mangagenki.com/my-sisters-duty-chapter-57/
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 mangagenki.com/my-sisters-duty-chapter-57/
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /my-sisters-duty-chapter-57/ HTTP/1.1
Host: mangagenki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 16:06:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 09 Dec 2022 17:06:14 GMT
Location: https://mangagenki.com/my-sisters-duty-chapter-57/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UOEQhFR3A7F8RjYgoNfz87WlXhD1%2FCHTQrnylc%2FUqf1q9grwrgW6z8mFq2FQOXisRmtygxkCPzv5skEecPiWJ3pZNGBuiE9h12tclD39j7EwT7J0cdV2q6nc8JUFihor0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776efca23e260b31-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10148
Expires: Fri, 09 Dec 2022 18:55:22 GMT
Date: Fri, 09 Dec 2022 16:06:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15906
Expires: Fri, 09 Dec 2022 20:31:20 GMT
Date: Fri, 09 Dec 2022 16:06:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 15:33:14 GMT
content-type: application/json
age: 1980
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19255
Expires: Fri, 09 Dec 2022 21:27:09 GMT
Date: Fri, 09 Dec 2022 16:06:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4QNmLRlEzaUqn2MPnqhlXYV+kl3clGXHkLGccquE/vZWMQnJ/gKGWIn27949PLOo8zwJ+BtiMWc=
x-amz-request-id: 25DPZ0R1EH5VQJTC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 15:48:23 GMT
age: 1071
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:14 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 975e3d3f287c935f8efc4f75b9e287fc
e88bc75ad4fb931a1f4411211f6f7da2ef4fe548
029bc2ddbca68cb0c960f2f1b40559fbe891663d60b2627dcfbe9a31044eb01e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:14 GMT
Etag: "6391ac04-116"
Server: ECS (amb/6B84)
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 15:33:13 GMT
age: 1981
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 975e3d3f287c935f8efc4f75b9e287fc
e88bc75ad4fb931a1f4411211f6f7da2ef4fe548
029bc2ddbca68cb0c960f2f1b40559fbe891663d60b2627dcfbe9a31044eb01e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:14 GMT
Etag: "6391ac04-116"
Last-Modified: Fri, 09 Dec 2022 16:06:14 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1433
Cache-Control: max-age=149073
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:30:48 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
a.exdynsrv.com/ads.js
205.185.216.42200 OK 975 B IP 205.185.216.42:0
File type ASCII text, with very long lines (2476), with no line terminators
Hash a61e766a85bbf2189c5f31787acde7ae
ae622d134fbbb0f814d14e3e6e66b04ce4ada615
8ffd2ed3c785ea6b2627d0f53de8abcf5adedd5d5be2cacb67039677307aa2dd
GET /ads.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:15 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 975
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"ef37e120acd62446b5775d5b67c"
X-HW: 1670601975.dop225.sk1.t,1670601975.cds010.sk1.shn,1670601975.dop225.sk1.t,1670601975.cds258.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 878b315c98fef45d851b7a8072baf176
fc6713e61cb22b5f3b00ef6e4a025bb6c4f5c1b1
3644aba93ceafe573ac27f3c1c6900a64ee4f5c950d310ba1934f42187f779e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 08:27:04 GMT
Expires: Tue, 13 Dec 2022 08:27:03 GMT
Etag: "fc6713e61cb22b5f3b00ef6e4a025bb6c4f5c1b1"
Cache-Control: max-age=317447,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efca87cb8b51d-OSL
www.googletagmanager.com/gtag/js?id=UA-97688941-23
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-97688941-23
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 596823f92a7cc2e93877d0a5ec4e5b36
e06be11f0a43fe7968c2630d881090914abce4e8
c007a4791fbdb37f4f6d280b44a5de4abf5e0d10eee692b3b9c60539c6a2b767
GET /gtag/js?id=UA-97688941-23 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 16:06:15 GMT
expires: Fri, 09 Dec 2022 16:06:15 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43636
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads.js
185.94.236.247301 Moved Permanently 178 B URL HTTP/1.1 poweredby.jads.co/js/jads.js
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 3.4 kB IP 142.250.74.131:0
Hash 353615f153bc761f9c81bf6a3c27e75f
fc1425ca43281b92b009eb7da867d3f999953e87
687b43fa7db6705d7542270d069c766ec38c6cbb8e0b254b25598892601e21bb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i2.wp.com/mangagenki.com/uploads/2020/04/logomangagenkinew.png
192.0.77.2200 OK 32 kB URL HTTP/2 i2.wp.com/mangagenki.com/uploads/2020/04/logomangagenkinew.png
IP 192.0.77.2:0
Hash dfe9bf3842ea125a56aebd486a486d5f
13464f0f8e94f3576646fa672f54bdb839cfd720
3bc757bb2d493d6714c75aa7e9eafce3e0e74b89fe853ce14513da5fb97fc791
GET /mangagenki.com/uploads/2020/04/logomangagenkinew.png HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:15 GMT
content-type: image/webp
content-length: 29464
last-modified: Sun, 04 Dec 2022 13:38:15 GMT
expires: Wed, 04 Dec 2024 01:38:15 GMT
cache-control: public, max-age=63115200
link: <http://mangagenki.com/uploads/2020/04/logomangagenkinew.png>; rel="canonical"
x-content-type-options: nosniff
etag: "dc54af011351282e"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
www.displayvertising.com/page.min.js
185.76.9.15200 OK 10 kB URL HTTP/2 www.displayvertising.com/page.min.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
Hash 292fd5d78689735937a8d296d382e8e2
311bf2dbb0211a3cd9abbbf02da374e5a1f9fca2
e012e5a4cd0029e651798798d9620e00e06435834ae3bf35242f0a9f139772bb
GET /page.min.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:15 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
expires: Wed, 14 Dec 2022 18:35:43 GMT
access-control-allow-origin: *
link: <https://displayvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1671042943
server: CDN77-Turbo
x-77-nzt: AblMCQ3BjXbv+H8CAA
x-77-nzt-ray: c0a4cc28f718f645f75c9363479cc90d
x-cache: HIT
x-age: 163832
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zbxF+NNE0grI1fb0EOGnjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lFi1BZXUPOTe5sYuqDZ1zlXH+5M=
fonts.gstatic.com/s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22592, version 1.0\012- data
Hash 4528524c7142b4e2d5c0438763223328
d439d881fd8c4f41e77c2fb07678e53fce3e331a
ea03bd5d723c75f6d0a9419d4f9651afd78ea2a4abfcee7f926cbde0681a2671
GET /s/firasans/v16/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangagenki.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:42:51 GMT
expires: Wed, 06 Dec 2023 15:42:51 GMT
cache-control: public, max-age=31536000
age: 260604
last-modified: Thu, 21 Apr 2022 16:51:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23724, version 1.0\012- data
Hash 2ca1253c8e47277b38c02353cdf32102
3cd0373fd1ae7ad8cb62ff8f2200193a7e8977e7
51aa1f55f3d344d82ece24055a31012cf77d10cc4a2f9307f5dea293118d40f1
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangagenki.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 20:36:30 GMT
expires: Fri, 08 Dec 2023 20:36:30 GMT
cache-control: public, max-age=31536000
age: 70185
last-modified: Thu, 21 Apr 2022 16:58:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22760, version 1.0\012- data
Hash d36cf1e01f039283292b186b9c85c883
569131c8375a808d1f6a1ad22786cc6b32ec9820
8a90f9c307d889844f7286c11a9e8596c9a41b2e91123ab49cca0fbaa4b48dc7
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangagenki.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 18:56:58 GMT
expires: Wed, 06 Dec 2023 18:56:58 GMT
cache-control: public, max-age=31536000
age: 248957
last-modified: Thu, 21 Apr 2022 16:56:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
185.94.236.247200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP 185.94.236.247:0
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eae"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4adb3cca429ddd3395f3e1bdf9d0f600
5089dd182697ecc3248dff76614cf6b80b7f5466
518d4d15a44ae3b6c6d98a5a39ec7aaa5e35b124804b2d35870ee53377fca3b3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 00:04:30 GMT
Expires: Thu, 15 Dec 2022 00:04:29 GMT
Etag: "5089dd182697ecc3248dff76614cf6b80b7f5466"
Cache-Control: max-age=460093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcab187db51d-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4adb3cca429ddd3395f3e1bdf9d0f600
5089dd182697ecc3248dff76614cf6b80b7f5466
518d4d15a44ae3b6c6d98a5a39ec7aaa5e35b124804b2d35870ee53377fca3b3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 00:04:30 GMT
Expires: Thu, 15 Dec 2022 00:04:29 GMT
Etag: "5089dd182697ecc3248dff76614cf6b80b7f5466"
Cache-Control: max-age=460093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcaba992b51d-OSL
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:15 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://mangagenki.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcac9d43fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://mangagenki.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
www.google-analytics.com/g/collect?v=2&tid=G-B30V9L7TWY>m=2oebu0&_p=690979354&cid=1014840703.1670601974&ul=en-us&sr=1280x1024&_s=1&sid=1670601974&sct=1&seg=0&dl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&dt=My%20Sister%E2%80%99s%20Duty%20Chapter%2057%20-%20MangaGenki&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.anonymize_ip=true&ep.site_speed_sample_rate=1
142.250.74.14204 No Content 0 B URL HTTP/2 www.google-analytics.com/g/collect?v=2&tid=G-B30V9L7TWY>m=2oebu0&_p=690979354&cid=1014840703.1670601974&ul=en-us&sr=1280x1024&_s=1&sid=1670601974&sct=1&seg=0&dl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&dt=My%20Sister%E2%80%99s%20Duty%20Chapter%2057%20-%20MangaGenki&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.anonymize_ip=true&ep.site_speed_sample_rate=1
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B30V9L7TWY>m=2oebu0&_p=690979354&cid=1014840703.1670601974&ul=en-us&sr=1280x1024&_s=1&sid=1670601974&sct=1&seg=0&dl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&dt=My%20Sister%E2%80%99s%20Duty%20Chapter%2057%20-%20MangaGenki&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.anonymize_ip=true&ep.site_speed_sample_rate=1 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://mangagenki.com
date: Fri, 09 Dec 2022 16:06:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 67aeeea4084af1d2eb5fa2d08ff2c9a2
1444799553152505fd24039c0401c7abb3227f79
72ef9a63f23faebf88b87bce2c9af7205c4d8389840115363ed5c4cbd57b16dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72EF9A63F23FAEBF88B87BCE2C9AF7205C4D8389840115363ED5C4CBD57B16DD"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9
