kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
172.67.75.118301 Moved Permanently 0 B URL HTTP/1.1 kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
IP 172.67.75.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 14:36:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 15:36:16 GMT
Location: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cSCtn%2BH65mtTZZ%2BcBMHZfYPgmWdrCRkvHmNa3cu2G40yEGP%2FG2hdXwOn5XR3RuRPolS1fRiwRu0vm%2BFh%2FRVeyj2aNqmo9kUH5Gu7J79meNyp6cwoXbCqiuH%2FR1LFySc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c131d7a6e1c02-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2762
Expires: Tue, 29 Nov 2022 15:22:19 GMT
Date: Tue, 29 Nov 2022 14:36:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2004
Cache-Control: max-age=160098
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:17 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:04:35 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5174
Expires: Tue, 29 Nov 2022 16:02:31 GMT
Date: Tue, 29 Nov 2022 14:36:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 14:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1102
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: U0ki6gCHJdT+MCpF8BF1ThD0bF5+/mkQyrsqqYJocP9MA3hzWsEBE8IBEWuOtdYwtOV5slYuVJU=
x-amz-request-id: J6X232Q3DR4GZF0Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 13:45:29 GMT
age: 3048
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2fa52e50fd162325f880c9970dfc5ef2
50ec98e89316425801741e51a17ba5e34f86bff1
0f2a8cca67134d7d7005eab0a2a29ed67a518e8a396dd7e4f943f7172eb7c825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: max-age=115962
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:17 GMT
Etag: "63852188-116"
Expires: Wed, 30 Nov 2022 22:48:59 GMT
Last-Modified: Mon, 28 Nov 2022 21:00:56 GMT
Server: ECS (amb/6B84)
X-Cache: HIT
Content-Length: 278
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 14:08:56 GMT
cache-control: public,max-age=3600
age: 1641
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6057
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:17 GMT
Last-Modified: Tue, 29 Nov 2022 12:55:20 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
kimcartoon.li/Content/images/user-small.png
104.26.11.167200 OK 3.5 kB URL HTTP/2 kimcartoon.li/Content/images/user-small.png
IP 104.26.11.167:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 06f587f4626e1e5670e9ad945ccbe7e0
6fefc83c36069f0260ae7deef360972b473c8887
d660eab52c2636d2de2a42173f071af45892b035a5fe65a0b4691b84d8a55495
GET /Content/images/user-small.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: image/png
content-length: 3542
last-modified: Thu, 12 Mar 2015 15:26:43 GMT
etag: "b08fc1f1d85cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CZr77K92UuTge3spYJpWswHluzITjGOwuUWblADQTckCpCt4k3Mi4HE%2FM5CigiuYZPWe28ibK3AdzvcrwR%2F7aieGDD%2FGnR2p8j4aCF%2B2CXNnfJpi6OmGu6n5iLtrEKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323f8f5b517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/adb.png
104.26.11.167200 OK 6.6 kB URL HTTP/2 kimcartoon.li/Content/images/adb.png
IP 104.26.11.167:0
File type PNG image data, 126 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 3006c4e4951895028b25c6ae7068b142
35e9d1c0cf53568a613166e4af699b880ce96cc4
1bc0a5b35eabe7e056ae4f57e798c92415310942a93deb703f6e985cea44792f
GET /Content/images/adb.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: image/png
content-length: 6568
last-modified: Thu, 18 Apr 2019 02:46:52 GMT
etag: "076ffa90f5d41:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1krMJ18GV9MsJWRYchoPpav2lto%2FFGxEnMpn7cOrf1zjrz3yvaa8lwde9IlocLiWbikVSqXGExq7QglhlHEJbWtPdO9%2BeP5ho6Y5hrrX5bqsDwF4S0tK%2BJrv%2Bg1TRIo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323f8f0b517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/read.png
104.26.11.167200 OK 4.2 kB URL HTTP/2 kimcartoon.li/Content/images/read.png
IP 104.26.11.167:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash a852c6621f4c24da47e0d5873bec25cb
bc085d68ab075436e504b023bf49ad21497cd7ee
92e3577523bda5413fa3d9b324eef4248416f70f95cfac5090ede23969ed9f05
GET /Content/images/read.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: image/png
content-length: 4224
last-modified: Thu, 12 Mar 2015 15:28:19 GMT
etag: "502ee02ad95cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mlM3DrOEidrNyC1HoERr3p5s8sUCueNFRIlHxst7XmNM14UpurqOoWhUpJm97WAmxEIy7ZZxjJq8DlBvXgcF44hQPjjHLMOfideVUycI6xZFRS9iifdaDxzyi3GCMOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323f8feb517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/next.png
104.26.11.167200 OK 3.6 kB URL HTTP/2 kimcartoon.li/Content/images/next.png
IP 104.26.11.167:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 75ca4741bf93724b212cd865e647b4ba
70afb01cfe1704cc25355ca96cf83326dc46d716
5a68c044354e18b0d36c6783c73776df4b405952f8112ddda2cfb441008d35f2
GET /Content/images/next.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: image/png
content-length: 3615
last-modified: Thu, 12 Mar 2015 15:28:18 GMT
etag: "30e99f2ad95cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4923
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E8hxWefmfQhb3xy2HrT8P1CVtGFzu5%2BFLwSXceQG04InazlkuS0P0ebmmuRZ1nByTNoId2lYsVwDjDyg0ogs6Obw5txl%2BCvD%2F9rwHYsdv%2BrvAUfEPlKZar7d8dYPZJ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323f900b517-OSL
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.7.min.js
69.16.175.10200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.7.min.js
IP 69.16.175.10:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 252414e4e6d318c579e9c1221f0e818d
9f8c9f042732ecf4ebb9a16cf141ce9af983e2e1
740b6c679f0d1e9b684a6f27877415999d332b5be6e82b0afa038ba5a9458851
GET /jquery-1.7.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-encoding: gzip
content-length: 33254
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16f44"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669732577.dop009.sk1.t,1669732577.cds242.sk1.hn,1669732577.cds237.sk1.c
X-Firefox-Spdy: h2
ws.sharethis.com/button/buttons.js
54.230.111.32200 OK 17 kB URL HTTP/2 ws.sharethis.com/button/buttons.js
IP 54.230.111.32:0
File type ASCII text, with very long lines (60851), with no line terminators
Hash 6df1e6fb302d1bcb35d898105f0327de
2336688fde43d37fc38dbd842b76f728d7423034
3acec848060440ee2c01f063023d2cc0122ad46f1de910ca0738e6715a6c2e67
GET /button/buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 16989
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Tue, 29 Nov 2022 02:30:12 GMT
cache-control: max-age=259200
expires: Fri, 02 Dec 2022 02:30:10 GMT
etag: W/"634f1855-edb3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8h8I4GkSTRy7EyVaL337VcWOOxcAzj0UlIJs10sliOPNnY4zjhrCkw==
age: 43567
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
kimcartoon.li/Scripts/jquery.allofthelights-min.js?v=4
104.26.11.167200 OK 2.4 kB URL HTTP/2 kimcartoon.li/Scripts/jquery.allofthelights-min.js?v=4
IP 104.26.11.167:0
File type HTML document, ASCII text, with very long lines (5272), with CRLF, LF line terminators
Hash 85f02d9cc3478bd04ea89ef6f05c074b
b6761684f64ba9c31559440424d79d44da38ae4a
3db90b896dbc489ca8d7a95e115ec0383838b6b655eb747878f8acf24a4268fe
GET /Scripts/jquery.allofthelights-min.js?v=4 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
last-modified: Wed, 15 Mar 2017 10:14:29 GMT
etag: W/"904af0ee749dd21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1305
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2BBCRXrmPP9Qot0KGihGBz%2BXYMTCGDrH2OSe6pT1qVajRYCx5v1APMgqvT9gExorbsac5W5dDdwdCpxLTPu4xdzRq8jq8yoPOwJjdLNL%2B%2BpEktUk6N%2BR1m3al7tP8jA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8cbb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b79ea9b96dde4a1345413ee3e7ef448
7626df61b55e6ce1487391f4c3097fcd5fd51dfc
204b228ca0a1787cb73a6bcfa80e8484b7b287c8cff29d12092560b697ac1d90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "204B228CA0A1787CB73A6BCFA80E8484B7B287C8CFF29D12092560B697AC1D90"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1585
Expires: Tue, 29 Nov 2022 15:02:43 GMT
Date: Tue, 29 Nov 2022 14:36:18 GMT
Connection: keep-alive
kimcartoon.li/Content/images/body_bg.gif
104.26.11.167200 OK 11 kB URL HTTP/2 kimcartoon.li/Content/images/body_bg.gif
IP 104.26.11.167:0
File type GIF image data, version 89a, 160 x 152\012- data
Hash 4a57be689c5606084384fa4e4146f1d1
234c8c86ad8509e5b717a64ad8978ff428b20077
07b968f6566378b91936898db46bf0c5024513658194a8f66aa4847fd9840b3d
GET /Content/images/body_bg.gif HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/gif
content-length: 11287
last-modified: Fri, 24 Mar 2017 02:58:47 GMT
etag: "808d5a8e4aa4d21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxMSjvcGL1RyjREhjZR%2Fr9z8n%2BoOQWqCxQgIFFKUu45RuVR8Ktf76X7tg6dFR%2FwCE%2FHAPANqBKiO00d8R%2FF0NKrde8vfmJw5CRNPwzyVV%2BmZYMUzAP5qE3VjnlkZznM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1324d9f6b517-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-X04565JYJY
142.250.74.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-X04565JYJY
IP 142.250.74.168:0
File type ASCII text, with very long lines (5378)
Hash 6078aa0520e947e972e8106763be5087
1daba7fa39ed49c78ffb206d8c9aacf72706a444
f74bfbbcc8855f650535949f3e2d2cb7cf79a98006e9a3fa4eed84219bfb2aec
GET /gtag/js?id=G-X04565JYJY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 14:36:18 GMT
expires: Tue, 29 Nov 2022 14:36:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66641
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vl.mikedcavish.com/r636a21288f8b8636a21288f8b9/10790
172.255.6.87200 OK 25 B URL HTTP/1.1 vl.mikedcavish.com/r636a21288f8b8636a21288f8b9/10790
IP 172.255.6.87:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /r636a21288f8b8636a21288f8b9/10790 HTTP/1.1
Host: vl.mikedcavish.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://kimcartoon.li
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Wed, 30-Nov-2022 14:36:18 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Wed, 30-Nov-2022 14:36:18 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c7Y8mzpUFHOaCqIoXihlqg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8aMBGvS2+xkmNJi1aU2u/37DxZg=
kimcartoon.li/Content/images/search.png
104.26.11.167200 OK 2.5 kB URL HTTP/2 kimcartoon.li/Content/images/search.png
IP 104.26.11.167:0
File type PNG image data, 90 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 69569f9472150c03c285ad6a460a1d51
9d72265b9512bab1db1d1ace9ca72182d677d675
872ef2eb7e062c1cea3fb5e7a4c1e5553818d68fc2d0b476c3af20baae42df89
GET /Content/images/search.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/png
content-length: 2539
last-modified: Thu, 12 Mar 2015 15:28:17 GMT
etag: "50b5e2ad95cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q9iM9btwVMRcDtyMe%2Fruwc8iJ95n5f%2BvB90FfkS2gNYQMxu%2F6tEXS%2FPojMh0tjvrwmX7BVtoiRLyA5ggZwDaZMHabDDMD7L%2BwkM6ldpsCAAfVjd2xVYuiOKQxIxoSrs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1326bd3eb517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/tpl_input_bg.gif
104.26.11.167200 OK 3.5 kB URL HTTP/2 kimcartoon.li/Content/images/tpl_input_bg.gif
IP 104.26.11.167:0
File type GIF image data, version 89a, 300 x 20\012- data
Hash fab26801ea77c5ba5352192947077418
1b0a4b3c8d1c838856d7df7f623893256fbcc9c9
ba233b29c19c0e9fc90d01b572c05cbc0844ba9595eca12d66f704ffbfa13424
GET /Content/images/tpl_input_bg.gif HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/gif
content-length: 3451
last-modified: Thu, 12 Mar 2015 15:26:43 GMT
etag: "10f1c3f1d85cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QjBqyv70ZjJknBMQMBjTpyF3AuqanAzI1AMZ3azg%2FEES2%2FaH0DNIy2PYRc5A9zBWX0ytVEDjjY%2FKAL8ge7lVIS3nb1r3dBWe%2BLtR0td%2BtlJJM1AitpNVC5GB1MQrh20%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1326dd57b517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/plus.png
104.26.11.167200 OK 3.2 kB URL HTTP/2 kimcartoon.li/Content/images/plus.png
IP 104.26.11.167:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 6111e62cd0f9c8ee1dea22a93969cfe9
e79574b8034fdad4357ad70cfceaa469090e2fb1
9b6c131e8583746c21be515c3dea1f7094de98c7eb4d88b4c13a02191ce5d23c
GET /Content/images/plus.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/png
content-length: 3178
last-modified: Sun, 18 Dec 2016 00:43:58 GMT
etag: "529a9d1c758d21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2081
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RomsixVhVtGjt5b5NarYiZ2%2FsacYJUTTOAMno8UQFR7M9kFZsgjvF0Cnfmse0HvW3egiAZrppWX6Nj66qzitLfAudzkL27PXjxnKlOKh%2FjTkpGXgiUDOavoS3RNcQwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1326dd60b517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/logo.png?v=4
104.26.11.167200 OK 21 kB URL HTTP/2 kimcartoon.li/Content/images/logo.png?v=4
IP 104.26.11.167:0
File type PNG image data, 300 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash be0695e5db9e2a7647d96127ceadbab1
aaf1fa2ecc4377231e1886c3b3e865274b807247
e11e5b545c945273300b9eea5835e2735eb06781ee9e879f90dd8ed9522052c8
GET /Content/images/logo.png?v=4 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/png
content-length: 20997
last-modified: Mon, 29 Jan 2018 01:16:36 GMT
etag: "07276ce9e98d31:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q0JO87Pa2292Y6P1AJNAw%2BPNYccWIg2Ko6NuZ%2FNx5FFv5q%2BKxigbmCos%2Fvqn3EIm0XArnj2tPm2mIPknAAqbevimjVZOCKVO8VOGsXyYRs0R4bHYOgU92tQOI%2FRLtTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1326dd5fb517-OSL
X-Firefox-Spdy: h2
kimcartoon.li/Content/font/fontawesome-webfont.ttf
104.26.11.167200 OK 166 kB URL HTTP/2 kimcartoon.li/Content/font/fontawesome-webfont.ttf
IP 104.26.11.167:0
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size 166 kB (165548 bytes)
Hash b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8
GET /Content/font/fontawesome-webfont.ttf HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: application/octet-stream
content-length: 165548
last-modified: Thu, 22 Dec 2016 08:50:34 GMT
etag: "0291a75305cd21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4720
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G5zGD6Cf5eybOHJUVpyVOQoOtJWCW3msorsfciKcQdAJQYYp4PbbBAKY%2Ba7pd1moRTv9MslyOJPkWwpctc1OEyHdp%2BQ6whXSWa9mhsIs8m4eXkL4JY9ivPu9XOOf5QU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1326ed6ab517-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 32303516732a01bf79009b7266715f80
30c3a47eada87b3e1edfb06411858627b835b56c
28846e2e903889cf81b7a0520b8b2ad1d46b3e9e549457189dc9890d22346849
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2182
Cache-Control: max-age=163147
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "6385eaa7-1d7"
Expires: Thu, 01 Dec 2022 11:55:25 GMT
Last-Modified: Tue, 29 Nov 2022 11:19:03 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
kimcartoon.li/Content/images/tpl_footer_bg.png
104.26.11.167200 OK 3.2 kB URL HTTP/2 kimcartoon.li/Content/images/tpl_footer_bg.png
IP 104.26.11.167:0
File type PNG image data, 8 x 74, 8-bit/color RGB, non-interlaced\012- data
Hash d46ca7bad394a233c9735ae870cf9c9a
8e003de8410b2195e1b97ce7e5e81ad915447b0c
a77934c9ba958163b297b2adf4eeab588ef21268f594e45bcee29905c632b269
GET /Content/images/tpl_footer_bg.png HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/png
content-length: 3236
last-modified: Thu, 12 Mar 2015 15:28:18 GMT
etag: "50e15a2ad95cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=49YbohXuTLIypS%2Bbhhm31LAVmE8P4umgKDfLch8Cl94ghFGK%2B4MgPm2puqmJPIQdYstptZ5QFSKAuzAlVOi60miFFkF4NnozYil%2FDVySWyqNrAszbKnKaupk1%2FWJ7Mg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13271db5b517-OSL
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FKimCartoon-1500686783296635&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FKimCartoon-1500686783296635&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2FKimCartoon-1500686783296635&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: hXBAg12TE16Q/Vnsn77RRf46NbXECN/HW7XRWf2E3+UTedYHd4w0IXX97sdmXnUbMXvgeqyKKXmANUiH+a7TQw==
content-length: 0
date: Tue, 29 Nov 2022 14:36:18 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fkimcartoonfp&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fkimcartoonfp&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fkimcartoonfp&send=false&layout=button_count&width=100&show_faces=false&action=like&colorscheme=dark&font&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: +8irTcblHPvELRGzoQyaiykPMnP6o0lVBzdfCXm81/mdgFsnDJ8Zp98D6bp4+D4poD+RVHYJs4W5+NS+V8dlNw==
content-length: 0
date: Tue, 29 Nov 2022 14:36:18 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9917918d7706169dba335fdd9aa6292b
0c87467eac4b0a434f33879022d0776d1c9839f1
7cf20a06edcf922202f89ac15110ca269af8f8f3b43f91c3d6d7c84e7fc5b05e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: max-age=107176
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "638506c6-116"
Expires: Wed, 30 Nov 2022 20:22:34 GMT
