r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5290
Expires: Tue, 13 Sep 2022 22:28:15 GMT
Date: Tue, 13 Sep 2022 21:00:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 20:08:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tPnLdNJixPud8UBUcear3t81O_vGEoKP2CcVPmXaGlnurxxeX_vKbw==
Age: 3072
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aYXKjPM_tI4Y32jwiBE8oEjkFSbMt1NbqNsViuB6ZQEsY6toIg39yw==
age: 59091
X-Firefox-Spdy: h2
www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
162.251.111.157200 OK 6.3 kB URL HTTP/1.1 www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
IP 162.251.111.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (719)
Hash a8017a2a4e452053f0e781fa105fd00f
3c11fa743879722cb73e65e65ce8b1cfebe36c44
a16fc9f3095f886ab80a6d711ba72e2820c22515d5bad59cfba95a2482de1bd7
GET /videos/kemonokko-tsuushin-the-animation.html HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.43
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=e2aa8c471494a9c831181d809d0f75b6; path=/; domain=.zzcartoon.com
kt_qparams=dir%3Dkemonokko-tsuushin-the-animation; expires=Wed, 14-Sep-2022 21:00:05 GMT; path=/; domain=.zzcartoon.com
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
2cnjuh34jbhub.com/aas/r45d/vki/1591811/tghr.js
62.122.171.6200 OK 26 kB URL HTTP/1.1 2cnjuh34jbhub.com/aas/r45d/vki/1591811/tghr.js
IP 62.122.171.6:0
File type ASCII text, with very long lines (65530)
Hash 0bac3aec1cf826113f5ca5d7750e2dbc
f7d21d992633170501eb04f140ee99e2eb49eff9
233bc40f29ebfebc6a051c0f6de2916761b19bf05dbc33f5f1a44af04eeb6326
Analyzer Verdict Alert fortinet Malware
GET /aas/r45d/vki/1591811/tghr.js HTTP/1.1
Host: 2cnjuh34jbhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:05 GMT
Content-Type: application/javascript
Last-Modified: Wed, 07 Sep 2022 13:38:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63189ed0-1091a"
X-JS-AB1: current
Timing-Allow-Origin: *
Accept-CH: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
Content-Encoding: gzip
www.zzcartoon.com/c_d642395e5cde5bd917caa88ef06937cf.php
162.251.111.157200 OK 419 B URL HTTP/1.1 www.zzcartoon.com/c_d642395e5cde5bd917caa88ef06937cf.php
IP 162.251.111.157:0
Hash 8f2856d3343427e65d529f08f410f385
dc3f46a5a0316fafa2953f18c6372a1102bb83d7
440edfeec51c915434b8a17acda582a607b1fe8821d9fe68033dc0f9e44ba858
GET /c_d642395e5cde5bd917caa88ef06937cf.php HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
Cookie: PHPSESSID=e2aa8c471494a9c831181d809d0f75b6; kt_qparams=dir%3Dkemonokko-tsuushin-the-animation
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.43
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 246e372623c1021ee7c576b6636e39c0
213bf086f619496cdc42d8ad7f076a64f30971df
5f03b019f0b7d99b3520605767599a9f4105374c31f48f599788203208c41057
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F03B019F0B7D99B3520605767599A9F4105374C31F48F599788203208C41057"
Last-Modified: Tue, 13 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5892
Expires: Tue, 13 Sep 2022 22:38:18 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 246e372623c1021ee7c576b6636e39c0
213bf086f619496cdc42d8ad7f076a64f30971df
5f03b019f0b7d99b3520605767599a9f4105374c31f48f599788203208c41057
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F03B019F0B7D99B3520605767599A9F4105374C31F48F599788203208C41057"
Last-Modified: Tue, 13 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5864
Expires: Tue, 13 Sep 2022 22:37:50 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 246e372623c1021ee7c576b6636e39c0
213bf086f619496cdc42d8ad7f076a64f30971df
5f03b019f0b7d99b3520605767599a9f4105374c31f48f599788203208c41057
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F03B019F0B7D99B3520605767599A9F4105374C31F48F599788203208C41057"
Last-Modified: Tue, 13 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12890
Expires: Wed, 14 Sep 2022 00:34:56 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 246e372623c1021ee7c576b6636e39c0
213bf086f619496cdc42d8ad7f076a64f30971df
5f03b019f0b7d99b3520605767599a9f4105374c31f48f599788203208c41057
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F03B019F0B7D99B3520605767599A9F4105374C31F48F599788203208C41057"
Last-Modified: Tue, 13 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5911
Expires: Tue, 13 Sep 2022 22:38:37 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 246e372623c1021ee7c576b6636e39c0
213bf086f619496cdc42d8ad7f076a64f30971df
5f03b019f0b7d99b3520605767599a9f4105374c31f48f599788203208c41057
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F03B019F0B7D99B3520605767599A9F4105374C31F48F599788203208C41057"
Last-Modified: Tue, 13 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12995
Expires: Wed, 14 Sep 2022 00:36:41 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 13 Sep 2022 20:03:22 GMT
Expires: Tue, 13 Sep 2022 20:52:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nVajXmRej0QbZ1BazSb1XaQCbIzahxghF3JyAeR0v70vKrS0SHfncQ==
Age: 3404
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3124
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:06 GMT
Last-Modified: Tue, 13 Sep 2022 20:08:02 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 87b273a3921885588d3330777b71c142
8dcc70c05cf62a334d4629d814da571cf4358983
0f5d24c9b73be32e76a524d5503da1767d92a6adb2d3ff18bbe02255e3d2eced
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F5D24C9B73BE32E76A524D5503DA1767D92A6ADB2D3FF18BBE02255E3D2ECED"
Last-Modified: Sun, 11 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12838
Expires: Wed, 14 Sep 2022 00:34:04 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 87b273a3921885588d3330777b71c142
8dcc70c05cf62a334d4629d814da571cf4358983