Expires: Fri, 09 Dec 2022 16:06:25 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2a8b78b7925e00b52f357f254be560e3
707309734e90e4fc06fe1df740cbd7ae387fdcb5
990539a09622b32258474a0a4ca2820caee1a30d1b4ae4967ca8c2256c25cf66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "990539A09622B32258474A0A4CA2820CAEE1A30D1B4AE4967CA8C2256C25CF66"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Fri, 09 Dec 2022 22:05:31 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
vtb9ssdugr5v.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 vtb9ssdugr5v.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: vtb9ssdugr5v.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
appropriateloathefewer.com/2f7369526bc70cf9e1aac9c183b08809/invoke.js
192.243.61.225200 OK 9.8 kB URL HTTP/1.1 appropriateloathefewer.com/2f7369526bc70cf9e1aac9c183b08809/invoke.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26947), with no line terminators
Hash 289a440484c2defb181091b74d74e2f7
458d869f23a50b3e9efc7d2067d224800af358d0
5ac75078c037c168c1f334d30351ceecd158cdae51989690a65ef7ba29d495c5
Analyzer Verdict Alert quad9 Sinkholed
GET /2f7369526bc70cf9e1aac9c183b08809/invoke.js HTTP/1.1
Host: appropriateloathefewer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 97634974a2bafd7f6ea398c8fb7211c6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
adsco.re/p
162.252.214.5200 OK 168 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash 3cc884caf4e2251398a6edecdb6c6c28
6544b1619d6363de6150205990ef99a0aa904783
311ee6efea254f9f16060018e4d118f8035bcbea2eddec2951d8334cdb1c9235
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Length: 2103
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://mangagenki.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v16/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23600, version 1.0\012- data
Hash 96535c146ffa5386af6a241b26a3a6b4
23cd84c531d12b9ee5e2fa0d1dd7620f4d6cff57
5a993ab2e9326ab9a1d3f403acf8eed16029f1113c786bcfef3f5b529343ab81
GET /s/firasans/v16/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangagenki.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:44:19 GMT
expires: Wed, 06 Dec 2023 15:44:19 GMT
cache-control: public, max-age=31536000
age: 260517
last-modified: Thu, 21 Apr 2022 16:51:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.exdynsrv.com/ads-iframe-display.php?idzone=3940530&type=300x250&p=https%3A//mangagenki.com/my-sisters-duty-chapter-57/&dt=1670601975395&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22
95.211.229.246200 OK 1.4 kB URL HTTP/1.1 syndication.exdynsrv.com/ads-iframe-display.php?idzone=3940530&type=300x250&p=https%3A//mangagenki.com/my-sisters-duty-chapter-57/&dt=1670601975395&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1208)
Hash aaa12a59023acad35ae0ff2b6028352f
4012ac62aed73215412b77a4baf7900c96b761e0
0a781e63c23ba261ad84a69d700fa5f4eeee1689bad89dfe4c9612f3fabc5f99
GET /ads-iframe-display.php?idzone=3940530&type=300x250&p=https%3A//mangagenki.com/my-sisters-duty-chapter-57/&dt=1670601975395&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263935cf86c0ac7.836364531537551765%22%3B%7D; expires=Sun, 08 Dec 2024 16:06:16 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
impressions=cmmsxrbonxgxameexmllsgeicmmsxaeenxgxamecmrmabgeimacslbecnxgxaaabssxamgeislsaroornxgxamercxaxlgeicxbmsbxcnxgxaallaccblgeioslmrxlrnxgxameaeeomageiccmmlmlcnxgxameomroeegeialbsereanxgxaalrollmegeioslmrxbrnxgxamermrablgeicxbmsbcenxgxaallsbmbbgeioslmrxlsnxgxamercolsxgeicxbmsbocnxgxaallcccaogeicxbmsboenxgxaalbaaamegeiclsmarcanxgxaaallsxlcgeiclsmrrmanxgxaaallsxlcgeirbabxabbnxgxameexmllsgeiccmmlleanxgxameexmerxgeimcrxsbcenxgxaameollsmgeimreaoboenxgxaameollsmgeimcclosscnxgxaalccxmexgeimacslbeenxgxaaboslelageioslmroemnxgxamecmrmabgeioslmrxbmnxgxamesrlmlogeicaxsscmbnxgxamexrbcemgeicaormlxonxgxaamealeoegeicaormbmcnxgxaamealeoegeimcclsxscnxgxaamsmxlcageimccloscanxgxaallmalxmgeimreaomxenxgxaamelbbsbgeimreaobscnxgxaamelbbsbgeimcclosconxgxaallsbmbbgeimcclsoeonxgxaamxaacblgeimacslbeonxgxaaloesaslgeimcclsxsanxgxaamsmxlcageimcclsxlbnxgxaamssmcolgeimaecseaonxgxaamssmcolgeimaecsxeonxgxaamssmcolgeimaecseronxgxaamssmcolgeimrblelrenxgxaamssmcolgeiccmmllebnxgxameoxbrrrgeimcclsxlonxgxaamcsebsxgeimcclsoeenxgxaamcrclalgeimcclsxsbnxgxaamcrclalgeimcclossbnxgxaalbexcrageimcclsxlcnxgxaamrscxmxgeimaecseranxgxaabrlemaegeimcclosccnxgxaamrscxmxgeicaormlxcnxgxaalbxrlcegeicaormbmbnxgxaalrexasogeiclsmrbsenxgxaamaxcsxcgeialbserebnxgxamexsrmoogeimcclsxconxgxamecabelcgeimcclsxmenxgxamecabelcgeialbserxonxgxaalbcxbsageimccloscenxgxaalmlsmmcgeimcclsxxonxgxameexxllrgeimcclsxbcnxgxameomoscbgeicaormlxanxgxaammacmrxgeimcclsxaonxgxamesemoslgeimrblxxxbnxgxaambboecmgeimrblxelcnxgxaambboecmgeimrblxxrbnxgxaambboecmgeialbserxenxgxamexmlmxxgeimacslbeanxgxaablxaelxgeialbserecnxgxameoxbrrrgeiccmmllecnxgxamexsrmoogeisaeeasslnxgxaabrbeccogeimcclossanxgxaabrlemaegeimcclsxronxgxamesemoslgeimaecseabnxgxaabrlemaegeimrblelrcnxgxaabrlemaegeimrblxemonxgxaabrlemaegeimcclsxcanxgxaalrlccrxgeimaecsxoonxgxaabmalbxxgeircsxcxscnxgxaabbxeomsgeicaormbbenxgxaalexxbcxgeiabeocmconxgxaablxrcmmgeimcclsxxcnxgxaalesmxrsgeimrblxeeanxgxaablsaloageimaecsemanxgxaalmmeabageimaecselonxgxaaloaroaageimcclsxacnxgxameolxrmmgeimcclselenxgxamecrasabgeimaecsxronxgxaalxmmoorgeimaecsxsenxgxaalxmmoorgeimaecsercnxgxaalxmmoorgeimaecsembnxgxaalxmmoorgeimaecselenxgxaalxmmoorgeimaecobobnxgxaalsmleergeimaecomoanxgxaalsbbboageimrblxxoenxgxaalsbmacmgeimaecobsbnxgxaalsbbboageimrblxosonxgxaalsbbboageimcclsxmanxgxamecrasabgeimaecsxccnxgxaalmeeamageimrblxeecnxgxaalmeeamageimrblelronxgxaalmeeamageimrblelmonxgxaalmeeamageimaecseacnxgxaalmmeabageimaecsxxcnxgxaalmmeabageicaormbmanxgxaalbxrlcegeimaecsxocnxgxaalbrxssogeicaormlobnxgxaallcccaogeimaecomrenxgxameexxllcgeimrblxxxanxgxameexxllrgeimrblxosbnxgxameexxllrgeimaecomlonxgxameexxllrgeimcclselanxgxameobesbsgeimrblxoxenxgxameexmllsgeimaecomconxgxameexmllsgeiclsmrrrenxgxamexlcmeageiclsmarocnxgxamexlcmeageiclsmrbecnxgxamexlcmeageiclsmarcbnxgxamexlcmeageimmccrbeanxgxameaeeomrgeimmccrlacnxgxameaeeomrgeimrblxeoenxgxamecrasabgeimmccrlaonxgxamecmscacgeimmccrbxenxgxamecbxbacgeimmccrlaenxgxamercolsxgeimmosssconsgxameroxoscgxcceimcssmlroncgxameroxoscgxcceimxlbmosonrgxameroxoscgxcceialbbebrenxgxameroxoscgxcceimmcaacranxogxameroxoscgxcceialrexexbnxgxameroxmargxcceimclsaoxbnmgxamerooesbgxcceimxxerrecnxgxamerooeslgxcceimexexabbnxgxamerooecxgxcceicxmecmcanxgxamerooecxgxcceimrbleaxonogxameroarrbgxcceimxlbmoobnogxamerssomrgxcceimxlbalscnxgxamerscassgxcceimmsoxrlenxgxamersreclgxcceimrxccoscnogxamersrlacgxcceimxeoxsbencgxamersblamgxcceimxlbmxbbnogxamersblamgxcceimsacexoonxgxamersblamgxcceimmcorsebnxgxamersblamgxcceimxlbmxlonogxamercxaxlgxcceislmbeslrnxgxamercxaxlgxoaeimmcorsxanogxamercxaxlgxcceimxeoxsacnogxamercxaxlgxcceimaoolcoonxgxamercxmxcgxcceimmccrbebnxgxamermolcxgeimmxcxslenxgxamercolsxgxcceimmsoxrlonxgxamerccesxgxcceimmsxrlabnxgxamerccesxgxcceimaalslbanogxamerccesxgxcceimmsoxrlcnxgxamerccesxgxcceimrbxmxmanxgxamercbeblgxcceimmoabamcnsgxamercbeblgxcceimaoobrbcnsgxamercbeblgxcceimaooloranxgxamerrsxaagxcceimaoobrbansgxamerrsxaagxcceialbmmbbenxgxamerrsrbcgxcceimmooobrcnxgxamerrsrbcgxcceiaaxcambbnxgxamerrsrbcgxcceimromoslanxgxamerrsrbcgxcceimxlbmoscnogxamerrsrbcgxcceimxeemleanxgxamerrsrbcgxcceimrcebeaenxgxamerrmsmbgxcceimmoobsmcnxgxamerrlbrogxcceimxxrecsanxgxameraelcmgxcceixaoossalnxgxameraelcmgxcceicmarxbbonsgxameraelcmgxcceimaalslbbnxgxameraelcmgxcceimrmaobxanxgxameraelcmgxcceimrxccosenogxameraelbmgxcceimrcscrsanxgxameraelbmgxcceicloaecoenxgxameraoxxsgxcceimocbmmmcnxgxameraccorgxcceimeembesonogxamerarlaagxcceicloaecocnxgxamerarlaagxcceimeelaclcnxgxamerarlaagxcceimraeelaanxgxamerarlaagxcceimraeelabnxgxamerarlaagxcceimmoeeoecnxgxamerarlaagxcceimeembescnxgxamerambsrgxcceimmossscenagxamerabrrmgxcceialrexeoonxgxamerabrrmgxcceimrlxebebnsgxamerabrrmgxcceimrxccosonxgxamerabrrbgxcceimasbmxsanxgxamerabaacgxcceicloaxxaanxgxamerabaargxcceialbmmbbonxgxamerabaargxcceimxlbalcenogxamerabblagxcceimxxerrxenxgxamerabblagxcceimcssmlrensgxamerabblagxcceixbblrmlanxgxamermoslcgxcceimeembecenxgxamermoslcgxcceimcoaxmxoncgxamermobexgxcceicloaxxmonxgxamermobeogxcceimxlbmoconogxamermobeogxcceimxxerreanxgxamermobeogxcceiceecmorsnxgxamermclxegxcceimxeemblonxgxamermclxegxcceicloaxxocnxgxamermclxogxcceicloaxxoenxgxamermclxogxcceicloaxxobnxgxamermclxogxcceicloaxxxanxgxamermclxogxcceicloaxxoanxgxamermclxogxcceicloaxxxbnxgxamermclxogxcceicloaxxoonxgxamermclxogxcceimxlbmosenogxamermrablgxcceimemlxbocnxgxamermrablgxcceimxxerrebnxgxamermrablgxcceimxlbmxlcnogxamermbscegxcceimmcoaabbnxgxamerbooslgxcceimmcomoeanxgxamerbooslgxcceialbbebsbnxgxamerbooslgxcceimxxerreonxgxamerbooslgxcceialaroxrcnxgxamerbooslgxcceimmccarbenxgxamerbscaogxcceiraclralcnxgxamerbmcxrgxcceialbbebsanxgxamerlecrogxcceimcssmlrcnogxamerlecrogxcceirreacmsbnxgxamerlecrogxcceimxlbmxlenxgxamerlecrogxcceialcaercenxgxamerlecrogxcceimxeemlxcnxgxamerlecrsgxcceimcoaxmxcnsgxamerlxloxgxcceimoobcomanxgxamerlaemxgxcceimxlbalsbnxgxamerllrmcgxcceimmcoroccnxgxameaeeomrgxcceimxlbmosanxgxameaeeomagxcceimmcorsoenxgxameaeeomagxcceimaoobbebnxgxameaexsxegxcceimaelrlmbnxgxameaexlmagxcce; expires=Sat, 10 Dec 2022 16:06:16 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b291c70732e42282cbece5c39011e778
6efbe4b28128f3dc8c44a5b03bdba45cb7c830e6
8692a6f9a9c4cee43d492ee34b1fb891cf41b6ae98893e5b9c7827aac788a044
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8692A6F9A9C4CEE43D492EE34B1FB891CF41B6AE98893E5B9C7827AAC788A044"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11120
Expires: Fri, 09 Dec 2022 19:11:36 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17875
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17875
Expires: Fri, 09 Dec 2022 21:04:11 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 31981
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 65692
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a22fc7807fb3337f0af5e546c7ad366a
0d5969394b370a5c77c53ed58f55e5f8a45da3ab
98b4f4fd27dc036697fb0328083bce6e691b7493428f3a54991087d9d1165d97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5530
x-amzn-requestid: adecbb8c-cec3-46a0-b32c-0026b8421fe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4d8Fg6IAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903abf-4bcb385f27cb438c36a2cd5e;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uoulSfEOLxBRCmwK55huNOYSqpyZMFiibwTjm-HqOf67vsf-3o5jtg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 13:33:54 GMT
age: 85181
etag: "0d5969394b370a5c77c53ed58f55e5f8a45da3ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 31937
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 40801
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 44870