Last-Modified: Mon, 28 Nov 2022 19:06:46 GMT
Server: ECS (amb/6B9A)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bce031ce8299ba4096fdf35de06bcd0
eaf1af9afe3b20c04b3a90b3bd4d1ade76f2aa63
75a064f94ed190d9bccddf57d1c3a267d7f62ae5db9f05a031a37e9fcc3bfe25
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75A064F94ED190D9BCCDDF57D1C3A267D7F62AE5DB9F05A031A37E9FCC3BFE25"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3037
Expires: Tue, 29 Nov 2022 15:26:55 GMT
Date: Tue, 29 Nov 2022 14:36:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 32303516732a01bf79009b7266715f80
30c3a47eada87b3e1edfb06411858627b835b56c
28846e2e903889cf81b7a0520b8b2ad1d46b3e9e549457189dc9890d22346849
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2453
Cache-Control: max-age=163418
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "6385eaa7-1d7"
Expires: Thu, 01 Dec 2022 11:59:56 GMT
Last-Modified: Tue, 29 Nov 2022 11:19:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ws.sharethis.com/button/async-buttons.js
54.230.111.32200 OK 19 kB URL HTTP/2 ws.sharethis.com/button/async-buttons.js
IP 54.230.111.32:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b3b7d06f8df8276ede0facec198706e
3e42fc6cacb95a5fa1b56c5b3984e8269752fbbe
342ffe242184c80ddf304e21db8b256ccb8aecb1f4bd9363802dcf2f36053837
GET /button/async-buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 18813
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
cache-control: max-age=259200
date: Sun, 27 Nov 2022 21:42:44 GMT
expires: Wed, 30 Nov 2022 21:42:44 GMT
etag: W/"634f1895-16245"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IpPGH9vbA1xQt2-kChjcRc-kQk0WVecRV836wRffZ6zrjBkuc77HsA==
age: 147214
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
rndskittytor.com/400/5374683
139.45.197.238200 OK 35 kB URL HTTP/2 rndskittytor.com/400/5374683
IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2539381bc2ba360232efef13d5ea2617
ae4caae17ba3b9d45e40f5e5c78f9eb5dfd4ed47
435cc7c5914991503a076730cbacb79a7c38aaa3e82a1e3c6cb41c875a91bea9
Analyzer Verdict Alert quad9 Sinkholed
GET /400/5374683 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: application/javascript
x-trace-id: 4dafbe53715feb49a5865cb2214dd1dd
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=d8aaf88f70ae4ea78c08ed0f562ffda8; expires=Wed, 29 Nov 2023 14:36:18 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
151.101.84.157200 OK 29 kB URL HTTP/2 platform.twitter.com/widgets.js
IP 151.101.84.157:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 2df2f01e0c50f93a363cd2121f336b8e
f2c4d94859575123d0b1056f0338982eb094c60f
2cf6d15fc44a8c4387114a5a20174ae75515d43840cde361e64bf1a75e676585
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 19:43:37 GMT
cache-control: public, max-age=1800
content-type: application/javascript; charset=utf-8
etag: "6633f9603c759c40d9b200995454f17c+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Tue, 29 Nov 2022 14:36:18 GMT
x-served-by: cache-iad-kcgs7200106-IAD, cache-bma1628-BMA
x-cache: MISS, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 29221
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 2.2 kB IP 172.64.155.188:0
Hash 9528a39b26cafcf8779822971b40b755
2c855f5c168265f7bf98378cf2e82f28a9d5e4c5
5389e2832f7479cdf129d5b675ab33feae4edc285d2da3f5dd6007d84b99bbe2
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 22:12:16 GMT
Expires: Sat, 03 Dec 2022 22:12:15 GMT
Etag: "2c855f5c168265f7bf98378cf2e82f28a9d5e4c5"
Cache-Control: max-age=602814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1048
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c1328aaadb521-OSL
ocsp.usertrust.com/
172.64.155.188200 OK 2.2 kB IP 172.64.155.188:0
Hash 9528a39b26cafcf8779822971b40b755
2c855f5c168265f7bf98378cf2e82f28a9d5e4c5
5389e2832f7479cdf129d5b675ab33feae4edc285d2da3f5dd6007d84b99bbe2
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 22:12:16 GMT
Expires: Sat, 03 Dec 2022 22:12:15 GMT
Etag: "2c855f5c168265f7bf98378cf2e82f28a9d5e4c5"
Cache-Control: max-age=602814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1048
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c1328aff11c0a-OSL
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash bc04bde12a6b02a05ec7b90c6b97749a
c58477b457ef531848c1b55dd3504f1ff3fa1768
c3e32ec89032adc86beccc0ea909921691c80022dd47f31a4f26064e26e61b23
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ecbc159d11e2a68f44ddcfa6fa405f1b
etag: "eea8db744848ce706cf3313f0684217b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 14:45:20 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: vAS94SprAqBex7kMa5d0mg==
x-fb-debug: U+MFJJbPrSRd6nASFlHk573QE6g5xmlUYq06hIB0euYt38CDvAAs2zDT3G6Yw+RHyvWqvGEWk4eyrhqdnQH75w==
content-length: 1687
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 14:36:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/twitter_counter.png
54.230.111.32200 OK 2.5 kB URL HTTP/2 ws.sharethis.com/images/2017/twitter_counter.png
IP 54.230.111.32:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f3b085b38e3d832d18351c78ac1a0e1
a5ecafc51f237b39afdbaabbb60e198bd4592f06
aeae37bae2130513ef8b5ea4fde8fd776b32ff8969b848b59399a63d9455e29a
GET /images/2017/twitter_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2478
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 01 Sep 2022 02:16:22 GMT
etag: "62bdf239-9ae"
expires: Fri, 01 Sep 2023 02:16:22 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TOrV84m4qN7IgKrCCKecGPRWqSGrZ3GjRlDJl5sdkYPP751mZTbJmQ==
age: 7733996
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/facebook_counter.png
54.230.111.32200 OK 2.4 kB URL HTTP/2 ws.sharethis.com/images/2017/facebook_counter.png
IP 54.230.111.32:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ba4aa0077ecbfdad7b112b723bf3b89
8d85c1b4ca791a4a9010c304c3af620cdc2fac94
3488c49147b809d1e457c14a37bf3a79b0455fd159c121325e8f737eea45eb75
GET /images/2017/facebook_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2423
accept-ranges: bytes
cache-control: max-age=31536000
date: Wed, 28 Sep 2022 01:06:56 GMT
etag: "62bdf239-977"
expires: Thu, 28 Sep 2023 01:06:56 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8i9FHjSLTsJGu92NXFCNqfLrYrhfg1s1zzNoX_oeDGcnil-K9p-ftw==
age: 5405362
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/sharethis_counter.png
54.230.111.32200 OK 2.6 kB URL HTTP/2 ws.sharethis.com/images/2017/sharethis_counter.png
IP 54.230.111.32:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash c0cbf421acb6c3a3cd615542054e0536
d56aa81a6df18e79a5ad752d4871a2948bf8ada6
4e2b38b4f0180fd5671604c482ae7b38eaa7d3b008099314bd261206045b0413
GET /images/2017/sharethis_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2648
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 27 Aug 2022 01:42:05 GMT
etag: "62bdf239-a58"
expires: Sun, 27 Aug 2023 01:42:05 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bjIw2cSX1sLIVgY-w_sfiD0A8zCJ2iV3_sISiV3r4VdLIPe_1Ig2qg==
age: 8168053
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 027c5de8c56cf609d186837fd40f575c
d1dcd4895ef924e45a715405fe05b061a68eee05
fe4b218dcc575f46574866f67a6ee5d58552b60464c2fbaabdb41ffabcb7666a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 23:07:01 GMT
Expires: Sat, 03 Dec 2022 23:07:00 GMT
Etag: "d1dcd4895ef924e45a715405fe05b061a68eee05"
Cache-Control: max-age=375641,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c1328cbbab50f-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dfd37ae2da5cc16d38d1d0ce5a3af6da
224117ab84ae9dbf57b1be06a30d21cc83dc9de8
2f5c21e10be7edc1f944bec4d1b1036b975bcfd1cc17606fe95c2b00c9fb15e2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6564
Cache-Control: max-age=156722
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "6385c070-117"
Expires: Thu, 01 Dec 2022 10:08:20 GMT
Last-Modified: Tue, 29 Nov 2022 08:18:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fkimcartoon.li
151.101.84.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fkimcartoon.li
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2c908e4df66c813c91eb41dd02376079
29df916bd525b6e273f6a62adb7d6df80789edfb
767b670476dae60cf2ddfda9bf3695fd9be641e1a338564b0d23b80cedaed567
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fkimcartoon.li HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 19:36:59 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Tue, 29 Nov 2022 14:36:18 GMT
x-served-by: cache-iad-kiad7000167-IAD, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105445
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash d1bdc744ef4b94d7f7298793dacc31d8
e340942c8c919edb6cd5852a64c8380391fcb6a5
b35af38438572158866be21146c9571ac4be9b44cf1fc9f4af3c60cba5a87d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=101681
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "6384fa31-1d7"
Expires: Wed, 30 Nov 2022 18:50:59 GMT
Last-Modified: Mon, 28 Nov 2022 18:13:05 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hj_6ntENB3apYPzCuNfB_LALMrGzhNtezfVf5cRd5yYs6qXdqo7ozg==
Age: 2274
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9917918d7706169dba335fdd9aa6292b
0c87467eac4b0a434f33879022d0776d1c9839f1
7cf20a06edcf922202f89ac15110ca269af8f8f3b43f91c3d6d7c84e7fc5b05e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: max-age=107176
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "638506c6-116"
Expires: Wed, 30 Nov 2022 20:22:34 GMT
Last-Modified: Mon, 28 Nov 2022 19:06:46 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
propellerads.com/wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577502
185.104.210.16200 OK 148 B URL HTTP/1.1 propellerads.com/wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577502
IP 185.104.210.16:0
ASN #200449 Qrator Labs CZ s.r.o.
Hash 5efc1569939d4506182ed0b21f6a929e
5189cf2988a31f59f14d74dcf824b51b74c149e7
e09909f9e8b5852bb9899351b7ea51a94f51e55ba2f1f7e8c64667be6f3c5d34
GET /wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577502 HTTP/1.1
Host: propellerads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: QRATOR
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/javascript
Content-Length: 148
Connection: keep-alive
Keep-Alive: timeout=15
Last-Modified: Mon, 29 Oct 2018 16:29:25 GMT
ETag: "5bd73565-94"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors https://*.propellerads.com;
Strict-Transport-Security: max-age=1
Accept-Ranges: bytes
X-Content-Type-Options: nosniff, nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e32cfb21e5b4d5988a9d31b34b5d4122
038f14da0d122f4fd91fe3b10588514864042074
1d88279ac3503159f9b7e8aebda674e2f4c0d25c4d5d9307e0b33688291648c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D88279AC3503159F9B7E8AEBDA674E2F4C0D25C4D5D9307E0B33688291648C3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3562
Expires: Tue, 29 Nov 2022 15:35:40 GMT
Date: Tue, 29 Nov 2022 14:36:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dfd37ae2da5cc16d38d1d0ce5a3af6da
224117ab84ae9dbf57b1be06a30d21cc83dc9de8
2f5c21e10be7edc1f944bec4d1b1036b975bcfd1cc17606fe95c2b00c9fb15e2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 646
Cache-Control: max-age=150803
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Etag: "6385c070-117"
Expires: Thu, 01 Dec 2022 08:29:41 GMT
Last-Modified: Tue, 29 Nov 2022 08:18:56 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 279
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices
52.28.72.230204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices
IP 52.28.72.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://kimcartoon.li
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 14:36:18 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
cdn.itskiddien.club/apu.php?zoneid=5379568
139.45.197.236200 OK 968 B URL HTTP/2 cdn.itskiddien.club/apu.php?zoneid=5379568
IP 139.45.197.236:0
File type ASCII text, with very long lines (801)
Hash c0efba18b960a95e0072ec3c78aad02d
18b894b5c7eefc3ebf5116f36273c4eb32f762f2
5972e26d126cc1f04e19398d16a1d3d7904b5bce7d9e8193877a4914d630c885
GET /apu.php?zoneid=5379568 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: application/javascript
content-length: 968
x-trace-id: 0c1b509f3bb58c88e66eaec7b6340df8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=d16be1166a7d487795dd89e90e74c830; expires=Wed, 29 Nov 2023 14:36:18 GMT; path=/; secure; SameSite=None
oaidts=1669732578; expires=Wed, 29 Nov 2023 14:36:18 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ws.sharethis.com/secure/images/bubble_arrow.png
54.230.111.32200 OK 979 B URL HTTP/2 ws.sharethis.com/secure/images/bubble_arrow.png
IP 54.230.111.32:0
File type PNG image data, 4 x 6, 8-bit colormap, non-interlaced\012- data
Hash 9466fb05cc9cae591337910debe1282e
03a3bc8a8c1a744dd1b283ad82fa392f01cafc09
516630dc137782b6ea784ed6891b487b8a2fff9be9ed921977008453039cc1fe
GET /secure/images/bubble_arrow.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/button/css/buttons-secure.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 979
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 08 Sep 2022 11:50:17 GMT
etag: "62bdf287-3d3"
expires: Fri, 08 Sep 2023 11:50:17 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: twxoMfqxrmUH-uWCabthIa08D5UVQ-f0L_pzrgF8SpGeuDh2MxrsdA==
age: 7094761
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/googleplus_16.png
54.230.111.32200 OK 1.6 kB URL HTTP/2 ws.sharethis.com/images/2017/googleplus_16.png
IP 54.230.111.32:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bc6a070e9d0391719e0f9a436ebeac2
e83f2bf6edb27df27a28a40366f59b1af8226ae2
592a848da6f427ea5d9169179bd309484f531d3c23c5aaf858afa22fc28d40c8
GET /images/2017/googleplus_16.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/button/css/buttons-secure.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1567
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 08 Sep 2022 04:06:07 GMT
etag: "62bdf239-61f"
expires: Fri, 08 Sep 2023 04:06:07 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JV7_pl4JFQuZhT98nrYcp7n4FVBlQwJ6m1wTaX6dSjF8DBqlPKft_A==
age: 7122611
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 027c5de8c56cf609d186837fd40f575c
d1dcd4895ef924e45a715405fe05b061a68eee05
fe4b218dcc575f46574866f67a6ee5d58552b60464c2fbaabdb41ffabcb7666a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 23:07:01 GMT
Expires: Sat, 03 Dec 2022 23:07:00 GMT
Etag: "d1dcd4895ef924e45a715405fe05b061a68eee05"
Cache-Control: max-age=375641,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c1328cadab4fd-OSL
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1e7055214d18dc2232af1d0034d38db6
90a6f04b5ca167505c2fc64923d9b4621fcd8de8
fab5c91cca9dfe89925b073a2cf02e4df701a18ecfc3cc3aad3f446b0ad0de3b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5763
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:18 GMT
Last-Modified: Tue, 29 Nov 2022 13:00:15 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 3f38e88b286ab9311c1d62336beb737a
9d2df877cd5783ecb6c00bb99576e70ffd2bff02
6cde08927dbcda57eebb0e0f72f814b9030200cc60258dbbef8e9e517d6f2a90
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 14:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 22:19:44 GMT
Expires: Tue, 29 Nov 2022 22:19:44 GMT
ETag: "9d2df877cd5783ecb6c00bb99576e70ffd2bff02"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 3f38e88b286ab9311c1d62336beb737a
9d2df877cd5783ecb6c00bb99576e70ffd2bff02
6cde08927dbcda57eebb0e0f72f814b9030200cc60258dbbef8e9e517d6f2a90
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 14:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 22:19:44 GMT
Expires: Tue, 29 Nov 2022 22:19:44 GMT
ETag: "9d2df877cd5783ecb6c00bb99576e70ffd2bff02"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
connect.facebook.net/en_US/sdk.js?hash=408c1b2e9675cead9f29189a1b618f94
31.13.72.12200 OK 155 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=408c1b2e9675cead9f29189a1b618f94
IP 31.13.72.12:0
Size 155 kB (154810 bytes)
Hash 64b2b6aed76ae294f26c791c21be7ba2
871c9e4e9ac77db957b505c7f1e019643383d5f9
52215dc7d1865b16590896249a0a81aef6195086fb8f318b74fe35c7c19b0e46
GET /en_US/sdk.js?hash=408c1b2e9675cead9f29189a1b618f94 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f9716ce4a8bd0df9b3bfa8ad70208c55
etag: "b0beedab3cb255d26be9dad7db2e132a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 12:38:01 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 4VLe0UOtZeGek1jwleYzOQ==
x-fb-debug: 9ebqAb29FfM9vEsBABmPMcVimqHJEUGdcXXnVk5G2WccrWfdtNt1XUEIYPmgm93sO/b88C+vfYL5kM2yftPu2Q==
priority: u=3,i
content-length: 88357
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 14:36:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
propellerads.com/wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577454
185.104.210.16200 OK 148 B URL HTTP/1.1 propellerads.com/wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577454
IP 185.104.210.16:0
ASN #200449 Qrator Labs CZ s.r.o.