0f5d24c9b73be32e76a524d5503da1767d92a6adb2d3ff18bbe02255e3d2eced
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F5D24C9B73BE32E76A524D5503DA1767D92A6ADB2D3FF18BBE02255E3D2ECED"
Last-Modified: Sun, 11 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14485
Expires: Wed, 14 Sep 2022 01:01:31 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 87b273a3921885588d3330777b71c142
8dcc70c05cf62a334d4629d814da571cf4358983
0f5d24c9b73be32e76a524d5503da1767d92a6adb2d3ff18bbe02255e3d2eced
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F5D24C9B73BE32E76A524D5503DA1767D92A6ADB2D3FF18BBE02255E3D2ECED"
Last-Modified: Sun, 11 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14040
Expires: Wed, 14 Sep 2022 00:54:06 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 87b273a3921885588d3330777b71c142
8dcc70c05cf62a334d4629d814da571cf4358983
0f5d24c9b73be32e76a524d5503da1767d92a6adb2d3ff18bbe02255e3d2eced
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F5D24C9B73BE32E76A524D5503DA1767D92A6ADB2D3FF18BBE02255E3D2ECED"
Last-Modified: Sun, 11 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14097
Expires: Wed, 14 Sep 2022 00:55:03 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 87b273a3921885588d3330777b71c142
8dcc70c05cf62a334d4629d814da571cf4358983
0f5d24c9b73be32e76a524d5503da1767d92a6adb2d3ff18bbe02255e3d2eced
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0F5D24C9B73BE32E76A524D5503DA1767D92A6ADB2D3FF18BBE02255E3D2ECED"
Last-Modified: Sun, 11 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16047
Expires: Wed, 14 Sep 2022 01:27:33 GMT
Date: Tue, 13 Sep 2022 21:00:06 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn5.zzcartoon.com/contents/videos_screenshots/8000/8612/240x135/1.jpg
185.73.223.2200 OK 31 kB URL HTTP/2 cdn5.zzcartoon.com/contents/videos_screenshots/8000/8612/240x135/1.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash 15c40f10fb2b68cbec3c8a3326c8baec
1f468c894428397271e92c2d7faf23656b7deb47
54b29086d9c1fe89b534e18c3d1305da3c4424c10b9666a1314e7b568cd94b0b
GET /contents/videos_screenshots/8000/8612/240x135/1.jpg HTTP/1.1
Host: cdn5.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 31319
last-modified: Sun, 23 Jan 2022 07:43:56 GMT
etag: "61ed073c-7a57"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn2.zzcartoon.com/contents/videos_screenshots/7000/7914/240x135/9.jpg
185.73.223.2200 OK 34 kB URL HTTP/2 cdn2.zzcartoon.com/contents/videos_screenshots/7000/7914/240x135/9.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash aef8fd414e57856e0947be6fa7b31dcc
baf91fbf8b367cbad9d4ecae9e3b6cef293a9fc0
0c68124f8632bd59721aa7d1e2c900daecd50abc00e5162a86b5f9eb05a3bec7
GET /contents/videos_screenshots/7000/7914/240x135/9.jpg HTTP/1.1
Host: cdn2.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 33641
last-modified: Thu, 10 Aug 2017 07:08:56 GMT
etag: "598c0688-8369"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/8000/8412/240x135/3.jpg
185.73.223.2200 OK 34 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/8000/8412/240x135/3.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash 9858eca5bc957384d6f0ebaa810b58a8
597b3d594ab70a0e808cd35cf4d0d9752c616b68
c218b4dcb5ffc0ec9fa00d14415c652e63f526be19d7df6e1a8d4ffe92d56655
GET /contents/videos_screenshots/8000/8412/240x135/3.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 33566
last-modified: Sat, 22 Jan 2022 17:52:56 GMT
etag: "61ec4478-831e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/8000/8616/240x135/3.jpg
185.73.223.2200 OK 30 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/8000/8616/240x135/3.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash 4b251bf979f8fba3ad4bfff16527e509
61d02ef976466c264347d1d6a2bf5367060817bb
adc6c480edbfed331ecf98beafbb2976365e4b0f607cf8eb072d8a62329982e6
GET /contents/videos_screenshots/8000/8616/240x135/3.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 30358
last-modified: Sun, 23 Jan 2022 07:52:57 GMT
etag: "61ed0959-7696"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn4.zzcartoon.com/contents/videos_screenshots/8000/8642/240x135/1.jpg
185.73.223.2200 OK 35 kB URL HTTP/2 cdn4.zzcartoon.com/contents/videos_screenshots/8000/8642/240x135/1.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash 8b88c44461ec6a5f54c202ae122045f2
d454eb814eef334359b49f9634f0ce9cfc1e07ad
c15549527f3bb06da266da45451ffaf0cd7cfc30131dd0c1b01c6582b7f54e15
GET /contents/videos_screenshots/8000/8642/240x135/1.jpg HTTP/1.1
Host: cdn4.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 35079
last-modified: Sun, 23 Jan 2022 08:57:56 GMT
etag: "61ed1894-8907"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn3.zzcartoon.com/contents/videos_screenshots/8000/8532/240x135/6.jpg
185.73.223.2200 OK 25 kB URL HTTP/2 cdn3.zzcartoon.com/contents/videos_screenshots/8000/8532/240x135/6.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash 752c78d5f7b61412528beef449d919cc
582bf5cf285829decb7e79415f3fca379e1a2829
0dc004ddfe8559bdf1d8a0bc27f3cacd05dfaa99bdec0ffefdc29198071c9933
GET /contents/videos_screenshots/8000/8532/240x135/6.jpg HTTP/1.1
Host: cdn3.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 25099
last-modified: Sun, 23 Jan 2022 03:37:57 GMT
etag: "61eccd95-620b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/7000/7398/240x135/10.jpg
185.73.223.2200 OK 5.5 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/7000/7398/240x135/10.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash d4d5fe4c087b141c011a6ad5e2aa7725
957c0f17ec9a2dd854cda758a66aaa3ca74ea098
d355505cf8d1b73a55f9c43d5f76d9ea170147b0437fa233d4c9a63651a0526e
