b56401fa030b516289d854
67a059442ba90d139a2c5010109476b0819cab9a68047d5302f064123733ee57
GET /widget/js/lazy-modules.js?fe421cd5 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"bf3693cfb405887329f70b7d8af75778"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: gX5ujdodPrYTNi/gfDG6+YITEYvPNDNrMw1XObyaZbggzoTC9G2QnPHGDb2a6xTvUOVGEhSTIXM=
x-amz-request-id: CP664Q14H71BB0T2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ce1923d499a2ad52f7e9650aa43cc780
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
proftrafficcounter.com/px.gif?akey=c73209e3a548f31485d4d93c096d1d6c
307 Temporary Redirect 0 B URL GET HTTP/2 proftrafficcounter.com/px.gif?akey=c73209e3a548f31485d4d93c096d1d6c
IP
Requested by https://iliketomakingpics.com/iframe/5dcda983a80c7?iframe&ag_custom_domain=veranime.top
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px.gif?akey=c73209e3a548f31485d4d93c096d1d6c HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iliketomakingpics.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/gif
content-length: 0
location: https://experttrafficmonitor.com/dbs?uuid=6b003d5b-f64a-43a8-b48a-251e672d5230&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMTgyNzI2fSwiYWNjbCI6eyIyMCwzIjoxNzAyMTgyNzI2fX0.hIlm1mJdNvZv_2h0JhFxX1pihLiY_tnwBxfjuJA06kY
server: nginx/1.21.6
set-cookie: uid_id2=6b003d5b-f64a-43a8-b48a-251e672d5230:2:1; expires=Wed, 07 Dec 2033 04:32:06 GMT; secure; SameSite=None
ak=421,1702182726; expires=Sat, 09 Mar 2024 04:32:06 GMT; secure; SameSite=None
acl=20,3,1702182726; expires=Sat, 09 Mar 2024 04:32:06 GMT; secure; SameSite=None
expires: Sun, 10 Dec 2023 04:32:06 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
51 kB URL fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 51404, version 1.0
- data
Hash b904fcdf1c4c6059fadd6893a7bc7619
f41d1674f02616f03ef77d4e84b3ad8ba28a36fc
517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:22:05 GMT
expires: Fri, 06 Dec 2024 05:22:05 GMT
cache-control: public, max-age=31536000
age: 256201
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731259%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702182732268&t_i=1702182732648&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f34924-9715-11ee-91ec-e25a5bb9767f&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=0.905
200 OK 0 B URL GET HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731259%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702182732268&t_i=1702182732648&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f34924-9715-11ee-91ec-e25a5bb9767f&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=0.905
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b65361d6e27e372dcee7%2526type%253D300x100%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731259%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x100&t_s=1702182732268&t_i=1702182732648&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f34924-9715-11ee-91ec-e25a5bb9767f&spid=60e4b65361d6e27e372dcee7&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=0.905 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:06 GMT
Content-Length: 0
Connection: keep-alive
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731277%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732255&t_i=1702182732647&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f8390b-9715-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.052
0 B URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731277%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732255&t_i=1702182732647&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f8390b-9715-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.052
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b64b61d6e272e90b980b%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731277%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732255&t_i=1702182732647&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f8390b-9715-11ee-a373-e2e38133f3a0&spid=60e4b64b61d6e272e90b980b&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.052 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:06 GMT
Content-Length: 0
Connection: keep-alive
i.imgur.com/Y3sJjJJ.gif
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Y3sJjJJ.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:06 GMT
age: 0
x-served-by: cache-iad-kiad7000143-IAD, cache-hel1410027-HEL
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1702182727.553278,VS0,VE111
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/E4tY4Ah.jpg
200 OK 193 kB IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 1387x741, components 3
- data
Size 193 kB (193059 bytes)
Hash 711db1a48a4e11b31471a159d3afb835
57565bdb09af6b754ef0c00ff0e10faa336e5439
6e816806cc3ecd5aaa413716bdbbdb5bc184c128e54dab47414d94878acc9053
GET /E4tY4Ah.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Tue, 13 Apr 2021 14:20:54 GMT
etag: "711db1a48a4e11b31471a159d3afb835"
x-amz-storage-class: STANDARD_IA
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: 7wRgjLskWsaqIcK1lY0W3WK3KN1PM-UyG6Jg54HriK10Ey-k8_RDMw==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:06 GMT
age: 281668
x-served-by: cache-iad-kiad7000125-IAD, cache-hel1410027-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 35, 0
x-timer: S1702182727.553533,VS0,VE99
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 193059
X-Firefox-Spdy: h2
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b63761d6e272165ed9c5%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731267%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732247&t_i=1702182732632&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f86ce6-9715-11ee-91ec-e25a5bb9767f&spid=60e4b63761d6e272165ed9c5&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.13
0 B URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b63761d6e272165ed9c5%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731267%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732247&t_i=1702182732632&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f86ce6-9715-11ee-91ec-e25a5bb9767f&spid=60e4b63761d6e272165ed9c5&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.13
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D60e4b63761d6e272165ed9c5%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fww3.animeonline.ninja%252Fepisodio%252Fdarling-in-the-franxx-cap-1%252F%2526dt%253D1702182731267%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fww3.animeonline.ninja%252F&d_r=1&d_s=1280x1024&d_w=300x250&t_s=1702182732247&t_i=1702182732632&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=11f86ce6-9715-11ee-91ec-e25a5bb9767f&spid=60e4b63761d6e272165ed9c5&fpid_sa=1702182732630&fpid=&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&e_d=%7B%7D&t_op=1.13 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:06 GMT
Content-Length: 0
Connection: keep-alive
a.magsrv.com/iframe.php?idzone=5129256&size=300x250
200 OK 201 B URL GET HTTP/2 a.magsrv.com/iframe.php?idzone=5129256&size=300x250
IP
ASN #60068 Datacamp Limited
Requested by https://r.trackwilltrk.com/s1/1c3d665f-a99b-4b9e-a1f0-d2344b1d3854?externalId=55fa1968-421e-4e06-8753-9e77694cd02a&cv1=55fa1968-421e-4e06-8753-9e77694cd02a&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64cd06ae61d6e2749522effb&cv5=64cd06a261d6e27424278eff&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=qpas_adxad_stub3_300x250
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, from Unix
- data
Hash 599566181058806c705a0d866a239011
b5115d85238a44f0630b7a7b69e1e18af1921940
5f44efd8a52b62ae3aab675c4001aab95e48fce981b85976beb4bbab4fda04c4
GET /iframe.php?idzone=5129256&size=300x250 HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch:
expires: Sun, 10 Dec 2023 06:56:44 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3OggAAAwBuUwKAQH3CgAAAAwB1GY4nAH3BgAAAA
x-77-nzt-ray: af58563010c74cbf463f7565ee22350c
x-accel-expires: @1702191404
x-accel-date: 1702180620
x-77-cache: HIT
x-77-age: 2122
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 10, 2106
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
experttrafficmonitor.com/dbs?uuid=6b003d5b-f64a-43a8-b48a-251e672d5230&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMTgyNzI2fSwiYWNjbCI6eyIyMCwzIjoxNzAyMTgyNzI2fX0.hIlm1mJdNvZv_2h0JhFxX1pihLiY_tnwBxfjuJA06kY
200 OK 7 B URL GET HTTP/2 experttrafficmonitor.com/dbs?uuid=6b003d5b-f64a-43a8-b48a-251e672d5230&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMTgyNzI2fSwiYWNjbCI6eyIyMCwzIjoxNzAyMTgyNzI2fX0.hIlm1mJdNvZv_2h0JhFxX1pihLiY_tnwBxfjuJA06kY
IP
Requested by https://iliketomakingpics.com/iframe/5dcda983a80c7?iframe&ag_custom_domain=veranime.top
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /dbs?uuid=6b003d5b-f64a-43a8-b48a-251e672d5230&j=eyJhbGciOiJIUzI1NiJ9.eyJhY2FuIjoyLCJhY3VzIjoxLCJhY2kiOnsiNDIxIjoxNzAyMTgyNzI2fSwiYWNjbCI6eyIyMCwzIjoxNzAyMTgyNzI2fX0.hIlm1mJdNvZv_2h0JhFxX1pihLiY_tnwBxfjuJA06kY HTTP/1.1
Host: experttrafficmonitor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iliketomakingpics.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/gif
content-length: 7
server: nginx/1.21.6
set-cookie: uid_id2=6b003d5b-f64a-43a8-b48a-251e672d5230:2:1; expires=Wed, 07 Dec 2033 04:32:06 GMT; secure; SameSite=None
ak=421,1702182726; expires=Sat, 09 Mar 2024 04:32:06 GMT; secure; SameSite=None
acl=20,3,1702182726; expires=Sat, 09 Mar 2024 04:32:06 GMT; secure; SameSite=None
expires: Sun, 10 Dec 2023 04:32:06 GMT
cache-control: max-age=0, : no-cache
X-Firefox-Spdy: h2
creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
200 OK 21 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 69a54638b649d7ce4748bd42c4b6dade
a2dfe9f8791952fbc5cc44d4757b031a6cee1731
0c25fbbff92c994866041b57d519aa22aa84d55b6b31bcf681dd5b74668cb750
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Sun, 10 Dec 2023 04:32:05 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 5
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31a490f56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
i.imgur.com/removed.png
200 OK 503 B IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 161 x 81, 1-bit colormap, non-interlaced
- data
Hash d835884373f4d6c8f24742ceabe74946
20002faf28adfd94ca98cf6ced46f14334b53684
9b5936f4006146e4e1e9025b474c02863c0b5614132ad40db4b925a10e8bfbb9
GET /removed.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 May 2014 05:44:36 GMT