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2ebb4c4df723e84a245ad31420e90a4f
c4a5407f17b3b2b4aec610d7ab0799e2ef012a2c
4b739be07d6581dcf6ae6ec6ed4ea48ab54553f334d37ddd7468b3d0e24f1857
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B739BE07D6581DCF6AE6EC6ED4EA48AB54553F334D37DDD7468B3D0E24F1857"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1275
Expires: Fri, 09 Dec 2022 16:27:31 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 7a3b93489047f9ea14340f8606a4e869
6ed81d6bfa1507093680864ac2a93414473afcb2
ad23df78236e546d4650ec7b8b8f9094a4c927f0291c5f5ad86abfd997afae45
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170032
Date: Fri, 09 Dec 2022 16:06:16 GMT
Etag: "6393389b-1d7"
Expires: Sun, 11 Dec 2022 15:20:08 GMT
Last-Modified: Fri, 09 Dec 2022 13:31:07 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lRvWibEv36mGyITPhk8awKBMSs-bN9NQcn_UuOoYh77sAFTbO4vgWw==
Age: 6541
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 77d88b73c659dbe5fd1570573f260bcd
1d1ea3c33b6a3c9a633718f30810cd6280e83285
9f3aeaeda7377662e077c5ece13a3f8c0475b83f478c981fc5ad2f86c78b1a42
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://mangagenki.com
access-control-allow-credentials: true
set-cookie: uid_id2=d82446cb-551f-414b-9cc4-f47822c42bcd:2:1; expires=Mon, 06 Dec 2032 16:06:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 280 B IP 104.18.32.68:0
Hash 7f1028bde8aceafe4b35d9042806cc9b
a544a9d7597d35ae42e0ffd59e4673a380b8e141
94266ff1c4b55917ccf6643da75e0b047d1c8716d29de29739ba893624095e2c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 09:53:50 GMT
Expires: Tue, 13 Dec 2022 09:53:49 GMT
Etag: "a544a9d7597d35ae42e0ffd59e4673a380b8e141"
Cache-Control: max-age=322652,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcb1fb2ab51d-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4518027d41495b0faaf1fd1f94cd8582
d56ea38b5fff7027bfd2468c00e113883e4a7de5
e236eed168333f396114d44612998f1ecb9b58c2420959260167547daed54d77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147309
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:16 GMT
Etag: "6392f965-117"
Expires: Sun, 11 Dec 2022 09:01:25 GMT
Last-Modified: Fri, 09 Dec 2022 09:01:25 GMT
Server: nginx
Content-Length: 279
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d9c3300efee8885f6093634e45163641
2795eff676ec691a826542c3593d018a9f434a04
fe8d6a1e90cdc4ed08e14a60789750d142ed26620e3f7ca909cddfc9d2e2f156
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 03:58:27 GMT
Expires: Fri, 16 Dec 2022 03:58:26 GMT
Etag: "2795eff676ec691a826542c3593d018a9f434a04"
Cache-Control: max-age=560529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcb29c1db51d-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4518027d41495b0faaf1fd1f94cd8582
d56ea38b5fff7027bfd2468c00e113883e4a7de5
e236eed168333f396114d44612998f1ecb9b58c2420959260167547daed54d77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147309
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:16 GMT
Etag: "6392f965-117"
Expires: Sun, 11 Dec 2022 09:01:25 GMT
Last-Modified: Fri, 09 Dec 2022 09:01:25 GMT
Server: nginx
Content-Length: 279
displayvertising.com/MwZ.aspx?_=BAYAY5Nc-AFjk1z4gAGBAsAAICFUgUcAlgc0JZCbmdMkfbHTBdF_EHK_LOUu1vskp0Z5wQBGMEQCIFsD3wsNyXsO1GQ9r-pbYAmFg4NOtlnnGNX2VG_gGA0uAiB1H6Y7vf3n2rj9f9qpPcA7QFdIAG_D6KD0zmqV3IUzYQ&v=4&WCyaQLAi=4551251&minBid=&NHhGfmlK=3:1,0&DazHlpdI=&UgdYkRbE=&s=1280,1024,1,1280,1024,0
216.59.56.9200 OK 44 B URL HTTP/2 displayvertising.com/MwZ.aspx?_=BAYAY5Nc-AFjk1z4gAGBAsAAICFUgUcAlgc0JZCbmdMkfbHTBdF_EHK_LOUu1vskp0Z5wQBGMEQCIFsD3wsNyXsO1GQ9r-pbYAmFg4NOtlnnGNX2VG_gGA0uAiB1H6Y7vf3n2rj9f9qpPcA7QFdIAG_D6KD0zmqV3IUzYQ&v=4&WCyaQLAi=4551251&minBid=&NHhGfmlK=3:1,0&DazHlpdI=&UgdYkRbE=&s=1280,1024,1,1280,1024,0
IP 216.59.56.9:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /MwZ.aspx?_=BAYAY5Nc-AFjk1z4gAGBAsAAICFUgUcAlgc0JZCbmdMkfbHTBdF_EHK_LOUu1vskp0Z5wQBGMEQCIFsD3wsNyXsO1GQ9r-pbYAmFg4NOtlnnGNX2VG_gGA0uAiB1H6Y7vf3n2rj9f9qpPcA7QFdIAG_D6KD0zmqV3IUzYQ&v=4&WCyaQLAi=4551251&minBid=&NHhGfmlK=3:1,0&DazHlpdI=&UgdYkRbE=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Fri, 09 Dec 2022 16:06:16 GMT
X-Firefox-Spdy: h2
in-page-push.com/400/4119052
139.45.197.15200 OK 143 kB URL HTTP/2 in-page-push.com/400/4119052
IP 139.45.197.15:0
Size 143 kB (143214 bytes)
Hash dfc0c882eeae2389ee5d4d6f5568e130
55068bfcd18b2e2172c4bc6a4a05551d5630bdaf
4ae58cfccee60ed04995c8f748f267f91e19ba58fb4ab640b82939e36528d0e2
Analyzer Verdict Alert quad9 Sinkholed
GET /400/4119052 HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: application/javascript
x-trace-id: 9cf35796e2d86650d0b56f83b1b7424d
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=f9a4f0e5df254f05859216c6b3d57d93; expires=Sat, 09 Dec 2023 16:06:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e4b8e7040eebfb8e185403768fb073e9
2fbc724eb611397e01e37de80777d90050353e5c
8c3043c549ed118aabb47a3893a121b1ef98db5e50d41b38f9602509c95ae050
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C3043C549ED118AABB47A3893A121B1EF98DB5E50D41B38F9602509C95AE050"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10394
Expires: Fri, 09 Dec 2022 18:59:30 GMT
Date: Fri, 09 Dec 2022 16:06:16 GMT
Connection: keep-alive
vtb9ssdugr5v.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 vtb9ssdugr5v.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: vtb9ssdugr5v.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:16 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4518027d41495b0faaf1fd1f94cd8582
d56ea38b5fff7027bfd2468c00e113883e4a7de5
e236eed168333f396114d44612998f1ecb9b58c2420959260167547daed54d77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=147309
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:17 GMT
Etag: "6392f965-117"
Expires: Sun, 11 Dec 2022 09:01:26 GMT
Last-Modified: Fri, 09 Dec 2022 09:01:25 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
ad.a-ads.com/1468611?size=300x250
213.239.209.209200 OK 5.2 kB URL HTTP/2 ad.a-ads.com/1468611?size=300x250
IP 213.239.209.209:0
ASN #24940 Hetzner Online GmbH
Hash 60f51f29a0fe530053e4c875e74eb2c2
abf14ace2256207ea7faf4acb1a5917baebd8241
0d3e2550ec551f957a8019a947182ca579f5cd16e9413a35c717bc963afd3f0e
GET /1468611?size=300x250 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://mangagenki.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
azmin.manga18.us/uploads/manga/my-sisters-duty/chapters/chapter-57/01.jpg
172.67.163.72200 OK 242 kB URL HTTP/2 azmin.manga18.us/uploads/manga/my-sisters-duty/chapters/chapter-57/01.jpg
IP 172.67.163.72:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 719x4955, components 3\012- data
Size 242 kB (241568 bytes)
Hash febef6933235cc152e48e80fdcfa5779
7d5c2c7cee0fe919e909c2924242193651d4fe8f
cd503e45f7db93220743c9fa3bb3907b8f2406bdf550950d51cc99ad58384884
GET /uploads/manga/my-sisters-duty/chapters/chapter-57/01.jpg HTTP/1.1
Host: azmin.manga18.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: image/jpeg
content-length: 241568
last-modified: Sun, 04 Apr 2021 12:06:07 GMT
etag: "6069abaf-3afa0"
expires: Sun, 08 Jan 2023 16:06:16 GMT
cache-control: public, max-age=16070400, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=99CLuEN0iUCz%2F7TIQGpFqi2qRVCB6M3uR84%2F1CKD8bqCM7s%2BluehXA8HydnhUWRm9SThC7ZmxTfjE1GMlXRae2xdBBm%2FwvM5UCDX4e6DByw1N2vDIw7fQ8cGqf5moCKfrpDc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcb36e910b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash acea7cb44141792f5d84b0c9ab8c57e4
69f1e46739200324bd891063d17c7a7083f313b7
4c0d144b20ab8cf7fec972a66e08ed2b993121e9c4b6c88bbf0f3e7388f2b058
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C0D144B20AB8CF7FEC972A66E08ED2B993121E9C4B6C88BBF0F3E7388F2B058"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15682
Expires: Fri, 09 Dec 2022 20:27:39 GMT
Date: Fri, 09 Dec 2022 16:06:17 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b52208a27c12901a96bacccdfc82d4a5
ed6371e6e48962c53d3dbe969b2ed37f18f0583b
93681b21e8c2f2db40f11d83e0bdac896c641d351af75e77364038145a9fc900
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 12:52:25 GMT
Expires: Thu, 15 Dec 2022 12:52:24 GMT
Etag: "ed6371e6e48962c53d3dbe969b2ed37f18f0583b"
Cache-Control: max-age=506166,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcb4bef9b51d-OSL
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 558ba1099ee386b058ef55c80e7abc91
39f5519c4f35f8e2659d2f3afe8eaef785a188f0
48d1c6d3be0341905f2c338cdafbbe6bbf35658a9eabb41980982036f476fa69
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:17 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://mangagenki.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=16115b8a158b44e685d1186522765ac8; expires=Sat, 09 Dec 2023 16:06:17 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
azmin.manga18.us/uploads/manga/my-sisters-duty/chapters/chapter-57/02.jpg
172.67.163.72200 OK 505 kB URL HTTP/2 azmin.manga18.us/uploads/manga/my-sisters-duty/chapters/chapter-57/02.jpg
IP 172.67.163.72:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 719x4955, components 3\012- data
Size 505 kB (505147 bytes)
Hash 4fcd3cd6b533c981b919eb06dd8980fd
9d18b25989dea9c9283424e3d2db64709c9c516c
0d2c2d28998cfea4e1550889937cb7148a6bbb3fb3c95f6802f8c3ba94953416
GET /uploads/manga/my-sisters-duty/chapters/chapter-57/02.jpg HTTP/1.1
Host: azmin.manga18.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: image/jpeg
content-length: 505147
last-modified: Sun, 04 Apr 2021 12:06:09 GMT
etag: "6069abb1-7b53b"
expires: Sun, 08 Jan 2023 16:06:16 GMT
cache-control: public, max-age=16070400, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cU5%2F0aUX1l%2BaSjpH9By7JTbWsIXXOIuIJkxPD0vu%2F8q%2F9Bjt6MOdFmr2zdXM78mkEJzk7NeW1DBsvVRp%2FiUj0unxEXWyWAAxpfhAG1fj2lcQyfBpVa9R3Q2RO2L7zVqX3JOm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcb2bddd0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
172.64.104.21200 OK 5.2 kB IP 172.64.104.21:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash f3e75a80cf35519bffa38d2e3525a331
1e95dd231bb9a4730c6625d6390541c578238e71
c5824757801131dd7c4122bc08c6f9287dfbfd924939d43fc8f64a6bb2ef5d66
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:16 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QNo8PE3GXYbrIB%2BHjhau8h89JskRAz8oPt0ePgs4T9Dhr0ljhS81Rlu70nUjon%2FG68jK8v8DGne6jwAqKCafnJ%2B%2Bukk89vrARdEetgnAB7%2B9%2Focn0paoGFjjXlu1zA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcb36ac574ed-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
entitledbalcony.com/watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 entitledbalcony.com/watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1 HTTP/1.1