GET /contents/videos_screenshots/7000/7398/240x135/10.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 5463
last-modified: Fri, 13 May 2016 02:46:56 GMT
etag: "57354020-1557"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/8000/8400/240x135/1.jpg
185.73.223.2200 OK 27 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/8000/8400/240x135/1.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash cfca9e1d1c9fd3f4ac91424089a3caad
1ba52f6e03f763298139108ac74da45a5976698a
2bdb3d5adb09139bba4c062426162fff02695a262aa2af529963aab0b0b9a963
GET /contents/videos_screenshots/8000/8400/240x135/1.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 27136
last-modified: Sat, 22 Jan 2022 17:18:56 GMT
etag: "61ec3c80-6a00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn3.zzcartoon.com/contents/videos_screenshots/8000/8449/240x135/3.jpg
185.73.223.2200 OK 40 kB URL HTTP/2 cdn3.zzcartoon.com/contents/videos_screenshots/8000/8449/240x135/3.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash ee68f2de767207862cb6ae58d8135bf2
9123d1477f6c7de2574203d69776ec9afc4a348d
5c6c065ebb2649037fce3a78f463ad19bafa937df11238c121e1411ecc56430f
GET /contents/videos_screenshots/8000/8449/240x135/3.jpg HTTP/1.1
Host: cdn3.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 39965
last-modified: Sat, 22 Jan 2022 20:32:57 GMT
etag: "61ec69f9-9c1d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/9000/9540/240x135/2.jpg
185.73.223.2200 OK 27 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/9000/9540/240x135/2.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3\012- data
Hash a6ffc32356fc348bec6fb56efb309e8b
56600fb8461ee13d1701e81a79839e954dd04414
dd950ca8052a0766779ff7ac9820103bdf7c6724dfba0f638930f84332ee57ca
GET /contents/videos_screenshots/9000/9540/240x135/2.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/jpeg
content-length: 26911
last-modified: Mon, 14 Feb 2022 02:14:57 GMT
etag: "6209bb21-691f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /FoJmavuQ158SKnw9+Wuwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: glGQdS485UwbJJO4XwCv9gomCYY=
2cnjuh34jbhub.com/solid.gif?z=1591811&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 2cnjuh34jbhub.com/solid.gif?z=1591811&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1591811&abvar=0 HTTP/1.1
Host: 2cnjuh34jbhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.zzcartoon.com
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html?mode=async&action=js_stats&rand=1663102793340
162.251.111.157200 OK 0 B URL HTTP/1.1 www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html?mode=async&action=js_stats&rand=1663102793340
IP 162.251.111.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/kemonokko-tsuushin-the-animation.html?mode=async&action=js_stats&rand=1663102793340 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
Cookie: PHPSESSID=e2aa8c471494a9c831181d809d0f75b6; kt_qparams=dir%3Dkemonokko-tsuushin-the-animation; kt_tcookie=1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:06 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.43
Set-Cookie: kt_is_visited=1; expires=Wed, 14-Sep-2022 21:00:06 GMT; path=/; domain=.zzcartoon.com
fonts.googleapis.com/css?family=Roboto+Condensed
142.250.74.10200 OK 534 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed
IP 142.250.74.10:0
Hash ae3e709a2987550a5fa8ebc5019aeed1
0a80bc9845f786ae3b4b8425282fd1862f1eef0b
2e9955d38474716b3578115a83b9bfa2e3b2c2a61ecace8173229cbc5deca3dc
GET /css?family=Roboto+Condensed HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 13 Sep 2022 21:00:06 GMT
date: Tue, 13 Sep 2022 21:00:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.zzcartoon.com/images/header-bg.png
162.251.111.157200 OK 90 kB URL HTTP/2 www.zzcartoon.com/images/header-bg.png
IP 162.251.111.157:0
File type PNG image data, 1400 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash 8b6433c40ce989a3f4ee3d96623f8e19
cc4cb1edeb620db8d90b4c94cc799b57bf998fb9
067d044d624da6f645039869801364b36325b5826c86b4b6315ed8afb6176144
GET /images/header-bg.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: image/png
content-length: 90141
last-modified: Thu, 27 Nov 2014 15:11:18 GMT
etag: "456218a-1601d-508d88e5d7180"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 64cad6ebf9adc423aa73b2e5d9a33dc0
30e7499914adf954e5fe088e7ab40373dff37a2e
f492243084e1fc63e978f155dfea6e243c2d1c2cf7f8b742172c5f3e10ebc6d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4010
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:06 GMT
Last-Modified: Tue, 13 Sep 2022 19:53:16 GMT
Server: ECS (amb/6B9F)
X-Cache: HIT
Content-Length: 313
ads2.contentabc.com/ads?spot_id=2519850&rand=486922664
66.254.114.171301 Moved Permanently 0 B URL HTTP/1.1 ads2.contentabc.com/ads?spot_id=2519850&rand=486922664
IP 66.254.114.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads?spot_id=2519850&rand=486922664 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://ads2.contentabc.com/ads?spot_id=2519850&rand=486922664
x-request-id:
www.zzcartoon.com/c_d642395e5cde5bd917caa88ef06937cf.php?t=a4474e1e09f4e45ec0262c7ddfe859c4
162.251.111.157200 OK 400 B URL HTTP/1.1 www.zzcartoon.com/c_d642395e5cde5bd917caa88ef06937cf.php?t=a4474e1e09f4e45ec0262c7ddfe859c4
IP 162.251.111.157:0
Hash 6560f68ac05a53618556f9bc8872d18d
ef0cd3eeebbeeeb38523d72e45676eaf47c47901
4fd7fb5abefbe2e5ddb8256fd3d39cd32c7d5c42aa51fdf9403b4ca176ce6618
GET /c_d642395e5cde5bd917caa88ef06937cf.php?t=a4474e1e09f4e45ec0262c7ddfe859c4 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
Cookie: PHPSESSID=e2aa8c471494a9c831181d809d0f75b6; kt_qparams=dir%3Dkemonokko-tsuushin-the-animation; kt_tcookie=1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.43