etag: "d835884373f4d6c8f24742ceabe74946"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:06 GMT
age: 23314741
x-served-by: cache-bwi5167-BWI, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 1354252
x-timer: S1702182727.802327,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 503
X-Firefox-Spdy: h2
warden.arc.io/mailbox/nodes/TT9aYVRzgNkXpKEn2zTWt5
204 No Content 0 B URL POST HTTP/2 warden.arc.io/mailbox/nodes/TT9aYVRzgNkXpKEn2zTWt5
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/TT9aYVRzgNkXpKEn2zTWt5 HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 10 Dec 2023 04:32:06 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: Uy+BI0f9xi3njNOl7P4PsULkPp0g6ssxBGHnYb4mQe+eet3x2+C470ZEAYzLvRraWhXf8LMEGWU=
x-amz-request-id: WWWZDEMQD0DJ51HX
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6231
expires: Sun, 10 Dec 2023 08:32:06 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31b48a2568b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
631 B URL cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP
File type ASCII text, with very long lines (1796)
Hash 877f174ba71fcbb4bd316accf30ab613
0efbe27a5658c93f3e2ae08b57204ba7fe5e3900
a12ac29d1617bc71b7d520627ea3f63ccd6e8deed2254c97d274f03b6449579e
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 950818
expires: Fri, 29 Nov 2024 04:32:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FMNRwAsnXftX8eRMCEZwvP%2BcGTjHeNLGYJ6YkUW3V6RkIiQFmzQMQLiqIReAycBkAiLSgO%2B1FaMHXbdIcptAiUcsMr4tkIUZeTtP7rhth%2BG67ZOMGr%2Bug4sQNFe19LLhmAPAHbBU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8332c31c0d127127-OSL
alt-svc: h3=":443"; ma=86400
browser.sentry-cdn.com/6.2.2/bundle.min.js
200 OK 21 kB URL GET HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
FingerprintF4:BF:96:D1:20:5D:BA:52:63:EB:1F:F7:56:39:FA:81:01:A3:64:DE
ValidityTue, 01 Aug 2023 14:42:24 GMT - Sun, 01 Sep 2024 14:42:23 GMT
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sun, 10 Dec 2023 04:32:07 GMT
age: 18547204
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A846%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A61%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A40%2C%22transferSize%22%3A4625%7D%5D&mh=-1699245488
103 B URL go.bbrdbr.com/abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A846%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A61%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A40%2C%22transferSize%22%3A4625%7D%5D&mh=-1699245488
IP
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&modelsLimit=1&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fr.trackwilltrk.com%2F&i=0&ib=0&filtersMatch=1&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A846%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A61%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A675%2C%22duration%22%3A40%2C%22transferSize%22%3A4625%7D%5D&mh=-1699245488 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtrsbPA44EurybeS9V7LdQJ64oA3E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8332c31c699d56ba-OSL
alt-svc: h3=":443"; ma=86400
img.strpst.com/thumbs/1702182660/116931632_webp
200 OK 22 kB URL GET HTTP/2 img.strpst.com/thumbs/1702182660/116931632_webp
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 5c5f6cf5bfa922cb67c308dbdce97323
4c9f139dd6664fdcf7a7c7e86eec9c1cf53c9057
f4c87ed2d2f8b2a0779f3d300acb12a4f28dc247da54236107a51844ccb24139
GET /thumbs/1702182660/116931632_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: image/webp
content-length: 22450
etag: "5c5f6cf5bfa922cb67c308dbdce97323"
last-modified: Sun, 10 Dec 2023 04:29:47 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 67
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31cac4eb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s.magsrv.com/v1/api.php
3.0 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data
- , ASCII text, with very long lines (6294), with no line terminators
Hash 957202c5ec040b7d5a377a5ee7764b1e
75192f04430f3a7d047b0b58bd3c776df744cdcf
2c448c4089a9aa5557abcaa857b44ea0fc3274f3b435a8da8caddc96aebb5e9b
POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 311
Origin: https://a.magsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:07 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.magsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f471db4c3.876325933283529215%22%3B%7D; expires=Tue, 09-Dec-2025 04:32:07 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s.magsrv.com/v1/api.php
3.0 kB IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data
- , ASCII text, with very long lines (6297), with no line terminators
Hash bbb4268db119a58ed41d79fb1dc85547
0afbeccab69ce4c2178434ac23e29f371e078da2
fc020b3e2fafd94a8a70dbf684b713cd51af084aa80fb3422063e90a446733c4
POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 311
Origin: https://a.magsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:07 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.magsrv.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2265753f47272f05.32507667832047010%22%3B%7D; expires=Tue, 09-Dec-2025 04:32:07 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
static.arc.io/widget/js/lazy-modules.js?fe421cd5
200 OK 23 kB URL GET HTTP/2 static.arc.io/widget/js/lazy-modules.js?fe421cd5
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (385)
Hash bf3693cfb405887329f70b7d8af75778
fda421baca4cc4e728b56401fa030b516289d854
67a059442ba90d139a2c5010109476b0819cab9a68047d5302f064123733ee57
GET /widget/js/lazy-modules.js?fe421cd5 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"bf3693cfb405887329f70b7d8af75778"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: gX5ujdodPrYTNi/gfDG6+YITEYvPNDNrMw1XObyaZbggzoTC9G2QnPHGDb2a6xTvUOVGEhSTIXM=
x-amz-request-id: CP664Q14H71BB0T2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e527e6a6ce95f7ea9a27b3944701b347
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
img.strpst.com/thumbs/1702182660/106224130_webp
5.4 kB URL img.strpst.com/thumbs/1702182660/106224130_webp
IP
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 270x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 682344fadb0d55d58c9e8ecf69268fd2
88dda70044147f1ca877f30bfa5b606d1f4d7479
71daa7936974352a3e991327a8270e216ba1fdc736490174409a156d40ec2a61
GET /thumbs/1702182660/106224130_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: image/webp
content-length: 5392
etag: "682344fadb0d55d58c9e8ecf69268fd2"
last-modified: Sun, 10 Dec 2023 04:29:56 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 67
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31d1e845696-OSL
alt-svc: h3=":443"; ma=86400
go.bbrdbr.com/api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
27 kB URL go.bbrdbr.com/api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
IP
File type JSON data
- , ASCII text, with very long lines (3300), with no line terminators
Hash bca19482e3817bba3c6c85c46b3ad267
d9391f43fb9f7f8568e12fb3c85f9fdced43f713
d991667f306b4bb7936d9a3cd53eececd4f43d3c3367643082fd8a7d688ae6f3
GET /api/models?tag=girls%2Fasian&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1 HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Cookie: __cflb=02DiuDFRFiBZBvMSLtrsbPA44EurybeS9V7LdQJ64oA3E
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/json
access-control-allow-origin: https://creative.bbrdbr.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Sun, 10 Dec 2023 04:07:17 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 8332c31c599b56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
s.magsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRfks6++6qw4AEyMxlZ3EUYRX2ow5vMoikCH53qSgmJTiwTlQfRk8qJMgqHQsEkcDQ8PZ9hjM+9Lm/fl+s1LO83mCSKBRzZsiAXSRwRWYrEhEgOy4W1EDwlSTETjKCgLolqNigQEXczHl/Ox2VwoJ4AQefx79iyzvQzNtuaSar74tLaXGdXz+uW5lnTWnPZhhE13Orrx/511KS7Aql7f5W/Qdc0zMqm0tv0QzjGl22vtwb8++5dkY9wGQkDgATzwYht0a35rFSXlGpxa8uczauRs1r9BeBuhmVhAQAA
200 OK 20 B URL GET HTTP/1.1 s.magsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRfks6++6qw4AEyMxlZ3EUYRX2ow5vMoikCH53qSgmJTiwTlQfRk8qJMgqHQsEkcDQ8PZ9hjM+9Lm/fl+s1LO83mCSKBRzZsiAXSRwRWYrEhEgOy4W1EDwlSTETjKCgLolqNigQEXczHl/Ox2VwoJ4AQefx79iyzvQzNtuaSar74tLaXGdXz+uW5lnTWnPZhhE13Orrx/511KS7Aql7f5W/Qdc0zMqm0tv0QzjGl22vtwb8++5dkY9wGQkDgATzwYht0a35rFSXlGpxa8uczauRs1r9BeBuhmVhAQAA
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRfks6++6qw4AEyMxlZ3EUYRX2ow5vMoikCH53qSgmJTiwTlQfRk8qJMgqHQsEkcDQ8PZ9hjM+9Lm/fl+s1LO83mCSKBRzZsiAXSRwRWYrEhEgOy4W1EDwlSTETjKCgLolqNigQEXczHl/Ox2VwoJ4AQefx79iyzvQzNtuaSar74tLaXGdXz+uW5lnTWnPZhhE13Orrx/511KS7Aql7f5W/Qdc0zMqm0tv0QzjGl22vtwb8++5dkY9wGQkDgATzwYht0a35rFSXlGpxa8uczauRs1r9BeBuhmVhAQAA HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.magsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2265753f47272f05.32507667832047010%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.magsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Tue, 09 Dec 2025 04:32:07 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/426059/436e78df886e31e338471bb6e3b05768b8275229.webp
200 OK 9.6 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/426059/436e78df886e31e338471bb6e3b05768b8275229.webp
IP
ASN #60068 Datacamp Limited
Requested by https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint23:5D:B4:21:E2:4A:BC:A2:81:F9:7D:F8:B1:5C:6C:1D:7D:F3:FC:C8
ValidityThu, 05 Oct 2023 14:56:57 GMT - Wed, 03 Jan 2024 14:56:56 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash d6aebecbcd55c837e926819b2501107c
436e78df886e31e338471bb6e3b05768b8275229
943538330e8c4404c4e9c39a545bba63c18b30d8f1b1da0381d9b338e0457d5f
GET /library/426059/436e78df886e31e338471bb6e3b05768b8275229.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: image/webp
content-length: 9636
last-modified: Tue, 19 Sep 2023 15:48:30 GMT
etag: "6509c2ce-25a4"
accept-ch:
expires: Wed, 18 Sep 2024 16:05:14 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3b3hrAA
x-77-nzt-ray: c0a4cc282f5626e2473f7565eec2b50f
x-accel-expires: @1726675544
x-accel-date: 1695139544
x-cache-lb: HIT
x-age-lb: 7043183
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 7043183
accept-ranges: bytes
X-Firefox-Spdy: h2
s.magsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRf/vbdV4UFD5BMJrK4izCK+lCHN5mF7aLhI1RXSkh0YVkoP4meVE4UkdllciaOveHl9QxjfO9l/fi9XK9u/bzBJJDPYM8WBTFLYA/PksUHeEqwmFkzIYUgwUeCERQ0JF7NJjki4mHG89v5WAY7GgkQDJ7/zisbTH/zcmuRpKS0Jtm2WmrSFFsPtWpoJeY+jSjuVt6/9p+jJt3lSEcqj1x6aJlmZVMZbcYQjudL38ttAx6+e1fEI1xmwgQgwNJkSNG4+lhqba360GLoXVgr9ZaLpfYPxsoO/GEBAAA=