Hash 5efc1569939d4506182ed0b21f6a929e
5189cf2988a31f59f14d74dcf824b51b74c149e7
e09909f9e8b5852bb9899351b7ea51a94f51e55ba2f1f7e8c64667be6f3c5d34
GET /wp-content/plugins/radiantthemes-addons/tabs/js/radiantthemes-tab-element-four.js?_=1669732577454 HTTP/1.1
Host: propellerads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: QRATOR
Date: Tue, 29 Nov 2022 14:36:18 GMT
Content-Type: application/javascript
Content-Length: 148
Connection: keep-alive
Keep-Alive: timeout=15
Last-Modified: Mon, 29 Oct 2018 16:29:25 GMT
ETag: "5bd73565-94"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Frame-Options: deny
Content-Security-Policy: frame-ancestors https://*.propellerads.com;
Strict-Transport-Security: max-age=1
Accept-Ranges: bytes
X-Content-Type-Options: nosniff, nosniff
count-server.sharethis.com/v2.0/get_counts?url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&cb=stButtons.processCB&wd=true
54.230.111.71200 OK 265 B URL HTTP/2 count-server.sharethis.com/v2.0/get_counts?url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&cb=stButtons.processCB&wd=true
IP 54.230.111.71:0
File type ASCII text, with no line terminators
Hash 49ed3ea6822d3abd28e73ca742d486ba
fad5391ed492ddb189dd5f5cc63dff21a56e13a7
90e018f3e473aafd1cf3f3eb5d59061e5b13f59fda02a8fb7058c05fb83de9ae
GET /v2.0/get_counts?url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&cb=stButtons.processCB&wd=true HTTP/1.1
Host: count-server.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 265
date: Tue, 29 Nov 2022 14:36:18 GMT
cache-control: public, max-age=60
apigw-requestid: cXjTehOrIAMEZtg=
etag: 49ed3ea6822d3abd28e73ca742d486ba
x-cache: Miss from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UWmtuKbALjSjCpd53W-Kvt-HyyuqFiWTJ8CnCMrwlJaFQG_cm_yb-w==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
pubmatic.com/wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577454
15.197.165.128403 Forbidden 118 B URL HTTP/2 pubmatic.com/wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577454
IP 15.197.165.128:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bad2e8579dcdb79399aac2064216a37d
7771e4d9c60e02ce2246b5d71bb23f92b9fb8a90
58bf2215b395dcac74c009aa98701854e43cbe54a1cd3a95fee6a647ca9910d4
GET /wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577454 HTTP/1.1
Host: pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: awselb/2.0
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html
content-length: 118
set-cookie: AWSALBTG=CY4d6KDOga3A+92O+H2RMgj00tHSOXZC4DrnY/umCukKoOeTGXLVVQkAjjltsc9QOg6X7E3JjOvQsafML5zQtXxXnAldS4W/VMCtfSA1bOnLz5K5tuENOzGQ3VZijEniJAOGAO4v1+SrzJley3tPXAuBD9sIvThDN2Y0o1zY+Wfxgdd6NVM=; Expires=Tue, 06 Dec 2022 14:36:18 GMT; Path=/
AWSALBTGCORS=CY4d6KDOga3A+92O+H2RMgj00tHSOXZC4DrnY/umCukKoOeTGXLVVQkAjjltsc9QOg6X7E3JjOvQsafML5zQtXxXnAldS4W/VMCtfSA1bOnLz5K5tuENOzGQ3VZijEniJAOGAO4v1+SrzJley3tPXAuBD9sIvThDN2Y0o1zY+Wfxgdd6NVM=; Expires=Tue, 06 Dec 2022 14:36:18 GMT; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 72e278c32e6d5f06a97a7c36dfe35514
f5d9c5bb4a10ea9bfb7f829dcff2a3fc7298397e
fe9de8dbde2a414f1a4ff1b02b923be949c46ddfabc7e4324955e3de70c4916b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 00:52:21 GMT
Expires: Mon, 05 Dec 2022 00:52:20 GMT
Etag: "f5d9c5bb4a10ea9bfb7f829dcff2a3fc7298397e"
Cache-Control: max-age=468361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c132a7e04b50f-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8e8c89c17e336cca7a61b55895462e74
e27f9646f415cb235ed8eef9de30639dd355fad1
3cf03691d11e79366511035adff2fabce3d362860e670f4de949794d3b6268ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3CF03691D11E79366511035ADFF2FABCE3D362860E670F4DE949794D3B6268BA"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4752
Expires: Tue, 29 Nov 2022 15:55:31 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
pubmatic.com/wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577502
15.197.165.128403 Forbidden 118 B URL HTTP/2 pubmatic.com/wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577502
IP 15.197.165.128:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bad2e8579dcdb79399aac2064216a37d
7771e4d9c60e02ce2246b5d71bb23f92b9fb8a90
58bf2215b395dcac74c009aa98701854e43cbe54a1cd3a95fee6a647ca9910d4
GET /wp-content/themes/pubmatic/js/jquery.alignHeight.js?ver=1.0&_=1669732577502 HTTP/1.1
Host: pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: awselb/2.0
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html
content-length: 118
set-cookie: AWSALBTG=iG4Axf2O8fukwnw6afh7fy9nYFVNkwX3t+RFV0y2RCoVKiXax7ZJ5lFLBQpyhTUTNyplQyH5r0BR6LcD0UBOMT3UAVrFOQYBEHUOT62FlwQZdugLkA9uyKNWxwvAiKAwWVxFegWYpMeaEK5E87D120wloUAdeUrrcrBgVJortf+oYmmCLqA=; Expires=Tue, 06 Dec 2022 14:36:18 GMT; Path=/
AWSALBTGCORS=iG4Axf2O8fukwnw6afh7fy9nYFVNkwX3t+RFV0y2RCoVKiXax7ZJ5lFLBQpyhTUTNyplQyH5r0BR6LcD0UBOMT3UAVrFOQYBEHUOT62FlwQZdugLkA9uyKNWxwvAiKAwWVxFegWYpMeaEK5E87D120wloUAdeUrrcrBgVJortf+oYmmCLqA=; Expires=Tue, 06 Dec 2022 14:36:18 GMT; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e
104.244.42.8200 OK 374 B URL HTTP/2 syndication.twitter.com/settings?session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (913), with no line terminators
Hash 925c2a7587f39436ea29513221652474
695b7f2f3d99f407bcdfd0b372db0e28193cc60c
62e36e14e5c219119cb51c3cdf43a2005512a1bd6ebf2d68d0c610a2e6e3ef0f
GET /settings?session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Tue, 29 Nov 2022 14:36:18 GMT
content-length: 374
content-encoding: gzip
x-transaction-id: ca4aef4f76790641
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: 7bb91d58b1934fd7cc341224b74b8a02eb4c932ca8f10828fbbfa4534b4c883f
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 988
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 29 Nov 2022 14:36:21 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://kimcartoon.li
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 9d27ddd824bfa7e9a7cc633acc06d3f9
772d52c824233350a8528b18402b6b235ec051f1
767e968c5ecca23b3763280bd62fed1825fa2a24d8691ef2badbbfe8f45948f3
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:19 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://kimcartoon.li
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a9a4319aeaec47cba1b8b15296e856ba; expires=Wed, 29 Nov 2023 14:36:19 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 106b17fa01e9ec622cbf9fe9c1b3d977
b5737495b91f9f032c6fb38b4ec5c12a50934daf
8eeaf06b151aedaa88cece116169da82c01b2d3ff5a51f3e9afa5b0ac4ecb00f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 03 Dec 2022 12:06:55 GMT
ETag: "b5737495b91f9f032c6fb38b4ec5c12a50934daf"
Last-Modified: Tue, 29 Nov 2022 12:06:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1796
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c132b4f64b500-OSL
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&img_pview=true
52.28.72.230204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&img_pview=true
IP 52.28.72.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669732577508.71444&hostname=kimcartoon.li&location=%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&title=Watch%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20online%20FREE%20%7C%20KimCartoon&sop=false&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&description=Watch%20online%20and%20download%20cartoon%20The%20Amazing%20World%20of%20Gumball%20Season%201%20Episode%20001%2C%20002%20-%20The%20Responsible%20-%20The%20DVD%20in%20high%20quality.%20Various%20formats%20from%20240p%20to%20720p%20HD%20(or%20even%201080p).%20HTML5%20available%20for%20mobile%20devices&img_pview=true HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 14:36:19 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
151.101.84.157200 OK 2.4 kB URL HTTP/2 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash dd0db11eb64751c6c3b8cecfb5b77f2f
b79a753d0bc720adbbd9f566f11764dd0e1cbe2c
c80ffb7bf5d6d523bd483d7eeba3b3334d25ee8d66ddba80eaf448d07da2e2ff
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 19:36:52 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Tue, 29 Nov 2022 14:36:19 GMT
x-served-by: cache-iad-kiad7000153-IAD, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2362
X-Firefox-Spdy: h2
platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.en.html
151.101.84.157200 OK 15 kB URL HTTP/2 platform.twitter.com/widgets/follow_button.644279d1635fd969e87af94a98bd232b.en.html
IP 151.101.84.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26401)
Hash 1ccf87b02f347cf10ae9da4292eaeb2c
0b8428a2b783220b24de1b64d05ceb5db296da0c
e65d24c10d05286f72d144ff7a2d0959ccf39f5a1fda9e19d8d811394c701dcd
GET /widgets/follow_button.644279d1635fd969e87af94a98bd232b.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 19:36:53 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "acebd71e9c8affdc2fcc7f35e773093d+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Tue, 29 Nov 2022 14:36:19 GMT
x-served-by: cache-iad-kiad7000103-IAD, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 15129
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.luxubu.review/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Tue, 29 Nov 2022 14:36:19 GMT
access-control-allow-origin: *
etag: "6384bff1-11e33"
expires: Tue, 29 Nov 2022 15:36:19 GMT
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669732578249%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669732578249%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1669732578249%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=fd9770b56383ea32eec798a04a9ddb37cb5cbc8e HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 29 Nov 2022 14:36:19 GMT
content-length: 43
x-transaction-id: 536f28441c62a3ce
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 7bb91d58b1934fd7cc341224b74b8a02eb4c932ca8f10828fbbfa4534b4c883f
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6203
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6203
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6203
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6203
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6203
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 14:36:19 GMT
Connection: keep-alive
rndskittytor.com/500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/2 rndskittytor.com/500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://kimcartoon.li/
Origin: https://kimcartoon.li
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:19 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://kimcartoon.li
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:50:08 GMT
age: 60371
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rb-NFzuOBQEOMHfs7L68ZBeBH_JMqKYfJhxWs4eNYq35L8duYylQdg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:07:34 GMT
age: 44925
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 35038
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 42047
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 41702
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:58:57 GMT
age: 59842
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.luxubu.review/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 14:36:19 GMT
access-control-allow-origin: *
etag: "6384bff1-2b"
expires: Tue, 29 Nov 2022 15:36:19 GMT
accept-ranges: bytes
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.5 kB IP 93.184.220.29:0
Hash b1b3533e3d1978558a859caf37b5ba21
2da3cb1cdf62297b9e49ef567c82babc5995d643
743699eda5a53517d0e1b9edf16e71b149a75514ded56fbaad54ddab3667476d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3626
Cache-Control: max-age=135760
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:19 GMT
Etag: "63857a09-117"
Expires: Thu, 01 Dec 2022 04:18:59 GMT
Last-Modified: Tue, 29 Nov 2022 03:18:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
offerimage.com/www/images/e27e78d3b01907b714b7d939d7eed85d.png
104.22.33.172200 OK 43 kB URL HTTP/2 offerimage.com/www/images/e27e78d3b01907b714b7d939d7eed85d.png
IP 104.22.33.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e27e78d3b01907b714b7d939d7eed85d
2d4aa0d84925e5031861258c341788450ba8b43c
37024bac32f0cc3299c2492471b40e6beb2fd7b3cb73b172d68207e87cdfd6e6
GET /www/images/e27e78d3b01907b714b7d939d7eed85d.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:19 GMT
content-type: image/png
content-length: 43157
last-modified: Thu, 10 Dec 2020 12:59:54 GMT
etag: "5fd21bca-a895"
expires: Wed, 30 Nov 2022 09:16:33 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 19186
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c132e9b349902-ARN
X-Firefox-Spdy: h2
mc.yandex.ru/watch/88698312/1
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/88698312/1
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/88698312/1 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.luxubu.review/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 14:36:19 GMT
pragma: no-cache
expires: Tue, 29-Nov-2022 14:36:19 GMT
x-xss-protection: 1; mode=block
last-modified: Tue, 29-Nov-2022 14:36:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/88698312
87.250.251.119302 Found 471 B URL HTTP/2 mc.yandex.ru/watch/88698312
IP 87.250.251.119:0
Hash fac6d1a6edc3002410aae00a153489f9
592fc00f46ffbd3d33bd370b423f8ee5233b3a33
f75f48d1896ee85c5c64169e2f43d2eadf20d8e3994f9e6fdf2e41258c7049ab
GET /watch/88698312 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.luxubu.review/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/88698312/1
date: Tue, 29 Nov 2022 14:36:19 GMT
set-cookie: yandexuid=6955929081669732579; Expires=Wed, 29-Nov-2023 14:36:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6955929081669732579; Expires=Wed, 29-Nov-2023 14:36:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=321916041669732579; Path=/; SameSite=None; Secure
i=ZpnW8F13uNDHr6/cbHahzGcz5nWZQZl5PYDSZkIjJ5R2WUs9t4hjcngaiPbiNiLUrpx3/9TnPnGVABC7ZvRU7iPY6vo=; Expires=Fri, 26-Nov-2032 14:36:18 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701268579.yc.1669732579#1701268579.yrts.1669732579#1701268579.yrtsi.1669732579; Expires=Wed, 29-Nov-2023 14:36:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 14:36:19 GMT
last-modified: Tue, 29-Nov-2022 14:36:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
rndskittytor.com/500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 18 kB URL HTTP/2 rndskittytor.com/500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash 226af6b8d3c26b2dca4f2b30a815ca44
c6f2b28bed94431ba232dcf3241c8d97d707fde0
b8eb28a2a62bcae9b2315c4559440ba3526151ae2c136b52fce4b7021beeb1a8
Analyzer Verdict Alert quad9 Sinkholed
GET /500/5374683?excludes=&oaid=a9a4319aeaec47cba1b8b15296e856ba&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=8&pl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Cookie: OAID=d8aaf88f70ae4ea78c08ed0f562ffda8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:19 GMT
content-type: application/javascript
x-trace-id: d88adee7878e6b73cd81730c29669ac3
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://kimcartoon.li
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=a9a4319aeaec47cba1b8b15296e856ba; expires=Wed, 29 Nov 2023 14:36:19 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8a7b9dc890bede1a9db535e014ba041f
f02b98631fe5fa62425c1979f874f56d923cbc22
d6666602283fa6bfbd029a13e95690aef1a7f36eb6cc01f60a874137f51ba12d
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:21 GMT
Etag: "6385c056-1d7"
Server: ECS (amb/6B9C)
Content-Length: 471
dmp.im-apps.net/scripts/im-uid-hook.js?cid=3929
23.36.79.17200 OK 445 B URL HTTP/1.1 dmp.im-apps.net/scripts/im-uid-hook.js?cid=3929
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (523)
Hash f152c14f4391a61a4222fd05e619d5b0
9f9edec1a1a089947323bc49a3d8899f500c56ed
7532a08a1a4aaaf25631feec1de5868dbd215539eed4d6f53b0b7bdbb0aef213
GET /scripts/im-uid-hook.js?cid=3929 HTTP/1.1
Host: dmp.im-apps.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Encoding: gzip
Content-Length: 445
Cache-Control: public, max-age=3600, s-maxage=10800
Date: Tue, 29 Nov 2022 14:36:21 GMT
Connection: keep-alive
Vary: Accept-Encoding
P3P: CP="NOI PSD OTR"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5d0557c4fc374cf6fece1b45bee78ec
91cdb920a64cbc155ae9220219a6c36b46a4b9d8
df20a38e5844faad72a6c80ec279084c262093d6081a79e57e22373c2772df9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF20A38E5844FAAD72A6C80EC279084C262093D6081A79E57E22373C2772DF9D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2236
Expires: Tue, 29 Nov 2022 15:13:37 GMT
Date: Tue, 29 Nov 2022 14:36:21 GMT
Connection: keep-alive
app.audiopulsar.com/cordova.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/cordova.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cordova.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
content-length: 0
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=10800
etag: "5f7b0df5-0"
last-modified: Mon, 05 Oct 2020 12:13:41 GMT
cdn-storageserver: DE-197
cdn-fileserver: 101
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d0718b36ec3a556167a8a48bab26183b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-c8085d85.5db21600.js
194.242.11.186200 OK 90 B URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-c8085d85.5db21600.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with no line terminators
Hash 56fc48284bda1da6545e7923d7061960
3f322cd62a85e6671bab80d64a4f36f97d442b71
f61e853f0174bd3e1f2e70c6e102d5475760f53174b14fa1d6095e49452c7c8f
GET /js/chunk-vendors-c8085d85.5db21600.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
content-length: 90
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=10800
etag: "61fcbda4-5a"
last-modified: Fri, 04 Feb 2022 05:46:12 GMT
cdn-storageserver: DE-165
cdn-fileserver: 292
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 389ee5e241cd9a37f2098ab6a0280042
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@mdi/font@latest/css/materialdesignicons.min.css
151.101.85.229200 OK 52 kB URL HTTP/2 cdn.jsdelivr.net/npm/@mdi/font@latest/css/materialdesignicons.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0553de6fb5c0e46ae241bbfdc52e42aa
3ccb578039976b25552c2dd9b918183ef6443afb
620ba722704113e114a07650aec8a41d2c614dd81c3be6654cf53d3a61a8d3ae
GET /npm/@mdi/font@latest/css/materialdesignicons.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 7.0.96
x-jsd-version-type: version
etag: W/"505a4-INFSF/VcDY3YGq5QRH3rBHuiXOA"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 29 Nov 2022 14:36:21 GMT
age: 29384
x-served-by: cache-fra-eddf8230124-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 51975
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-9a9c82b2.8a3d1a2c.js
194.242.11.186200 OK 11 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-9a9c82b2.8a3d1a2c.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (25595)
Hash ca3bee5f268ad487f8c68951595b6518
8ff9e55ec9049298de21b98e385190bede2e271c
90cdeebbc2ccfcd5aad45d5daf0f0ce565cc424f9ea80bba75a04557dca8b5fa
GET /js/chunk-vendors-9a9c82b2.8a3d1a2c.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61fcbd9f-8bd9"
last-modified: Fri, 04 Feb 2022 05:46:07 GMT
cdn-storageserver: DE-200
cdn-fileserver: 246
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c71b91b1a177c19c8773de1f719af4c1
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-d939e436.2e5e53f4.js
194.242.11.186200 OK 21 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-d939e436.2e5e53f4.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (54564), with NEL line terminators
Hash 451762a9ca2116e29a6c145206964da6
e1ff3ddfbb0adebd4767433d47ba68f5e3100c54
f38097e44a3d6ae445047f2d734e393023a711b016977bd19237fc9367c8827b