Content-Encoding: gzip
www.zzcartoon.com/js/jquery.magnific-popup.js
162.251.111.157200 OK 23 kB URL HTTP/2 www.zzcartoon.com/js/jquery.magnific-popup.js
IP 162.251.111.157:0
Hash 81ab17c09d6108c30503839fb9e4800d
7cb39deaeedfc24810fdbb9d8cdaaba340f7030d
a766e29195aad2f46bde0b2d8cf034a0877ff3746fcf1d3f54fbb5bf1817b729
GET /js/jquery.magnific-popup.js HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Mon, 27 Jul 2015 19:32:10 GMT
vary: Accept-Encoding
etag: W/"55b6873a-b4c9"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 64cad6ebf9adc423aa73b2e5d9a33dc0
30e7499914adf954e5fe088e7ab40373dff37a2e
f492243084e1fc63e978f155dfea6e243c2d1c2cf7f8b742172c5f3e10ebc6d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4011
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:07 GMT
Last-Modified: Tue, 13 Sep 2022 19:53:16 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 64cad6ebf9adc423aa73b2e5d9a33dc0
30e7499914adf954e5fe088e7ab40373dff37a2e
f492243084e1fc63e978f155dfea6e243c2d1c2cf7f8b742172c5f3e10ebc6d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4011
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:07 GMT
Last-Modified: Tue, 13 Sep 2022 19:53:16 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 313
www.zzcartoon.com/images/usa.png
162.251.111.157200 OK 3.5 kB URL HTTP/2 www.zzcartoon.com/images/usa.png
IP 162.251.111.157:0
File type PNG image data, 22 x 11, 8-bit/color RGB, non-interlaced\012- data
Hash 38f70178f3e8089b13838f5a743aebc8
c34e54431c1216ac94a62724e06228ac27462a35
1021125d337835f87e07049cd50fb5eb3be9a7b47506eda76492f4dc0635ca65
GET /images/usa.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3457
last-modified: Thu, 27 Nov 2014 15:11:20 GMT
etag: "45621b3-d81-508d88e7bf600"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/login.png
162.251.111.157200 OK 3.2 kB URL HTTP/2 www.zzcartoon.com/images/login.png
IP 162.251.111.157:0
File type PNG image data, 17 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c2a49c3fd4fad3c31ad30402fda4c05
8ecc27d7a91b6f56537435fb71aff0b02777f976
f7745f48ef5241c88f6fdd8eb4f4b2d35cd3113af824e265479a2b58d75032fd
GET /images/login.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3203
last-modified: Thu, 27 Nov 2014 15:11:18 GMT
etag: "456218e-c83-508d88e5d7180"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 64cad6ebf9adc423aa73b2e5d9a33dc0
30e7499914adf954e5fe088e7ab40373dff37a2e
f492243084e1fc63e978f155dfea6e243c2d1c2cf7f8b742172c5f3e10ebc6d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4896
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:07 GMT
Last-Modified: Tue, 13 Sep 2022 19:38:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
www.zzcartoon.com/images/sign-in.png
162.251.111.157200 OK 3.5 kB URL HTTP/2 www.zzcartoon.com/images/sign-in.png
IP 162.251.111.157:0
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 0475d004f484df1879cc519484d660ab
a568972ac204f30591f893994ed89ef40ee50495
0d5b255720d7b63a4c712cbf6421ffcd0a8c2c332009048db2f1319334922a3d
GET /images/sign-in.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3451
last-modified: Thu, 27 Nov 2014 15:11:18 GMT
etag: "45621a6-d7b-508d88e5d7180"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/search.png
162.251.111.157200 OK 3.1 kB URL HTTP/2 www.zzcartoon.com/images/search.png
IP 162.251.111.157:0
File type PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 180c2ec8ab815be33ff675d981e7b87c
0020ba63a8631b3b6726995a5f1b90a91ed20feb
5faf6cb3c62b7d03daa2be1f5d96ea4b8ed1c2b64b3c35cfc32520536c500137
GET /images/search.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3065
last-modified: Thu, 27 Nov 2014 15:11:14 GMT
etag: "45621a5-bf9-508d88e206880"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/upload.png
162.251.111.157200 OK 3.1 kB URL HTTP/2 www.zzcartoon.com/images/upload.png
IP 162.251.111.157:0
File type PNG image data, 120 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash a98c31167874760a7edb92af0be67f1a
afbd2ef683ab22c2a6f843cd763dcfad0e63ad1e
c3f20f79694b4f740738e6fab56f443ce9a8c2a8c335c737b5593c5d92fc1d53
GET /images/upload.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3104
last-modified: Thu, 27 Nov 2014 15:11:14 GMT
etag: "45621b2-c20-508d88e206880"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.zzcartoon.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 16:04:44 GMT
expires: Sat, 09 Sep 2023 16:04:44 GMT
cache-control: public, max-age=31536000
age: 363323
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.zzcartoon.com/images/girl.png
162.251.111.157200 OK 184 kB URL HTTP/2 www.zzcartoon.com/images/girl.png
IP 162.251.111.157:0
File type PNG image data, 293 x 409, 8-bit/color RGBA, non-interlaced\012- data
Size 184 kB (183871 bytes)
Hash 60c9b209357e29e9f6467e3674e01848
f8670f8ee465a2a5ee5ed6cd9451e7951b505252
009c0a6c9bd27d9252efd0556b201e858066f16cdee01f15899c797df9962c5f
GET /images/girl.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 183871
last-modified: Thu, 27 Nov 2014 15:11:16 GMT
etag: "4562189-2ce3f-508d88e3eed00"
accept-ranges: bytes
X-Firefox-Spdy: h2
wf66l5ylwq.com/t/9/fret/meow4/1880024/4b28880f.js
62.122.171.6200 OK 26 kB URL HTTP/1.1 wf66l5ylwq.com/t/9/fret/meow4/1880024/4b28880f.js
IP 62.122.171.6:0
File type ASCII text, with very long lines (65530)
Hash 61a618d3c6490388ee9088034e0cb896
cae099d6eac49654ac75c251fe80a231d9c4682d
3a250a7ecbf3c5f90dddf543db2b161712ebfafd2e31cdf05470696d1c71af1e
GET /t/9/fret/meow4/1880024/4b28880f.js HTTP/1.1
Host: wf66l5ylwq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:07 GMT
Content-Type: application/javascript