Host: entitledbalcony.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Fri, 09 Dec 2022 16:06:17 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangagenki.com
Access-Control-Allow-Origin: https://mangagenki.com
Access-Control-Allow-Credentials: true
Location: https://entitledbalcony.com/watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1&shu=d27663b2dc73f91ff6693283c4ae88d6912d5e64d26929074f50406a239dbc6ef774811f4719e26030945527a9b66384847708a66af9f7a25190e28a69e3203890ee0fb127ec6c9ec1320aeb80050f066ca04f&pst=1670602037&rmtc=t
Set-Cookie: u_pl=15485188; expires=Sat, 10 Dec 2022 16:06:17 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.RTyTB5Dp_A-m-_EmzlHCf2gxhpf06FR46BSHkd9Ww2s; expires=Fri, 09 Dec 2022 16:07:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1558b7cd1f296b1632ffe4ee5300e4f
Strict-Transport-Security: max-age=0; includeSubdomains
entitledbalcony.com/watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1&shu=d27663b2dc73f91ff6693283c4ae88d6912d5e64d26929074f50406a239dbc6ef774811f4719e26030945527a9b66384847708a66af9f7a25190e28a69e3203890ee0fb127ec6c9ec1320aeb80050f066ca04f&pst=1670602037&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 entitledbalcony.com/watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1&shu=d27663b2dc73f91ff6693283c4ae88d6912d5e64d26929074f50406a239dbc6ef774811f4719e26030945527a9b66384847708a66af9f7a25190e28a69e3203890ee0fb127ec6c9ec1320aeb80050f066ca04f&pst=1670602037&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2633)
Hash 1c74ce82db27fbed0ab61c153d0c4011
8d0b5ddc113b6f0ba501d4b29855f433e0dadbc5
1357ab7b52c71294cd8d862217d00ef0b4db4c65421bd4c6939c71ac4bad1d36
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.89351555288.js?key=2f7369526bc70cf9e1aac9c183b08809&kw=%5B%22my%22%2C%22sister%E2%80%99s%22%2C%22duty%22%2C%22chapter%22%2C%2257%22%2C%22-%22%2C%22mangagenki%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=d82446cb-551f-414b-9cc4-f47822c42bcd%3A2%3A1&shu=d27663b2dc73f91ff6693283c4ae88d6912d5e64d26929074f50406a239dbc6ef774811f4719e26030945527a9b66384847708a66af9f7a25190e28a69e3203890ee0fb127ec6c9ec1320aeb80050f066ca04f&pst=1670602037&rmtc=t HTTP/1.1
Host: entitledbalcony.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangagenki.com
Referer: https://mangagenki.com/
Connection: keep-alive
Cookie: u_pl=15485188; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTQ4NTE4OCwiayI6IjJmNzM2OTUyNmJjNzBjZjllMWFhYzljMTgzYjA4ODA5Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzI5ODY4LCJwaWQiOjIwMjc4MSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMiwiYWlkIjo1LCJwdCI6NCwicGsiOiJueWZpMWtyZiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL21hbmdhZ2Vua2kuY29tLyJ9fQ.RTyTB5Dp_A-m-_EmzlHCf2gxhpf06FR46BSHkd9Ww2s
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 09 Dec 2022 16:06:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mangagenki.com
Access-Control-Allow-Origin: https://mangagenki.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=d82446cb-551f-414b-9cc4-f47822c42bcd:2:1; expires=Fri, 16 Dec 2022 16:06:17 GMT; secure; SameSite=None
iprcc0f730520b3769387513eea32fc21535=3569806; expires=Fri, 09 Dec 2022 20:06:17 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 10 Dec 2022 16:06:17 GMT; secure; SameSite=None
uncs=1; expires=Sat, 10 Dec 2022 16:06:17 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 10 Dec 2022 16:06:17 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 10 Dec 2022 16:06:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7f30dde11ad6cb27a7a6c93178c1acc0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
in-page-push.com/500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:17 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://mangagenki.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 63a533e7b5caf59058266a837420c342
4eca831fb15dccf4eb608e983fe8b89250fc0313
d8904e4cc9a407e7c154cbbf6afe3985a55adcb878dacfb80a0e3cd92ea9703e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8904E4CC9A407E7C154CBBF6AFE3985A55ADCB878DACFB80A0E3CD92EA9703E"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13832
Expires: Fri, 09 Dec 2022 19:56:49 GMT
Date: Fri, 09 Dec 2022 16:06:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4fbea77a0d1d179d738cb7851746552e
8808e4b54c414ca5a58c5b859ff335d61b472a8c
414fa4b36451eb121315b4a80993f6632206eb5ea7fe8c65ddf65acfdf18ae15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4471
Cache-Control: max-age=123313
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:17 GMT
Etag: "63928a33-116"
Expires: Sun, 11 Dec 2022 02:21:30 GMT
Last-Modified: Fri, 09 Dec 2022 01:06:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.9200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:17 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sun, 11 Dec 2022 16:06:17 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
in-page-push.com/500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 10 kB URL HTTP/2 in-page-push.com/500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash 7bb84d5495eb44eeb1111a17c0a4a7fd
79b524b4b563880efe65e2eb56304b976af577a9
155b74d00c70264c760026d467d08428b3c216656c882b4e547027ce02c411e7
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4119052?excludes=&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=898&wfc=6&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Type: application/json
Origin: https://mangagenki.com
Connection: keep-alive
Cookie: OAID=f9a4f0e5df254f05859216c6b3d57d93
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:17 GMT
content-type: application/javascript
x-trace-id: 4cba156697c4b1483b0ba520145b2ca8
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://mangagenki.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=16115b8a158b44e685d1186522765ac8; expires=Sat, 09 Dec 2023 16:06:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
mangagenkicom.disqus.com/count.js
199.232.192.134200 OK 871 B URL HTTP/1.1 mangagenkicom.disqus.com/count.js
IP 199.232.192.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: mangagenkicom.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Mon, 05 Dec 2022 18:18:14 GMT
ETag: "638e35e6-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW3-C1
X-Amz-Cf-Id: bARQwIs7aCMo2DjwF6ght2P0UinTk1x1f7lwOtcWDUOGjDn_eUXo6A==
Cache-Control: public, max-age=300
Date: Fri, 09 Dec 2022 16:06:17 GMT
Age: 129
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&gjid=321973859&_gid=66618036.1670601977&_u=YAhAAUAAAAAAACAAI~&z=548921272
64.233.165.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&gjid=321973859&_gid=66618036.1670601977&_u=YAhAAUAAAAAAACAAI~&z=548921272
IP 64.233.165.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&gjid=321973859&_gid=66618036.1670601977&_u=YAhAAUAAAAAAACAAI~&z=548921272 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mangagenki.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 16:06:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b230774df3e2571f3cf3b2d2509bfed3
c4416e8937ff842d1030b7a8c71e5f90807b3743
116e25de65b5d8922ad0a630b520e14d9ea4e2477aec91d94ea125615a9f5db5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "116E25DE65B5D8922AD0A630B520E14D9EA4E2477AEC91D94EA125615A9F5DB5"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Fri, 09 Dec 2022 22:06:10 GMT
Date: Fri, 09 Dec 2022 16:06:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b230774df3e2571f3cf3b2d2509bfed3
c4416e8937ff842d1030b7a8c71e5f90807b3743
116e25de65b5d8922ad0a630b520e14d9ea4e2477aec91d94ea125615a9f5db5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "116E25DE65B5D8922AD0A630B520E14D9EA4E2477AEC91D94EA125615A9F5DB5"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21547
Expires: Fri, 09 Dec 2022 22:05:25 GMT
Date: Fri, 09 Dec 2022 16:06:18 GMT
Connection: keep-alive
mangagenkicom.disqus.com/embed.js
199.232.192.134200 OK 26 kB URL HTTP/1.1 mangagenkicom.disqus.com/embed.js
IP 199.232.192.134:0
File type ASCII text, with very long lines (32006)
Hash 738e865fbd8b3086fdd2fe9b8fe1c666
8ee19d416a2f76df44b3b4bc371f94856b63f7dc
0009da45ae514a04905ae5ae595b4dacba1d88ff6c1a314120d86aee7769c064
GET /embed.js HTTP/1.1
Host: mangagenkicom.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25675
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 16:06:18 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b5cba4e1962a1fe17c9021f3e418975a
01293d7e4084011451f7d17936ab2427504cdb1a
ecfe30d3abc32ca9f933303d75b2055642d3c7c8197af08fe2c314394699594b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:06:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.mangagenki.com/uploads/fbrfg/favicon-16x16.png
194.242.11.186200 OK 1.2 kB URL HTTP/2 cdn.mangagenki.com/uploads/fbrfg/favicon-16x16.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 0746a6b0c63b2a3d558214d749f84c7d
05affa00a3d030b2fd046583ba36ceffe56e254a
18b8588e7d877d2fb50266bba3e79cbc31173a9509bfa1a51962ea2f1f2620cb
GET /uploads/fbrfg/favicon-16x16.png HTTP/1.1
Host: cdn.mangagenki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Cookie: CaosGtag_ga_B30V9L7TWY=GS1.2.1670601974.1.0.1670601974.0.0.0; CaosGtag_ga=GA1.2.1014840703.1670601974
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:18 GMT
content-type: image/png
content-length: 1159
server: BunnyCDN-NO1-830
cdn-pullzone: 586936
cdn-uid: 1ae913a9-6376-406e-9400-0e9719c7bfba
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 18 Feb 2022 06:38:58 GMT
cdn-storageserver: DE-168
cdn-fileserver: 304
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/09/2022 16:06:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5fe3eeb0dde1e400a3b3c9f52b272687
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.mangagenki.com/uploads/fbrfg/apple-touch-icon.png
194.242.11.186200 OK 22 kB URL HTTP/2 cdn.mangagenki.com/uploads/fbrfg/apple-touch-icon.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a57447fbc264764bc2f91f4e70548c4
a74354a6f9ed64d2fc82bf8097d8f76e23248fb0
dd5e998d44a576587e3949e418fd68349efa6bbcb715f3e7d9f153edbfa340a4
GET /uploads/fbrfg/apple-touch-icon.png HTTP/1.1
Host: cdn.mangagenki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Cookie: CaosGtag_ga_B30V9L7TWY=GS1.2.1670601974.1.0.1670601974.0.0.0; CaosGtag_ga=GA1.2.1014840703.1670601974
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:18 GMT
content-type: image/png
content-length: 21648
server: BunnyCDN-NO1-830
cdn-pullzone: 586936
cdn-uid: 1ae913a9-6376-406e-9400-0e9719c7bfba
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 18 Feb 2022 06:38:57 GMT
cdn-storageserver: DE-169
cdn-fileserver: 306