20 B URL s.magsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRf/vbdV4UFD5BMJrK4izCK+lCHN5mF7aLhI1RXSkh0YVkoP4meVE4UkdllciaOveHl9QxjfO9l/fi9XK9u/bzBJJDPYM8WBTFLYA/PksUHeEqwmFkzIYUgwUeCERQ0JF7NJjki4mHG89v5WAY7GgkQDJ7/zisbTH/zcmuRpKS0Jtm2WmrSFFsPtWpoJeY+jSjuVt6/9p+jJt3lSEcqj1x6aJlmZVMZbcYQjudL38ttAx6+e1fEI1xmwgQgwNJkSNG4+lhqba360GLoXVgr9ZaLpfYPxsoO/GEBAAA=
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2OXUoEMRCEr+IFJvRf/vbdV4UFD5BMJrK4izCK+lCHN5mF7aLhI1RXSkh0YVkoP4meVE4UkdllciaOveHl9QxjfO9l/fi9XK9u/bzBJJDPYM8WBTFLYA/PksUHeEqwmFkzIYUgwUeCERQ0JF7NJjki4mHG89v5WAY7GgkQDJ7/zisbTH/zcmuRpKS0Jtm2WmrSFFsPtWpoJeY+jSjuVt6/9p+jJt3lSEcqj1x6aJlmZVMZbcYQjudL38ttAx6+e1fEI1xmwgQgwNJkSNG4+lhqba360GLoXVgr9ZaLpfYPxsoO/GEBAAA= HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.magsrv.com
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2265753f47272f05.32507667832047010%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:32:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.magsrv.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Tue, 09 Dec 2025 04:32:07 GMT; path=/; domain=.magsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
go.xlivesex.com/checkUrl
200 OK 15 B IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectgo.xlivesex.com
Fingerprint12:12:AD:50:C3:B2:0B:3E:A8:3A:9E:36:09:26:1F:A1:69:75:60:19
ValiditySat, 04 Feb 2023 00:00:00 GMT - Sun, 04 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: go.xlivesex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.bbrdbr.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=04dToPfSdwpmYL4m1jJR4AaLHvZoKEBu1wEnuqvabe; SameSite=None; Secure; path=/; expires=Mon, 11-Dec-23 04:32:07 GMT; HttpOnly
server: cloudflare
cf-ray: 8332c31d5d611c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stripchat.ooo/checkUrl
15 B IP
File type JSON data
- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: stripchat.ooo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.bbrdbr.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuGyDLPvii6XBe56JNoeyu5jA1bb83sSmQ1qwrrdit; SameSite=None; Secure; path=/; expires=Mon, 11-Dec-23 04:32:07 GMT; HttpOnly
server: cloudflare
cf-ray: 8332c31dbc5856c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.magsrv.com/ad-provider.js
200 OK 34 kB URL GET HTTP/2 a.magsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type ASCII text, with very long lines (32173)
Hash b6d64a7ac3b8d02f15d0755b57948675
696d2ce3a3c19a72349927d5a6c664bee6724ab0
4c2b606f15b4a1dcd3f293e0cbefc36cb60a2ad77d207e8d17d129b624e2f92b
GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"696d2ce3a3c19a72349927d5a6c"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:50:52 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3eAgAAAwBuUwKCQH3BwAAAAwB1GY4EQH3BgEAAA
x-77-nzt-ray: af58563010c74cbf463f75653b42002d
x-accel-expires: @1702191358
x-accel-date: 1702180558
x-77-cache: HIT
x-77-age: 2437
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 7, 2168
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
go.bbrdbr.com/app/domain-checker/check-result
204 No Content 0 B URL POST HTTP/3 go.bbrdbr.com/app/domain-checker/check-result
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 174
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sun, 10 Dec 2023 04:32:07 GMT
access-control-allow-origin: https://creative.bbrdbr.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtrsbPA44EurybeS9VrA9brjh4pXe; SameSite=None; Secure; path=/; expires=Mon, 11-Dec-23 04:32:07 GMT; HttpOnly
server: cloudflare
cf-ray: 8332c31eca4b56ba-OSL
alt-svc: h3=":443"; ma=86400
warden.arc.io/mailbox/nodes/XiWDDKhmGHYWcfVgj2gtWg
204 No Content 0 B URL POST HTTP/2 warden.arc.io/mailbox/nodes/XiWDDKhmGHYWcfVgj2gtWg
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/XiWDDKhmGHYWcfVgj2gtWg HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sun, 10 Dec 2023 04:32:07 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
200 OK 21 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (13396), with no line terminators
Hash d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7
GET /widgets/v4/Universal/main.af7ca474e642b518be23.css HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3454"
expires: Sun, 10 Dec 2023 04:31:59 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31928b156ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_init_nNoi49EKHX1XqK4E.mp4
200 OK 1.2 kB URL GET HTTP/2 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_init_nNoi49EKHX1XqK4E.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v5
- data
Hash c88ea22e566a5fe8b7429e1554d4870f
7b406c6af960035b1bd40f30bb140dfa9653409c
f5aeda6883991e46d812c1ffc23796c3dd3dbd2e05791ec83f26b31a36182536
GET /hls/116931632/116931632_480p_init_nNoi49EKHX1XqK4E.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: video/mp4
content-length: 1217
last-modified: Sun, 10 Dec 2023 04:27:17 GMT
etag: "65753e25-4c1"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 23
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c320ed44b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_155_DqqOo0qta9Bzgml8_1702182719.mp4
200 OK 312 kB URL GET HTTP/2 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_155_DqqOo0qta9Bzgml8_1702182719.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 312 kB (311669 bytes)
Hash cf4880cce3fee4a18cc5bfa0a145b705
04ea4c7080d475d4807c47a970d0c0246508b78e
eaa3005ff34d85a92f03bff3a24656129d5c94bbaf92903340f96e4b09295535
GET /hls/116931632/116931632_480p_155_DqqOo0qta9Bzgml8_1702182719.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: video/mp4
content-length: 311669
last-modified: Sun, 10 Dec 2023 04:32:01 GMT
etag: "65753f41-4c175"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 4
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c320fd4bb4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d2088b3.js?10873dde
200 OK 315 kB URL GET HTTP/2 static.arc.io/widget/js/chunk-2d2088b3.js?10873dde
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (7287)
Size 315 kB (314835 bytes)
Hash db6a9613e1d97ceb33b3969e1a05d055
8ffd0567b3bae873e80b7487630b932b4e6f73ec
21c7a10fb495207a37b97a282544567f71488f27e7b035ed5ba271a93971a864
GET /widget/js/chunk-2d2088b3.js?10873dde HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"db6a9613e1d97ceb33b3969e1a05d055"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: nikusNEjo/jpZ/CBBNzWFhDKRmx7I7UuQamPBt541Gla0xwGRcoTTcBE/R0ac/08enq2NO8hmWg=
x-amz-request-id: 3EAG2FRAS6VN29EJ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:58:01
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 725156f5514ed7005d3f8c870081c84d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-0565ec8a.js?1d44d7b5
200 OK 336 kB URL GET HTTP/2 static.arc.io/widget/js/chunk-0565ec8a.js?1d44d7b5
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (61647)
Size 336 kB (336419 bytes)
Hash c4f44a6c2579efba11bb942f7a8d5add
e7288de9daacb52cac37ed9bee457602ee1a8472
45f23f777cde44982c376f8ce63913e8d847df4404a5b135c97afacfe06e297a
GET /widget/js/chunk-0565ec8a.js?1d44d7b5 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"c4f44a6c2579efba11bb942f7a8d5add"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: NW9GfqOEEU/Wqk8RUU9k5Ebj5XOZ3qHobt/O6P0TcNxL6J8vvauPh0GrAnPW7fS3T5Qy9uAyZ4k=
x-amz-request-id: 3EAYZBPNH2HNHHH3
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:58:01
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b03745bb9bdcdf8d138d1fcc4bed7ecd
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_156_or6vB1sCBAvwwfxG_1702182721.mp4
200 OK 314 kB URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p_156_or6vB1sCBAvwwfxG_1702182721.mp4
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 314 kB (314294 bytes)
Hash af4f4baf8938e118efd8d99241175d7c
9b529b2311ed7b222eac49b07ddc6de19a1ddde1
2a7903c207fee34e22b3668b328a8f8db4d309dad913762faf5cff86e4ee9f00
GET /hls/116931632/116931632_480p_156_or6vB1sCBAvwwfxG_1702182721.mp4 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: video/mp4
content-length: 314294
last-modified: Sun, 10 Dec 2023 04:32:03 GMT
etag: "65753f43-4cbb6"
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 2
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c321985456b5-OSL
alt-svc: h3=":443"; ma=86400
su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
200 OK 370 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (370), with no line terminators
Hash d47c7543c2b2b596fe634d3df62a9a37
9a45641e3bb34c549783b29fcc2db17f23a03e42
b96df1cbab7a1a7b8709107a36d43869d79a644ab0880940cf0f65baf4dea4df
GET /?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 10 Dec 2023 04:32:08 GMT
Content-Type: application/json
Content-Length: 370
Connection: keep-alive
x-amzn-RequestId: d0dc3357-76e7-46e5-b679-21ba35c7f3be
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-65753f48-4b9ce9ff7130a4ab06902db4;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
a.magsrv.com/build-iframe-js-url.js?idzone=5129256
200 OK 4.5 kB URL GET HTTP/2 a.magsrv.com/build-iframe-js-url.js?idzone=5129256
IP
ASN #60068 Datacamp Limited
Requested by https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, from Unix
- data
Hash dea7b7d759001589541c1651bf83199b
72c3f2df7ffe18098e231414df77ae6723be73f7
094c2222d5db7253389971a4d319feda167f64fd40827f24671c7a54604e6859
GET /build-iframe-js-url.js?idzone=5129256 HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2265fff103b1add4764ffe88a17"
accept-ch:
expires: Tue, 05 Dec 2023 18:55:30 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3UggAAAwBuUwKCQH39AcAAAwBJRPCKAH3FgAAAA
x-77-nzt-ray: af58563010c74cbf463f75656558212d
x-accel-expires: @1702191396
x-accel-date: 1702180596
x-77-cache: HIT
x-77-age: 4188
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 2036, 2130
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
200 OK 682 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 698fd1f80399e90a57552d877b447f9d
815e8dab14d8736e3c026068a1b4ebc1472010c0
56744797eb8c9a622428efe5027d9b15a67fa472c05b28420dc5012d416c609a
GET /hls/116931632/116931632_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:09 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Sun, 10 Dec 2023 04:32:08 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8332c32ceb7f56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