Last-Modified: Wed, 07 Sep 2022 13:38:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63189ed0-1091a"
X-JS-AB1: current
Timing-Allow-Origin: *
Accept-CH: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
Content-Encoding: gzip
www.zzcartoon.com/images/click.png
162.251.111.157200 OK 4.1 kB URL HTTP/2 www.zzcartoon.com/images/click.png
IP 162.251.111.157:0
File type PNG image data, 47 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 22b6d73a6e22fa7d5f527dd5fdfd7157
e7b36773cd5cc7979823d56c4188238dda1841c3
54a9c76b2bb17a64ef63777d3d675dd5547a50e613982d8fdf2d2c41b063fa53
GET /images/click.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 4092
last-modified: Thu, 27 Nov 2014 15:11:18 GMT
etag: "4562183-ffc-508d88e5d7180"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/icontexto-inside-favorites.png
162.251.111.157200 OK 1.3 kB URL HTTP/2 www.zzcartoon.com/images/icontexto-inside-favorites.png
IP 162.251.111.157:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 03d6036b91b376b92acfd7a6cb0183a8
9d8968d20a53a6cefd178a295c3cc796d10e91e9
f4170d6add90fe648b2e9bb739d472f39cba93c82350b5c2c9864d868ee35edc
GET /images/icontexto-inside-favorites.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 1346
last-modified: Fri, 11 Sep 2015 11:00:58 GMT
etag: "456218c-542-51f76a1666e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/title-bg.png
162.251.111.157200 OK 3.2 kB URL HTTP/2 www.zzcartoon.com/images/title-bg.png
IP 162.251.111.157:0
File type PNG image data, 17 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 85e180b5e6d76e73bd25083954e5d707
1709031b8720488b606661f182205fff7c1c2401
2e61378526866b61365ad110f7159c7feafcf2aa24797a7d3ae319bba226927f
GET /images/title-bg.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3195
last-modified: Thu, 27 Nov 2014 15:11:20 GMT
etag: "45621b1-c7b-508d88e7bf600"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/images/new.png
162.251.111.157200 OK 4.2 kB URL HTTP/2 www.zzcartoon.com/images/new.png
IP 162.251.111.157:0
File type PNG image data, 42 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash fb1d084295ef4b8e8a87603772da44db
7033b4a43c38f90573efb54bfdf9b60a69e95bba
0d0911a836191549dfc73bd9f0003f6d297d7c865031ed9c4842406bd9a86342
GET /images/new.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 4158
last-modified: Thu, 27 Nov 2014 15:11:16 GMT
etag: "456219f-103e-508d88e3eed00"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/player/kt_player.js?v=5.0.1
162.251.111.157200 OK 58 kB URL HTTP/2 www.zzcartoon.com/player/kt_player.js?v=5.0.1
IP 162.251.111.157:0
Hash c52aaffd84f3cfb880951439d2ab4962
e4ee810309ebc618b3a426ff37b96f80728fc7f8
f9e0430eef86817f6426842c451c5d1848b9198028ae12bd2942e9b3019f9819
GET /player/kt_player.js?v=5.0.1 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Tue, 11 Jan 2022 19:35:40 GMT
vary: Accept-Encoding
etag: W/"61dddc0c-24aa0"
content-encoding: gzip
X-Firefox-Spdy: h2
www.zzcartoon.com/images/sprite.png
162.251.111.157200 OK 7.4 kB URL HTTP/2 www.zzcartoon.com/images/sprite.png
IP 162.251.111.157:0
File type PNG image data, 325 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash 47d499399a7752a1d9d964d58ecdf15a
22e6dc7185cb03a1f6575af588fa82d8ae6279d9
6b6f5d24930eb8b2f24c3127f72ed9100eaafa7792fb880a49ef8131f2c31916
GET /images/sprite.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/styles/style.css?v=97683
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 7436
last-modified: Thu, 27 Nov 2014 15:11:18 GMT
etag: "45621a8-1d0c-508d88e5d7180"
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn1.zzcartoon.com/contents/videos_screenshots/8000/8508/preview.mp4.jpg
185.73.223.2200 OK 68 kB URL HTTP/2 cdn1.zzcartoon.com/contents/videos_screenshots/8000/8508/preview.mp4.jpg
IP 185.73.223.2:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.48.101", baseline, precision 8, 1280x720, components 3\012- data
Hash cd8e2b8cac6a81a994521e3b4714a4e0
0850e0fb3baac561f62777155ea7db9263a02b3a
38754fcbf3446fbae0d94cbd09628b2d88016aaf7032851c05a89a652cf13b19
GET /contents/videos_screenshots/8000/8508/preview.mp4.jpg HTTP/1.1
Host: cdn1.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/jpeg
content-length: 67456
last-modified: Wed, 26 Jan 2022 21:06:18 GMT
etag: "61f1b7ca-10780"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.zzcartoon.com/js/jquery.js
162.251.111.157200 OK 87 kB URL HTTP/2 www.zzcartoon.com/js/jquery.js
IP 162.251.111.157:0
Hash b690e2bfbd1a0efe215dbf457380c62b
5aefc9e607ca69f6c20bd9b1ffdd2cf830763eb3
9790b9074f5e3e83844a0a2ae5ad2e0d5722389d0d17f616dadcfd54c495c80d
GET /js/jquery.js HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Thu, 27 Nov 2014 15:11:12 GMT
vary: Accept-Encoding
etag: W/"54773f10-5c868"
content-encoding: gzip
X-Firefox-Spdy: h2
hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js
205.185.208.20200 OK 5.0 kB URL HTTP/1.1 hw-cdn2.ang-content.com/delivery/vortex/vortex-simple-1.0.0.js
IP 205.185.208.20:0
File type ASCII text, with very long lines (5027), with no line terminators
Hash 5e5817bcf4c82c7c85d1d88636d221ce
b5c32cc6c931c33c1297884016e13d3b9a5bf261
6f0e50ac39121175ca0427c4e87cdfa2520b526c8497e23cffbca726eb6ca42c
GET /delivery/vortex/vortex-simple-1.0.0.js HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1541168231"
Content-Length: 5027
Content-Type: application/javascript
Last-Modified: Fri, 02 Nov 2018 14:17:11 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10450174
X-HW: 1663102807.dop014.sk1.t,1663102807.cds220.sk1.shn,1663102807.cds220.sk1.c
Access-Control-Allow-Origin: *
ads2.contentabc.com/ads?spot_id=6418956&rand=1683431291
66.254.114.171200 OK 26 kB URL HTTP/2 ads2.contentabc.com/ads?spot_id=6418956&rand=1683431291