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 12/09/2022 16:06:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 383d09fc18fb8a1c6b002acab88f652f
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-97688941-23&cid=1014840703.1670601974&jid=1505564848&_u=YAhAAUAAAAAAACAAI~&z=1466063536 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 16:06:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
disqus.com/embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default
151.101.192.134200 OK 2.8 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default
IP 151.101.192.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3050)
Hash 179fe3617249df628ee91bd8688a5cb9
3ba39c6548e1ea049808378d0e926b1d124c0038
86f50f340c3fa509de4115418b90aa509b24d7e5df6bc8a536f0396086761ed1
GET /embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2833
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Tue, 22 Mar 2022 11:58:42 GMT
ETag: W/"lounge:view:8561201673.b5da77db1319db133a283dfd6fc017c7.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 16:06:18 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/lounge.load.586cf16a4aea9b47994dd412bb125d5c.js
143.204.55.127200 OK 494 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.586cf16a4aea9b47994dd412bb125d5c.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (958), with no line terminators
Hash c8b6ef4c801e7c61e036ac4ec64a9ade
08806571cdcf1a96add7172ca1207fffb7fb77a8
4738eb9467fa77ffaeb08880c36d9e9a525eaa2b23aa51e719d5b2134eca990a
GET /next/embed/lounge.load.586cf16a4aea9b47994dd412bb125d5c.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 494
date: Thu, 08 Dec 2022 17:32:31 GMT
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
etag: "63921e52-1ee"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 08 Dec 2023 17:32:31 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ePdjHnUKGuLhThqK4XMS2RH0LhiquUg-yo9WBiCpGOeum400VG-SEA==
age: 81227
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=6046414
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=6046414
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=6046414 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:18 GMT
Cross-Origin-Resource-Policy: cross-origin
c.disquscdn.com/next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js
143.204.55.127200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32023)
Hash a58f398edd4052a2f77d20c403665265
76e10bfca2fbade39b914b9d31e2a50f1fa82ac6
9d119919293b66a0d450052b26c1b025e45c85b6f961ad114cd030a2e4f8e7c3
GET /next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94892
date: Thu, 01 Dec 2022 15:48:39 GMT
server: nginx
last-modified: Wed, 30 Nov 2022 00:18:36 GMT
etag: "6386a15c-172ac"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 01 Dec 2023 15:48:39 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _F7DSoUXpfEkGlPx8oG6pmURMbCYOis473FAHML2y4Fjnwpy1pSvzQ==
age: 692259
X-Firefox-Spdy: h2
tempest.services.disqus.com/ads-iframe/runative/?position=top&shortname=mangagenkicom&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23dddddd&colorScheme=dark&sourceUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&disqus_version=current
199.232.192.64200 OK 5.1 kB URL HTTP/1.1 tempest.services.disqus.com/ads-iframe/runative/?position=top&shortname=mangagenkicom&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23dddddd&colorScheme=dark&sourceUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&disqus_version=current
IP 199.232.192.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text
Hash fb38c8a2e87c1b43184a376c2ce63095
3615d7f5623131bed5b5416f0838c77eff7cf069
aa51a8c67e7f8a111577c47e98be5bf579e72689d4f6aca1e092e1353b9c945f
GET /ads-iframe/runative/?position=top&shortname=mangagenkicom&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23dddddd&colorScheme=dark&sourceUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&disqus_version=current HTTP/1.1
Host: tempest.services.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 5051
Server: openresty
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: *
X-Service: router
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 16:06:18 GMT
Age: 0
Vary: Accept-Encoding,
Cross-Origin-Resource-Policy: cross-origin
c.disquscdn.com/next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css
143.204.55.127200 OK 31 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css
IP 143.204.55.127:0
File type ASCII text, with very long lines (65469)
Hash 8740149e9ec4cfe444ca781bf595468b
d775519928f044edd384937593df38fc705c5ac7
281db86845fe36a5e1cdc6216825c9c8c0440d40ae4b0a456d51379f88b56102
GET /next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 30696
date: Thu, 08 Dec 2022 17:32:29 GMT
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
etag: "63921e52-77e8"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 08 Dec 2023 17:32:29 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WbJdw7CvIwdclQUmwxy5_cPdYUkBmphdckFbGGxA1G0WHqx0v-LIOw==
age: 81229
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.5018287d05b2fa3bc388022cb540d0b3.js
143.204.55.127200 OK 129 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.5018287d05b2fa3bc388022cb540d0b3.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32010)
Size 129 kB (128803 bytes)
Hash 5a81c7360480e8fc8e910c12674ef4d5
7f9acd8f11a6b2afa65dcdd94eb60fcc105eec65
fb74662483dd81e86ead53db38f83e665262286b894b2dfb086d51a30b601e97
GET /next/embed/lounge.bundle.5018287d05b2fa3bc388022cb540d0b3.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 128803
date: Thu, 08 Dec 2022 17:32:29 GMT
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
etag: "63921e52-1f723"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 08 Dec 2023 17:32:29 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U1quLDkvvtGLmUeM6f1Qul64a-A9h5UvQcRsK4avJcJ6Ues-65V1qQ==
age: 81229
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=886341
185.94.236.247200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=886341
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 59929e6974500ab52dd6df84f0adfe4a
6d2863d850f4fe7f0ee61ac344a536c5db8d8128
da1202d5a366fefc0152b6b132ed1cddc8f88a059d93fea47c0951463e469f12
GET /adshow.php?adzone=886341 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 16:06:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=e844fe1d459499ca4f0e673d959fc5e9; expires=Sat, 09-Dec-2023 16:06:16 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53989=1; expires=Sat, 10-Dec-2022 16:06:16 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MTExMTc7aToxNjcwODYxMTc2O30%3D; expires=Mon, 12-Dec-2022 16:06:16 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 12-Dec-2022 16:06:16 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
disqus.com/next/config.js
151.101.192.134200 OK 17 kB URL HTTP/1.1 disqus.com/next/config.js
IP 151.101.192.134:0
File type ASCII text, with very long lines (16920), with no line terminators
Hash 7f3b5c529f0bd62d1622f0c8cdcad1bc
b29162d54738bb30996c5c583bdce35c6240b97b
bcbd48f43365334fda690161fd9c04d1412944ce660125b731009b6e49824be8
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 16920
Server: nginx
Content-Type: application/javascript; charset=UTF-8
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:18 GMT
Age: 24
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
in-page-push.com/impression/X_bgVBcOIjklhUgGm-M6Q4En1QGIaGF3amiDlbv1vb9oVvgImsS1fIj1vLHsR8m2OwKgBsUKla16YjLrugwp0WMv083_wVlC-3YafepvQNKsBerR4iuZvnVPw6hQ_aoSE0AeInm1oZ2F1MhKYIsXNKCWiznJ-aWK4RBUXn_-nFYbPA3eExslPv8xZssGm0wgzWZncsSNrFvuFFUb6DDZXonZRZ7JjZzgJ-NS9pRxFmne8I1SjciQ-AuBeiTayW-exHAu0fXOpNK3gNTGAai87_pnxiY7o-kGYG9b_8a0cOR8AvnuY52gGzEztc888ct_dCXJoLKZ06G0aQvDegxoGH4PW6oWT3QWC58bP5-BkEv4Beou7rxn7LMQKflbCiFnp0ys6y23HInT_z1zRUDFKkGIytajHpbVbcCdDTv7vsLZVil2KscOtegnOywA7QxenxNsSMKX2AIMY_yugVC6anZ53-75Mr2oyHFTGYE0lHm7s3qO3fLwK-UfjdC0xDelkcwwrBoCxznELHx0KSD68xGbGs71VSV7UqBqLAmYXKqldyBxXk0QN6MsWZpTtG603U30PKl4fIcXg8F0DTJWJ0kM1pSqibRd?_z=4119052&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=10&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 43 B URL HTTP/2 in-page-push.com/impression/X_bgVBcOIjklhUgGm-M6Q4En1QGIaGF3amiDlbv1vb9oVvgImsS1fIj1vLHsR8m2OwKgBsUKla16YjLrugwp0WMv083_wVlC-3YafepvQNKsBerR4iuZvnVPw6hQ_aoSE0AeInm1oZ2F1MhKYIsXNKCWiznJ-aWK4RBUXn_-nFYbPA3eExslPv8xZssGm0wgzWZncsSNrFvuFFUb6DDZXonZRZ7JjZzgJ-NS9pRxFmne8I1SjciQ-AuBeiTayW-exHAu0fXOpNK3gNTGAai87_pnxiY7o-kGYG9b_8a0cOR8AvnuY52gGzEztc888ct_dCXJoLKZ06G0aQvDegxoGH4PW6oWT3QWC58bP5-BkEv4Beou7rxn7LMQKflbCiFnp0ys6y23HInT_z1zRUDFKkGIytajHpbVbcCdDTv7vsLZVil2KscOtegnOywA7QxenxNsSMKX2AIMY_yugVC6anZ53-75Mr2oyHFTGYE0lHm7s3qO3fLwK-UfjdC0xDelkcwwrBoCxznELHx0KSD68xGbGs71VSV7UqBqLAmYXKqldyBxXk0QN6MsWZpTtG603U30PKl4fIcXg8F0DTJWJ0kM1pSqibRd?_z=4119052&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=10&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert quad9 Sinkholed
GET /impression/X_bgVBcOIjklhUgGm-M6Q4En1QGIaGF3amiDlbv1vb9oVvgImsS1fIj1vLHsR8m2OwKgBsUKla16YjLrugwp0WMv083_wVlC-3YafepvQNKsBerR4iuZvnVPw6hQ_aoSE0AeInm1oZ2F1MhKYIsXNKCWiznJ-aWK4RBUXn_-nFYbPA3eExslPv8xZssGm0wgzWZncsSNrFvuFFUb6DDZXonZRZ7JjZzgJ-NS9pRxFmne8I1SjciQ-AuBeiTayW-exHAu0fXOpNK3gNTGAai87_pnxiY7o-kGYG9b_8a0cOR8AvnuY52gGzEztc888ct_dCXJoLKZ06G0aQvDegxoGH4PW6oWT3QWC58bP5-BkEv4Beou7rxn7LMQKflbCiFnp0ys6y23HInT_z1zRUDFKkGIytajHpbVbcCdDTv7vsLZVil2KscOtegnOywA7QxenxNsSMKX2AIMY_yugVC6anZ53-75Mr2oyHFTGYE0lHm7s3qO3fLwK-UfjdC0xDelkcwwrBoCxznELHx0KSD68xGbGs71VSV7UqBqLAmYXKqldyBxXk0QN6MsWZpTtG603U30PKl4fIcXg8F0DTJWJ0kM1pSqibRd?_z=4119052&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=10&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Cookie: OAID=16115b8a158b44e685d1186522765ac8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:18 GMT
content-type: image/gif
content-length: 43
x-trace-id: ce3735453b39555759dd6e8da6092e23
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
i.jads.co/network/user144161/53915-1669341990-0365458001669341990.gif
69.16.175.42200 OK 164 kB URL HTTP/2 i.jads.co/network/user144161/53915-1669341990-0365458001669341990.gif
IP 69.16.175.42:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 164 kB (164414 bytes)
Hash 018748440eec5693565aaf51afc1e477
d31d7f1f68641379f51d86d12c799bee0b568b90
cd5eb864e9de035d23952a5e01108af760d5d1c86b49e4248d292c5b2f724ff7
GET /network/user144161/53915-1669341990-0365458001669341990.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=e844fe1d459499ca4f0e673d959fc5e9; imps53989=1; juicy_data_1=YToxOntpOjE1MTExMTc7aToxNjcwODYxMTc2O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:19 GMT
etag: "1669341990"
cache-control: max-age=30308698
content-length: 164414
content-type: image/gif