200 OK 370 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (370), with no line terminators
Hash 488e87c68ee6a8503443bf39b9543391
aa3bc111ae6d73536c8f3ed33008180b6a0aaa72
d859d065f449fc57026d06a8f4be29ca4d803c994fbcb38a6429c899a8569d3a
GET /?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 10 Dec 2023 04:32:10 GMT
Content-Type: application/json
Content-Length: 370
Connection: keep-alive
x-amzn-RequestId: 660e1447-7e89-47ed-bc4f-a2081c5a056c
Access-Control-Allow-Origin: https://saidochesto.top
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-65753f4a-2ef39d6c00642e5873f13668;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
l1s.saturn.ms/ipfs/QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU/wholemilk.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJhMWJkZTVhZi05YTJmLTQzOWUtYjRlZC04YzYwOWNhOTk2ZWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMCwiZXhwIjoxNzAyMTg2MzMwfQ.OU4jminQpK1bSuUfxRQFBbqvLPDkfhpKwvBULhljGDcVCUvrLHM9_qlS2K0Jc_8OTgLy_CWQEnECdlBRMAfr3w
200 OK 1.0 kB URL GET HTTP/2 l1s.saturn.ms/ipfs/QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU/wholemilk.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJhMWJkZTVhZi05YTJmLTQzOWUtYjRlZC04YzYwOWNhOTk2ZWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMCwiZXhwIjoxNzAyMTg2MzMwfQ.OU4jminQpK1bSuUfxRQFBbqvLPDkfhpKwvBULhljGDcVCUvrLHM9_qlS2K0Jc_8OTgLy_CWQEnECdlBRMAfr3w
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
Fingerprint27:A1:EF:DF:25:8F:BE:1A:70:62:9F:54:08:DE:16:B7:60:1A:50:56
ValidityFri, 13 Oct 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT
Hash 7b42461e5235508304adcc2a52555d5c
e790880163da928a1684d7ad39404fe2600ca9d7
f630b76e3b455537f37bc1d8332127de093d623e5513b6f0a85b0f7ad070405c
GET /ipfs/QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU/wholemilk.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJhMWJkZTVhZi05YTJmLTQzOWUtYjRlZC04YzYwOWNhOTk2ZWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMCwiZXhwIjoxNzAyMTg2MzMwfQ.OU4jminQpK1bSuUfxRQFBbqvLPDkfhpKwvBULhljGDcVCUvrLHM9_qlS2K0Jc_8OTgLy_CWQEnECdlBRMAfr3w HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:10 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
content-length: 1040
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;dur=0.051556;candidates-found=35111336;candidates-filtered=35131815,retrieval-Bitswap;dur=35.218877;first-byte-received=97612916, shim; dur=231.112732, shim_lassie; dur=231.02599899999998, shim_lassie_headers; dur=230.79329299999998, shim_lassie_body; dur=0.22972099999999998, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU.car.d5f9tg0q3tjct"
x-ipfs-path: /ipfs/QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU/wholemilk.json
x-content-type-options: nosniff
content-disposition: attachment; filename="QmUHmHgtm7FRAByVAr3fbXLicfoSq1ECuQJ3Ak2AbtWcRU_wholemilk.json.car"
saturn-node-id: 87cd1bcc-0dd2-4da6-abc7-1691e27520b1
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 4434105652fcb1b23008ed0109aba760
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
200 OK 39 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (63194)
Hash de8ab4879bd77ebe629c721339d42f65
fdb117223b56b52fc13256fa0288723785631d2a
7a4a51ab0b9301083e145526762d065e622a0ec8cfb5a866cd6b20c87087ff08
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"de8ab4879bd77ebe629c721339d42f65"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: riK/3ctSFIGOyIA3dzAveZ99ExDSDOKZx7ERd98X89Jx0EEGCu94uhCobwfZVX7uNl7IEjI3+jA=
x-amz-request-id: BDV2A2K6BGQDME16
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 31a689fa572a763afa34e28ceb143669
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
200 OK 370 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data
- , ASCII text, with very long lines (370), with no line terminators
Hash 24bf2053981ea67066ac68f0e251cc67
eca619c81d8b3b7d9bb8be80c4a8916fdb18aa94
a9d3e25e82f453c5a55a7d44bf8478b478f631c32bbbe16c6549b73f5aa8dcb4
GET /?clientKey=c11dbbe1-a007-4e59-86d5-fc67dc8f317c HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 10 Dec 2023 04:32:11 GMT
Content-Type: application/json
Content-Length: 370
Connection: keep-alive
x-amzn-RequestId: 55e89f44-00db-4fb7-8a01-26dab3a1d64c
Access-Control-Allow-Origin: https://ww3.animeonline.ninja
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-65753f4b-3c72f6d94944f04e7ab09d73;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
l1s.saturn.ms/ipfs/bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m/0.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIxZThiNzEwNC01NjhiLTRhZmMtYTEzZS02YTkwZDM0ZGQ1YWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMSwiZXhwIjoxNzAyMTg2MzMxfQ.H6e4f7Vmkmwd-9f1ut5KMM2oH7nfe0sdKV_vklFdxE0Eilkwy7cEM0f_BVUqaci8ohreTrA_RwtZHKnAoiQPdg
1.1 kB URL l1s.saturn.ms/ipfs/bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m/0.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIxZThiNzEwNC01NjhiLTRhZmMtYTEzZS02YTkwZDM0ZGQ1YWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMSwiZXhwIjoxNzAyMTg2MzMxfQ.H6e4f7Vmkmwd-9f1ut5KMM2oH7nfe0sdKV_vklFdxE0Eilkwy7cEM0f_BVUqaci8ohreTrA_RwtZHKnAoiQPdg
IP
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
Fingerprint27:A1:EF:DF:25:8F:BE:1A:70:62:9F:54:08:DE:16:B7:60:1A:50:56
ValidityFri, 13 Oct 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT
Hash 72ec2ec69ce9e0514b0fa4cc2891c139
9fecc87be956584cb409d6d4f2a66956dff67975
d7c169c79dcbc864b0d9ae383a1269f9a62501640fab5b68707ab7163d32e563
GET /ipfs/bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m/0.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiIxZThiNzEwNC01NjhiLTRhZmMtYTEzZS02YTkwZDM0ZGQ1YWIiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjczMSwiZXhwIjoxNzAyMTg2MzMxfQ.H6e4f7Vmkmwd-9f1ut5KMM2oH7nfe0sdKV_vklFdxE0Eilkwy7cEM0f_BVUqaci8ohreTrA_RwtZHKnAoiQPdg HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:11 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
content-length: 1084
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;dur=0.036409;candidates-found=43339008;candidates-filtered=43382299,retrieval-QmUA9D3H7HeCYsirB3KmPSvZh3dNXMZas6Lwgr4fv1HTTp;connected-to-provider=4398;dur=43.488689,retrieval-Bitswap;dur=43.505591;first-byte-received=141909740, shim; dur=311.15398, shim_lassie; dur=311.076014, shim_lassie_headers; dur=310.928587, shim_lassie_body; dur=0.840927, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m.car.6mt8q4pclp489"
x-ipfs-path: /ipfs/bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m/0.json
x-content-type-options: nosniff
content-disposition: attachment; filename="bafybeiafdweaofxtoupayxyarnridbqhjleeaitsd7qvwhucwgvp4pif6m_0.json.car"
saturn-node-id: 87cd1bcc-0dd2-4da6-abc7-1691e27520b1
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 509e60756178e68582515ba30fa7c582
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
adxadserv.com/px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=5.906&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
0 B URL adxadserv.com/px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=5.906&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=5.906&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:11 GMT
Content-Length: 0
Connection: keep-alive
creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
200 OK 94 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
Hash 69a54638b649d7ce4748bd42c4b6dade
a2dfe9f8791952fbc5cc44d4757b031a6cee1731
0c25fbbff92c994866041b57d519aa22aa84d55b6b31bcf681dd5b74668cb750
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Sun, 10 Dec 2023 04:32:05 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 5
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31b494d56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
adxadserv.com/px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=6.131&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=6.131&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=6.131&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:11 GMT
Content-Length: 0
Connection: keep-alive
twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
0 B URL twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1588
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Date: Sun, 10 Dec 2023 04:32:13 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
x-amzn-RequestId: 39026c21-d40f-47c0-b683-cb0075bcb29a
Access-Control-Allow-Origin: https://saidochesto.top
Vary: Origin
X-Amzn-Trace-Id: root=1-65753f4d-14ea70c1758170975efb4cc5;sampled=0;lineage=93f9df3c:0
Access-Control-Allow-Credentials: true
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
200 OK 312 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash c474c23bf0dd7222045756707b0d8ae1
ec3576fc794398085ca5f31d657d133cf336f9c2
47d202492a288d08095e8d992fa19432f2c990e4249d28f70223bdaa8ee39914
GET /hls/116931632/116931632_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:11 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Sun, 10 Dec 2023 04:32:10 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8332c3396fa756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
200 OK 314 B URL GET HTTP/3 b-hls-16.doppiocdn.com/hls/116931632/116931632_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Hash 4f430802e53e53d9202390870faf40c2
9f49d3557e17591f0496ba0d9bbb81d5ba436b84
156427417788b85c2b6e297e020f08b950b6fd82635444f2482b1f65ba45118e
GET /hls/116931632/116931632_480p.m3u8 HTTP/1.1
Host: b-hls-16.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:15 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Sun, 10 Dec 2023 04:32:14 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8332c3526c2f56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
adxadserv.com/px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=20.912&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=20.912&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=4fc3e7d6-0978-48b7-9669-0f911528cb15&t_op=20.912&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:26 GMT
Content-Length: 0
Connection: keep-alive
adxadserv.com/px/heartbeat/v1?pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&t_op=21.056&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
0 B URL adxadserv.com/px/heartbeat/v1?pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&t_op=21.056&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=b7d50ae6-d2ad-465a-bf99-185aa9ddc7ed&t_op=21.056&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:26 GMT