IP 66.254.114.171:0
Hash 4aba7303830306f19fcd69b0b8778c9a
794b8bb9e79e968f28c624f763b889a58e404e39
5611050c4c6b7ef091637f92c9e9712820d1ce9ea9754be010c41315324432d9
GET /ads?spot_id=6418956&rand=1683431291 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KJmMg71cfXiiaGPDqAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded6742; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF57-42FE72AB01BB2617-269170E6
X-Firefox-Spdy: h2
hw-cdn2.ang-content.com/a7/creatives/50/529/814443/1030895/1030895_logo.png
205.185.208.20200 OK 7.4 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/50/529/814443/1030895/1030895_logo.png
IP 205.185.208.20:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, interlaced\012- data
Hash c8dd695640cdab8c7c945d1746ead7b9
8c6259c702fd2733f9ffc58c3ed80adfee7e33cb
b68da1fbb99d2315e7de2f3b919a49e0f3ced539a1ad85b250d6aa28278414f4
GET /a7/creatives/50/529/814443/1030895/1030895_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1651843008"
Content-Length: 7442
Content-Type: image/png
Last-Modified: Fri, 06 May 2022 13:16:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10732961
X-HW: 1663102807.dop023.sk1.t,1663102807.cds204.sk1.shn,1663102807.dop023.sk1.t,1663102807.cds215.sk1.c
Access-Control-Allow-Origin: *
hw-cdn2.ang-content.com/a7/creatives/1/49/814861/1038668/1038668_logo.png
205.185.208.20200 OK 4.2 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/1/49/814861/1038668/1038668_logo.png
IP 205.185.208.20:0
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1220f7311cd96f340be4c4c608ca85a6
05adee9ec81da5f7ddc258b5a6f05a104f89c3ba
6cce250309d4470b025877494a01253e1d9d8da32fa5fc96ca2ce63683b2a084
GET /a7/creatives/1/49/814861/1038668/1038668_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1659026346"
Content-Length: 4192
Content-Type: image/png
Last-Modified: Thu, 28 Jul 2022 16:39:06 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10413219
X-HW: 1663102807.dop214.sk1.t,1663102807.cds252.sk1.shn,1663102807.dop214.sk1.t,1663102807.cds212.sk1.c
Access-Control-Allow-Origin: *
hw-cdn2.ang-content.com/a7/creatives/1/49/814844/1038414/1038414_logo.png
205.185.208.20200 OK 3.3 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/1/49/814844/1038414/1038414_logo.png
IP 205.185.208.20:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 4c992f93419cff2c1c149dfc70e710c6
ea1808199ce5bb59a63edea6fd39bbbf5e7511d7
ba89161f62c517bdd776996943f3e26ed2b92d749178f1c24da07c8db904e27c
GET /a7/creatives/1/49/814844/1038414/1038414_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1658772410"
Content-Length: 3346
Content-Type: image/png
Last-Modified: Mon, 25 Jul 2022 18:06:50 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10430029
X-HW: 1663102807.dop222.sk1.t,1663102807.cds221.sk1.shn,1663102807.dop222.sk1.t,1663102807.cds253.sk1.c
Access-Control-Allow-Origin: *
hw-cdn2.ang-content.com/a7/creatives/58/612/814876/1038981/1038981_logo.png
205.185.208.20200 OK 4.6 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/58/612/814876/1038981/1038981_logo.png
IP 205.185.208.20:0
File type PNG image data, 305 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash b8e0437fff9d22860fcc94c1f64f18d8
23c7aa2470df2ba2d1ad9ab66ada9b987799dc17
603c7c64783405d399de33ac9087ce1b565062d65cbc72f065a1626ab024b75d
GET /a7/creatives/58/612/814876/1038981/1038981_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1659370333"
Content-Length: 4571
Content-Type: image/png
Last-Modified: Mon, 01 Aug 2022 16:12:13 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10736742
X-HW: 1663102807.dop014.sk1.t,1663102807.cds220.sk1.shn,1663102807.dop014.sk1.t,1663102807.cds205.sk1.c
Access-Control-Allow-Origin: *
hw-cdn2.ang-content.com/a7/creatives/58/612/814809/1037963/1037963_logo.png
205.185.208.20200 OK 3.3 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/58/612/814809/1037963/1037963_logo.png
IP 205.185.208.20:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d0e285d54109f995d68403b89f84cfc
b6c5a2b07f4c5772121fc94ba87ac93716fd760c
b42a7e54025ccd8aeda380a13558be674b901779db5c91f5edcb6539f4ad5ff7
GET /a7/creatives/58/612/814809/1037963/1037963_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1658352891"
Content-Length: 3343
Content-Type: image/png
Last-Modified: Wed, 20 Jul 2022 21:34:51 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10461630
X-HW: 1663102807.dop023.sk1.t,1663102807.cds204.sk1.shn,1663102807.dop023.sk1.t,1663102807.cds208.sk1.c
Access-Control-Allow-Origin: *
hw-cdn2.ang-content.com/a7/creatives/1/49/814927/1040037/1040037_logo.png
205.185.208.20200 OK 3.3 kB URL HTTP/1.1 hw-cdn2.ang-content.com/a7/creatives/1/49/814927/1040037/1040037_logo.png
IP 205.185.208.20:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 4c992f93419cff2c1c149dfc70e710c6
ea1808199ce5bb59a63edea6fd39bbbf5e7511d7
ba89161f62c517bdd776996943f3e26ed2b92d749178f1c24da07c8db904e27c
GET /a7/creatives/1/49/814927/1040037/1040037_logo.png HTTP/1.1
Host: hw-cdn2.ang-content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: Keep-Alive
ETag: "1660653789"
Content-Length: 3346
Content-Type: image/png
Last-Modified: Tue, 16 Aug 2022 12:43:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10469978
X-HW: 1663102807.dop214.sk1.t,1663102807.cds252.sk1.shn,1663102807.dop214.sk1.t,1663102807.cds252.sk1.c
Access-Control-Allow-Origin: *
ads2.contentabc.com/ads?spot_id=6418626&rand=751251593
66.254.114.171200 OK 11 kB URL HTTP/2 ads2.contentabc.com/ads?spot_id=6418626&rand=751251593
IP 66.254.114.171:0
Hash 65d06ca855d9e246e67262faf625237e
e8e8961240925ede2d97c87e9de724c079899335
16be9ab8d2b4746b19e02cffcb0d9fd4cb75a3c0721660041f8d4aa5930e7049