GET /js/chunk-vendors-d939e436.2e5e53f4.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff8797-10705"
last-modified: Sun, 06 Feb 2022 08:32:23 GMT
cdn-storageserver: DE-197
cdn-fileserver: 192
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 000d1100f8a72566d6bc1779d66427ea
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-11c2601a.ca96cfd2.js
194.242.11.186200 OK 2.7 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-11c2601a.ca96cfd2.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (798), with no line terminators
Hash 14207a3d1f3c099f116648a139742ebc
a4ce04a8a0d04db93407337d9aab5e50899654cf
5d99b707f7a978de27268cbb0408da36795ea08433eb8698740c55cf4c2856ff
GET /js/chunk-vendors-11c2601a.ca96cfd2.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff878e-31e"
last-modified: Sun, 06 Feb 2022 08:32:14 GMT
cdn-storageserver: DE-167
cdn-fileserver: 192
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1d0e5e7dbe6ff8725841fdd369b73882
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ialaddin.genieesspv.jp/yie/ld/gl1?zid=1495180&asid=10261740&idx=0&cb=1334d6d56e&l=f_tWfEx3Epu1eLoOV_8EtG8ISclyqfSeDnWCvM4-NsdradEXwmTqoKt1TP8FxABSex8rn0qBIEtWYUi5Y8aYbqcAOVo7ZwszLCYlYEaw0pTHwfWSXAd-hcotPi5IbUTJJ6Iz4JWMovk8Wt5o9fNkOhnq6uKAha8ZIENBoBbXQ-W1MdGl29LvLKSdVEuzCi4u4oXV-45zdpW70LrPxnFyjUSjKtDWO1Wl6-Wwwrv2IWAypJry_gdLZ1U2q-8nDm_ybZamlCMRJG0rXvvnOiioEkx0SjPeSWFOfwg7z-SEdwUrad2WxnciicGPCe1s5DIn6afLKRUs0hW0aKQNEX8uys11uQfkVgfxuA_d0RPuAK2gRRV_-9NJVAJklTQ7SsE2VZIHT07ZJeEE3seT5ZmHVvdtr-HdnGRLFp_LrDxfpFSUgOuTqnZStdDKOIwQihBskK4a2Rj_iuFWenY3_gTi_n-htuNL-rTsJyBGVpqL5J31JhTudScMUugeTgDdSRq4OQWZ8w6pHAW-KYt97ebzVl_IoPRe51hhDnA49MkoFElk8LzNVeTDIA8e1YZyphaJ0wT71rKla4e5HoJQuNjkQg9DO41RPNWt9QX7cbu5HIsi8CzqnB06sHfE6T-omSv9AQOCgLupR8n9U0FpPKFcZsknAaX_JAlVy_eNiofxsIGOlQM3spv0w1S3ac_448RtKoz85DRiPy-czswJE0UFSZ3cA4Omn5WV3jiJ9jrn8c4
133.186.12.17200 OK 43 B URL HTTP/2 ialaddin.genieesspv.jp/yie/ld/gl1?zid=1495180&asid=10261740&idx=0&cb=1334d6d56e&l=f_tWfEx3Epu1eLoOV_8EtG8ISclyqfSeDnWCvM4-NsdradEXwmTqoKt1TP8FxABSex8rn0qBIEtWYUi5Y8aYbqcAOVo7ZwszLCYlYEaw0pTHwfWSXAd-hcotPi5IbUTJJ6Iz4JWMovk8Wt5o9fNkOhnq6uKAha8ZIENBoBbXQ-W1MdGl29LvLKSdVEuzCi4u4oXV-45zdpW70LrPxnFyjUSjKtDWO1Wl6-Wwwrv2IWAypJry_gdLZ1U2q-8nDm_ybZamlCMRJG0rXvvnOiioEkx0SjPeSWFOfwg7z-SEdwUrad2WxnciicGPCe1s5DIn6afLKRUs0hW0aKQNEX8uys11uQfkVgfxuA_d0RPuAK2gRRV_-9NJVAJklTQ7SsE2VZIHT07ZJeEE3seT5ZmHVvdtr-HdnGRLFp_LrDxfpFSUgOuTqnZStdDKOIwQihBskK4a2Rj_iuFWenY3_gTi_n-htuNL-rTsJyBGVpqL5J31JhTudScMUugeTgDdSRq4OQWZ8w6pHAW-KYt97ebzVl_IoPRe51hhDnA49MkoFElk8LzNVeTDIA8e1YZyphaJ0wT71rKla4e5HoJQuNjkQg9DO41RPNWt9QX7cbu5HIsi8CzqnB06sHfE6T-omSv9AQOCgLupR8n9U0FpPKFcZsknAaX_JAlVy_eNiofxsIGOlQM3spv0w1S3ac_448RtKoz85DRiPy-czswJE0UFSZ3cA4Omn5WV3jiJ9jrn8c4
IP 133.186.12.17:0
ASN #10010 TOKAI Communications Corporation
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /yie/ld/gl1?zid=1495180&asid=10261740&idx=0&cb=1334d6d56e&l=f_tWfEx3Epu1eLoOV_8EtG8ISclyqfSeDnWCvM4-NsdradEXwmTqoKt1TP8FxABSex8rn0qBIEtWYUi5Y8aYbqcAOVo7ZwszLCYlYEaw0pTHwfWSXAd-hcotPi5IbUTJJ6Iz4JWMovk8Wt5o9fNkOhnq6uKAha8ZIENBoBbXQ-W1MdGl29LvLKSdVEuzCi4u4oXV-45zdpW70LrPxnFyjUSjKtDWO1Wl6-Wwwrv2IWAypJry_gdLZ1U2q-8nDm_ybZamlCMRJG0rXvvnOiioEkx0SjPeSWFOfwg7z-SEdwUrad2WxnciicGPCe1s5DIn6afLKRUs0hW0aKQNEX8uys11uQfkVgfxuA_d0RPuAK2gRRV_-9NJVAJklTQ7SsE2VZIHT07ZJeEE3seT5ZmHVvdtr-HdnGRLFp_LrDxfpFSUgOuTqnZStdDKOIwQihBskK4a2Rj_iuFWenY3_gTi_n-htuNL-rTsJyBGVpqL5J31JhTudScMUugeTgDdSRq4OQWZ8w6pHAW-KYt97ebzVl_IoPRe51hhDnA49MkoFElk8LzNVeTDIA8e1YZyphaJ0wT71rKla4e5HoJQuNjkQg9DO41RPNWt9QX7cbu5HIsi8CzqnB06sHfE6T-omSv9AQOCgLupR8n9U0FpPKFcZsknAaX_JAlVy_eNiofxsIGOlQM3spv0w1S3ac_448RtKoz85DRiPy-czswJE0UFSZ3cA4Omn5WV3jiJ9jrn8c4 HTTP/1.1
Host: ialaddin.genieesspv.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: image/gif
content-length: 43
cross-origin-resource-policy: cross-origin
cache-control: private, max-age=0, no-cache
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-c964cbd5.fa658bff.js
194.242.11.186200 OK 4.0 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-c964cbd5.fa658bff.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (8092), with no line terminators
Hash e6ef8246bcced4f45f08fc3100ba3419
12d0669355a31fd6b2ca3f3eef13314a8b89f31a
9a8d79c14f408f9a1fd86d926fbfadb5f8a543523ad366a3b68dc48aac12042b
GET /js/chunk-vendors-c964cbd5.fa658bff.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff8795-1f9c"
last-modified: Sun, 06 Feb 2022 08:32:21 GMT
cdn-storageserver: DE-167
cdn-fileserver: 220
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8936325fc9bb9be9ef881d610de4269a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/tags.json
194.242.11.186200 OK 82 kB URL HTTP/2 app.audiopulsar.com/tags.json
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash 16ecd76cdb7b6addd717a2304c198835
90c670558abeca3d7b80ffb0fa287a6fa4939b2b
bffd8f861b9d0ff3575257df8bd0e9f12cbacaf99e770f87465b3aea48b59463
GET /tags.json HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:22 GMT
content-type: application/json
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=10800
last-modified: Mon, 28 Nov 2022 17:51:29 GMT
cdn-storageserver: DE-51
cdn-fileserver: 226
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/29/2022 14:32:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4a1da67040110702dd1626424c1b8762
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.audiopulsar.com/js/chunk-vendors-ec8c427e.1a4ce1a5.js
194.242.11.186200 OK 20 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-ec8c427e.1a4ce1a5.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (13706)
Hash eb8877697cdaec21068106d85155d3fc
2d133c51af2ea487c890fc7e837233f6295d5c81
94ddd366c60b8374b684d86a169bee15e83bd8237c994df6bb7e82ec9e890ed4
GET /js/chunk-vendors-ec8c427e.1a4ce1a5.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff8798-384f"
last-modified: Sun, 06 Feb 2022 08:32:24 GMT
cdn-storageserver: DE-167
cdn-fileserver: 292
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3117adc12e4404e0e45df602de6673a9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-f5586520.35ff7895.js
194.242.11.186200 OK 19 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-f5586520.35ff7895.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (35218)
Hash 107562908a2f42ef0cda688f20a2aa20
ff87f3a80d7bf5055a02a7bbf247e755fd972f4f
253c261ab78682ef4c0d467a221ecbff4475d6f4894243e99c6f3bd107c2559a
GET /js/chunk-vendors-f5586520.35ff7895.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61fcbdab-d286"
last-modified: Fri, 04 Feb 2022 05:46:19 GMT
cdn-storageserver: DE-165
cdn-fileserver: 292
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 22188deaba2aab4b95d2a0805b9ffdf7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/6LIgUkt9dgw
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/6LIgUkt9dgw
IP 142.250.74.3:0
Hash b79281be9dd4a005b6fda24c8020c01a
440082854354d92e300d80f0da5257f700a3579f
123992a4fa526ced0feae346c22c08732b1754bbc63de1cbeb8d9814cd839ea1
POST /s/gts1d4/6LIgUkt9dgw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c1b7be467f5c5dc87b0676989a840dec
0111fc698d051558f75ea03eb3bec014542176b9
ff2917f1e364c22e77fb10e1179b99c715d637e944c62a814be4c266a5c1d8ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF2917F1E364C22E77FB10E1179B99C715D637E944C62A814BE4C266A5C1D8BA"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5148
Expires: Tue, 29 Nov 2022 16:02:10 GMT
Date: Tue, 29 Nov 2022 14:36:22 GMT
Connection: keep-alive
app.audiopulsar.com/js/chunk-vendors-0f485567.100d2e27.js
194.242.11.186200 OK 1.0 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-0f485567.100d2e27.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1429), with no line terminators
Hash 575925151e07b932272fc86da190de3e
d90c2023fc4390dbfd9e4bd0d38444e0d37e18b9
2cad7f15a21f10bd46647071aead64a587d67f25c83d5e973de968f55c623fa3
GET /js/chunk-vendors-0f485567.100d2e27.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61fcbd8d-595"
last-modified: Fri, 04 Feb 2022 05:45:49 GMT
cdn-storageserver: DE-169
cdn-fileserver: 287
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ac4565f23d315cd374c85948c97e476c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/
194.242.11.186200 OK 4.0 kB IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash 8b5fdbe49f0d1501f9fe0136ac570a70
34b65deb37b804694d27f23de169835cfc1cb582
04924e989591b1d773af38a187afc67230a37fd5aab6d7766ea0790ab8a33739
GET / HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10800
last-modified: Fri, 04 Nov 2022 10:59:35 GMT
cdn-storageserver: DE-200
cdn-fileserver: 413
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f2989fc7a9b40c778271ef49b7d0eebb
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 12:41:08 GMT
expires: Tue, 29 Nov 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 6914
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=934829234&t=pageview&_s=1&dl=https%3A%2F%2Fapp.audiopulsar.com%2F&dr=https%3A%2F%2Fkimcartoon.li%2F&ul=en-us&de=UTF-8&dt=Pulsar&sd=24-bit&sr=1280x1024&vp=300x250&je=0&cs=Widget&cm=1009&_u=4GBAAQABAAAAACAAIC~&jid=611161205&gjid=1367751123&cid=2056121956.1669732582&tid=UA-175061327-2&_gid=1598060710.1669732582&_r=1>m=2oub90&z=1531682453
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=934829234&t=pageview&_s=1&dl=https%3A%2F%2Fapp.audiopulsar.com%2F&dr=https%3A%2F%2Fkimcartoon.li%2F&ul=en-us&de=UTF-8&dt=Pulsar&sd=24-bit&sr=1280x1024&vp=300x250&je=0&cs=Widget&cm=1009&_u=4GBAAQABAAAAACAAIC~&jid=611161205&gjid=1367751123&cid=2056121956.1669732582&tid=UA-175061327-2&_gid=1598060710.1669732582&_r=1>m=2oub90&z=1531682453
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=934829234&t=pageview&_s=1&dl=https%3A%2F%2Fapp.audiopulsar.com%2F&dr=https%3A%2F%2Fkimcartoon.li%2F&ul=en-us&de=UTF-8&dt=Pulsar&sd=24-bit&sr=1280x1024&vp=300x250&je=0&cs=Widget&cm=1009&_u=4GBAAQABAAAAACAAIC~&jid=611161205&gjid=1367751123&cid=2056121956.1669732582&tid=UA-175061327-2&_gid=1598060710.1669732582&_r=1>m=2oub90&z=1531682453 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://app.audiopulsar.com
date: Tue, 29 Nov 2022 14:36:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3322911bfb9412928a0a4fd09ec3b25
356fe06b2eb670cb9a146b80fd1d3659d16a43d5
d027dc8de1a1e7f4cb4f28534868fd512f5445c7af19165325741fc13ccff903
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4878
Cache-Control: max-age=154291
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Etag: "6385bd8b-1d7"
Expires: Thu, 01 Dec 2022 09:27:53 GMT
Last-Modified: Tue, 29 Nov 2022 08:06:35 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-175061327-2&cid=2056121956.1669732582&jid=611161205&gjid=1367751123&_gid=1598060710.1669732582&_u=4GBAAQAAAAAAACAAIC~&z=2030863370
142.250.150.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-175061327-2&cid=2056121956.1669732582&jid=611161205&gjid=1367751123&_gid=1598060710.1669732582&_u=4GBAAQAAAAAAACAAIC~&z=2030863370
IP 142.250.150.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-175061327-2&cid=2056121956.1669732582&jid=611161205&gjid=1367751123&_gid=1598060710.1669732582&_u=4GBAAQAAAAAAACAAIC~&z=2030863370 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://app.audiopulsar.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 29 Nov 2022 14:36:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kimcartoon.li/Ads/geniee300a.aspx
104.26.11.167200 OK 7.6 kB URL HTTP/2 kimcartoon.li/Ads/geniee300a.aspx
IP 104.26.11.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5db3c275e431fe50d1377bd00b5f5ef4
1745471a5321abdfebcd5ad62c30cf69cc82bfd8
611559873971f832114d75c06354fee8046baa33d9495c7951feaaf35e0ca7e0
GET /Ads/geniee300a.aspx HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html; charset=utf-8
cache-control: private
access-control-allow-origin: http://kimcartoon.li
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zpOKKdt%2FL9eDP3h2ECTVmPEr8L8BwbfwWvEsFwn820wMnrM4rgn8nt2IuUFMYtj5SlYEyIXUr1nsOz1EnH%2FJQi2HI0pcsM%2FqUHl8ALDTwLq7JTFDtcKrYsK6AMvxNgA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c1326cd49b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash ea525efb5858f4987ca6f8b166429295
530ad6fb64e2574888ff7105eaa43314eb3d61ac
4d864e6e693fa9c989ecc25b39c8c8d6784a5eabf843f7b72ffb3420ff4ad6b6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 14:36:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 19:17:16 GMT
Expires: Tue, 29 Nov 2022 19:17:16 GMT
ETag: "530ad6fb64e2574888ff7105eaa43314eb3d61ac"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
js.genieessp.com/t/495/170/a1495170.js
222.230.178.129200 OK 3.5 kB URL HTTP/2 js.genieessp.com/t/495/170/a1495170.js
IP 222.230.178.129:0
ASN #2519 ARTERIA Networks Corporation
Hash 914ef40b60936d3ba03b230d7cb75be1
5fb1f544c01ce8a587c858da12c3c6975b3f3dbb
0539a0dde77c9946f170a00d552003d9346e340b0933035281a23a1f8f8696bb
GET /t/495/170/a1495170.js HTTP/1.1
Host: js.genieessp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 06:30:29 GMT
etag: W/"636c9a85-200e"
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 14:51:23 GMT
cache-control: max-age=900, private
content-encoding: gzip
X-Firefox-Spdy: h2
js.genieessp.com/t/495/179/a1495179.js
222.230.178.129200 OK 389 kB URL HTTP/2 js.genieessp.com/t/495/179/a1495179.js
IP 222.230.178.129:0
ASN #2519 ARTERIA Networks Corporation
Size 389 kB (388558 bytes)
Hash 270b59e7917828f11f66c88e17ab76a4
87890b116be1203f458f099de4c2de3ba0d667bb
d07fbdc370b3d2571239958b7a25506f325774783b327c111013bc3845f5e8ef
GET /t/495/179/a1495179.js HTTP/1.1
Host: js.genieessp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 06:30:27 GMT
etag: W/"636c9a83-200e"
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 14:51:23 GMT
cache-control: max-age=900, private
content-encoding: gzip
X-Firefox-Spdy: h2
playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713
192.173.28.17302 Found 471 B URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713
IP 192.173.28.17:0
Hash 2207ab1fdae468261065d6d1940de36a
de8ab78ddc98161a471ae809f02a899bd4b9e9e4
4687f2de930216bbba5a4ad386a3e0dd4ec17f2e9eb9982abdc92437b2cbedee
GET /api/idsync.js?stationId=170713 HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
date: Tue, 29 Nov 2022 14:36:23 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
set-cookie: uuid=45ad8677-e005-4044-9e8e-da4b22086e27; Domain=live.streamtheworld.com; Max-Age=2592000; Path=/
uuid-s=45ad8677-e005-4044-9e8e-da4b22086e27; Domain=live.streamtheworld.com; Max-Age=2592000; Path=/; Secure; SameSite=None
content-language: en-US
location: https://playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713&bounce=true
x-stw-server: van-strc-docker04_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 2207ab1fdae468261065d6d1940de36a
de8ab78ddc98161a471ae809f02a899bd4b9e9e4
4687f2de930216bbba5a4ad386a3e0dd4ec17f2e9eb9982abdc92437b2cbedee
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89541
Date: Tue, 29 Nov 2022 14:36:23 GMT
Etag: "6384ca60-1d7"
Expires: Wed, 30 Nov 2022 15:28:44 GMT
Last-Modified: Mon, 28 Nov 2022 14:49:04 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AG3ZrD2yl-tDSxNeYqFFZ1LBT7WSL16B_9KEZR8vlwnvp-VCtaLYrA==
Age: 2380
podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
52.4.184.63204 No Content 0 B URL HTTP/2 podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
IP 52.4.184.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1 HTTP/1.1
Host: podiums.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://app.audiopulsar.com/
Origin: https://app.audiopulsar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:23 GMT
x-powered-by: Express
access-control-allow-origin: https://app.audiopulsar.com
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
52.4.184.63200 OK 4.6 kB URL HTTP/2 podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
IP 52.4.184.63:0
Hash 80a3e62f91129a9cdf80fca43c26d101
ba06f46e27fc9317af1bb7c7e5429e760078809a
7037040c9161b2d432cecc5757589f83f57d6197c113646d75fc98e991126b14
POST /widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1 HTTP/1.1
Host: podiums.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 92
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://app.audiopulsar.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: public, max-age=43200
etag: W/"26ca-KvoDJ/9Bnqj6e9wmQcZtaanjyhE"
content-encoding: gzip
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 15 kB IP 104.21.84.149:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash bb9dcf20da73a8a7b4f13d03cf3e0dc2
a2d705b8ff0b289c95031e11a62233f04f9ae4c5
c57bdf9d3c9aedd95cf10f57b22f7ec17f5479455456987c96366f74c79f1b95
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1189
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GRQAAlq7tPSp3OfIjLoP5%2BOr85ns3Ya79Y5QWfEVHRB8TTBQehg3rM2TtIm2aFaFmZBJL0gY7SiIjt%2BWYlnUPWIC3RiN%2FCWqHcURGj4W8B4NrKvQg88RGh1pBD3DlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13292c4bb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kimcartoon.li/Content/css/upload-progress.css
104.26.11.167200 OK 8.5 kB URL HTTP/2 kimcartoon.li/Content/css/upload-progress.css
IP 104.26.11.167:0
File type ASCII text, with very long lines (613), with no line terminators
Hash 7bc89d5241a8ad7bb9e3dbe19b95b5ef
a300fdd9856798a85e652fb100704fe332520619
4e974931ae643b2858d49b67506a5cd53777674e050d5e5900caf4d88b198d59
GET /Content/css/upload-progress.css HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=669
etag: W/"70968e30d95cd01:0"
last-modified: Thu, 12 Mar 2015 15:28:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5CVjuB2kMj5Ejt2aRQXpkzA9o%2BdT4tInscaIAhgWW9EfFcW2BygZRbBo0CSOf3ZARlO7Ppw55dQZQNuylUIJIGxMGmsry8Q6QU5QwYCrDOOf8Zpfp4YVZI2GfuSeGvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8c9b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3cd0fd948abe36dde839876f320da5cb
43c48bcb33ef9acc08d774a8a24a696ad11a6170
84dc4aaf35014b9362f78eb3416cf9db24d049164f9b7b7a6ca3e39e3813de9f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1892
Cache-Control: max-age=123623
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:23 GMT
Etag: "6385516a-13a"
Expires: Thu, 01 Dec 2022 00:56:46 GMT
Last-Modified: Tue, 29 Nov 2022 00:25:14 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314
onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1669732582943
51.89.9.253204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=2a897e3f18e6769&cb=1669732582943
IP 51.89.9.253:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=2a897e3f18e6769&cb=1669732582943 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ialaddin.genieesspv.jp/yie/ld/jsk?zoneid=1495179&cb=9755925420&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0
133.186.12.17200 OK 19 kB URL HTTP/2 ialaddin.genieesspv.jp/yie/ld/jsk?zoneid=1495179&cb=9755925420&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0
IP 133.186.12.17:0
ASN #10010 TOKAI Communications Corporation
Hash c32d0e25f9da0eb9da1020cfc3b61d43
c80935c3ecb4b04d688bc270604037c8f7e02079
b0f1c5a0a0c39e923ef51097fffa9cf6ac5e5e9e8b8420fc6c76e32c1c270b92
GET /yie/ld/jsk?zoneid=1495179&cb=9755925420&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0 HTTP/1.1
Host: ialaddin.genieesspv.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: text/javascript; charset=UTF-8
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
content-encoding: gzip
X-Firefox-Spdy: h2
ialaddin.genieesspv.jp/yie/ld/jsk?zoneid=1495170&cb=17835262574&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0
133.186.12.17200 OK 5.6 kB URL HTTP/2 ialaddin.genieesspv.jp/yie/ld/jsk?zoneid=1495170&cb=17835262574&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0