Content-Length: 0
Connection: keep-alive
creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
200 OK 82 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (32011), with LF, NEL line terminators
Hash c125e5d95f227b20668dcf21f8db60fa
bcdb1f728964d37c007515eba7a549164fd1951e
11d537b5f1c8f66d68b36f57f526f55f1e916d67a35c1944b8d559adc7723f8a
GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Sun, 10 Dec 2023 04:32:02 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c319a8d856ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.magsrv.com/iframe.php?idzone=5129256&size=300x250
200 OK 65 kB URL GET HTTP/2 a.magsrv.com/iframe.php?idzone=5129256&size=300x250
IP
ASN #60068 Datacamp Limited
Requested by https://r.trackwilltrk.com/s1/1c3d665f-a99b-4b9e-a1f0-d2344b1d3854?externalId=55fa1968-421e-4e06-8753-9e77694cd02a&cv1=55fa1968-421e-4e06-8753-9e77694cd02a&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=64cd06ae61d6e2749522effb&cv5=64cd06a261d6e27424278eff&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b64461d6e27e372dcee6&cv10=qpas_adxad_stub3_300x250
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type gzip compressed data, from Unix
- data
Hash 6b0530d38a48291dc2e8218fd3242164
4cc749c0624a4d1489db098f90c73f2ffef7218d
06ea36d7a0a64ccf804d8c4f5593608b70716709b59cd014626d676df9d95d61
GET /iframe.php?idzone=5129256&size=300x250 HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch:
expires: Sun, 10 Dec 2023 06:56:44 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3OggAAAwBuUwKAQH3CgAAAAwB1GY4nAH3BgAAAA
x-77-nzt-ray: af58563010c74cbf463f7565e641720c
x-accel-expires: @1702191404
x-accel-date: 1702180620
x-77-cache: HIT
x-77-age: 2122
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 10, 2106
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
l1s.saturn.ms/ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/2444.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJmNGQyYjlhMi05ZWMyLTRiMjMtYjc2My05MjdjYTBiZDMzZmUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOSwiZXhwIjoxNzAyMTg2MzI5fQ.i_pA64gSKt-kqyErC4_7wTJSQlQghuDfQr6_noCLNDQyFxngdlNTM1lUflQQ1Lg52Ke5P_GKTVNG5PD-f70lqg
15 kB URL l1s.saturn.ms/ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/2444.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJmNGQyYjlhMi05ZWMyLTRiMjMtYjc2My05MjdjYTBiZDMzZmUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOSwiZXhwIjoxNzAyMTg2MzI5fQ.i_pA64gSKt-kqyErC4_7wTJSQlQghuDfQr6_noCLNDQyFxngdlNTM1lUflQQ1Lg52Ke5P_GKTVNG5PD-f70lqg
IP
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
Fingerprint27:A1:EF:DF:25:8F:BE:1A:70:62:9F:54:08:DE:16:B7:60:1A:50:56
ValidityFri, 13 Oct 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT
Hash 7530162687012336d68f57998036d1fc
70bf9ae58f1e151b516fcab02e89d89a005efddf
1631f89c71d779e2d61bdf787016d4794baa78ea9ba13c6378f227c354544017
GET /ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/2444.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJmNGQyYjlhMi05ZWMyLTRiMjMtYjc2My05MjdjYTBiZDMzZmUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOSwiZXhwIjoxNzAyMTg2MzI5fQ.i_pA64gSKt-kqyErC4_7wTJSQlQghuDfQr6_noCLNDQyFxngdlNTM1lUflQQ1Lg52Ke5P_GKTVNG5PD-f70lqg HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:10 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;candidates-found=4874172;candidates-filtered=4894601;dur=0.040185,retrieval-Bitswap;dur=4.973649;first-byte-received=209600052,retrieval-QmUA9D3H7HeCYsirB3KmPSvZh3dNXMZas6Lwgr4fv1HTTp;dur=4.999868;connected-to-provider=4097, shim; dur=216.092199, shim_lassie; dur=215.994466, shim_lassie_headers; dur=215.831079, shim_lassie_body; dur=0.15992, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe.car.4jnq27u9s8f2r"
x-ipfs-path: /ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/2444.json
x-content-type-options: nosniff
content-disposition: attachment; filename="bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe_2444.json.car"
saturn-node-id: 87cd1bcc-0dd2-4da6-abc7-1691e27520b1
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 507f4bcd827f2814942a4dbde77126d5
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
warden.arc.io/mailbox/propertySession
0 B URL warden.arc.io/mailbox/propertySession
IP
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/propertySession HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 173
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 10 Dec 2023 04:32:31 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
a.magsrv.com/iframe.js?idzone=5129256&size=300x250
1.1 kB URL a.magsrv.com/iframe.js?idzone=5129256&size=300x250
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectmagsrv.com
FingerprintC5:BC:C0:62:0C:DC:A9:D2:61:A6:77:A9:6C:31:19:AD:CD:2E:00:67
ValidityThu, 05 Oct 2023 15:26:28 GMT - Wed, 03 Jan 2024 15:26:27 GMT
File type ASCII text, with very long lines (2292), with no line terminators
Hash 3b45d7750e0a275e88e16284af06f426
4d3c27b1674d850e7e1cc23853483a86a51964b8
b5c26e5989c709a311f8b4fa7ecaf957c3a649e66417987e78752649e911f676
GET /iframe.js?idzone=5129256&size=300x250 HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.magsrv.com/iframe.php?idzone=5129256&size=300x250
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4d3c27b1674d850e7e1cc238534"
accept-ch:
expires: Tue, 05 Dec 2023 18:55:30 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3OggAAAwBuUwKAQH3/QgAAAwB1GY4EQH3FwAAAA
x-77-nzt-ray: af58563010c74cbf463f75658032db36
x-accel-expires: @1702191401
x-accel-date: 1702180620
x-77-cache: HIT
x-77-age: 4430
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 2301, 2106
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/starstruck.js
200 OK 1.3 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/starstruck.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (1375), with no line terminators
Hash 46ff4fa42bd55103a506dd15024fb395
4a7ad708a5a0605706ff19a6717b15e4c65a4b76
ff8fb69f56bed05370f7502799050096cc6fb02c6a9cb6465467d95f6458800c
GET /wp-content/themes/dooplay/assets/js/lib/starstruck.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1311
etag: W/"51f-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 238823394
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1544081
server: cloudflare
cf-ray: 8332c305c9a856a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:57:09 GMT
expires: Fri, 06 Dec 2024 15:57:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 218094
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
200 OK 1.5 kB URL GET HTTP/2 ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectads.adxadserv.com
Fingerprint70:CD:DE:2A:A2:EF:09:F0:B6:28:0D:89:0D:62:5D:45:FA:43:AF:0D
ValidityFri, 13 Oct 2023 20:21:22 GMT - Thu, 11 Jan 2024 20:21:21 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (1598), with no line terminators
Hash bc216f7dca966d882ad6cae473140dc3
c696e9837af6144b8542f122135056785aefee97
427fbbcf75f86528b4df5c7e6188e96d3995432be5814609c454fbadcaf61d50
GET /ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:04 GMT
content-type: text/html; charset=utf-8
content-length: 1517
cache-control: no-cache
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
200 OK 3.2 kB URL GET HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (3296), with no line terminators
Hash b99f617367312fb9a38e9ad42beafe19
641b3bc44b86c4025b926f445b498d8a1bbc3361
2651ce033e5908306643263171c004c20652eecb9b6242d146cd21346658a1d7
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:08 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"00fc1f9530439ec3d2415f9420e814d7"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: DV3XNbmokfaLyFzHSWMHySmQ/Z+xyiURqNhPGbHTNGsdCdkBumcJ6DTmoMAYJGlOovwsc45CAno=
x-amz-request-id: A0ZYJA68RFE5W55N
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1b2fd3feef5743784fa891005a8685a2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/blueimp.js
200 OK 33 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/lib/blueimp.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (32911), with no line terminators
Hash df227d844611aaf7e07cef315ebf02df
c30e558c123879a3390269cdaec040d5d2382c74
f6876ee3d48d70c2ab7b2399e6b7a1b617d7f0b4c47a4efad06654f9d6322cec
GET /wp-content/themes/dooplay/assets/js/lib/blueimp.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=32964
etag: W/"80c4-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 292062626
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1197788
server: cloudflare
cf-ray: 8332c305c9ab56a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.exdynsrv.com/iframe.js?idzone=4852104&size=300x250
200 OK 2.3 kB URL GET HTTP/2 a.exdynsrv.com/iframe.js?idzone=4852104&size=300x250
IP
ASN #60068 Datacamp Limited
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (2415), with no line terminators
Hash 5c1ac95a889abdb49ace726570e2a3fb
d2605ef58ec888ae0058c03731bfea314d3959a9
30657a3f7eb328e1196d8faea1f600aec454a48a4ab93d7941c0d291780f40b2
GET /iframe.js?idzone=4852104&size=300x250 HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"0e5fb0a603ea55405ee65fee2a2"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:52:06 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3HwIAAAwBuUwKAQH3gQoAAAwB1GY4CQH3vgAAAA
x-77-nzt-ray: c0a4cc28e16496cd453f7565f1f9bf17
x-accel-expires: @1702191438
x-accel-date: 1702182182
x-77-cache: HIT
x-77-age: 3422
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 2689, 543
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
200 OK 178 kB URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash 4a1e862a348e6713dfcce18e9cda2f42
47bed78ef29844bec68da443a6b0add48936b61b
b3b83266dde6fa2870ddc1cc812233d8baa03727cd4d65733ed5ee7a4fbb4490
GET /widgets/v4/Universal/vendors~hls.13f01a3a9d7e36c14415.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-2b6c9"
expires: Sun, 10 Dec 2023 04:32:00 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 7
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31efa5456ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.arc.io/broker/js/chunk-vendors.5e1d8045.js
200 OK 50 kB URL GET HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"c78a505ea0c6b4622562567efbbeb847"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: UCogdse4COEr8OBIY1Uc2chIBc0c21N0ifyc3Svvpnv+nnf9GB6EF4owVk8ZIGjBjM9sUrtO4v4=
x-amz-request-id: QRX6PAFFJ6E0XJWF