GET /ads?spot_id=6418626&rand=751251593 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KEmMg71dCD1OVk9gyAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded7041; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF57-42FE72AB01BB2617-26917104
X-Firefox-Spdy: h2
www.zzcartoon.com/player/skin/img/play_white.png
162.251.111.157200 OK 3.7 kB URL HTTP/2 www.zzcartoon.com/player/skin/img/play_white.png
IP 162.251.111.157:0
File type PNG image data, 120 x 120, 8-bit gray+alpha, non-interlaced\012- data
Hash f9a6b1c24a8858cf91b1f79ccecb8544
e63232a567ab4c0d09dcd7c9649abbc747e6d2a2
e13296a19c623cff752620a9f03aa2b920a13ea08a1d2292ebd423a2e0feeb2c
GET /player/skin/img/play_white.png HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zzcartoon.com/player/skin/dark.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/png
content-length: 3679
last-modified: Tue, 11 Jan 2022 19:42:28 GMT
etag: "57a2b9c-e5f-5d553a7454120"
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2
wf66l5ylwq.com/solid.gif?z=1880024&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 wf66l5ylwq.com/solid.gif?z=1880024&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1880024&abvar=0 HTTP/1.1
Host: wf66l5ylwq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.zzcartoon.com
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
2cnjuh34jbhub.com/get/1591811?zoneid=1591811&jp=_clhado3ul6qx1j1fycnszo&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=3205217848509974
62.122.171.6200 OK 1.5 kB URL HTTP/2 2cnjuh34jbhub.com/get/1591811?zoneid=1591811&jp=_clhado3ul6qx1j1fycnszo&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=3205217848509974
IP 62.122.171.6:0
Hash 35bf101d2e6e64ea1d26c0c5a301e2f8
c5f8667bf3f29bf7f07e8c0281a82e88d30c3d79
284c6415dece54d03029d6a6d6684f83177168648496156beeede6ba150a63fb
GET /get/1591811?zoneid=1591811&jp=_clhado3ul6qx1j1fycnszo&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=3205217848509974 HTTP/1.1
Host: 2cnjuh34jbhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=220913160047d11c7b03044a8394a4f6943f; Path=/; Expires=Wed, 13 Sep 2023 21:00:07 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
2.18.172.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 2.18.172.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Tue, 13 Sep 2022 21:00:07 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20006
Date: Tue, 13 Sep 2022 20:20:38 GMT
Expires: Tue, 13 Sep 2022 22:20:38 GMT
Cache-Control: public, max-age=7200
Age: 2369
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
limurol.com/ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Cookie: UID=2209131600301cdc09c32f4f7892e569ce58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.seeawhale.com/zone/2113/100199,seeawhale
18.214.224.116200 OK 799 B URL HTTP/1.1 www.seeawhale.com/zone/2113/100199,seeawhale
IP 18.214.224.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0c8a3d05b7e691e06fed5e389bd6537a
6fe89a95740a41729eca3966b3a89e258061efe2
a8f1b33208a3b03f48ac7c252be61a62e4330bcf2a6b05dc2cac8f152dd02c9d
GET /zone/2113/100199,seeawhale HTTP/1.1
Host: www.seeawhale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://whalecashads.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Cache-Control,Content-Language,Content-Type,Expires,Last-Modified,Pragma
Cache-Control: no-cache, private
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Tue, 13 Sep 2022 21:00:07 GMT
Vary: Origin, Accept-Encoding
Via: 1.1 tinyproxy (tinyproxy/1.8.4)
Content-Length: 799
Connection: keep-alive
www.zzcartoon.com/favicon.ico
162.251.111.157200 OK 1.2 kB URL HTTP/1.1 www.zzcartoon.com/favicon.ico
IP 162.251.111.157:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 520fc3da74bf59de514e1cb3e53246b1
05e5daa4c556a61ebea10698568035c23ac03481
96dd4e9f6338f6407b53328d991c1afc77efed03adaf837903e535e72be9ce90
GET /favicon.ico HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zzcartoon.com/videos/kemonokko-tsuushin-the-animation.html
Cookie: PHPSESSID=e2aa8c471494a9c831181d809d0f75b6; kt_qparams=dir%3Dkemonokko-tsuushin-the-animation; kt_tcookie=1; kt_is_visited=1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 21:00:07 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Thu, 27 Nov 2014 14:07:28 GMT
ETag: "450230d-47e-508d7aa144800"
Accept-Ranges: bytes
limurol.com/ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Cookie: UID=2209131600301cdc09c32f4f7892e569ce58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ads2.contentabc.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?unique_view=1
66.254.114.171200 OK 27 B URL HTTP/2 ads2.contentabc.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?unique_view=1
IP 66.254.114.171:0
Hash 003d72d7da76fc20a658706b7fa2953f
768d8b956038ecbf8acaf1dd62944b4922105376
0e81c0525606f4c453f8d19d7b8979a60281dab99880848ae5b041f27e6d2de8
GET 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?unique_view=1 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads2.contentabc.com/ads?spot_id=5344119&rand=216291586
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KImMg71clkFERGB/wAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded7079; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF57-42FE72AB01BB2617-269171ED
X-Firefox-Spdy: h2