IP 133.186.12.17:0
ASN #10010 TOKAI Communications Corporation
Hash ec644ce1314a4c45b34b71c1d8b733cf
2e42792ebdc9fe9703e12f8a548179a06b56d5a6
336bf9bc831b9c55e6c3ea37d3b9465cec6e96f6fc867018424b872b26b411ae
GET /yie/ld/jsk?zoneid=1495170&cb=17835262574&charset=UTF-8&loc=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&sw=1024&sh=1280&topframe=0 HTTP/1.1
Host: ialaddin.genieesspv.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: text/javascript; charset=UTF-8
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
content-encoding: gzip
X-Firefox-Spdy: h2
kimcartoon.li/Ads/geniee728.aspx
104.26.11.167200 OK 6.5 kB URL HTTP/2 kimcartoon.li/Ads/geniee728.aspx
IP 104.26.11.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5863350702d9a96b78d865bd5e6cf9bc
4bbaaaff7b002a192c19ca5d6e8a61af4481492d
d98fe05bf509465045fe4dc817b80878973f20eddf67ef7655a8f7812fd22ff2
GET /Ads/geniee728.aspx HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html; charset=utf-8
cache-control: private
access-control-allow-origin: http://kimcartoon.li
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z7%2Fs9C5vqVrrFewuSA%2FJ3mgnhPwJCrojmI08dqvRaIVZwsG6mAMhtAE%2F4e%2FZNkKgsvKMNRNYyxGh%2BvFiiwAnPfv66ERaR8dhn9hihhJPvFskt23t6T%2FzOWpC%2FSzPIos%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c1326cd45b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 7bb7a9e05d9175acfed67cf1000a5fce
d46c3ed61290110a2162cfbd73639a825f01e136
f0ac081e3ae61a9283f4e6a3e7ca4f75273f28f60b1673193fa907ed72935ea2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 00:11:59 GMT
Expires: Tue, 06 Dec 2022 00:11:58 GMT
Etag: "d46c3ed61290110a2162cfbd73639a825f01e136"
Cache-Control: max-age=552333,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c1349cf40b50f-OSL
tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&id=MTIZ
145.239.193.51200 OK 0 B URL HTTP/1.1 tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&id=MTIZ
IP 145.239.193.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wckr.php?ref=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&id=MTIZ HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-IPLB-Request-ID: 5B5A2A9A:192C_91EFC133:01BB_638618E8_372BB402:10554
X-IPLB-Instance: 29923
app.audiopulsar.com/css/app-748942c6.e1a912d4.css
194.242.11.186200 OK 3.3 kB URL HTTP/2 app.audiopulsar.com/css/app-748942c6.e1a912d4.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (4598), with no line terminators
Hash 46bc6292f067c180c9b0e784e3d218bb
a5937170097bbebb86df5c281beef1351f0d1fce
228783b9f6f2c37e7f5e67433017062ac8d6c0f5998437b5e15609c8473108f8
GET /css/app-748942c6.e1a912d4.css HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=10800
etag: W/"635ff7d9-11f6"
last-modified: Mon, 31 Oct 2022 16:29:13 GMT
cdn-storageserver: DE-169
cdn-fileserver: 89
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0c3b8c2658f9e0a6e0dd944abca78da0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 3.6 kB URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
File type ASCII text, with no line terminators
Hash 4e90a2adfe892d38cdb849538aaac4aa
858173c69ec25bdd74d9ccdacc931f16e835cdd9
584cc89c1486d617f2aefec1dae9cd9faca2c59e6ddcb167273802954c2976ac
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://kimcartoon.li
set-cookie: zc=8c2bcf0d-1bd7-4b3b-411a-501600dea17b; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%085%FB%18%A8%CC%01%26%BA%E0%AC%02%3D%07%02%1B%C2%04%8E%F6%26%B47%EA%98%E5%AB%F1%8E%87%CF%E4%5D%C6%96%AE%CC%A2%05%1B%84%F9%CD%5B%AC%C3%3E7%B5-3%17x%0FA%A0%F7h3%93%8C%D2%BF%15%8D%09%A0%F2%FD%DB%2F%00VY%18%BD%C5Q%87u%D5%15%E9; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 771c134b2fb8b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
143.204.42.64200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP 143.204.42.64:0
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Tue, 29 Nov 2022 02:56:44 GMT
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eDU2VNHKS6efUP-zGsdlWGxwU7yrkGVFH_9nuGLSHUhRZv7Rd2Qzgw==
Age: 41986
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 500536
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
23.36.77.24200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4686ea4ceef48bf4d7b06bf70fe2a6ef
6a1348d13eca8b7882c4679c53019a51f48a94fd
685fc19fe5c57ebff672b1a9c03ea8b85f78d37558cc6743a39baa034f852d0d
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32836
Cache-Control: public, max-age=7200
Expires: Tue, 29 Nov 2022 16:36:24 GMT
Date: Tue, 29 Nov 2022 14:36:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c98063a5875a4153829eaa80be458262
9522070e97907c1f147c44284e4d7d9591518fb5
ad8607d475238f00a7328e41f35d5f50595455bef11db64d45ead1a64bc261a2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD8607D475238F00A7328E41F35D5F50595455BEF11DB64D45EAD1A64BC261A2"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5292
Expires: Tue, 29 Nov 2022 16:04:36 GMT
Date: Tue, 29 Nov 2022 14:36:24 GMT
Connection: keep-alive
js.genieessp.com/j/rtct_adp_lib.20200515.min.js?GenieeDeliveryZoneName=gpb_1495180
222.230.178.129200 OK 5.9 kB URL HTTP/2 js.genieessp.com/j/rtct_adp_lib.20200515.min.js?GenieeDeliveryZoneName=gpb_1495180
IP 222.230.178.129:0
ASN #2519 ARTERIA Networks Corporation
Hash e36accd899882abbaf60b98f2562e74c
604bab0c41a96a5e3593c4f58857cd1deee8f09f
30f8ef7f4be90ea41540cae09d8ab4f1033192bc78264b33d1900669d58df622
GET /j/rtct_adp_lib.20200515.min.js?GenieeDeliveryZoneName=gpb_1495180 HTTP/1.1
Host: js.genieessp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: application/javascript
last-modified: Mon, 31 Oct 2022 05:11:38 GMT
etag: W/"635f590a-411a"
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 14:36:24 GMT
cache-control: max-age=31536000, private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4334032aadde00885f1ac8dc1b42475e
2eec08a9fa9ff03fae3d30078584d3540e70555a
969cbab753fcbc0692fc274ccdc93c5ea8be9797eac783fcdcc4d8976530c8b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4377
Cache-Control: max-age=103405
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Etag: "6384f8bd-1d7"
Expires: Wed, 30 Nov 2022 19:19:49 GMT
Last-Modified: Mon, 28 Nov 2022 18:06:53 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4ed4504c8b02fc509f234707dc77781f
19acd03459e36691bfe55062056b824e39033cb1
b83b1242e3991a8c4b50fc7218fc5f838baef5281a58f8c4d72409f10e5b9e32
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6581
Cache-Control: max-age=166800
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Etag: "6385e7c3-139"
Expires: Thu, 01 Dec 2022 12:56:24 GMT
Last-Modified: Tue, 29 Nov 2022 11:06:43 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
141.95.33.111200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=&gdpr_consent=
IP 141.95.33.111:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Tue, 29-Nov-2022 14:41:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Tue, 29 Nov 2022 14:36:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ps.eyeota.net/pixel?pid=4o6efvu&t=ajs&cat=858
3.124.210.90200 OK 0 B URL HTTP/1.1 ps.eyeota.net/pixel?pid=4o6efvu&t=ajs&cat=858
IP 3.124.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?pid=4o6efvu&t=ajs&cat=858 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=17192~DM; Domain=eyeota.net; Path=/; Expires=Tue, 29 Nov 2022 14:46:24 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Tue, 29 Nov 2022 14:36:24 GMT
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f970d6dec3dd070eec9891c48734697d
0a38dd6a838bd45531e327e60f39419d279d0b15
9c19ad2c409120a6be93e6af6c52ad3e7c44c6bc04f3c65751f2eab241bef78d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2144
Cache-Control: max-age=117017
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Etag: "638536a1-117"
Expires: Wed, 30 Nov 2022 23:06:41 GMT
Last-Modified: Mon, 28 Nov 2022 22:30:57 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1f951c76a672797efcc22b033e338dbf
de2ec91807f1abe09b0543ba9440ea246fe980fe
20bc8eb3adbc6db3517bf5bb332750ee5247907d84ea71121f8c33a602e8bde8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 06:01:44 GMT
Expires: Sun, 04 Dec 2022 06:01:43 GMT
Etag: "de2ec91807f1abe09b0543ba9440ea246fe980fe"
Cache-Control: max-age=400518,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c134c7f45b4fd-OSL
id5-sync.com/api/config/prebid
141.95.33.111200 134 B URL HTTP/1.1 id5-sync.com/api/config/prebid
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99be75395b3c89cdd6781761e5a85ad2
225a8b587c3545be2581aa9ac2b630b51679d7be
559ffc5fa5eadd77f8bfaaeb793648763e312a17391d8e6bbb7d8d3dec2147e1
POST /api/config/prebid HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 95
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Tue, 29 Nov 2022 14:36:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
playerservices.live.streamtheworld.com/api/idsync.js?stationId=438633
192.173.28.17302 Found 1.7 kB URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=438633
IP 192.173.28.17:0
File type ASCII text, with very long lines (820)
Hash dc37c82543b8c8c1dc9ec7ca49ed1fa4
2d30cfa8cfcd00b881b18141ba320474c64da344
e68a72c7d036b8056bef4b19487464973f8c001006b3616bfa5868572f384aea
GET /api/idsync.js?stationId=438633 HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
date: Tue, 29 Nov 2022 14:36:23 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
set-cookie: uuid=fb4fff09-e715-4125-913a-0e9d1a3000be; Domain=live.streamtheworld.com; Max-Age=2592000; Path=/
uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be; Domain=live.streamtheworld.com; Max-Age=2592000; Path=/; Secure; SameSite=None
content-language: en-US
location: https://playerservices.live.streamtheworld.com/api/idsync.js?stationId=438633&bounce=true
x-stw-server: van-strc-docker05_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
storageaudiobursts.azureedge.net/site/images/stationIcons/12494.png
23.36.77.32200 OK 17 kB URL HTTP/2 storageaudiobursts.azureedge.net/site/images/stationIcons/12494.png
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash d2031037a1eaf04c8b584a68b6ade1c8
24f8873671880ab52ef0db89f67f2ce84e0feeda
2038702af0dcb43042856f47650e43a29c48c3d7770007550626159286ff1dfc
GET /site/images/stationIcons/12494.png HTTP/1.1
Host: storageaudiobursts.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-md5: otH5wGEwJcxjGUSUocCAhA==
last-modified: Wed, 20 May 2020 12:34:39 GMT
accept-ranges: bytes
etag: "0x8D7FCBA29E80149"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 04ab4d09-601e-00d3-591a-7dc0be000000
x-ms-version: 2014-02-14
x-ms-meta-cbmodifiedtime: Wed, 20 May 2020 12:31:00 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
content-length: 17356
cache-control: max-age=31393219
date: Tue, 29 Nov 2022 14:36:24 GMT
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
178.250.0.157200 OK 9.3 kB URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP 178.250.0.157:0
Hash 86dd05c7a0b6001bb7644b313af7c203
ac3b706c27e77c39337c91399b8f0aaf8acc502c
94b57df7d34e83832bc5a7cc5ddad74eb960c2669bed76a62765a0eeae014cbb
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 818211
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657
51.158.28.82200 OK 118 B URL HTTP/1.1 kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657
IP 51.158.28.82:0
File type JSON data\012- , ASCII text, with very long lines (317), with no line terminators
Hash 350908fb75d72054dbfb7a637c6f567a
5014c5a3885141633ce05e86424d4f21a1f3ef44
c368901d92f3ab884788033b4863b060053affe897a504901430c7e9c5970d20
GET /api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657 HTTP/1.1
Host: kvt.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: https://kimcartoon.li
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 755842c4015cdf23ce448636e32277fb
ddb14148163258686b5a6c025fe97d3c35317c9a
593d877e82d7a28ad48561c84375e6dae5363877df5c70bd823dac6c39bbd385
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 220
Cache-Control: max-age=97838
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Etag: "6384f33a-138"
Expires: Wed, 30 Nov 2022 17:47:02 GMT
Last-Modified: Mon, 28 Nov 2022 17:43:22 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c0919b89d91607ef45a840b99d9a3957
0be32a705f7f95c5c9440a976f0ecf9f02f863cd
9ce44f6d8f5a572d9c0e3abc4a012bb03d19cc5f97af50bc6b2ec4927127006f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9CE44F6D8F5A572D9C0E3ABC4A012BB03D19CC5F97AF50BC6B2EC4927127006F"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Tue, 29 Nov 2022 15:29:00 GMT
Date: Tue, 29 Nov 2022 14:36:24 GMT
Connection: keep-alive
app.audiopulsar.com/js/chunk-vendors-f74e1153.04d62d9d.js
194.242.11.186200 OK 28 kB URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-f74e1153.04d62d9d.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65313)
Hash f347d86a5eeda068f2978be37f5d2111
dc2bc967bc1b0191596db1bb9ecfd240d02f998b
42460bb1903d6667374284fa1714153cffc439f9264b98605c06a039b447e121
GET /js/chunk-vendors-f74e1153.04d62d9d.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61fcbdaf-101c0"
last-modified: Fri, 04 Feb 2022 05:46:23 GMT
cdn-storageserver: DE-200
cdn-fileserver: 246
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 365230892b084c0c0e028a80dee7a964
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Zq_GS180M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQkNNUkhDSmF1aU5RUzUlMkZaanZpN0Y5alcxJTJGV3UzZFVMYVJrJTJCM2hRNkVFbg; expires=Sun, 24 Dec 2023 14:36:24 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://kimcartoon.li
server-processing-duration-in-ticks: 398296
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
162.19.138.117200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.117:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 59b737e2248cd40b920a9c9262870791
362fe0caf5a8520b05bcf0d5fc8865dd51cd290c
fd3730b54b485e45ca1b5c5ea73845f50d26c68b66b41817e7125f3a08ab0d87
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://kimcartoon.li
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Tue, 29 Nov 2022 14:36:23 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
id5-sync.com/g/v2/102.json
141.95.33.111200 216 B URL HTTP/1.1 id5-sync.com/g/v2/102.json
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3431faa3d8a84e20e36fdab2502e5eba
89ccb85217ce0eca460491ebf9ca4a9bda7a96fa
9839ebc48d8bf742f1d42121f1fe732f7b6a289dadd0b45a2e11301bc6de059e
POST /g/v2/102.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 347
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Tue, 29 Nov 2022 14:36:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ialaddin.genieesspv.jp/yie/ld/acs?ver=1&dspid=rtbhouse&v=y8dVQGccMh9dJPpW0SybA1dXL_B3oS0i-8hHB2VQNmnU_HI1PtCwxFnFrjK270yCwHDOj-NeO7_ZQhaOOxJ-fQ&format=gif
133.186.12.17200 OK 43 B URL HTTP/2 ialaddin.genieesspv.jp/yie/ld/acs?ver=1&dspid=rtbhouse&v=y8dVQGccMh9dJPpW0SybA1dXL_B3oS0i-8hHB2VQNmnU_HI1PtCwxFnFrjK270yCwHDOj-NeO7_ZQhaOOxJ-fQ&format=gif
IP 133.186.12.17:0
ASN #10010 TOKAI Communications Corporation
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2de852656da1e9d7b33fbc20c6239a70
78f42f9de352cd219ac1bf4c72f44abea5dd66cc
dcd4a5ac70faae2eb4af611d90b3643154959a5b905720cc0875bd5d1399088e
GET /yie/ld/acs?ver=1&dspid=rtbhouse&v=y8dVQGccMh9dJPpW0SybA1dXL_B3oS0i-8hHB2VQNmnU_HI1PtCwxFnFrjK270yCwHDOj-NeO7_ZQhaOOxJ-fQ&format=gif HTTP/1.1
Host: ialaddin.genieesspv.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: image/gif
set-cookie: rtbhouse=0; expires=Wed, 30 Nov 2022 14:36:24 GMT; path=/; domain=.genieesspv.jp; SameSite=None; Secure
gid=11303f65af5884a18bda641ed2b121d1; expires=Fri, 28 Nov 2025 14:36:24 GMT; path=/; domain=.genieesspv.jp; SameSite=None; Secure
p3p: CUR ADM OUR NOR STA NID
content-length: 43
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
s8t.teads.tv/logs/publishers/interface?%7B%22source%22%3A%22script-analytics-tag%22%2C%22errorMessage%22%3A%22not%20top%20window%22%2C%22exception%22%3A%22https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx%22%2C%22analyticsTagId%22%3A%22PUB_11398%22%2C%22scriptVersion%22%3A%228480ba3%22%7D
23.195.255.234200 OK 0 B URL HTTP/2 s8t.teads.tv/logs/publishers/interface?%7B%22source%22%3A%22script-analytics-tag%22%2C%22errorMessage%22%3A%22not%20top%20window%22%2C%22exception%22%3A%22https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx%22%2C%22analyticsTagId%22%3A%22PUB_11398%22%2C%22scriptVersion%22%3A%228480ba3%22%7D
IP 23.195.255.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /logs/publishers/interface?%7B%22source%22%3A%22script-analytics-tag%22%2C%22errorMessage%22%3A%22not%20top%20window%22%2C%22exception%22%3A%22https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx%22%2C%22analyticsTagId%22%3A%22PUB_11398%22%2C%22scriptVersion%22%3A%228480ba3%22%7D HTTP/1.1
Host: s8t.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
content-length: 0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000
expires: Tue, 29 Nov 2022 14:36:24 GMT
cache-control: max-age=0, no-cache
pragma: no-cache
date: Tue, 29 Nov 2022 14:36:24 GMT
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04
142.250.74.34302 Found 341 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f7231b67656a5be77c818445540516be
85269ebfd2678bae35049bccbebf7d636e322aef
357de7c7f30b586df572bc89c9a444238e88b66efb09b31ef7948412f6e08f37
GET /pixel?google_nid=captify_dmp&google_cm&dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=captify_dmp&google_cm=&dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04&google_tc=
date: Tue, 29 Nov 2022 14:36:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 341
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 29-Nov-2022 14:51:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
104.26.11.167200 OK 13 kB URL HTTP/2 kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
IP 104.26.11.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7760), with CRLF line terminators
Hash 4948146fd49fcdb7ec65e0b1e9fe90f6
127b7fee6a4f2e68911d83936422c2fa7e99d9ed
aba24e818d3c2bb9297b56c0a8c6c85b8da62a9210022124199fb7640ee785e9
Analyzer Verdict Alert fortinet Malware
GET /Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: text/html; charset=utf-8
cache-control: private
set-cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; path=/; HttpOnly; SameSite=Lax
k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d; path=/
access-control-allow-origin: http://kimcartoon.li
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ixm3swn%2BrMSL%2FfBFo82qHdWSYDT2WJZpHXPFp7yLN2QwDltco0pqDt%2BE2vMY9aDA5hxsRnHDdLAPGvPY2hbiiCmqWHOAJePhGLjKOuWxyR1HM6nwnfKwHaMvuGPpsWg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c131fab52b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
216.58.207.234200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (32034)
Hash c54aac7ef64c39b4f384e0d5771d3b46
d3e059104378a3844862a5ed12a13f5d423e86b6
3e1b5002dd64d185f806edeefd333348f423584d876cfc966b5c13884c8fe3da
GET /ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 22:25:29 GMT
expires: Sun, 26 Nov 2023 22:25:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 231055
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 35b36ab226607d473d04bec1e80bf219
2ed96447788f7e3e96bb21d1a9af2fb9fcf2e04a
87bdccfee299d9955d43a988031761bf622ed52a78e7c6d02ea08c3facd0f938
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 03 Dec 2022 13:12:29 GMT
ETag: "2ed96447788f7e3e96bb21d1a9af2fb9fcf2e04a"
Last-Modified: Tue, 29 Nov 2022 13:12:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1630
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c134f0e64b500-OSL
onetag-sys.com/prebid-request