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 33146b3c0b751c2d8c206b96a9c3d823
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/lazy-iwc.js?8aedfc26
200 OK 14 kB URL GET HTTP/2 static.arc.io/widget/js/lazy-iwc.js?8aedfc26
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (14151)
Hash 79f87bf000461a78e70050f0b33e54bd
c9d31fe64b37cfee9161518de01368a25101d159
a10e7cded87daa4318d9448308e6e87e15e1da89d2d7f585da84ef0420f20690
GET /widget/js/lazy-iwc.js?8aedfc26 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:08 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"79f87bf000461a78e70050f0b33e54bd"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: hBsAYRm24bgq4d91tJ87F8wFS/X38hCD2jvFX9BxczgoUTq9oXwS1kToV6F1CTXFXthoIQMROTg=
x-amz-request-id: A3DB95P7VY2THP6Q
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:42:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 17b5f6c5563b1f03db67f7ae0803e352
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
adxadserv.com/px/heartbeat/v1?pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&t_op=5.519&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&t_op=5.519&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731272&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=abd66cc8-8074-46f4-8971-0bc6ae6a3a93&t_op=5.519&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:11 GMT
Content-Length: 0
Connection: keep-alive
ww3.animeonline.ninja/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 13 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-includes/js/jquery/jquery-migrate.min.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
last-modified: Thu, 13 Apr 2023 09:28:11 GMT
etag: W/"3470-5f93457d8e0c0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
vary: Accept-Encoding
x-varnish: 789063277
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
cf-cache-status: HIT
server: cloudflare
cf-ray: 8332c305f9ba56a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
core.arc.io/broker.html?a633436
200 OK 1.6 kB URL GET HTTP/2 core.arc.io/broker.html?a633436
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectcore.arc.io
Fingerprint59:99:99:26:19:A5:CA:04:61:8A:2C:E3:CE:56:43:24:60:4C:54:4A
ValidityThu, 07 Dec 2023 02:09:34 GMT - Wed, 06 Mar 2024 02:09:33 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (1611), with no line terminators
Hash 8b787bf68da3ff9a0ab1d643bd02cfa0
68f81c614cb4b0abb97549f9964396a255ea8683
6ddd4ed26e852e373728682d14d2f815548f1d47e0af5c8a0e483b36f40c31b6
GET /broker.html?a633436 HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Cookie: _immortal|Arc_nodeId=KSMJthAWPsshoqcbLfQs1Z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"64331d06-612"
expires: Wed, 03 Jan 2024 21:57:54 GMT
last-modified: Sun, 09 Apr 2023 20:16:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 72311c45869771a374f4fc5332ffa51c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/@filecoin-saturn/js-client@0.3.6/dist/strn.min.js
200 OK 235 kB URL GET HTTP/2 unpkg.com/@filecoin-saturn/js-client@0.3.6/dist/strn.min.js
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 235 kB (235081 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@filecoin-saturn/js-client@0.3.6/dist/strn.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:08 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"39649-3ftJZ4Nm1GZ4FCCKCsnfQL3eBL8"
via: 1.1 fly.io
fly-request-id: 01HGVDD4NHKNRMRDSFRDAYGNNQ-arn
cf-cache-status: HIT
age: 455647
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8332c3248fb41c12-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.exdynsrv.com/ad-provider.js
200 OK 123 kB URL GET HTTP/2 a.exdynsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (32173)
Size 123 kB (122925 bytes)
Hash ee0fce6bfc794978660e287f6033cc88
2908886b8741e1d78f16f25d01f957fb053f027b
9ed722127227e559eb357e91d2e73330535e862db825b4d6986d661efb754398
GET /ad-provider.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2908886b8741e1d78f16f25d01f"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:51:01 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3bwgAAAwBuUwKCQH3CwAAAAwB1GY4mQH3/wAAAA
x-77-nzt-ray: c0a4cc28e16496cd433f7565ed1f051e
x-accel-expires: @1702191363
x-accel-date: 1702180564
x-77-cache: HIT
x-77-age: 2425
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 11, 2159
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
cids.arc.io/top-cids
200 OK 6.6 kB IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectcids.arc.io
FingerprintC4:44:71:7D:EB:22:87:3F:E0:A0:9F:87:B5:F5:45:88:5E:CE:CD:B0
ValidityWed, 01 Nov 2023 03:09:17 GMT - Tue, 30 Jan 2024 03:09:16 GMT
File type troff or preprocessor input, ASCII text, with very long lines (6799), with no line terminators
Hash 757be29e2d0eafd727ddac4203952bfe
2a666c0da66361e384fc6cd56c9788c0f2aaefb3
5680cd1b8b087beca8b77464217edb5d5738c80238e22bbe8f4a75af090823ba
GET /top-cids HTTP/1.1
Host: cids.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 1392871
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: W/"19c7-w0Xr58FUPKkTVfcWmr+KDG5vNU4"
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/10/2023 04:19:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 97417793f4cabd84f39cd4a04e3b8dd4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
l1s.saturn.ms/ipfs/QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9/333?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiI1YjA3NDI5Zi04NzQ1LTQwOGMtYWM4NS1jMjA4ODIyYzY4ZjUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOCwiZXhwIjoxNzAyMTg2MzI4fQ.HixKgtnGuR9vxbE52i2OHg_ANMOxbth83Iuf2DSyLjNCRYPQFzMtd_alAqzKkXsDb9p-XdOWKdGuJZzHxMybuA
200 OK 20 kB URL GET HTTP/2 l1s.saturn.ms/ipfs/QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9/333?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiI1YjA3NDI5Zi04NzQ1LTQwOGMtYWM4NS1jMjA4ODIyYzY4ZjUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOCwiZXhwIjoxNzAyMTg2MzI4fQ.HixKgtnGuR9vxbE52i2OHg_ANMOxbth83Iuf2DSyLjNCRYPQFzMtd_alAqzKkXsDb9p-XdOWKdGuJZzHxMybuA
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
Fingerprint27:A1:EF:DF:25:8F:BE:1A:70:62:9F:54:08:DE:16:B7:60:1A:50:56
ValidityFri, 13 Oct 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT
Hash 53651c39ea89fd0f697f1754cb2a7102
be11fd55e41d79ba87cc149e4c664d0c0c5d50be
11ff8bdc7adb06ee198289fea889fa4f15e1a7a235cf33acd3c1fafc4ffdb71e
GET /ipfs/QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9/333?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiI1YjA3NDI5Zi04NzQ1LTQwOGMtYWM4NS1jMjA4ODIyYzY4ZjUiLCJzdWIiOiJjMTFkYmJlMS1hMDA3LTRlNTktODZkNS1mYzY3ZGM4ZjMxN2MiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyJhcmMuaW8iLCIqIl0sImlhdCI6MTcwMjE4MjcyOCwiZXhwIjoxNzAyMTg2MzI4fQ.HixKgtnGuR9vxbE52i2OHg_ANMOxbth83Iuf2DSyLjNCRYPQFzMtd_alAqzKkXsDb9p-XdOWKdGuJZzHxMybuA HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:32:08 GMT
content-type: application/vnd.ipld.car;version=1;order=dfs;dups=y
cache-control: public, max-age=29030400, immutable
x-lassie-version: lassie/v0.19.2-f7b051a
server-timing: started-finding-candidates;dur=0.048251;candidates-found=4015712;candidates-filtered=4072779,retrieval-Bitswap;dur=4.189128;first-byte-received=66868200, shim; dur=73.066946, shim_lassie; dur=73.00762499999999, shim_lassie_headers; dur=72.91414999999999, shim_lassie_body; dur=0.168906, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
etag: "QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9.car.8e3lb1gbd83as"
x-ipfs-path: /ipfs/QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9/333
x-content-type-options: nosniff
content-disposition: attachment; filename="QmUEs5w1WZKrHkxw3p3fYGj2jZKfLZCURwWvsXJdzHLJB9_333.car"
saturn-node-id: 87cd1bcc-0dd2-4da6-abc7-1691e27520b1
saturn-node-version: 1095_62e6d14
saturn-transfer-id: 58e2e5dc8cb0f4fde8aa03a3d245a1a0
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
static.adxadserv.com/css/wm.css
200 OK 1.8 kB URL GET HTTP/2 static.adxadserv.com/css/wm.css
IP
ASN #60068 Datacamp Limited
Requested by https://ads.adxadserv.com/ad?spotid=60e4b64461d6e27e372dcee6&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731272&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint11:4C:DC:15:D3:66:0C:E4:77:6D:B8:F8:DE:49:6F:09:2A:C9:1F:CB
ValidityWed, 22 Nov 2023 23:05:55 GMT - Tue, 20 Feb 2024 23:05:54 GMT
File type ASCII text, with very long lines (1915), with no line terminators
Hash d4346927d6aac350b4c21eb2146d3851
81e08f3ed0fd1356c393506b4cca25fb02fe12ec
6cdd250d29106d2dd229d4c9021b3368bce3eabbac49c3153b608036ca82f5b2
GET /css/wm.css HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 03 Aug 2020 09:41:06 GMT
etag: W/"5f27dbb2-711"
server: CDN77-Turbo
x-77-nzt: EQwBuUwJDQH3XbQDAA
x-77-nzt-ray: c0a4cc28f5629dce453f756506518b12
x-accel-expires: @1702976668
x-accel-date: 1701939944
x-cache-lb: HIT
x-age-lb: 242781
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 242781
content-encoding: gzip
X-Firefox-Spdy: h2
edge-hls.doppiocdn.com/hls/116931632/master/116931632_480p.m3u8
200 OK 227 B URL GET HTTP/2 edge-hls.doppiocdn.com/hls/116931632/master/116931632_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with no line terminators
Hash d548ee12939ad66a6689ba1638ecaa64
abd69f41ee41aab72b09bcb44f16414d805f9367
79cd2b88693fa4ac8e37084b38b3ad1386a18cfc6c5fb24d1e07bd112777f18c
GET /hls/116931632/master/116931632_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Sun, 10 Dec 2023 04:32:04 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=3, s-maxage=3
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
set-cookie: __cflb=02DiuDqTDHWLb7zSddG9z9dnCh3o3hTZU8FWzGFw5DJSQ; SameSite=None; Secure; path=/; expires=Mon, 11-Dec-23 04:32:07 GMT; HttpOnly
server: cloudflare
cf-ray: 8332c31fbce3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-modules.a169b1ec.js
200 OK 47 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (25027)
Hash d03c11be3537746519138d1fe06bd033
c915eed8fafdd69b7c2d6f28c5cb0d3f031888f7
2d69a91e3b105d9ced4a5c0244a9dc3905f8eb061e72cb5518db5ef6d0d0635d
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"d03c11be3537746519138d1fe06bd033"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: N9CT1u01vg8Gz+YWCkqhdKV9DidnehcEK0xCHVm3J3d4OngXjpcLCLHWEA+lKp6LaMLGd5IfFC0=
x-amz-request-id: Y0KJ8WRY6JAWFSSK
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dd8f69ee83fc4eafbfb39f0a2b622819
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/broker.9e6bf337.js