last-modified: Fri, 25 Nov 2022 02:06:30 GMT
accept-ranges: bytes
x-hw: 1670601979.dop003.sk1.t,1670601979.cds014.sk1.hn,1670601979.cds016.sk1.c
X-Firefox-Spdy: h2
in-page-push.com/500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://mangagenki.com/
Origin: https://mangagenki.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:19 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://mangagenki.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
a.disquscdn.com/1668443441/images/noavatar92.png
199.232.198.49200 OK 1.6 kB URL HTTP/2 a.disquscdn.com/1668443441/images/noavatar92.png
IP 199.232.198.49:0
File type PNG image data, 92 x 92, 8-bit/color RGB, non-interlaced\012- data
Hash 675fb4b91ca717db030507f2d84bcfdf
c8728df74487f907230358a1b08ae1a1b25f9ed4
36ef66124133ca33c8b44c487293c3180e5ab681ff3cad3c728ea4f894ec3444
GET /1668443441/images/noavatar92.png HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-66c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 17 Dec 2022 15:17:21 GMT
cache-control: max-age=2592000
cross-origin-resource-policy: cross-origin
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 5jOcp7ZrxH_QP-anBdpxd4jymgR2jnU0w8efi16t4yWllUlIDXje4w==
date: Fri, 09 Dec 2022 16:06:19 GMT
age: 1903737
strict-transport-security: max-age=300; includeSubdomains
content-length: 1644
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.127200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Fri, 04 Nov 2022 03:33:20 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-3317"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 04 Nov 2023 03:33:20 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rocICz6HI_R0X2Bv5L8oZDkySu_5uBYd_-DgM-st7cM9ZdKDzLU6BQ==
age: 3069179
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
143.204.55.127200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 143.204.55.127:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Mon, 31 Oct 2022 00:55:21 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-b9b"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 31 Oct 2023 00:55:21 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f8WPmfBMJrHxlMzJC-ZcA1JgzmiOprRSGc3kfHT0KzmEHxvg1fPJGw==
age: 3424258
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.127200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.127:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.8a641259c3ce0d776498fcaa87e6df01.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Sat, 05 Nov 2022 01:16:36 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-6e3"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:16:36 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 34Mz939ZSgdyrhouOwtEwjyINZdsLkHAr4pArr7DCc_IQqxnqdoM-Q==
age: 2990983
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.127200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.127:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Sat, 05 Nov 2022 01:01:02 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:01:02 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3WNljR58s0PW6-qgvrMQ-HpIYxzYMvwXmEJRsRVTnhCYNpSFwCv2fw==
age: 2991917
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 30 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 190dd8df6cda54618610d8a56d2bd386
fdf025ed49aa8357cffd1adcea543538f79d53f9
e608f27f0c31dd644fd05a29b1e9193aaece711f7de2184ae9ec3f1ebbc16d79
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:15 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 09 Jan 2023 16:06:15 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 425489
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcab690d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
143.204.55.127200 OK 27 kB URL HTTP/2 c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32024)
Hash 0c2785ae737e4a3a6baf270c42954aaa
ba03fa7243d6e4f184c3f2f05f733f5f40b96cc3
75310b8dcb511e824684c40202fb6edb67136e7b747e2d42c71a628bce42c2f2
GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Fri, 28 Oct 2022 16:37:58 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-67d2"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 28 Oct 2023 16:37:58 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FFOwA8OEQyGTa_wj44iBV8rzdNOcdJNOtFXEVLyjLlYtWTmgrDWnlQ==
age: 3626901
X-Firefox-Spdy: h2
disqus.com/api/3.0/threadReactions/loadReactions?thread=8561201673&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.192.134200 OK 1.3 kB URL HTTP/1.1 disqus.com/api/3.0/threadReactions/loadReactions?thread=8561201673&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.192.134:0
File type JSON data\012- , ASCII text, with very long lines (1339), with no line terminators
Hash b6d357ee0fc9494992778a3f1eb8c861
e84298914635cb37bd1a91d1d4e5bcdf5a7a7ab8
a5a3b0ea59eb79807488eff585b5c810a6c9c5b5d3bdcdbe30d21f478ceb8dad
GET /api/3.0/threadReactions/loadReactions?thread=8561201673&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1339
Server: nginx
Content-Type: application/json
Cache-Control: stale-while-revalidate=30, max-age=60
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:19 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/upvote-512x512.png
143.204.55.127200 OK 8.2 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/upvote-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash 89ff513465e139d86c4a052f02d6dccf
781461f90f66ca20682e27f9062eabb4acfac039
ddc6aec4144b67f0a2a12d687f3c4b8a9faf7c445847d0e25dcb5bd1a9ba9018
GET /next/current/publisher-admin/assets/img/emoji/upvote-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8170
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:03:24 GMT
expires: Fri, 09 Dec 2022 16:08:11 GMT
cache-control: max-age=300, public
etag: "63921e52-1fea"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZZ5zqvsT86MGKaTq07eOHCgQEYyaDpxFz6LMvXjyWioBCBZNZpnY0A==
age: 188
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/funny-512x512.png
143.204.55.127200 OK 8.9 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/funny-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 80ec843281e6130a88e665c83c2c12d5
9c5f6596db508919719447b155b2483acf455918
20a91bd509668238b6af8e16475c5e2611bcd2861d0eec2e0d4f6815e81449bd
GET /next/current/publisher-admin/assets/img/emoji/funny-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8883
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:03:27 GMT
expires: Fri, 09 Dec 2022 16:08:27 GMT
cache-control: max-age=300, public
etag: "63921e52-22b3"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Rvc8yUsDSXLJN5ZoJriXjZjA0ezhKD6R5hH7LYCG372VZLjuCpxM6w==
age: 172
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/love-512x512.png
143.204.55.127200 OK 12 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/love-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 11d71f65e58bb5c9afb8534ba31c6f75
f6eda383c77467a03c7d8420e632f1a52840323d
e422b07ca1550e55cd90a518e910fd3cfb4d9337ea6092357f9761aa77ac9e33
GET /next/current/publisher-admin/assets/img/emoji/love-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 11910
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:03:24 GMT
expires: Fri, 09 Dec 2022 16:08:11 GMT
cache-control: max-age=300, public
etag: "63921e52-2e86"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fqWn9sUqM96jZR8wog6q8oPIelW5O0hfULU7fHjQJoDtslpLq1X18w==
age: 188
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/surprised-512x512.png
143.204.55.127200 OK 7.3 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/surprised-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 13431b9bca0ec3070b4277d7162d0755
7b2f254ac0fdf367c35f4c8dd4b14de44aedde52
4e14ce1bd0d4433eee84cbb16196a7a051126f07af888ef7f9d252120f32f907
GET /next/current/publisher-admin/assets/img/emoji/surprised-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7308
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:05:19 GMT
expires: Fri, 09 Dec 2022 16:10:19 GMT
cache-control: max-age=300, public
etag: "63921e52-1c8c"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dpeh026izo8XrrVkUK8GdLl1I34QUYbyi23TvRWxxLKGqu6KqFfeKQ==
age: 60
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/angry-512x512.png
143.204.55.127200 OK 21 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/angry-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash b45cab9606431ca5a8bf31869d1a6961
6e8a52f738ef316270abc1a3ee10be6531432d62
db865c8f3642f3485829c0ee0008fe04a32cc66af70867b39f60395a7fed3984
GET /next/current/publisher-admin/assets/img/emoji/angry-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 20675
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:05:56 GMT
expires: Fri, 09 Dec 2022 16:10:38 GMT
cache-control: max-age=300, public
etag: "63921e52-50c3"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NAPEzBX0sCGZR1Exxa0d_3Qc-5CgTWgZRWOY-NbxGgArBYvXamd8ig==
age: 41
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/sad-512x512.png
143.204.55.127200 OK 9.0 kB URL HTTP/2 c.disquscdn.com/next/current/publisher-admin/assets/img/emoji/sad-512x512.png
IP 143.204.55.127:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash e84a77b79c9a1423d57ef6cf7f6bb2d9
5877e999ab7ac53cce47c2de47311cb203834a0c
11c401a81e32b086bea3798c033009907b429fb601411da6ffc266b78184898a
GET /next/current/publisher-admin/assets/img/emoji/sad-512x512.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8986
server: nginx
last-modified: Thu, 08 Dec 2022 17:26:42 GMT
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 09 Dec 2022 16:04:20 GMT
expires: Fri, 09 Dec 2022 16:09:14 GMT
cache-control: max-age=300, public
etag: "63921e52-231a"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8P2jU0-zOa02aGSFkETbvZfn0xObQG3H6Q77RjXZjlfssxa-gKIozw==
age: 125
X-Firefox-Spdy: h2
offerimage.com/www/images/2bb21028a4f54de2489a2982dcdcbb1c.jpeg
104.22.32.172200 OK 15 kB URL HTTP/2 offerimage.com/www/images/2bb21028a4f54de2489a2982dcdcbb1c.jpeg
IP 104.22.32.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 192x192, components 3\012- data
Hash 2bb21028a4f54de2489a2982dcdcbb1c
bd0607fd0eceb4cfa5d75a8b8a0f8d9ee935c1fd
834dddc22c1ae7c62c7d8ff547a4061e38269023ff75e25f2b1bb72e9b3cf131
GET /www/images/2bb21028a4f54de2489a2982dcdcbb1c.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:19 GMT
content-type: image/jpeg
content-length: 14728
cache-control: max-age=86400
cf-bgj: h2pri
etag: "62b2c36b-3988"
expires: Sat, 10 Dec 2022 09:34:58 GMT
last-modified: Wed, 22 Jun 2022 07:23:23 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 23481
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 776efcc338d615dc-ARN