51.89.9.253200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.89.9.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4442
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://kimcartoon.li
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12763%26ref%3Dhttps%253A%252F%252Fkimcartoon.li%252FCartoon%252FThe-Amazing-World-of-Gumball-Season-01%252FEpisode-001-002-The-Responsible-The-DVD%253Fid%253D10657%26url%3Dhttps%253A%252F%252Fkimcartoon.li%252FAds%252Fgeniee728.aspx%26hn_ver%3D40%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
37.252.171.52307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12763%26ref%3Dhttps%253A%252F%252Fkimcartoon.li%252FCartoon%252FThe-Amazing-World-of-Gumball-Season-01%252FEpisode-001-002-The-Responsible-The-DVD%253Fid%253D10657%26url%3Dhttps%253A%252F%252Fkimcartoon.li%252FAds%252Fgeniee728.aspx%26hn_ver%3D40%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 37.252.171.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fs.cpx.to%2Fan_fire%3Fapp_nexus_uid%3D%24UID%26pid%3D12763%26ref%3Dhttps%253A%252F%252Fkimcartoon.li%252FCartoon%252FThe-Amazing-World-of-Gumball-Season-01%252FEpisode-001-002-The-Responsible-The-DVD%253Fid%253D10657%26url%3Dhttps%253A%252F%252Fkimcartoon.li%252FAds%252Fgeniee728.aspx%26hn_ver%3D40%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 29 Nov 2022 14:36:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12763%2526ref%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FCartoon%25252FThe-Amazing-World-of-Gumball-Season-01%25252FEpisode-001-002-The-Responsible-The-DVD%25253Fid%25253D10657%2526url%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FAds%25252Fgeniee728.aspx%2526hn_ver%253D40%2526fid%253D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
AN-X-Request-Uuid: 83747647-3329-4892-ba5d-43f66ef41423
Set-Cookie: uuid2=3857877495245039952; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 27-Feb-2023 14:36:24 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
IP 142.250.74.3:0
Hash 50a4dfb18070c3231112cb51c7fc6637
cb5d58d812c45d3bd4a5806bdd61fed6f521d421
b5f72844b3cf360c453a4dfa7bbfbdd3602d54f2db5d26ada83daa7242e00a25
POST /s/gts1d4/nqDaHRB8gug HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
id5-sync.com/g/v2/12.json
141.95.33.111200 216 B URL HTTP/1.1 id5-sync.com/g/v2/12.json
IP 141.95.33.111:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 81b1e5c5eb0a16b9c8d1fd68b9103087
2d0b7ae87c24445c525daea309f21e86a8116edf
5467384155e1b72f248baa0de271c0d690505232d65f579b6d24771f6e86d5e7
POST /g/v2/12.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 417
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Tue, 29 Nov 2022 14:36:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0a7a193b3750d36f0c7200b84287e68c
0deec385bbbae07281c65e6c292e5982dfeedd9b
8eb178c3fdb66956af186d436df4183cab05699565c15bb6eec4b50b90b4870b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1783
Cache-Control: max-age=156602
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Etag: "6385d2ab-1d7"
Expires: Thu, 01 Dec 2022 10:06:26 GMT
Last-Modified: Tue, 29 Nov 2022 09:36:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
IP 142.250.74.3:0
Hash 50a4dfb18070c3231112cb51c7fc6637
cb5d58d812c45d3bd4a5806bdd61fed6f521d421
b5f72844b3cf360c453a4dfa7bbfbdd3602d54f2db5d26ada83daa7242e00a25
POST /s/gts1d4/nqDaHRB8gug HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:24 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
match.adsrvr.org/track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=0fkciot&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
54.230.111.4200 OK 636 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP 54.230.111.4:0
File type ASCII text, with very long lines (510)
Hash afa4dfcec8eb638a16d0aec750d2e31c
b2959098eded64cfea759feb2c2d1121bd57ecdf
fd507453e31d2c2b9640d98dcbc33449cc4526a4fa1c193c53414efbec8ab3da
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Tue, 29 Nov 2022 14:10:27 GMT
cache-control: max-age=3600
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ub0_EBmPYx2MtxeWb7CBEhVI2_YObzABxejLu42OkDTNZdKj5KFO8w==
age: 1557
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4ec7a8448287459c3db61a15e098a518
941b78a56d3c59ada17c9bb6ade518d1eeafa2b7
21e03d8abe1dbdfed2b614709203f1b9c82c597ebd5938d0e043177129c1a188
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4227
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:25 GMT
Last-Modified: Tue, 29 Nov 2022 13:25:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
IP 142.250.74.3:0
Hash 50a4dfb18070c3231112cb51c7fc6637
cb5d58d812c45d3bd4a5806bdd61fed6f521d421
b5f72844b3cf360c453a4dfa7bbfbdd3602d54f2db5d26ada83daa7242e00a25
POST /s/gts1d4/nqDaHRB8gug HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.4dex.io/bids.gif?adu_code=26711&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=19&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
35.241.34.106204 No Content 0 B URL HTTP/2 c.4dex.io/bids.gif?adu_code=26711&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=19&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
IP 35.241.34.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bids.gif?adu_code=26711&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=19&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqDaHRB8gug
IP 142.250.74.3:0
Hash 50a4dfb18070c3231112cb51c7fc6637
cb5d58d812c45d3bd4a5806bdd61fed6f521d421
b5f72844b3cf360c453a4dfa7bbfbdd3602d54f2db5d26ada83daa7242e00a25
POST /s/gts1d4/nqDaHRB8gug HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 45ea067172e4e5383a1317979a563c7e
f8b6c71cc627c75e7a1bd6450fc95a9d2a3d4720
56f038159de82d4d4d7ebb94424ef1a19976f3531591dffeb442feb8041b3fe7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56F038159DE82D4D4D7EBB94424EF1A19976F3531591DFFEB442FEB8041B3FE7"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4173
Expires: Tue, 29 Nov 2022 15:45:58 GMT
Date: Tue, 29 Nov 2022 14:36:25 GMT
Connection: keep-alive
c.4dex.io/bids.gif?adu_code=26322&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=728x90%7C320x50%7C300x50%7C320x100%7C300x100&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=1&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
35.241.34.106204 No Content 0 B URL HTTP/2 c.4dex.io/bids.gif?adu_code=26322&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=728x90%7C320x50%7C300x50%7C320x100%7C300x100&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=1&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
IP 35.241.34.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bids.gif?adu_code=26322&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=728x90%7C320x50%7C300x50%7C320x100%7C300x100&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=1&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1aa592d7405d4112fa94b0155a914ad9
4cda77d3105ad70d1bcc8b5716c5f744488769ed
fa671666e0c118b708ee32ebf972accce8815a3a5ce5c1476d912a75e60c76a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1799
Cache-Control: max-age=111246
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "63852171-117"
Expires: Wed, 30 Nov 2022 21:30:31 GMT
Last-Modified: Mon, 28 Nov 2022 21:00:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
play.adtonos.com/ptr/GPJApFZhQsAzzJZzn/px.gif
51.89.155.117200 OK 42 B URL HTTP/1.1 play.adtonos.com/ptr/GPJApFZhQsAzzJZzn/px.gif
IP 51.89.155.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ptr/GPJApFZhQsAzzJZzn/px.gif HTTP/1.1
Host: play.adtonos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: image/gif
Content-Length: 42
Connection: close
X-Powered-By: Express
Set-Cookie: ulid=01GK1X2KN4RQFKGKAX91H4K52V; Max-Age=31536000; Domain=.adtonos.com; Path=/; Expires=Wed, 29 Nov 2023 14:36:25 GMT; HttpOnly; Secure; SameSite=None
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Cache-Control: no-cache, no-store, must-revalidate, no-transform
c.4dex.io/bids.gif?adu_code=26300&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=2&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
35.241.34.106204 No Content 0 B URL HTTP/2 c.4dex.io/bids.gif?adu_code=26300&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=2&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2
IP 35.241.34.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bids.gif?adu_code=26300&evt=init&ts=1669732583775&pv_id=60676592-6373-49a0-872c-553474be160c&amts=ban&asizes=300x250%7C300x168&url=undefined&auct_id=cad4790b-6730-45c2-9f68-ccf6b9194ddb&auct_start=1669732583719&auct_end=-1&v=1&js_late=1&js_ts=1669732583649&navs_ts=1669732575874&partid=2076&bidders=sharethrough%2Cadagio%2Ceplanning%2Csmilewanted%2Cadyoulike%2Conetag%2Coutbrain%2Camx%2Cmoneytizer%2Cadtelligent%2Cbetween%2C33across%2Cimprovedigital&cpm=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cpm_adjst_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&net_rev=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cur_rate=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&ttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&bttr=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&sts=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&w=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&h=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&deal=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&timeout=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&won=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&no_bid=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&crea_id=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&mt=%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C%2C&cat=&dvc=&env=&org_id=1015&pgtyp=&plcmt=2&site=92736-kimcartoon-li&subcat=&os=&brwsr=&u_ts=&adgjsv=1.16.2 HTTP/1.1
Host: c.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
expires: -1
cache-control: no-cache
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5899a3c12098cde7619c607042af4b69
6f8a77d704a0d8533ec3529c95e338aad107e9f8
eb542ca894fdf25267d7d3003f067d48930a9799df4944a721c16d9b316cd532
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143175
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "638591fd-1d7"
Expires: Thu, 01 Dec 2022 06:22:40 GMT
Last-Modified: Tue, 29 Nov 2022 05:00:45 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mL3C1c8hPaCFZmBUAomclnx-NMwoc2eowSfjVrwqzgvr20vQq9rTgA==
Age: 4915
ialaddin.genieesspv.jp/yie/ld/acs?ver=1&dspid=yeahtargeter&v=y8dVQGccMh9dJPpW0SybA6MIML7dwgQrB6ifUNG9URdxZIHr4r867GLm6U7eYjpVSkhhDXYqk2j4CNceJ1b_Ow&format=gif
133.186.12.17200 OK 43 B URL HTTP/2 ialaddin.genieesspv.jp/yie/ld/acs?ver=1&dspid=yeahtargeter&v=y8dVQGccMh9dJPpW0SybA6MIML7dwgQrB6ifUNG9URdxZIHr4r867GLm6U7eYjpVSkhhDXYqk2j4CNceJ1b_Ow&format=gif
IP 133.186.12.17:0
ASN #10010 TOKAI Communications Corporation
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2de852656da1e9d7b33fbc20c6239a70
78f42f9de352cd219ac1bf4c72f44abea5dd66cc
dcd4a5ac70faae2eb4af611d90b3643154959a5b905720cc0875bd5d1399088e
GET /yie/ld/acs?ver=1&dspid=yeahtargeter&v=y8dVQGccMh9dJPpW0SybA6MIML7dwgQrB6ifUNG9URdxZIHr4r867GLm6U7eYjpVSkhhDXYqk2j4CNceJ1b_Ow&format=gif HTTP/1.1
Host: ialaddin.genieesspv.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Cookie: rtbhouse=0; gid=11303f65af5884a18bda641ed2b121d1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: image/gif
set-cookie: yeahtargeter=0; expires=Wed, 30 Nov 2022 14:36:24 GMT; path=/; domain=.genieesspv.jp; SameSite=None; Secure
gid=d4aebc661701156efb044bfe80a09851; expires=Fri, 28 Nov 2025 14:36:24 GMT; path=/; domain=.genieesspv.jp; SameSite=None; Secure
p3p: CUR ADM OUR NOR STA NID
content-length: 43
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5899a3c12098cde7619c607042af4b69
6f8a77d704a0d8533ec3529c95e338aad107e9f8
eb542ca894fdf25267d7d3003f067d48930a9799df4944a721c16d9b316cd532
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141683
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "638591fd-1d7"
Expires: Thu, 01 Dec 2022 05:57:48 GMT
Last-Modified: Tue, 29 Nov 2022 05:00:45 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -o31V6aqELlE77C_NKG_WQnces7hm2Blh4qffHjC6zyf66X0-F0ErA==
Age: 3423
www.cloudflare.com/cdn-cgi/trace
104.16.124.96200 OK 737 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP 104.16.124.96:0
Hash b3d40d2575c05f924c33de1027827f9a
07eeac307cc3644d6d8703e77e15e218638c199b
a2c9c64d29e717ac3d4bb45e3090f2fd569d767f7845f75d9eee65842b1e61ab
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 771c135159031bfa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.72.44.230204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.72.44.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1042
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:25 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5899a3c12098cde7619c607042af4b69
6f8a77d704a0d8533ec3529c95e338aad107e9f8
eb542ca894fdf25267d7d3003f067d48930a9799df4944a721c16d9b316cd532
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143492
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "638591fd-1d7"
Expires: Thu, 01 Dec 2022 06:27:57 GMT
Last-Modified: Tue, 29 Nov 2022 05:00:45 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pznXpBTN4PYdD1hVld3ohwW342EJtvaHyVhhx3z1scj39P_PsucMVQ==
Age: 5232
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5899a3c12098cde7619c607042af4b69
6f8a77d704a0d8533ec3529c95e338aad107e9f8
eb542ca894fdf25267d7d3003f067d48930a9799df4944a721c16d9b316cd532
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143242
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "638591fd-1d7"
Expires: Thu, 01 Dec 2022 06:23:47 GMT
Last-Modified: Tue, 29 Nov 2022 05:00:45 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2Zbz6ukWKszrlp5dNkyPZuJBjKCDXkQlVt6jYAGHx5eF4SL6nIYjfQ==
Age: 4982
pbjs.e-planning.net/hb/1/2a156/1/kimcartoon.li/ROS?ct=1&r=pbjs&rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8
185.172.90.251200 OK 113 B URL HTTP/2 pbjs.e-planning.net/hb/1/2a156/1/kimcartoon.li/ROS?ct=1&r=pbjs&rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8
IP 185.172.90.251:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 3bfccc67898740a5f722b797a88ae52d
f9d0c46c64e7ba9a2911deadedc99c3054f61a85
f48020420e6f97bfa5fb1b18e2e17440a0545eefd39c40291848cc11ea6d4f06
GET /hb/1/2a156/1/kimcartoon.li/ROS?ct=1&r=pbjs&rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kimcartoon.li
Content-Type: text/plain
Referer: https://kimcartoon.li/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: application/json
cache-control: max-age=0, no-cache
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
expires: Tue, 29 Nov 2022 14:36:25 GMT
content-length: 113
access-control-allow-origin: https://kimcartoon.li
x-sid: AMS-928
X-Firefox-Spdy: h2
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2371
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://kimcartoon.li
cache-control: max-age=0, private, must-revalidate
date: Tue, 29 Nov 2022 14:36:25 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.72.44.230204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.72.44.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1042
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:25 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=1&formatid=26322&size=desktop
185.76.9.19200 OK 818 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=1&formatid=26322&size=desktop
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (624), with no line terminators
Hash ff4114fc001320eedad878008667110b
d47cac3b86af1c86a8c62a9c38d3543abe694ab8
8bbb8de645ccab56712cf9255b150e35dc4c2b168f32656c227bf089be0b8c46
GET /bidder1/moneybid.js?siteid=92736&adid=1&formatid=26322&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://kimcartoon.li
cache-control: max-age=604800
x-accel-expires: @1670308120
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ06V5//UHIAAA
x-77-nzt-ray: c0a4cc28bddd1578e8188663d9cc0630
x-cache: HIT
x-age: 29264
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 234a4a3c9c97d9e0e2cf3ad636b261a2
c86bd7e17dadc388154f74cb8cf8428afb2e5cd1
03c44be1aeb057ccc44b023524358f834522f123189eafdc01a9d5e06b16e225
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:09:16 GMT
Expires: Tue, 06 Dec 2022 04:09:15 GMT
Etag: "c86bd7e17dadc388154f74cb8cf8428afb2e5cd1"
Cache-Control: max-age=566569,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c1351bdf5b4fd-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4b06cc1948f9820d1af3990cc85740a3
db0f46fb31f7d2f64bdd8ef6f8ce5dae6f0c426f
194291f7e21753bf38cb6dab80514d2858db9b09c56329d78f1d33d45931910f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5273
Cache-Control: max-age=133805
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "63856bfd-1d7"
Expires: Thu, 01 Dec 2022 03:46:30 GMT
Last-Modified: Tue, 29 Nov 2022 02:18:37 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.72.44.230204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.72.44.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1094
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:25 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
X-Firefox-Spdy: h2
btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
3.72.44.230204 No Content 0 B URL HTTP/2 btlr.sharethrough.com/universal/v1?supply_id=WYu2BXv1
IP 3.72.44.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /universal/v1?supply_id=WYu2BXv1 HTTP/1.1
Host: btlr.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1025
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:25 GMT
vary: Origin
cache-control: private, no-cache, no-store, must-revalidate
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
X-Firefox-Spdy: h2
pbjs.e-planning.net/pbjs/1/2a156/1/kimcartoon.li/ROS?rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8
185.172.90.251302 Found 1.0 kB URL HTTP/2 pbjs.e-planning.net/pbjs/1/2a156/1/kimcartoon.li/ROS?rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8
IP 185.172.90.251:0
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (787)
Hash a6fdeeec2dc46de36ee5ffbd5536d633
d2ef864544b7cc2593a966efb48040beabbe5855
693a77ce38e6adc54eb429cc56b99559e933a6c088a70d741f58d56d03e98179
GET /pbjs/1/2a156/1/kimcartoon.li/ROS?rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=iso-8859-1
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
set-cookie: CT=1; path=/; SameSite=None; Secure
location: /hb/1/2a156/1/kimcartoon.li/ROS?ct=1&r=pbjs&rnd=0.3296414623667242&e=26322%3A320x50%2C300x50%2C728x90%2C320x100%2C300x100%2B26706%3A160x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168&ur=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&pbv=7.22.0&ncb=1&vs=FFFF&crs=UTF-8&fr=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&e_criteoId=ojspqV9SWk4xVjJPTGRiZzBlazk3T1MxVm52b0xreDVGRFhiRVZUV2JpMWRIWWR1VCUyRmcxeVBHUkhUQnJDeHNDUDlOWFN3ZGRoaWYwSjVzaUkwclgzRSUyQnNYVHclM0QlM0Q&e_pubcid=15e85eba-be25-449e-87b4-0a0eb33bf9e8
access-control-allow-origin: https://kimcartoon.li
x-sid: AMS-928
X-Firefox-Spdy: h2
play.adtonos.com/onaudience/redir?redir=https%3A%2F%2Fpixel.onaudience.com%2F%3Fpartner%3D163%26mapped%3D%40UUID%40
51.89.155.117302 Found 97 B URL HTTP/1.1 play.adtonos.com/onaudience/redir?redir=https%3A%2F%2Fpixel.onaudience.com%2F%3Fpartner%3D163%26mapped%3D%40UUID%40
IP 51.89.155.117:0
File type ASCII text, with no line terminators
Hash 54c3a031585c911ee7ea7a91f075e294
83060ff949ccfb7f47276fba8b8494ac0aee3408
33b29d94b79720a316ad5b91e9823efb0a8467b6c1ebd13481d78a4e8c5fd94c
GET /onaudience/redir?redir=https%3A%2F%2Fpixel.onaudience.com%2F%3Fpartner%3D163%26mapped%3D%40UUID%40 HTTP/1.1