200 OK 24 kB URL GET HTTP/2 static.arc.io/broker/js/broker.9e6bf337.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?a633436
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (24359)
Hash 0f4be176d7381439a060ff326b994fd2
a2157b6419a02054e10fd69cad0df08ee46c85a8
15dd17bc017fd6b5c5874bf0c0f127131b09f9f8a4a5f596aa846269f4bad7c9
GET /broker/js/broker.9e6bf337.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"0f4be176d7381439a060ff326b994fd2"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: MdYC/fgm5vp0bxrSAhuwjbuHWu4Y35WwaG5fDD00zX/bYsfNAiIsVuiQGXM11aZqKKqNac9K1FM=
x-amz-request-id: QRX3S5ERTYB3DPA2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4346f8c0305ae8b3e39a20a7fb39d467
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
socket.arc.io/socketcluster/?nodeId=TT9aYVRzgNkXpKEn2zTWt5
0 B URL GET socket.arc.io/socketcluster/?nodeId=TT9aYVRzgNkXpKEn2zTWt5
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socketcluster/?nodeId=TT9aYVRzgNkXpKEn2zTWt5 HTTP/1.1
Host: socket.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://ww3.animeonline.ninja
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qmiWEFdU3PFOlHJm/eeCsg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
404 Not Found 726 B URL GET HTTP/2 t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:32:06 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-ui.js?1dbb019f
200 OK 42 kB URL GET HTTP/2 static.arc.io/widget/js/widget-ui.js?1dbb019f
IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/widget-ui.js?1dbb019f HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"59c913fd17c39f9d200673df12b25d15"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: knZBpMyF+bBY3iHuf/yvs+PubFtf+HsDirMTowHDPGnOCtDdiozD5djKlCa4E7bbpiEEWz425/E=
x-amz-request-id: AHN7QZFYX4WRR2XS
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e6047d38e58298aa5fa436238a44a8aa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
200 OK 3.2 kB URL GET HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (3296), with no line terminators
Hash b99f617367312fb9a38e9ad42beafe19
641b3bc44b86c4025b926f445b498d8a1bbc3361
2651ce033e5908306643263171c004c20652eecb9b6242d146cd21346658a1d7
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"00fc1f9530439ec3d2415f9420e814d7"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: DV3XNbmokfaLyFzHSWMHySmQ/Z+xyiURqNhPGbHTNGsdCdkBumcJ6DTmoMAYJGlOovwsc45CAno=
x-amz-request-id: A0ZYJA68RFE5W55N
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ef87ad34a907c263630d957320dc63ee
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16
200 OK 755 B URL GET HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
- data
Hash 584bf3fdcec029db6b1e3d9cb3402ebc
cd992f76d760ca7d37228bfdbfec6634077acd93
29e4d97ddb8613ac22af2eb4eb9f539d50a05f4e95ccbdd501e4ed9463880eb6
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bit.ly&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://docrdsfx76ssb.cloudfront.net/static/1700176406/pages/wp-content/uploads/2019/02/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 16:04:13 GMT
expires: Thu, 14 Dec 2023 16:04:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
content-type: image/png
age: 217673
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cids.arc.io/top-cids
200 OK 6.6 kB IP
ASN #34989 ServeTheWorld AS
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerLet's Encrypt
Subjectcids.arc.io
FingerprintC4:44:71:7D:EB:22:87:3F:E0:A0:9F:87:B5:F5:45:88:5E:CE:CD:B0
ValidityWed, 01 Nov 2023 03:09:17 GMT - Tue, 30 Jan 2024 03:09:16 GMT
File type troff or preprocessor input, ASCII text, with very long lines (6799), with no line terminators
Hash 757be29e2d0eafd727ddac4203952bfe
2a666c0da66361e384fc6cd56c9788c0f2aaefb3
5680cd1b8b087beca8b77464217edb5d5738c80238e22bbe8f4a75af090823ba
GET /top-cids HTTP/1.1
Host: cids.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://saidochesto.top/
Origin: https://saidochesto.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:08 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 1392871
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: W/"19c7-w0Xr58FUPKkTVfcWmr+KDG5vNU4"
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/10/2023 04:19:04
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c392d2f3e42b9d0dd6811178de184151
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
adxadserv.com/px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=21.134&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
200 OK 0 B URL POST HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=21.134&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b63761d6e272165ed9c5&type=300x250&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731267&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectadxadserv.com
FingerprintEC:EE:18:A9:D1:39:F5:58:58:91:28:5E:AD:F5:C9:F3:FE:FD:59:B7
ValidityThu, 30 Nov 2023 21:43:37 GMT - Wed, 28 Feb 2024 21:43:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=3fd2a49e-3abc-4959-88d3-a7448a4426f1&t_op=21.134&p_nn=adxad-rtb&fpid_sa=1702182732630&fpid=7f764ca52ae2755a2c3605a23365b379&feid_sa=1702182732630&sid_sa=1702182732630&feid=9cc83ba2fd26da7db083fd6ae6ca03dd&sid=00f468c9a1a5ff211bc288301d5447f0&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=ww3.animeonline.ninja&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=48&dm=-1&dt=0&ed=0&sr=5497558139904&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:26 GMT
Content-Length: 0
Connection: keep-alive
arc.io/widget.min.js
200 OK 7.6 kB IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerAmazon
Subjectarc.io
FingerprintF6:AE:3C:13:39:4E:15:7E:83:F8:01:A2:BB:B7:E6:6B:BC:09:D0:19
ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (7892), with no line terminators
Hash 8a2ce3473c2bda9db144dbeac9c48a1b
ae0f708776f6ed5cc528742086b461eba8631053
500187f43876f8ec156488dc3b6ae3fb874f3a52ce5eeebc2621f34642066ff0
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 2949
date: Sun, 10 Dec 2023 03:57:46 GMT
last-modified: Mon, 04 Dec 2023 21:20:53 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "656e42b5-b85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PIjFx5xOObs5G6GYjADMpyxYzK5NBGaPE54NnLUQZmM9ADrHHnl8ow==
age: 2057
X-Firefox-Spdy: h2
a.exdynsrv.com/ad-provider.js
200 OK 123 kB URL GET HTTP/2 a.exdynsrv.com/ad-provider.js
IP
ASN #60068 Datacamp Limited
Requested by https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (32173)
Size 123 kB (122925 bytes)
Hash ee0fce6bfc794978660e287f6033cc88
2908886b8741e1d78f16f25d01f957fb053f027b
9ed722127227e559eb357e91d2e73330535e862db825b4d6986d661efb754398
GET /ad-provider.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.exdynsrv.com/iframe.php?idzone=4852104&size=300x250
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2265753f444469d5.689602032512571039%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22517.0199%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2908886b8741e1d78f16f25d01f"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:51:01 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3cQgAAAwBuUwKCQH3CwAAAAwB1GY4mQH3/wAAAA
x-77-nzt-ray: c0a4cc28e16496cd453f7565d5c4540f
x-accel-expires: @1702191363
x-accel-date: 1702180564
x-77-cache: HIT
x-77-age: 2427
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 11, 2161
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
edge-hls.doppiocdn.com/hls/116931632/master/116931632_480p.m3u8
200 OK 227 B URL GET HTTP/2 edge-hls.doppiocdn.com/hls/116931632/master/116931632_480p.m3u8
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal?tag=girls/asian&thumbsMargin=0&gridRows=1&gridColumns=1&sourceId=300asrsasgirlwlcop&creativeId=300asrsasgirlwlcop&responsive=0&hideButton=1&hideTitle=1&userId=2ff61e17e3557af46fe2d3810f37b5c411b3fbc3852006cff0fa2d8d6e4a6f7d&autoplay=all&autoplayForce=1&showModal=signup&memberId={clickid}
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with no line terminators
Hash d548ee12939ad66a6689ba1638ecaa64
abd69f41ee41aab72b09bcb44f16414d805f9367
79cd2b88693fa4ac8e37084b38b3ad1386a18cfc6c5fb24d1e07bd112777f18c
GET /hls/116931632/master/116931632_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative.bbrdbr.com
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Sun, 10 Dec 2023 04:32:04 GMT
x-proxy-cache: EXPIRED
cache-control: public, max-age=3, s-maxage=3
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
set-cookie: __cflb=02DiuDqTDHWLb7zSddG9z9dnCh3o3hTZU8FWzGFw5DJSQ; SameSite=None; Secure; path=/; expires=Mon, 11-Dec-23 04:32:07 GMT; HttpOnly
server: cloudflare
cf-ray: 8332c31f9cc5b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.scripts.js
200 OK 4.1 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.scripts.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (4388), with no line terminators
Hash f0c11efec448995485e0ae5f617d7e2c
6c23cc35b93a7966e31e012aa17ed8962bbecdca
0305917883e3250d879ef707d68b2922945ed32ca18d403c1a94bc602f6a63aa
GET /wp-content/themes/dooplay/assets/js/min/front.scripts.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=6945
etag: W/"1b21-5ca64f6e079c0"
last-modified: Wed, 25 Aug 2021 16:44:31 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 101250074
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1561129
server: cloudflare
cf-ray: 8332c305b9a556a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
saidochesto.top/static/server/streamtape.com.png
200 OK 38 kB URL GET HTTP/3 saidochesto.top/static/server/streamtape.com.png
IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerGoogle Trust Services LLC
Subjectsaidochesto.top
Fingerprint4D:59:4C:DD:80:83:BF:56:CC:40:B6:35:B0:27:15:F6:C0:A4:F6:1F
ValidityFri, 13 Oct 2023 01:05:53 GMT - Thu, 11 Jan 2024 01:05:52 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
- data
Hash fe92f0dbbabe8e0a6c5e3ccf7aab5ff1
ed17c78d9ac2750e035c60309907862686fb52ed
a6c2e0dd9ef8c954a6074eb0ab726f7d19c70047c20e8bfd86b70d3d08f5f298
GET /static/server/streamtape.com.png HTTP/1.1
Host: saidochesto.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/embed.php?id=9197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: image/png
content-length: 38100
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 06:47:02 GMT
last-modified: Sat, 21 Nov 2020 20:01:31 GMT
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 337504