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=271&event=init_embed&thread=8561201673&forum=mangagenkicom&forum_id=6046414&imp=h0i73r39hn9sd&thread_slug=my_sisters_duty_chapter_57&user_type=anon&referrer=https%3A%2F%2Fmangagenki.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=271&event=init_embed&thread=8561201673&forum=mangagenkicom&forum_id=6046414&imp=h0i73r39hn9sd&thread_slug=my_sisters_duty_chapter_57&user_type=anon&referrer=https%3A%2F%2Fmangagenki.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=271&event=init_embed&thread=8561201673&forum=mangagenkicom&forum_id=6046414&imp=h0i73r39hn9sd&thread_slug=my_sisters_duty_chapter_57&user_type=anon&referrer=https%3A%2F%2Fmangagenki.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=mangagenkicom&t_u=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&t_d=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&t_t=My%20Sister%E2%80%99s%20Duty%20Chapter%2057&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:19 GMT
Cross-Origin-Resource-Policy: cross-origin
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1d026d7ed31ff2f214efdb0c121c397e
a2650334d99b1324ab45964d800c6dedc61d8a49
60d25829c100023bab28d17fddfb7e56e36c8fa0a35919555d510dd038586eff
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 08:45:59 GMT
Expires: Fri, 16 Dec 2022 08:45:58 GMT
Etag: "a2650334d99b1324ab45964d800c6dedc61d8a49"
Cache-Control: max-age=577778,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcc43e38b51d-OSL
cdn.runative-syndicate.com/sdk/v1/n.js
8.247.219.249200 OK 5.2 kB URL HTTP/2 cdn.runative-syndicate.com/sdk/v1/n.js
IP 8.247.219.249:0
File type ASCII text, with very long lines (591)
Hash e6b953ae4edfbe129269f196fe87eee9
eb99511c1d23000bc72b2c640bbcd5792eb431f2
eb6d42f0cdeddc023b69947db248be42bc66aa2da8c59178b7f22b528c4dd60f
GET /sdk/v1/n.js HTTP/1.1
Host: cdn.runative-syndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:19 GMT
content-type: application/javascript
content-length: 5220
last-modified: Wed, 23 Mar 2022 15:25:35 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"623b3bef-3202"
age: 10307220
accept-ranges: bytes
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=advertisement&provider=runative&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B160465%5D§ion=default&verb=load&advertisement_id=160465&forum_id=6046414
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=advertisement&provider=runative&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B160465%5D§ion=default&verb=load&advertisement_id=160465&forum_id=6046414
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=advertisement&provider=runative&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B160465%5D§ion=default&verb=load&advertisement_id=160465&forum_id=6046414 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:20 GMT
Cross-Origin-Resource-Policy: cross-origin
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash baaeb5e8b9177e7b58b75d854a291734
0e92eb4bb604871007c0b4f6d3bebabe3b326f70
1f1f515f7df659e7cd29bfe8f8a3b6c0e9fe1db80a9eb097325f369446f6afe4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 12:01:33 GMT
Expires: Tue, 13 Dec 2022 12:01:32 GMT
Etag: "0e92eb4bb604871007c0b4f6d3bebabe3b326f70"
Cache-Control: max-age=330312,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcc608ecb51d-OSL
cdn.run-syndicate.com/sdk/v1/n.css
8.247.219.249200 OK 8.3 kB URL HTTP/2 cdn.run-syndicate.com/sdk/v1/n.css
IP 8.247.219.249:0
File type ASCII text, with very long lines (8277), with no line terminators
Hash 37ebbc4b85fb5383d08547f5fe9d8d9f
99dac34980b1fd00028f76e782444bdf948724c5
24b59f4e4fbf1d4a988ffa478952ceb54e0b2f0774da926bcd2cc0376200dbfe
GET /sdk/v1/n.css HTTP/1.1
Host: cdn.run-syndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: text/css
content-length: 8277
etag: "6114dd75-2055"
last-modified: Thu, 12 Aug 2021 08:36:05 GMT
server: nginx
x-robots-tag: noindex, nofollow
age: 24254768
accept-ranges: bytes
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=runative§ion=default&verb=fail&adverb=provider_not_ready&forum_id=6046414
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=runative§ion=default&verb=fail&adverb=provider_not_ready&forum_id=6046414
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=h0i73r39hn9sd&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=mangagenkicom&zone=thread&version=586cf16a4aea9b47994dd412bb125d5c&page_url=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=runative§ion=default&verb=fail&adverb=provider_not_ready&forum_id=6046414 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 09 Dec 2022 16:06:20 GMT
Cross-Origin-Resource-Policy: cross-origin
poweredby.jads.co/adshow.php?adzone=886341
185.94.236.247200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=886341
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (410), with CRLF, LF line terminators
Hash 510c484c8c56e80c130e32179c7ce17a
62f21b4de2e7f87c81d5ff69fe12e4b4d9ddf437
8e89dca408769c9c9cb1d5a0d4d8e8083394fceca92554061d91f68901fe9bc7
GET /adshow.php?adzone=886341 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 16:06:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=66c144728702939d206ca05d41356784; expires=Sat, 09-Dec-2023 16:06:18 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps53989=1; expires=Sat, 10-Dec-2022 16:06:18 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1MTExMTc7aToxNjcwODYxMTc4O30%3D; expires=Mon, 12-Dec-2022 16:06:18 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 12-Dec-2022 16:06:18 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8b110897aa79176527358e344c9a4e95
2180eee05784bc9f15c62abfc5591843e2a184a8
e7d55ea21dfd6d91e0f2bf532929036ca9a4a4573d20549a1fe02770c68dcd05
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 03:56:21 GMT
Expires: Wed, 14 Dec 2022 03:56:20 GMT
Etag: "2180eee05784bc9f15c62abfc5591843e2a184a8"
Cache-Control: max-age=387599,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcc728850b51-OSL
lcdn.tsyndicate.com/images/0/3/8d1c15bf04a752f8d83ba4f4e56cd0a3d0c898/300x250.webp
8.247.219.121200 OK 8.0 kB URL HTTP/2 lcdn.tsyndicate.com/images/0/3/8d1c15bf04a752f8d83ba4f4e56cd0a3d0c898/300x250.webp
IP 8.247.219.121:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 90cf5210ad1c6f5076987a45b395a12b
20107e1f9b559fe123d939b3106b9c6495b8813c
fd8a1914f34a9001047c5ac77b912b82166fa892d1028fe4334ba49b3b2679fd
GET /images/0/3/8d1c15bf04a752f8d83ba4f4e56cd0a3d0c898/300x250.webp HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: image/webp
content-length: 7957
last-modified: Fri, 04 Mar 2022 12:31:22 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"6222069a-1efe"
age: 24204157
accept-ranges: bytes
X-Firefox-Spdy: h2
lcdn.tsyndicate.com/images/0/3/1e1d2d425a52ddf72f0c25d5aa0afae1425f5d/300x250.webp
8.247.219.121200 OK 5.6 kB URL HTTP/2 lcdn.tsyndicate.com/images/0/3/1e1d2d425a52ddf72f0c25d5aa0afae1425f5d/300x250.webp
IP 8.247.219.121:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c3e1271952fbedba04052dc912add56f
483d71951752a5e4f65221e6bd9e9759a159252e
f6ea70a1083f4c41fe0050293f80068326d0d633959a7cba52280bffdc811a21
GET /images/0/3/1e1d2d425a52ddf72f0c25d5aa0afae1425f5d/300x250.webp HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: image/webp
content-length: 5585
last-modified: Fri, 04 Mar 2022 12:31:24 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"6222069c-15ba"
age: 24204159
accept-ranges: bytes
X-Firefox-Spdy: h2
lcdn.tsyndicate.com/images/2/7/a98e6453e29cc7a26f5117a4d6e67b8d9c07b6/300x250.webp
8.247.219.121200 OK 5.0 kB URL HTTP/2 lcdn.tsyndicate.com/images/2/7/a98e6453e29cc7a26f5117a4d6e67b8d9c07b6/300x250.webp
IP 8.247.219.121:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 009c2ab8cddd443eb5716f5afa1b96d1
ca3dec257af75d9808b3d8d0a34839e025ec32b5
ea242ace0a9f5c923b8f78394c98212969a33246cf852af0e7fad77d1f4e1b8f
GET /images/2/7/a98e6453e29cc7a26f5117a4d6e67b8d9c07b6/300x250.webp HTTP/1.1
Host: lcdn.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: image/webp
content-length: 5035
last-modified: Fri, 04 Mar 2022 12:31:22 GMT
server: nginx
x-robots-tag: noindex, nofollow
content-encoding: gzip
vary: Accept-Encoding
etag: W/"6222069a-1394"
age: 24204164
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8b110897aa79176527358e344c9a4e95
2180eee05784bc9f15c62abfc5591843e2a184a8
e7d55ea21dfd6d91e0f2bf532929036ca9a4a4573d20549a1fe02770c68dcd05
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 03:56:21 GMT
Expires: Wed, 14 Dec 2022 03:56:20 GMT
Etag: "2180eee05784bc9f15c62abfc5591843e2a184a8"
Cache-Control: max-age=387599,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcc72eaeb521-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8b110897aa79176527358e344c9a4e95
2180eee05784bc9f15c62abfc5591843e2a184a8
e7d55ea21dfd6d91e0f2bf532929036ca9a4a4573d20549a1fe02770c68dcd05
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 16:06:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 03:56:21 GMT
Expires: Wed, 14 Dec 2022 03:56:20 GMT
Etag: "2180eee05784bc9f15c62abfc5591843e2a184a8"
Cache-Control: max-age=387599,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776efcc72d640b65-OSL
run-syndicate.com/do2/7bde4a562ff44144aeadb1c4b0b394cb/dynamic?format=jsonp&count=3&extid=mangagenkicom&w=1280&h=1024&adtype=label-under&callback=callback_dAbbv
168.119.1.208200 OK 7.5 kB URL HTTP/2 run-syndicate.com/do2/7bde4a562ff44144aeadb1c4b0b394cb/dynamic?format=jsonp&count=3&extid=mangagenkicom&w=1280&h=1024&adtype=label-under&callback=callback_dAbbv
IP 168.119.1.208:0
ASN #24940 Hetzner Online GmbH
Hash 59b274ca7b09bd5caa75e6eadefd60ff
986b45436264a31f0da63f41a7a98968ec270482
4741d10399aab567bb0c3e059d46e549e3a402c2f8023f8e4ed60f5711dce994
GET /do2/7bde4a562ff44144aeadb1c4b0b394cb/dynamic?format=jsonp&count=3&extid=mangagenkicom&w=1280&h=1024&adtype=label-under&callback=callback_dAbbv HTTP/1.1
Host: run-syndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:19 GMT
content-type: application/javascript; charset=utf-8
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-request-id: 6edd7e98e2d8cf8e