Host: play.adtonos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: ulid=01GK1X2KN4RQFKGKAX91H4K52V
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 97
Connection: close
X-Powered-By: Express
Set-Cookie: ulid=01GK1X2KN4RQFKGKAX91H4K52V; Max-Age=31536000; Domain=.adtonos.com; Path=/; Expires=Wed, 29 Nov 2023 14:36:25 GMT; HttpOnly; Secure; SameSite=None
Location: https://pixel.onaudience.com/?partner=163&mapped=01GK1X2KN4RQFKGKAX91H4K52V
Vary: Accept
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Cache-Control: no-cache, no-store, must-revalidate, no-transform
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9eeb60dd40eeff0a53121aa1c4be9ed6
483fdce4a6e0d12cecf2df5daa36573a29dfa6fe
8c59ff0b6f38c78193746724f46517451263e29006954c5bb1e7cb551cf9d835
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127026
Date: Tue, 29 Nov 2022 14:36:25 GMT
Etag: "6385543a-1d7"
Expires: Thu, 01 Dec 2022 01:53:31 GMT
Last-Modified: Tue, 29 Nov 2022 00:37:14 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YJWv9uOsqIIfn3WdpFOdhTjQS99MCSUrWizEZzJ_rpvN1_k8VoULpw==
Age: 4577
yield-op-idsync.live.streamtheworld.com/idsync.js?stn=INSTREAMATIC
208.80.55.87200 OK 2.2 kB URL HTTP/2 yield-op-idsync.live.streamtheworld.com/idsync.js?stn=INSTREAMATIC
IP 208.80.55.87:0
Hash 175f1654a7980202c02b63d14fee978a
03b3ff5fcb34cabe505651131bf35449cf2c9ea2
a9b46a30f9447aa7c9544987e8ccddecfd4879386a218cd4d3886e5fbe3f9a42
GET /idsync.js?stn=INSTREAMATIC HTTP/1.1
Host: yield-op-idsync.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 2168
content-type: application/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-Firefox-Spdy: h2
yield-op-idsync.live.streamtheworld.com/idsync.js?stn=PODIUM_AUDIO
208.80.55.87200 OK 2.9 kB URL HTTP/2 yield-op-idsync.live.streamtheworld.com/idsync.js?stn=PODIUM_AUDIO
IP 208.80.55.87:0
Hash c815421e65df52bad3d59d92578cddfa
aa0a6acc0bfcf3dabfe22380667c8c5c1099cfc9
cde4a05cdc3a481963ea8973bb41612e87ab406310544bdf4a0957a0c474b884
GET /idsync.js?stn=PODIUM_AUDIO HTTP/1.1
Host: yield-op-idsync.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 2887
content-type: application/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f2fc48e2c47c481ce2307207e472e9fb
adc216d1410de3784479a17245d6dec49d5da482
9ec388f1788793b21eda11afd7aad3fb9dc9436916c3f8140e92ae26d98bcf22
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 15:11:53 GMT
Expires: Sat, 03 Dec 2022 15:11:52 GMT
Etag: "adc216d1410de3784479a17245d6dec49d5da482"
Cache-Control: max-age=347126,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c13515a59b50f-OSL
ad.360yield.com/pb
18.185.226.213204 No Content 0 B IP 18.185.226.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1374
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 29 Nov 2022 14:36:25 GMT
access-control-allow-origin: https://kimcartoon.li
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
b1h.zemanta.com/api/bidder/prebid/bid/
70.42.32.31204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 70.42.32.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 962
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://kimcartoon.li
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 317 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 1eabd8d0b6736b87c377a672e58006c3
dff3391444b6cabd02a71558a464228d51ba9df7
5e251e50bdeda9dcd447541d39c16891445cb0521d11a2aebccac6f50cf7ee14
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: application/ocsp-response
Content-Length: 317
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 10:03:22 GMT
Expires: Sun, 04 Dec 2022 10:03:21 GMT
Etag: "dff3391444b6cabd02a71558a464228d51ba9df7"
Cache-Control: max-age=415015,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771c1351ea180b41-OSL
storageaudiobursts.azureedge.net/site/images/stationIcons/11134.png
23.36.77.32200 OK 11 kB URL HTTP/2 storageaudiobursts.azureedge.net/site/images/stationIcons/11134.png
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash a3c79a9805f3abd584ac2a4e6e0ebcf3
d20738b6c01e1a24a1fd7635b2264dc2d84b6170
37dc57c3718595c20134e95d88da4295b88e3b6f8e5eabbc352f710f678e0ee5
GET /site/images/stationIcons/11134.png HTTP/1.1
Host: storageaudiobursts.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-md5: pMBdOii65KjDS7CXI4yMVw==
last-modified: Thu, 19 May 2016 11:06:01 GMT
accept-ranges: bytes
etag: "0x8D37FD59080023C"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2c75297-e01e-015d-78d5-cc64d7000000
x-ms-version: 2014-02-14
x-ms-meta-cbmodifiedtime: Tue, 05 Jan 2016 14:05:29 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
content-length: 11393
cache-control: max-age=29
date: Tue, 29 Nov 2022 14:36:25 GMT
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
185.239.174.234200 OK 905 B URL HTTP/1.1 ghb.adtelligent.com/v2/auction/
IP 185.239.174.234:0
File type JSON data\012- , ASCII text, with very long lines (7012), with no line terminators
Hash 41b69e6944a8e1f1336988635afab7b6
0768c75ad8891ebfb72e7f7cb60387251d1216af
7b8c71c7af6c681520b594ccea3863e1ab9224ccfd1f03c38c885b54a895d233
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 871
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 905
Access-Control-Allow-Origin: https://kimcartoon.li
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=2&formatid=26300&size=desktop
185.76.9.19200 OK 2.5 kB URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=2&formatid=26300&size=desktop
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (626), with no line terminators
Hash 3f885363f6686cc73b45dd11a87159c4
924dc0e9fe31af503c85235410d5d8901d3e000f
4abfc2b82c9311f766ed19832f623df703c1ab872caae633a6df43d7926bb08f
GET /bidder1/moneybid.js?siteid=92736&adid=2&formatid=26300&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://kimcartoon.li
cache-control: max-age=604800
x-accel-expires: @1670308120
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ12wpf/UHIAAA
x-77-nzt-ray: c0a4cc28bddd1578e8188663305d3e31
x-cache: HIT
x-age: 29264
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
yield-op-idsync.live.streamtheworld.com/idsync.js?stn=PODIUM_AUDIO
208.80.55.87200 OK 3.2 kB URL HTTP/2 yield-op-idsync.live.streamtheworld.com/idsync.js?stn=PODIUM_AUDIO
IP 208.80.55.87:0
File type ASCII text, with very long lines (316)
Hash 093a05bb23db31f0e2e4a6752f932e8f
8a0e4bd7bf802e9ffa615a56e30bcb998c856258
169e27963ca39f1aece6cc125abc233d4248ae0252bfa96949e8b99aa832e790
GET /idsync.js?stn=PODIUM_AUDIO HTTP/1.1
Host: yield-op-idsync.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 3203
content-type: application/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 1.8 kB IP 104.22.68.131:0
Hash a193ac58e4e456d6aabd0f10e12f347a
40996a1f4828220c48aed0658f752d05da79d13f
7bdc5ead3441a325abfbecc28b446673cf8045225527ac683a8757856af9219a
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 408
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13514e890a35-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12763%2526ref%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FCartoon%25252FThe-Amazing-World-of-Gumball-Season-01%25252FEpisode-001-002-The-Responsible-The-DVD%25253Fid%25253D10657%2526url%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FAds%25252Fgeniee728.aspx%2526hn_ver%253D40%2526fid%253D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
37.252.171.52302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12763%2526ref%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FCartoon%25252FThe-Amazing-World-of-Gumball-Season-01%25252FEpisode-001-002-The-Responsible-The-DVD%25253Fid%25253D10657%2526url%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FAds%25252Fgeniee728.aspx%2526hn_ver%253D40%2526fid%253D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 37.252.171.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fs.cpx.to%252Fan_fire%253Fapp_nexus_uid%253D%2524UID%2526pid%253D12763%2526ref%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FCartoon%25252FThe-Amazing-World-of-Gumball-Season-01%25252FEpisode-001-002-The-Responsible-The-DVD%25253Fid%25253D10657%2526url%253Dhttps%25253A%25252F%25252Fkimcartoon.li%25252FAds%25252Fgeniee728.aspx%2526hn_ver%253D40%2526fid%253D83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 29 Nov 2022 14:36:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://s.cpx.to/an_fire?app_nexus_uid=0&pid=12763&ref=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&url=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&hn_ver=40&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04
AN-X-Request-Uuid: 5df0b711-adc1-406b-ab58-4a2b274eb8d7
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageReferrer=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657
185.255.84.151200 OK 717 B URL HTTP/2 hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageReferrer=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657
IP 185.255.84.151:0
ASN #200271 Iguane Solutions SAS
File type JSON data\012- , ASCII text, with very long lines (716)
Hash 4871e8f7bee2dd5d2ab51b4f65cb4012
ca98c05637966b883e97ee3fea95fc34a19d7e92
c8fbac2c751e23e73de1bfcf2167c981f6a1057fdd54d16656d51a6d6b80b7f0
POST /hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageUrl=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&PageReferrer=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657 HTTP/1.1
Host: hb-api.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1221
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept-Encoding, Content-Type
access-control-allow-methods: OPTIONS, POST
access-control-allow-origin: https://kimcartoon.li
access-control-max-age: 3600
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=a055faef366c39fa5e2397b93e4b9664; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 14:36:25 GMT
content-length: 717
x-envoy-upstream-service-time: 233
server: ayl-lb-fra02
X-Firefox-Spdy: h2
s.cpx.to/ca.png?dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04&google_error=3
52.16.167.85200 OK 95 B URL HTTP/1.1 s.cpx.to/ca.png?dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04&google_error=3
IP 52.16.167.85:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9606fa62df0ffe87253f3baf418f0e42
fe8520ab0bf1622350513d685ece5faf70b4e8c1
bf27786b4381176350787d768bf5f7c5310ba640aa48ee98a3d2c310ddd971ab
GET /ca.png?dsp=dbm&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04&google_error=3 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Cookie: cpSess=730402cb6d1f4d31
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, must-revalidate, private, max-age=0
Content-Security-Policy: default-src 'self'
Content-Type: image/png
Date: Tue, 29 Nov 2022 14:36:25 GMT
Pragma: no-cache
Set-Cookie: cpSess=730402cb6d1f4d31; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Permitted-Cross-Domain-Policies: none
Content-Length: 95
Connection: keep-alive
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8c2bcf0d-1bd7-4b3b-411a-501600dea17b&reqId=f7844297-561d-4ec7-6ad9-bc8846a57395&zdid=1258&google_error=3
104.22.25.87200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8c2bcf0d-1bd7-4b3b-411a-501600dea17b&reqId=f7844297-561d-4ec7-6ad9-bc8846a57395&zdid=1258&google_error=3
IP 104.22.25.87:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=8c2bcf0d-1bd7-4b3b-411a-501600dea17b&reqId=f7844297-561d-4ec7-6ad9-bc8846a57395&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Cookie: zc=8c2bcf0d-1bd7-4b3b-411a-501600dea17b; zsc=%085%FB%18%A8%CC%01%26%BA%E0%AC%02%3D%07%02%1B%C2%04%8E%F6%26%B47%EA%98%E5%AB%F1%8E%87%CF%E4%5D%C6%96%AE%CC%A2%05%1B%84%F9%CD%5B%AC%C3%3E7%B5-3%17x%0FA%A0%F7h3%93%8C%D2%BF%15%8D%09%A0%F2%FD%DB%2F%00VY%18%BD%C5Q%87u%D5%15%E9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://kimcartoon.li
set-cookie: zc=8c2bcf0d-1bd7-4b3b-411a-501600dea17b; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 771c13544c12b51e-OSL
X-Firefox-Spdy: h2
s.cpx.to/an_fire?app_nexus_uid=0&pid=12763&ref=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&url=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&hn_ver=40&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04
52.16.167.85200 OK 95 B URL HTTP/1.1 s.cpx.to/an_fire?app_nexus_uid=0&pid=12763&ref=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&url=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&hn_ver=40&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 52.16.167.85:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9606fa62df0ffe87253f3baf418f0e42
fe8520ab0bf1622350513d685ece5faf70b4e8c1
bf27786b4381176350787d768bf5f7c5310ba640aa48ee98a3d2c310ddd971ab
GET /an_fire?app_nexus_uid=0&pid=12763&ref=https%3A%2F%2Fkimcartoon.li%2FCartoon%2FThe-Amazing-World-of-Gumball-Season-01%2FEpisode-001-002-The-Responsible-The-DVD%3Fid%3D10657&url=https%3A%2F%2Fkimcartoon.li%2FAds%2Fgeniee728.aspx&hn_ver=40&fid=83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Cookie: cpSess=730402cb6d1f4d31
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, must-revalidate, private, max-age=0
Content-Security-Policy: default-src 'self'
Content-Type: image/png
Date: Tue, 29 Nov 2022 14:36:25 GMT
Expires: Tue, 29 Nov 2022 14:36:25 UTC
P3P: CP="NOI DEV ADM"
Pragma: no-cache
Set-Cookie: cpSess=730402cb6d1f4d31; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Permitted-Cross-Domain-Policies: none
Content-Length: 95
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash bbe4d46f4d33f01b57c6229664276302
d14449941447a175dad729747b25ca53ed92a3ce
02732f27d7dec5705f111e510afb1202e2c7cf1253e62af2fe3ddab8ef3227b9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 29 Nov 2022 14:36:25 GMT
Last-Modified: Tue, 29 Nov 2022 12:59:19 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r4S3W85Ps6OAYVqnpiqQDYINLZ5C1nr7pheUx71izZwuYZY0HJhMJw==
Age: 5826
prebid.smilewanted.com/
104.22.68.131403 Forbidden 2.0 kB IP 104.22.68.131:0
Hash 521c7c143964aa2f4ef4bdee867073c7
192739eb908b31174bf20fd59495dc176255cbea
d074ed9ba64a69181498fb4aa7128bfef6106ff3e6000ae5d799f9530939313d
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 391
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13515ea30a35-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
playerservices.live.streamtheworld.com/api/idsync.js?stationId=438633
192.173.28.17200 OK 982 B URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=438633
IP 192.173.28.17:0
Hash 66527bedc0db112fae75b9fa631c8525
85310e339dc050b687a50c7e2c667b457689a011
43b7acd81a981cbc862f0247650ebfd8e8a41421d11e1f654662a7cdf9d658f1
GET /api/idsync.js?stationId=438633 HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
content-language: en-US
x-stw-server: van-strc-docker04_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5ddd10ebd682891c8b8b25882bf94286
8d52a20c75e90abe8f193f3b44f5bc12936004d7
f21b42e8a27687d7e2dc46aa7d98c0f1ed82f69c7783068b1c1df2f648561462
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 29 Nov 2022 14:36:25 GMT
Last-Modified: Tue, 29 Nov 2022 13:59:14 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GF8X1xVZ6bGl9iwhYI08qxLa-oQiW0sGWeaWsAQoCWnwoLVUWduMAw==
Age: 2232
image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
185.64.190.80200 OK 0 B URL HTTP/2 image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 185.64.190.80:0
GET /AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
kimcartoon.li/Scripts/jquery.scrollTo-1.4.2-min.js
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Scripts/jquery.scrollTo-1.4.2-min.js
IP 104.26.11.167:0
GET /Scripts/jquery.scrollTo-1.4.2-min.js HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2015 15:28:38 GMT
etag: W/"f06a5236d95cd01:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1305
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55myajC7ZNDo7VON3wN8HZ9nP0d0r2wlVUzQwfKJEhyiXr8tZU7xEUAcXMDODDAxpw%2BW3X3PpJQzPRF46v9v0aemxzprbIm%2B4j3fjOvnKWfb2kMurujHQHAK1lpsqMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8d9b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 460
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13518ee90a35-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
script.4dex.io/adagio.js
172.67.75.241200 OK 0 B IP 172.67.75.241:0
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kimcartoon.li/
Origin: https://kimcartoon.li
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: application/javascript
x-amz-id-2: OcRHxAS566APkKKhpluptP9g8ixRtFASkuVfea031ZferlDlLhSS98E8UjeUCe9hqaDlmtqyFBw=
x-amz-request-id: KGTAYWND0VNK3M15
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Nov 2022 09:44:15 GMT
etag: W/"c56b6332dacf72f135afcd153ae22448"
cache-control: public, max-age=1800
cf-cache-status: HIT
age: 622034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1sm1ZnrZy3Ox0HFqs3%2BA7hbKdDMiUglVgYEy7Bi0SObPrJbOFnagD6ys%2Bn%2BubLtXp5oCEsACt8z%2Bav6XZABXozgYyofOcvHpCNA6gu4QSfpQiW7RfurrCmc9Y1lPOw9x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c134d0e800b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-4a7e9e0b.cc7989bd.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-4a7e9e0b.cc7989bd.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/chunk-vendors-4a7e9e0b.cc7989bd.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff8791-12e53"
last-modified: Sun, 06 Feb 2022 08:32:17 GMT
cdn-storageserver: DE-199
cdn-fileserver: 192
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 37bb9aa110d50830cfbf6982c273183a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
52.4.184.63200 OK 0 B URL HTTP/2 podiums.link/widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1
IP 52.4.184.63:0
POST /widget/context/?h=970ac124a8427374029dc13a19f4a4f4d0fbe07a4d3144c36a4df0cb87e1636f&mode=keywords&blockedg=1 HTTP/1.1
Host: podiums.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 92
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://app.audiopulsar.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: public, max-age=43200
etag: W/"267f-1fqxQ+Tma99jfkufxE2sLqAmC/Y"
content-encoding: gzip
X-Firefox-Spdy: h2
kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Content/css/tpl_style.css?v=10.14.2
IP 104.26.11.167:0
GET /Content/css/tpl_style.css?v=10.14.2 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=29409
last-modified: Thu, 18 Apr 2019 03:33:23 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TnspXC%2BtAL2iI6zx2xokFpDnw2KAo9RL5qIzuPVh86ZPT4MrjJ2VNZKSXIWN5mDObNe6dwqnXGhuR98fmD81zSEEVHCRxJLFc56J8tf7RUkSuofHtun0HSSjXhlEmTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323d8c6b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
kimcartoon.li/Scripts/aes.js
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Scripts/aes.js
IP 104.26.11.167:0
GET /Scripts/aes.js HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=13360
etag: W/"905ba1dac9ad11:0"
last-modified: Wed, 20 Apr 2016 02:26:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T5QgYLEPGPEYQ5uqCWgUAbOcHAfLpCN6ZclO1QNUeKRPnzQOMxNjPZ9s4r8pA6yy9D%2FNOSIz%2FLbvj42kMB2fJw3cDCEKtOFMjt7Ek1FzL5zQod6S9uodyr2y86iQKGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8ceb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
kimcartoon.li/Scripts/sha256.min.js
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Scripts/sha256.min.js
IP 104.26.11.167:0
GET /Scripts/sha256.min.js HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
last-modified: Thu, 02 Jun 2016 01:56:16 GMT
etag: W/"b03f25f371bcd11:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QhaEXLJ36%2BHsm%2BrMRrcfN6VblOCh6IyIXuehKQaHuzgBMoGF0gT4QvbdXrFg8eQ7cjwPsaSlNap7B7XNB%2FGyH485axDJzRuovie46BbJyJ%2FFf5mBMQwFMSw0fYQOVGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8cfb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.cloudflare.com/cdn-cgi/trace