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BOuGYnIApeYjhinVys25R6Osayiz9dW3LWeVPHP7djSqYT4ToMEyHbeXi9ZNUXwAumIdFsj7HDbMAoTGededrbtKpsmuEc2KwlHLR%2BPNWMJwfhhycLl7DrhdtNb8M%2FKJAw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c315fefb1c06-OSL
creative.bbrdbr.com/widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js
200 OK 61 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js
IP
Requested by https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 22f22b49cc901aa95826401f7ce0930c
6471abdd35ab6d511b67d73ad1375f1ee0f255de
0fae8b03858a764bad3e9af19bfc924ead5b9e25c760432c19e91cba3dff1cf3
GET /widgets/v4/Universal/hls.4cfa5b780bfed20a8b26.js HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:07 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3d"
expires: Sun, 10 Dec 2023 04:31:59 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c31efa5556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.gallery.css
200 OK 4.4 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/css/front.gallery.css
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (4381), with no line terminators
Hash c881ae6f1bbcbc89b59cdb45f325931a
9f24daa32dbf8adc386c0fb8181e8d6bd5edf084
489c7d9420e2c814ca6b3536c0ffb2430ed9127a85c429651b105ce3193d0022
GET /wp-content/themes/dooplay/assets/css/front.gallery.css HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=5610
etag: W/"15ea-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 203463041
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1368563
server: cloudflare
cf-ray: 8332c303690856a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
200 OK 811 B URL GET HTTP/3 creative.bbrdbr.com/widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75
IP
Requested by https://r.trackwilltrk.com/s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=453018e8-76d6-4dd9-9585-3e7a2036936f&cv1=453018e8-76d6-4dd9-9585-3e7a2036936f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2A:9F:63:77:CB:A5:1C:FD:6E:10:F5:29:D2:FB:51:F4:7C:EC:36:A2
ValiditySun, 26 Feb 2023 00:00:00 GMT - Sun, 25 Feb 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (872), with no line terminators
Hash 1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab
GET /widgets/v4/Universal/?actionButtonPlacement=bottom&autoplay=all&autoplayForce=1&buttonColor=&campaignId=100cps2asgirl&creativeId=100cps2asgirl&domain=stripchat&hideButtonOnSmallSpots=1&hideModelNameOnSmallSpots=1&hideTitleOnSmallSpots=1&isXhDesign=0&liveBadgeColor=&memberId=%7Bclickid%7D&showButton=1&showLiveBadge=1&showModal=signup&showModelName=1&showTitle=0&sound=off&sourceId=100cps2asgirl&tag=girls%2Fasian&targetDomain=&thumbSizeKey=small&trackOff=1&userId=ebe1e2aa04642c4dc9f7e9a5dfdb455c9ef1b6825ab8b9414a96e56e40140e75 HTTP/1.1
Host: creative.bbrdbr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.trackwilltrk.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 10 Dec 2023 04:32:06 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Sun, 10 Dec 2023 04:31:58 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c318f8a656ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
r.trackwilltrk.com/s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=453018e8-76d6-4dd9-9585-3e7a2036936f&cv1=453018e8-76d6-4dd9-9585-3e7a2036936f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_
200 OK 2.4 kB URL GET HTTP/1.1 r.trackwilltrk.com/s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=453018e8-76d6-4dd9-9585-3e7a2036936f&cv1=453018e8-76d6-4dd9-9585-3e7a2036936f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://ads.adxadserv.com/ad?spotid=60e4b65361d6e27e372dcee7&type=300x100&output=html&extra1=0&ref=https%3A//ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/&dt=1702182731259&screen=1280x1024&tags=
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintA8:53:A6:ED:2C:DE:1B:AD:FC:D4:34:DD:83:A1:60:B4:8F:B1:28:DC
ValidityMon, 30 Oct 2023 07:27:38 GMT - Sun, 28 Jan 2024 07:27:37 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (2469), with no line terminators
Hash 66f11f290d56ca52bc1d583624975155
195202e69d8caefc458055989d04ef81afd15990
462e828386c54ab7d622df93f51d75ff98a609a407130df5b4ae04d033dfbb8c
GET /s1/a07e547b-49b9-41f3-9d4b-f6343c4a8d0b?externalId=453018e8-76d6-4dd9-9585-3e7a2036936f&cv1=453018e8-76d6-4dd9-9585-3e7a2036936f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=623d89ca61d6e210ac324fb9&cv5=623d896b61d6e210ac324fb7&cv6=en&cv7=%slava_kpss%&cv8=Firefox&cv9=60e4b65361d6e27e372dcee7&cv10=exim_adxad_stub2_300x100_ HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 10 Dec 2023 04:32:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: uid=1w8tIgnzp; Path=/; Domain=trackwilltrk.com; Expires=Mon, 11 Dec 2023 04:32:05 GMT; HttpOnly
X-Request-Id: d1610756-699f-4492-9472-e2391ce2b035
Content-Encoding: gzip
ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.livesearch.js
200 OK 4.8 kB URL GET HTTP/2 ww3.animeonline.ninja/wp-content/themes/dooplay/assets/js/min/front.livesearch.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type HTML document, ASCII text, with very long lines (5060), with no line terminators
Hash 8dedff28d4273cf5cde0aee5164698e2
fb6a4d18749690441c4becde6df43bad7aa43a16
47406d68bdfbd352cda76cf715984ecedf12b29c6f6782e3778c67f42e52a5f9
GET /wp-content/themes/dooplay/assets/js/min/front.livesearch.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=4761
etag: W/"1299-5a88d52a5b580"
last-modified: Sun, 21 Jun 2020 00:36:54 GMT
referrer-policy: no-referrer-when-downgrade
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.0)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 207459988
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1455470
server: cloudflare
cf-ray: 8332c305b9a356a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ww3.animeonline.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:36:53 GMT
expires: Thu, 05 Dec 2024 21:36:53 GMT
cache-control: public, max-age=31536000
age: 284110
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s2.googleusercontent.com/s2/favicons?domain=fukouda.top
301 Moved Permanently 726 B URL GET HTTP/2 s2.googleusercontent.com/s2/favicons?domain=fukouda.top
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint17:E3:6E:DB:3C:C4:0E:B4:6D:D3:55:1A:70:F8:0B:23:86:54:69:D8
ValidityMon, 20 Nov 2023 08:08:31 GMT - Mon, 12 Feb 2024 08:08:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/favicons?domain=fukouda.top HTTP/1.1
Host: s2.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fukouda.top&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 10 Dec 2023 04:32:05 GMT
expires: Sun, 10 Dec 2023 05:02:05 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 331
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.arc.io/widget/css/widget.css?a633436
200 OK 87 kB URL GET HTTP/2 static.arc.io/widget/css/widget.css?a633436
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
File type ASCII text, with very long lines (13320)
Hash eb95abaae75c6e836cc828de9914914a
659fd120d298ef17696446b12cd486d09057f92f
c39db19c580489da04174d4ff0136d7e4f169c358d59f3824ce7078813b0f5f0
GET /widget/css/widget.css?a633436 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"eb95abaae75c6e836cc828de9914914a"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: iDAZnc/8mIHtTNIPiSHzzopP8AWbVCDY7gbnjyYlM00qr2JxSwIlAPP6E7mmJR+Vb9TlUUSAHVg=
x-amz-request-id: AHN3Z92CX31Q9SJC
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6a5285a765fdd8842acd76f6016f3d6d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
arc.io/widget.min.js
200 OK 7.6 kB IP
Requested by https://saidochesto.top/embed.php?id=9197
Certificate IssuerAmazon
Subjectarc.io
FingerprintF6:AE:3C:13:39:4E:15:7E:83:F8:01:A2:BB:B7:E6:6B:BC:09:D0:19
ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (7892), with no line terminators
Hash 8a2ce3473c2bda9db144dbeac9c48a1b
ae0f708776f6ed5cc528742086b461eba8631053
500187f43876f8ec156488dc3b6ae3fb874f3a52ce5eeebc2621f34642066ff0
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://saidochesto.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 2949
date: Sun, 10 Dec 2023 03:57:46 GMT
last-modified: Mon, 04 Dec 2023 21:20:53 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "656e42b5-b85"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zfAiMfJUxRNGMTKfBKr4tVFj0tL0qvNF21eBzew0_bnFlCXKByuA0Q==
age: 2060
X-Firefox-Spdy: h2
ww3.animeonline.ninja/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 12 kB URL GET HTTP/2 ww3.animeonline.ninja/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerGoogle Trust Services LLC
Subjectanimeonline.ninja
Fingerprint0F:36:21:26:B0:6A:B4:B9:D8:2D:F4:49:78:F3:7E:55:42:58:4A:47
ValidityMon, 23 Oct 2023 04:07:29 GMT - Sun, 21 Jan 2024 04:07:28 GMT
File type ASCII text, with very long lines (12331)
Hash 88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: ww3.animeonline.ninja
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:03 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 15:04:24 GMT
etag: W/"6569f5f8-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c303690a56a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 12 Dec 2023 04:32:03 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-ui.js?1dbb019f
200 OK 42 kB URL GET HTTP/2 static.arc.io/widget/js/widget-ui.js?1dbb019f
IP
ASN #34989 ServeTheWorld AS
Requested by https://ww3.animeonline.ninja/episodio/darling-in-the-franxx-cap-1/
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint28:FF:7C:C0:4C:6A:6A:01:C1:93:A7:8E:3D:7A:5B:1E:35:1E:54:F6
ValidityThu, 07 Dec 2023 02:09:32 GMT - Wed, 06 Mar 2024 02:09:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/widget-ui.js?1dbb019f HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww3.animeonline.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:32:05 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"59c913fd17c39f9d200673df12b25d15"
last-modified: Mon, 04 Dec 2023 21:21:10 GMT
x-amz-id-2: knZBpMyF+bBY3iHuf/yvs+PubFtf+HsDirMTowHDPGnOCtDdiozD5djKlCa4E7bbpiEEWz425/E=
x-amz-request-id: AHN7QZFYX4WRR2XS
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/04/2023 21:57:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7854a7082875ce80cfe8923444e835e7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
104.21.57.117
172.67.190.89
23.109.87.191
139.45.195.8
194.242.11.186
213.189.201.178
18.184.210.76
185.76.9.22
151.101.244.193
0.0.0.0