set-cookie: ts_uid=df2f7cc4-1b03-4efd-8fae-5f23e9866763; expires=Fri, 09 Jun 2023 16:06:19 GMT; domain=.run-syndicate.com; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.runative-syndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XAICOmjBkaOWy0yFHGhpkWNMTQkNEizAwbM1rIwDGjDA2PY2DcmDFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkGIljZ4sZMGiECYMDhkczYsT4hEjGzsKVOiuKgFNHrI4ZMmLYcAgRDpyFMmrYsJHj4Rw4E9-G1HnDxsMyeOh8-RtYRJswbs6EOVPGzZo0Y960GTumzV0dNGDEzfqTjJmFNmQ8FOPGDV6-NUKqbROZIlwZMB7CoY1Rh4yZNXKLqCOHDd4cN2Agx_GwjoyMaOjQgTNHx4sXdsjkMcPmjJoxefC4MeOijhvMb-S4gSMnzcEYMma4yNzmBRsXcNDA-QGnxxgdZdxRhx1xvCEGTzOEQQMNMYQRBwxc1AGDaDaQ0QNM8OFgAw4NxqAhbjLcQEYNNdwgRg0RRTihDDbM0YNUNhBmg4oUitEDiznEZkMMNLIohns9wOACDDxKSCEcQKZRhBpm1DBGFlmgUQMaUBAHBRpY6JHEEnVIsZsMVJAhRxRpUAEDG0ZcgYURMkRxRRNI3LFYFUvYQYUVc-RQRBBIoIFGFjLYMQcNUMgABxs2GDFDG_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_GMVTiDTRtGLQIcpzhmm81VCVyGdaLIcdCODAnQvUO-4yXhmqJ-cZCM3isEGg0_57HWQ_p3dAGIh3qWOcFJptMZS6zsheM5Q4ZyRDxHoKGCIqmcCKYA9IyIoc30KFg6WmBedJAh6tF7lvUM95BvoBCi2yGIWqDQYxigJy-iIAObXgODJMzwxriIAeqIcv1yvCXL7xshzIkUg1_IobGHCRsdWDDRHQDvZCJYAy7sZ4cCpaG-xGNBrG5AV3G0Bv49EEBAQE%3D&r=1&s=d79ce5d9cb84459c14dc34a967eeb9d04b99fd7e585f4fae62a8a4cff531bd9c1670601979&w=t&ir=177x150
136.243.134.97200 OK 35 B URL HTTP/2 pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XAICOmjBkaOWy0yFHGhpkWNMTQkNEizAwbM1rIwDGjDA2PY2DcmDFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkGIljZ4sZMGiECYMDhkczYsT4hEjGzsKVOiuKgFNHrI4ZMmLYcAgRDpyFMmrYsJHj4Rw4E9-G1HnDxsMyeOh8-RtYRJswbs6EOVPGzZo0Y960GTumzV0dNGDEzfqTjJmFNmQ8FOPGDV6-NUKqbROZIlwZMB7CoY1Rh4yZNXKLqCOHDd4cN2Agx_GwjoyMaOjQgTNHx4sXdsjkMcPmjJoxefC4MeOijhvMb-S4gSMnzcEYMma4yNzmBRsXcNDA-QGnxxgdZdxRhx1xvCEGTzOEQQMNMYQRBwxc1AGDaDaQ0QNM8OFgAw4NxqAhbjLcQEYNNdwgRg0RRTihDDbM0YNUNhBmg4oUitEDiznEZkMMNLIohns9wOACDDxKSCEcQKZRhBpm1DBGFlmgUQMaUBAHBRpY6JHEEnVIsZsMVJAhRxRpUAEDG0ZcgYURMkRxRRNI3LFYFUvYQYUVc-RQRBBIoIFGFjLYMQcNUMgABxs2GDFDG_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_GMVTiDTRtGLQIcpzhmm81VCVyGdaLIcdCODAnQvUO-4yXhmqJ-cZCM3isEGg0_57HWQ_p3dAGIh3qWOcFJptMZS6zsheM5Q4ZyRDxHoKGCIqmcCKYA9IyIoc30KFg6WmBedJAh6tF7lvUM95BvoBCi2yGIWqDQYxigJy-iIAObXgODJMzwxriIAeqIcv1yvCXL7xshzIkUg1_IobGHCRsdWDDRHQDvZCJYAy7sZ4cCpaG-xGNBrG5AV3G0Bv49EEBAQE%3D&r=1&s=d79ce5d9cb84459c14dc34a967eeb9d04b99fd7e585f4fae62a8a4cff531bd9c1670601979&w=t&ir=177x150
IP 136.243.134.97:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XAICOmjBkaOWy0yFHGhpkWNMTQkNEizAwbM1rIwDGjDA2PY2DcmDFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkGIljZ4sZMGiECYMDhkczYsT4hEjGzsKVOiuKgFNHrI4ZMmLYcAgRDpyFMmrYsJHj4Rw4E9-G1HnDxsMyeOh8-RtYRJswbs6EOVPGzZo0Y960GTumzV0dNGDEzfqTjJmFNmQ8FOPGDV6-NUKqbROZIlwZMB7CoY1Rh4yZNXKLqCOHDd4cN2Agx_GwjoyMaOjQgTNHx4sXdsjkMcPmjJoxefC4MeOijhvMb-S4gSMnzcEYMma4yNzmBRsXcNDA-QGnxxgdZdxRhx1xvCEGTzOEQQMNMYQRBwxc1AGDaDaQ0QNM8OFgAw4NxqAhbjLcQEYNNdwgRg0RRTihDDbM0YNUNhBmg4oUitEDiznEZkMMNLIohns9wOACDDxKSCEcQKZRhBpm1DBGFlmgUQMaUBAHBRpY6JHEEnVIsZsMVJAhRxRpUAEDG0ZcgYURMkRxRRNI3LFYFUvYQYUVc-RQRBBIoIFGFjLYMQcNUMgABxs2GDFDG_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_GMVTiDTRtGLQIcpzhmm81VCVyGdaLIcdCODAnQvUO-4yXhmqJ-cZCM3isEGg0_57HWQ_p3dAGIh3qWOcFJptMZS6zsheM5Q4ZyRDxHoKGCIqmcCKYA9IyIoc30KFg6WmBedJAh6tF7lvUM95BvoBCi2yGIWqDQYxigJy-iIAObXgODJMzwxriIAeqIcv1yvCXL7xshzIkUg1_IobGHCRsdWDDRHQDvZCJYAy7sZ4cCpaG-xGNBrG5AV3G0Bv49EEBAQE%3D&r=1&s=d79ce5d9cb84459c14dc34a967eeb9d04b99fd7e585f4fae62a8a4cff531bd9c1670601979&w=t&ir=177x150 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: text/plain; charset=utf-8
content-length: 35
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XEMBPGjIwxOWi0KGNDhpgWNHKYqdEihw0bLM3QIEOjTA0xNsSIiRFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkaInjxowWM2DQCBMGB4wyZszo9AmRjJ2FNGTAuFFRBJw6YhbOkBED5k84cBbKqPEyx8M5cCbqkGpj7Q0bD8vgofMFsGARbcK4ORPmTBk3a9KMedOG7Jg2eXXQgEFX608yZhaWfCjGjRu9NnLUcOkQ8mSKc9U-hNPmtg4ZMnDUgPGwjhw2enPcgJEDx4ziMjKioUMHzhwdL17YIZPHDJszasbkwePGjIs6bjS_keMGjpw0B2PImOFic5sXbFzAQQPnB5weY-hQxh112BHHG2LMoGAYNNAQQxhxwMBFHTCQZgMZPdgwg3w42IDDgzF0qJYMN5BRQw03iFFDRBNWKIMNc_RAmGE2tGihGD28KBttNr4oBnw9wOACDDH0aAMcQIoBhQ1RyGBHEnNYcYYcNGgxXxxIMDGFFFhgwQYULcRQxElSEFGHFTcsMcYXMNRBgxBBlNEEHnjUoAYZSTRRRRpqSBEHDTYUQcUZVBCRBRtGeJgFGm2YcYQeRAhxxBM13JGGFWVEEQcRc8TwBAyLpTGDGUaIIcUNT9zQYBAx5LHEG09QEYMVLWTRBhZOTBHFFPzJIUYeWKTRQhg1SGHGGlF8cUYVSRAhxZ5GfvbfaKXRYOQaZeRxx3oYGkmGDBnK4G0MPVAbg1bezhCktzTkyFds3tbQgxNPeGtDD3MAFgOgM9xQH2fe3tCDG2HQkYYdZXwxAx4xfBHZZGF8USSFFpKBQ7ne5iAjWbzp9dAbHf_2EBmcZfQwZZZhlsa_nT00RsELbeFgF7vJIZQOQhK5Wxh5tPEGGRRVyFpqOA8JQ21y2BGafMXVkUZGqMlgxg1jjCFSDGLAcFVNZpDRAg4cPVWDRzOU0dxLh81AVhqhiZBDDC7kIGRaLjREA1lyfMF2Rm_HPbcMdddwd3FhZNTEG3qkwQYbYbxQw5AgoHBFGm6QfMccIDhBBQjnDrkDCJO7YQMNn-Mx-udJM3T0kCmAcARSa7zxglrnEkkkCEakIQdYb-DxwrmPw-DZzSLQS9Z6X1SdkfEPsUF8EU6QdZAdX-yOHEMo3uCch0KLIMcZr_1WQ1Ujl0G9GHIshAMO5VPvM9C_ddgWGXK8IdfHColWc-95oPXQ7kQbCHWsg50XnKwyl8kMy15AljtkhEPCewgaHkiawYlgDknLSP3oULD1tAA9aaBDmB73LekR7yBfKKFFOsMQGyynMDFQjl9EQIc2RKeFLySSDHHwttNUrwyA-QLMcAgDGMrwJ2J4zEE4Ugc2TGQ3zqOIy3hDPTkULA32KxqgHPQcEYwBIwyRQR8UEBA%3D&r=1&s=fd53d10a19bbd688391026e73ef08a69ad22235eea3a7dd77f6d79c97e7ab9411670601979&w=t&ir=177x150
136.243.134.97200 OK 35 B URL HTTP/2 pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XEMBPGjIwxOWi0KGNDhpgWNHKYqdEihw0bLM3QIEOjTA0xNsSIiRFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkaInjxowWM2DQCBMGB4wyZszo9AmRjJ2FNGTAuFFRBJw6YhbOkBED5k84cBbKqPEyx8M5cCbqkGpj7Q0bD8vgofMFsGARbcK4ORPmTBk3a9KMedOG7Jg2eXXQgEFX608yZhaWfCjGjRu9NnLUcOkQ8mSKc9U-hNPmtg4ZMnDUgPGwjhw2enPcgJEDx4ziMjKioUMHzhwdL17YIZPHDJszasbkwePGjIs6bjS_keMGjpw0B2PImOFic5sXbFzAQQPnB5weY-hQxh112BHHG2LMoGAYNNAQQxhxwMBFHTCQZgMZPdgwg3w42IDDgzF0qJYMN5BRQw03iFFDRBNWKIMNc_RAmGE2tGihGD28KBttNr4oBnw9wOACDDH0aAMcQIoBhQ1RyGBHEnNYcYYcNGgxXxxIMDGFFFhgwQYULcRQxElSEFGHFTcsMcYXMNRBgxBBlNEEHnjUoAYZSTRRRRpqSBEHDTYUQcUZVBCRBRtGeJgFGm2YcYQeRAhxxBM13JGGFWVEEQcRc8TwBAyLpTGDGUaIIcUNT9zQYBAx5LHEG09QEYMVLWTRBhZOTBHFFPzJIUYeWKTRQhg1SGHGGlF8cUYVSRAhxZ5GfvbfaKXRYOQaZeRxx3oYGkmGDBnK4G0MPVAbg1bezhCktzTkyFds3tbQgxNPeGtDD3MAFgOgM9xQH2fe3tCDG2HQkYYdZXwxAx4xfBHZZGF8USSFFpKBQ7ne5iAjWbzp9dAbHf_2EBmcZfQwZZZhlsa_nT00RsELbeFgF7vJIZQOQhK5Wxh5tPEGGRRVyFpqOA8JQ21y2BGafMXVkUZGqMlgxg1jjCFSDGLAcFVNZpDRAg4cPVWDRzOU0dxLh81AVhqhiZBDDC7kIGRaLjREA1lyfMF2Rm_HPbcMdddwd3FhZNTEG3qkwQYbYbxQw5AgoHBFGm6QfMccIDhBBQjnDrkDCJO7YQMNn-Mx-udJM3T0kCmAcARSa7zxglrnEkkkCEakIQdYb-DxwrmPw-DZzSLQS9Z6X1SdkfEPsUF8EU6QdZAdX-yOHEMo3uCch0KLIMcZr_1WQ1Ujl0G9GHIshAMO5VPvM9C_ddgWGXK8IdfHColWc-95oPXQ7kQbCHWsg50XnKwyl8kMy15AljtkhEPCewgaHkiawYlgDknLSP3oULD1tAA9aaBDmB73LekR7yBfKKFFOsMQGyynMDFQjl9EQIc2RKeFLySSDHHwttNUrwyA-QLMcAgDGMrwJ2J4zEE4Ugc2TGQ3zqOIy3hDPTkULA32KxqgHPQcEYwBIwyRQR8UEBA%3D&r=1&s=fd53d10a19bbd688391026e73ef08a69ad22235eea3a7dd77f6d79c97e7ab9411670601979&w=t&ir=177x150
IP 136.243.134.97:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XEMBPGjIwxOWi0KGNDhpgWNHKYqdEihw0bLM3QIEOjTA0xNsSIiRFDxMMwdcZkHFMjxpgyR2G0GEMmRhmUY2bkaInjxowWM2DQCBMGB4wyZszo9AmRjJ2FNGTAuFFRBJw6YhbOkBED5k84cBbKqPEyx8M5cCbqkGpj7Q0bD8vgofMFsGARbcK4ORPmTBk3a9KMedOG7Jg2eXXQgEFX608yZhaWfCjGjRu9NnLUcOkQ8mSKc9U-hNPmtg4ZMnDUgPGwjhw2enPcgJEDx4ziMjKioUMHzhwdL17YIZPHDJszasbkwePGjIs6bjS_keMGjpw0B2PImOFic5sXbFzAQQPnB5weY-hQxh112BHHG2LMoGAYNNAQQxhxwMBFHTCQZgMZPdgwg3w42IDDgzF0qJYMN5BRQw03iFFDRBNWKIMNc_RAmGE2tGihGD28KBttNr4oBnw9wOACDDH0aAMcQIoBhQ1RyGBHEnNYcYYcNGgxXxxIMDGFFFhgwQYULcRQxElSEFGHFTcsMcYXMNRBgxBBlNEEHnjUoAYZSTRRRRpqSBEHDTYUQcUZVBCRBRtGeJgFGm2YcYQeRAhxxBM13JGGFWVEEQcRc8TwBAyLpTGDGUaIIcUNT9zQYBAx5LHEG09QEYMVLWTRBhZOTBHFFPzJIUYeWKTRQhg1SGHGGlF8cUYVSRAhxZ5GfvbfaKXRYOQaZeRxx3oYGkmGDBnK4G0MPVAbg1bezhCktzTkyFds3tbQgxNPeGtDD3MAFgOgM9xQH2fe3tCDG2HQkYYdZXwxAx4xfBHZZGF8USSFFpKBQ7ne5iAjWbzp9dAbHf_2EBmcZfQwZZZhlsa_nT00RsELbeFgF7vJIZQOQhK5Wxh5tPEGGRRVyFpqOA8JQ21y2BGafMXVkUZGqMlgxg1jjCFSDGLAcFVNZpDRAg4cPVWDRzOU0dxLh81AVhqhiZBDDC7kIGRaLjREA1lyfMF2Rm_HPbcMdddwd3FhZNTEG3qkwQYbYbxQw5AgoHBFGm6QfMccIDhBBQjnDrkDCJO7YQMNn-Mx-udJM3T0kCmAcARSa7zxglrnEkkkCEakIQdYb-DxwrmPw-DZzSLQS9Z6X1SdkfEPsUF8EU6QdZAdX-yOHEMo3uCch0KLIMcZr_1WQ1Ujl0G9GHIshAMO5VPvM9C_ddgWGXK8IdfHColWc-95oPXQ7kQbCHWsg50XnKwyl8kMy15AljtkhEPCewgaHkiawYlgDknLSP3oULD1tAA9aaBDmB73LekR7yBfKKFFOsMQGyynMDFQjl9EQIc2RKeFLySSDHHwttNUrwyA-QLMcAgDGMrwJ2J4zEE4Ugc2TGQ3zqOIy3hDPTkULA32KxqgHPQcEYwBIwyRQR8UEBA%3D&r=1&s=fd53d10a19bbd688391026e73ef08a69ad22235eea3a7dd77f6d79c97e7ab9411670601979&w=t&ir=177x150 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:20 GMT
content-type: text/plain; charset=utf-8
content-length: 35
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
mangagenki.com/my-sisters-duty-chapter-57/
188.114.96.1200 OK 0 B URL HTTP/2 mangagenki.com/my-sisters-duty-chapter-57/
IP 188.114.96.1:0
GET /my-sisters-duty-chapter-57/ HTTP/1.1
Host: mangagenki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 09 Dec 2022 16:06:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
content-security-policy: upgrade-insecure-requests;
x-xss-protection: 0, 1; mode=block
x-content-type-options: nosniff, nosniff
referrer-policy: strict-origin-when-cross-origin
last-modified: Fri, 09 Dec 2022 16:00:33 GMT
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ThcU%2BIhIyabRgoVB21TLlt2uFT%2BvY9qWNHEvVKbt0y0uMv2TBrg6BAGSfgBEYyHOnXnQCjGyjFNdBB7BADbsAxaIWX0n9J6aUFB41OVng%2F0of0yXWnjRfWRxE4XnllaKgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776efca51b26b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Fira+Sans:400,400i,500,500i,600,600i,700,700i&display=swap
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Fira+Sans:400,400i,500,500i,600,600i,700,700i&display=swap
IP 142.250.74.138:0
GET /css?family=Fira+Sans:400,400i,500,500i,600,600i,700,700i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mangagenki.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 16:06:15 GMT
date: Fri, 09 Dec 2022 16:06:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in-page-push.com/500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4119052?excludes=16043383&oaid=16115b8a158b44e685d1186522765ac8&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=861&wfc=11&pl=https%3A%2F%2Fmangagenki.com%2Fmy-sisters-duty-chapter-57%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Content-Type: application/json
Origin: https://mangagenki.com
Connection: keep-alive
Cookie: OAID=16115b8a158b44e685d1186522765ac8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:19 GMT
content-type: application/javascript
x-trace-id: f1da2074fe488f10228107d8c1456f30
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://mangagenki.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=16115b8a158b44e685d1186522765ac8; expires=Sat, 09 Dec 2023 16:06:19 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.itskiddien.club/apu.php?zoneid=4119265
139.45.197.236200 OK 0 B URL HTTP/2 cdn.itskiddien.club/apu.php?zoneid=4119265
IP 139.45.197.236:0
GET /apu.php?zoneid=4119265 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangagenki.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 16:06:17 GMT
content-type: application/javascript
x-trace-id: 274ea0af491b9fe1f22a8ecfb8cc083c
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=535b01a03d3642d28c4ffe606d8674c1; expires=Sat, 09 Dec 2023 16:06:16 GMT; path=/; secure; SameSite=None
oaidts=1670601976; expires=Sat, 09 Dec 2023 16:06:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2