104.16.124.96200 OK 0 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP 104.16.124.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app.audiopulsar.com
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 771c1345feeb1bfa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 0 B IP 104.18.3.114:0
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 7454
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://kimcartoon.li
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26711, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26300
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 771c1350c8cc0b39-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.bebi.com/js/plugins.js?_=1669732577454
104.21.83.143520 No Reason Phrase 0 B URL HTTP/2 www.bebi.com/js/plugins.js?_=1669732577454
IP 104.21.83.143:0
GET /js/plugins.js?_=1669732577454 HTTP/1.1
Host: www.bebi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 520 No Reason Phrase
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_use_ob=0; path=/; expires=Tue, 29-Nov-22 14:36:48 GMT
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 771c1326dab60b31-OSL
server: cloudflare
X-Firefox-Spdy: h2
www.bebi.com/js/plugins.js?_=1669732577503
104.21.83.143520 No Reason Phrase 0 B URL HTTP/2 www.bebi.com/js/plugins.js?_=1669732577503
IP 104.21.83.143:0
GET /js/plugins.js?_=1669732577503 HTTP/1.1
Host: www.bebi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 520 No Reason Phrase
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_use_ob=0; path=/; expires=Tue, 29-Nov-22 14:36:48 GMT
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 771c13271ae50b31-OSL
server: cloudflare
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://kimcartoon.li
server-processing-duration-in-ticks: 1014093
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
kimcartoon.li/Scripts/oran.min.js?v=3.19
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Scripts/oran.min.js?v=3.19
IP 104.26.11.167:0
GET /Scripts/oran.min.js?v=3.19 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
last-modified: Sun, 19 Mar 2017 11:18:17 GMT
etag: W/"85d6d681a2a0d21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O84raTHgaLVZCG7Vu%2F05xjiW7BmnTcgc6oVLMJRXd3Kytl2nAutGNLeTRgLvYLWdvk5wra6mYP3DvU2jXZAQJOWrY6tb02lDO0A7O%2FPDihyTEx334RvUzyX1FQsoMTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323e8d7b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 142.250.74.10:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 14:36:22 GMT
date: Tue, 29 Nov 2022 14:36:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
playerservices.live.streamtheworld.com/api/idsync.js?stationId=258373
192.173.28.17200 OK 0 B URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=258373
IP 192.173.28.17:0
GET /api/idsync.js?stationId=258373 HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
content-language: en-US
x-stw-server: van-strc-docker03_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
kimcartoon.li/Scripts/common.js?v=1
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Scripts/common.js?v=1
IP 104.26.11.167:0
GET /Scripts/common.js?v=1 HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2396
etag: W/"509b5bbdf79dd21:0"
last-modified: Thu, 16 Mar 2017 01:50:50 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5207
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2vujbfUBsgaEJgNXwzrQv5HrIy%2Boe9o6utjZpwsNTI6FpDCh7rA%2FJIPKe7ZAqHyAhJS53vecHpzwdNYrRiXVdxrYgAdj7vUn%2Bw3AxGzYe2llRlhNS2Hc9LmYelWHsJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c1323d8c4b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 409
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Tue, 29 Nov 2022 14:36:25 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13512e660a35-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ads.betweendigital.com/adjson?t=prebid
188.42.196.115200 OK 0 B URL HTTP/2 ads.betweendigital.com/adjson?t=prebid
IP 188.42.196.115:0
POST /adjson?t=prebid HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2458
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-origin: https://kimcartoon.li
access-control-allow-credentials: true
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Path=/; Domain=.betweendigital.com
tuuid=7dbb0fb8-8f25-524d-9ef8-785dfd7e60b4; Max-Age=31536000; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Path=/; Domain=.betweendigital.com
ut=Y4YY6QAHwGDOUItryGEtoDeEcAykqFkdNaKyNg==; Max-Age=31536000; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Path=/; Domain=.betweendigital.com
unm=1; Max-Age=31536000; Expires=Wed, 29 Nov 2023 14:36:25 GMT; Path=/; Domain=.betweendigital.com
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713
192.173.28.17200 OK 0 B URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713
IP 192.173.28.17:0
GET /api/idsync.js?stationId=170713 HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Cookie: uuid-s=fb4fff09-e715-4125-913a-0e9d1a3000be
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 29 Nov 2022 14:36:25 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
content-language: en-US
x-stw-server: van-strc-docker04_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
secure.quantserve.com/quant.js
91.228.74.206200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.206:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Tue, 06 Dec 2022 14:36:24 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-03631906.a93e6d23.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-03631906.a93e6d23.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/chunk-vendors-03631906.a93e6d23.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff878d-a699"
last-modified: Sun, 06 Feb 2022 08:32:13 GMT
cdn-storageserver: DE-51
cdn-fileserver: 192
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6b12c31ba9bfa535045710cac29b47de
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49788082?wmode=7&page-url=https%3A%2F%2Fwww.luxubu.review%2Fv%2F8godeewnlp9&page-ref=https%3A%2F%2Fkimcartoon.li%2F&charset=utf-8&site-info=%7B%22owner%22%3A%22236207%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A499%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A839987267902%3Ahid%3A975653167%3Az%3A0%3Ai%3A20221129143621%3Aet%3A1669732582%3Arn%3A829661555%3Arqn%3A1%3Au%3A1669732579304285224%3Aw%3A706x505%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C134%2C1%2C1065%2C1065%2C0%2C539%3Ans%3A1669732577463%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669732582%3At%3AVideo%2010657-The%20Amazing%20World%20of%20Gumball%20-%20101%20102%20-%20The%20Responsible%20-%20The%20DVD.mov1442293484_1496903422.1.mp4&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/49788082?wmode=7&page-url=https%3A%2F%2Fwww.luxubu.review%2Fv%2F8godeewnlp9&page-ref=https%3A%2F%2Fkimcartoon.li%2F&charset=utf-8&site-info=%7B%22owner%22%3A%22236207%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A499%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A839987267902%3Ahid%3A975653167%3Az%3A0%3Ai%3A20221129143621%3Aet%3A1669732582%3Arn%3A829661555%3Arqn%3A1%3Au%3A1669732579304285224%3Aw%3A706x505%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C134%2C1%2C1065%2C1065%2C0%2C539%3Ans%3A1669732577463%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669732582%3At%3AVideo%2010657-The%20Amazing%20World%20of%20Gumball%20-%20101%20102%20-%20The%20Responsible%20-%20The%20DVD.mov1442293484_1496903422.1.mp4&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.251.119:0
GET /watch/49788082?wmode=7&page-url=https%3A%2F%2Fwww.luxubu.review%2Fv%2F8godeewnlp9&page-ref=https%3A%2F%2Fkimcartoon.li%2F&charset=utf-8&site-info=%7B%22owner%22%3A%22236207%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A499%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A839987267902%3Ahid%3A975653167%3Az%3A0%3Ai%3A20221129143621%3Aet%3A1669732582%3Arn%3A829661555%3Arqn%3A1%3Au%3A1669732579304285224%3Aw%3A706x505%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C134%2C1%2C1065%2C1065%2C0%2C539%3Ans%3A1669732577463%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669732582%3At%3AVideo%2010657-The%20Amazing%20World%20of%20Gumball%20-%20101%20102%20-%20The%20Responsible%20-%20The%20DVD.mov1442293484_1496903422.1.mp4&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.luxubu.review
Connection: keep-alive
Referer: https://www.luxubu.review/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/49788082/1?wmode=7&page-url=https%3A%2F%2Fwww.luxubu.review%2Fv%2F8godeewnlp9&page-ref=https%3A%2F%2Fkimcartoon.li%2F&charset=utf-8&site-info=%7B%22owner%22%3A%22236207%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A499%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A839987267902%3Ahid%3A975653167%3Az%3A0%3Ai%3A20221129143621%3Aet%3A1669732582%3Arn%3A829661555%3Arqn%3A1%3Au%3A1669732579304285224%3Aw%3A706x505%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C134%2C1%2C1065%2C1065%2C0%2C539%3Ans%3A1669732577463%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669732582%3At%3AVideo%2010657-The%20Amazing%20World%20of%20Gumball%20-%20101%20102%20-%20The%20Responsible%20-%20The%20DVD.mov1442293484_1496903422.1.mp4&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 29 Nov 2022 14:36:22 GMT
access-control-allow-origin: https://www.luxubu.review
set-cookie: yandexuid=8666353081669732582; Expires=Wed, 29-Nov-2023 14:36:22 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8666353081669732582; Expires=Wed, 29-Nov-2023 14:36:22 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1088574731669732582; Path=/; SameSite=None; Secure
i=gRdigzGUN2RNU3BogZqlgOiVtc2zEI9VuI1vE/0wnsKF9B8555XTfHD+kFwB052cGEFZ1jBqoPIVyesqE/RdaJCFNPQ=; Expires=Fri, 26-Nov-2032 14:36:21 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701268582.yc.1669732582#1701268582.yrts.1669732582#1701268582.yrtsi.1669732582; Expires=Wed, 29-Nov-2023 14:36:22 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 14:36:22 GMT
last-modified: Tue, 29-Nov-2022 14:36:22 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
app.audiopulsar.com/css/chunk-vendors-c8085d85.935abeb1.css
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/css/chunk-vendors-c8085d85.935abeb1.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /css/chunk-vendors-c8085d85.935abeb1.css HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=10800
etag: W/"61fcbd30-3a914"
last-modified: Fri, 04 Feb 2022 05:44:16 GMT
cdn-storageserver: DE-164
cdn-fileserver: 292
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 21f52b08bed12357f3e9c8dc9ad78ff3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/app-4faec1a7.fd2b4571.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/app-4faec1a7.fd2b4571.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/app-4faec1a7.fd2b4571.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"6364f091-147be"
last-modified: Fri, 04 Nov 2022 10:59:29 GMT
cdn-storageserver: DE-199
cdn-fileserver: 287
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 86390926be463398092622fafef76e7d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/app-748942c6.f7e55297.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/app-748942c6.f7e55297.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/app-748942c6.f7e55297.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"635ff7e1-b623"
last-modified: Mon, 31 Oct 2022 16:29:21 GMT
cdn-storageserver: DE-165
cdn-fileserver: 472
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dd49fbac39848f5dab7ba6fc9a291101
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-7d359b94.d6d8123e.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-7d359b94.d6d8123e.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/chunk-vendors-7d359b94.d6d8123e.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61ff8793-d698"
last-modified: Sun, 06 Feb 2022 08:32:19 GMT
cdn-storageserver: DE-169
cdn-fileserver: 192
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b3bf015310d3f743e9e907cbe06b6fce
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fkimcartoon.li%2F&domain=kimcartoon.li&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://kimcartoon.li/
Origin: https://kimcartoon.li
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://kimcartoon.li
server-processing-duration-in-ticks: 477112
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
hhklc.com/c.js
104.21.70.122200 OK 0 B IP 104.21.70.122:0
GET /c.js HTTP/1.1
Host: hhklc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:17 GMT
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 16:10:23 GMT
etag: W/"636e73ef-2218"
server-asp-net: Asp Net
expires: Tue, 29 Nov 2022 14:37:26 GMT
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 2631
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aanbUCIUWYZUdZ3GExjOT0HqYLQWa1rTpKx82SY8n4YOz6%2BdN74F85tgdOkT%2BC%2Fn77fGVtqoOTsA1rZBI3EM1HB2avkDuD22Hd36ardypU5oh2jR%2FMlt6v9nJHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13244ba9b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kimcartoon.li/Content/images/favicon.ico
104.26.11.167200 OK 0 B URL HTTP/2 kimcartoon.li/Content/images/favicon.ico
IP 104.26.11.167:0
GET /Content/images/favicon.ico HTTP/1.1
Host: kimcartoon.li
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/Cartoon/The-Amazing-World-of-Gumball-Season-01/Episode-001-002-The-Responsible-The-DVD?id=10657
Cookie: ASP.NET_SessionId=1ddvt0p2sfx2ky3ixazped1k; k_token=P1e6EapKp5BY6lEM2hr8cayBK1girJ93oBuRnRIIS6gjkIWkZTbyBd0kjdFW2O%2f0Iu4wLFgw9P9DOmDFE4cAD1wAX548snHosfHF3T0QbtkCNNUf4dMGCMYGPiVED0k71PpIDnsvirPabXjeDiBwhD25gRmUOqEOYCMN3iWf52w%3d; _ga_X04565JYJY=GS1.1.1669732577.1.0.1669732577.0.0.0; _ga=GA1.1.1808778798.1669732578
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:18 GMT
content-type: image/x-icon
last-modified: Sun, 26 Mar 2017 03:44:50 GMT
etag: W/"065e52e3a5d21:0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3922
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YTLotMwZKMIDmS%2BAuJ9S2ua3Rhb0qvhvF12hsGjVm3g7vqy7Uq02PasFyeHssdq0lgkfIJGdJlpHQxNxVlF9Oqqp0cBxrXavr8IzfhYWmzkS29wGfkCbAPsFwVVePLg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c13282f69b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713&bounce=true
192.173.28.17200 OK 0 B URL HTTP/1.1 playerservices.live.streamtheworld.com/api/idsync.js?stationId=170713&bounce=true
IP 192.173.28.17:0
GET /api/idsync.js?stationId=170713&bounce=true HTTP/1.1
Host: playerservices.live.streamtheworld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.audiopulsar.com/
Connection: keep-alive
Cookie: uuid-s=45ad8677-e005-4044-9e8e-da4b22086e27
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
p3p: policyref="http://tds.media.streamtheworld.com/w3c/policy/tds-p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type: application/javascript; charset=ISO-8859-1
content-language: en-US
x-stw-server: van-strc-docker05_8082
x-stw-site: VAN
access-control-allow-origin: *
connection: close
ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=19&formatid=26711&size=desktop
185.76.9.19200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=19&formatid=26711&size=desktop
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=92736&adid=19&formatid=26711&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://kimcartoon.li
cache-control: max-age=604800
x-accel-expires: @1670308120
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ2rWkf/UHIAAA
x-77-nzt-ray: c0a4cc28bddd1578e81886637ed6e930
x-cache: HIT
x-age: 29264
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform3.js?siteId=92736&formatId=1
185.76.9.19200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform3.js?siteId=92736&formatId=1
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
GET /s/requestform3.js?siteId=92736&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:23 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1670308831
server: CDN77-Turbo
x-77-nzt: AblMCQ0FqVr/iG8AAA
x-77-nzt-ray: c0a4cc28bddd1578e7188663dce9852f
x-cache: HIT
x-age: 28552
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
app.audiopulsar.com/js/chunk-vendors-fdc6512a.fb35ff3c.js
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/js/chunk-vendors-fdc6512a.fb35ff3c.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /js/chunk-vendors-fdc6512a.fb35ff3c.js HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=10800
etag: W/"61fcbdb1-292a"
last-modified: Fri, 04 Feb 2022 05:46:25 GMT
cdn-storageserver: DE-197
cdn-fileserver: 292
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3762beb986c4e428071e94fce7cc1a93
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image2.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
185.64.190.80302 Found 0 B URL HTTP/2 image2.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
IP 185.64.190.80:0
GET /AdServer/UCookieSetPug?rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04 HTTP/1.1
Host: image2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 14:36:25 GMT
set-cookie: KTPCACOOKIE=true; domain=pubmatic.com; secure; expires=Mon, 27-Feb-2023 14:36:25 GMT; path=/
location: https://image2.pubmatic.com/AdServer/UCookieSetPug?ird=1&rd=https%3A%2F%2Fs.cpx.to%2Fsync%3Fdsp%3Dpubmatic%26dsp_uid%3D%23PM_USER_ID%26fid%3D83f6ecd3-873b-45a2-aa1e-cad8309a9d04
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
js.genieessp.com/t/495/180/a1495180.js
222.230.178.129200 OK 0 B URL HTTP/2 js.genieessp.com/t/495/180/a1495180.js
IP 222.230.178.129:0
ASN #2519 ARTERIA Networks Corporation
GET /t/495/180/a1495180.js HTTP/1.1
Host: js.genieessp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 14:36:20 GMT
content-type: application/javascript
last-modified: Thu, 10 Nov 2022 06:30:27 GMT
etag: W/"636c9a83-200e"
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 14:51:20 GMT
cache-control: max-age=900, private
content-encoding: gzip
X-Firefox-Spdy: h2
app.audiopulsar.com/css/app-4faec1a7.ac0c2cb5.css
194.242.11.186200 OK 0 B URL HTTP/2 app.audiopulsar.com/css/app-4faec1a7.ac0c2cb5.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /css/app-4faec1a7.ac0c2cb5.css HTTP/1.1
Host: app.audiopulsar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.audiopulsar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:21 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 173797
cdn-uid: 54876772-1b75-4d80-bae5-e278cce146bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=10800
etag: W/"627e5d42-54c"
last-modified: Fri, 13 May 2022 13:29:38 GMT
cdn-storageserver: DE-167
cdn-fileserver: 352
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2022 14:33:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: aeac9a553449656c97f9ee252a55ee1e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=20&formatid=26706&size=desktop
185.76.9.19200 OK 0 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=92736&adid=20&formatid=26706&size=desktop
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
GET /bidder1/moneybid.js?siteid=92736&adid=20&formatid=26706&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://kimcartoon.li
Connection: keep-alive
Referer: https://kimcartoon.li/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 14:36:24 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://kimcartoon.li
cache-control: max-age=604800
x-accel-expires: @1670308833
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1THSv/h28AAA
x-77-nzt-ray: c0a4cc28bddd1578e8188663f33fe130
x-cache: HIT
x-age: 28551
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2