limurol.com/ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1880024/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=CUYHtgtJgohDSqy5HmsmmNfjTR7JqZgpRhYUMS4Bjbyqf4VoO3vU6V649-he4z1u-cVuCX8qZxzZQmIRJzkWLkFGfaqRteNAqVJAWeLiyFKDh4lkBCI4lwQvjuK-_Km38dVKebtkvsbXEHwaIBKHBoMaJhgX7y_JbjemFppybhdyzUOfGiqnQv0SbNxClQH8Aqz5Q5FUKKFdBAispDc0nzb8RpACbYK-PgeShXLr2fBcQ0Jpoa5Jxv-6U8caSIWc9063LkiMvlu9ImaNHzsx6lEfTY7nrvyX7mZJhdocLrebwpqDhmhz1g70IXQYZtciabbYCxdsVmt1zJaYqAEXepoJv8lTPjizNB6EsjX9KQp_tr5i1_aaSpvsB0fhX6MtpXG30DjPY3YOWmNApVhDqxtDypSKvS0Qoe4G9O5RBU5rMruMx2kQkshi-79-TzNgzruftYK8pmDpb4vp2CSyUjZi5UtxLy_WAn2JRev9dHsx5KbJwiWJ0xzaAP8YM6-tmQs0XLI-l6Dl_xYgWBbjsFw3AGqLjrhwkDwPx7xgeHJDfbPtuw-JsoQX_iOe7mGD9x-2Iq0-mxzht4aHEpvGilz5apcrGhsp6w==&cb=_cloe59q54prmp7mest4p1x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Cookie: UID=2209131600301cdc09c32f4f7892e569ce58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8d72900a2087b955961864f17d26b563
db24a3f3eecbe351a3ec3fef5eb092e659f03d28
50979a285b35541bac61c1715811f280ff66cd8289854e2f919ba7ca70f12364
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 21:00:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 15:37:53 GMT
Expires: Mon, 19 Sep 2022 15:37:52 GMT
Etag: "db24a3f3eecbe351a3ec3fef5eb092e659f03d28"
Cache-Control: max-age=498464,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a3cf858ec20afe-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:00:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:00:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Tue, 13 Sep 2022 22:25:08 GMT
Date: Tue, 13 Sep 2022 21:00:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 239262b6ab17cb19414c35cd4f761092
48eddcf9838e980e67cc8f9cbb05b475df2f0331
cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NKM6RRhJ5AuRF4NKSyBO6-KMkd1UGaw3DuZBkBao_8fzzpkMeDrn0w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:55:41 GMT
age: 83067
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 019416755742a78ddf35671ba5eaccc7
ec2e96359ef3a236514cab21af80ea5b9420e9c3
a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10245
x-amzn-requestid: 20d58a44-c942-46a8-9136-a824d775275c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLNZPFsjoAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac2a1-24d2272a61fd0f39088251b4;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:35:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2E2yaVqFHLXdfuJns8hs9DNomHNQWVNVSeZSCMdD2W7bGMMgA0QoZQ==
via: 1.1 024f97192fe648974da2251fbcc71f38.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:17:59 GMT
age: 81729
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 03:17:04 GMT
age: 63784
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 43wWNADffkA0e8T-SYvAMjp266nAE5hrDjNMQQsuYeT0i6xQt7wLVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:55:34 GMT
age: 83074
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TeasWs7Qh6T3oV8vJsu5JM_EApUJEGGWIvUC6Pfd41u18v8RlcPQpg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:57:19 GMT
age: 82969
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bTzXQvDkX23_t4vLJNWv7bg-DoRsdqiBhwNJH5B-RcXxj9RC-87LvA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:41:52 GMT
age: 83896
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
limurol.com/ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1591811/?pb=1e111305f79fba68f1252440904dd4321663110007&psp=N6KrJoCcyVLn-aYOlBLFfGHXPuq5srvXYJo7XjDc8Zy_pPR6Vgp1L9YGMUiCrMVg5j9DMHvfJoBeuyLvOmv3a10OVAnRO9dknSvLxMu_wzwevqVwYcpHK-16R5y5TcNs4TYyODRsho75EYkuUpwx2phtIM78HzrTEnKLL_3rcEJh60Z4hFFr7FgTjFXzqaRBEVGxTfSpTdR3oJy-2CyvJ8nZo-BppqZqKQh51R6zwduKr5LuyqoC5DKspWJZq-0Fmd9tDZ3Nor1WZPryQvxxI0-oudLGpoy638DGIbmTUVgrRNh7NkmvhKIRF6B3c0ke5MNQoTOyNfXTUbWqChxVw30J4by9t6yMpdc-3tTnXAkqieQWcIonqg4XOegpLyRlb8wSAQFmOtvydshG8lzUmCYdnTsDa8BL8KlYvFwvR-gIFDMPJD7OR77_oS4H06blVyoB6eMKc6hEBmdfY12xQVkOWtfEvsnBe50PHr122uzEdg9IvjZAMD1fTqY_xmaJbqENXx0f04ur3Y3er7da-wiwWIBocIlHOApnvjCf5Mm-kFunOE3W2WKNFGYac2ilS3yLIOy14v4o-fKH3a7NyBaQgSqIwwGJ0w==&cb=_cl998ulr4m0o8u18l1r2qx&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Cookie: UID=2209131600301cdc09c32f4f7892e569ce58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:08 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
2.18.172.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 2.18.172.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116423 bytes)
Hash d5b9b7a3accd3b7b7de639c072ae3ee2
9583b5c046d78af5c6379d844219f828aa2222d0
648dad6716bb917c7d981e7772fca499d9583717fd83ffef47b0534cb9132b60
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zzcartoon.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116423
date: Tue, 13 Sep 2022 21:00:08 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j96&a=285118062&t=pageview&_s=1&dl=http%3A%2F%2Fwww.zzcartoon.com%2Fvideos%2Fkemonokko-tsuushin-the-animation.html&ul=en-us&de=UTF-8&dt=Kemonokko%20Tsuushin%20The%20Animation%20Episode%201%20Eng%20Sub&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=35670447&gjid=936737611&cid=2070168367.1663102794&tid=UA-51531497-4&_gid=1625287186.1663102794&_r=1&_slc=1&z=1723232501
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=285118062&t=pageview&_s=1&dl=http%3A%2F%2Fwww.zzcartoon.com%2Fvideos%2Fkemonokko-tsuushin-the-animation.html&ul=en-us&de=UTF-8&dt=Kemonokko%20Tsuushin%20The%20Animation%20Episode%201%20Eng%20Sub&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=35670447&gjid=936737611&cid=2070168367.1663102794&tid=UA-51531497-4&_gid=1625287186.1663102794&_r=1&_slc=1&z=1723232501
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j96&a=285118062&t=pageview&_s=1&dl=http%3A%2F%2Fwww.zzcartoon.com%2Fvideos%2Fkemonokko-tsuushin-the-animation.html&ul=en-us&de=UTF-8&dt=Kemonokko%20Tsuushin%20The%20Animation%20Episode%201%20Eng%20Sub&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAAC~&jid=35670447&gjid=936737611&cid=2070168367.1663102794&tid=UA-51531497-4&_gid=1625287186.1663102794&_r=1&_slc=1&z=1723232501 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.zzcartoon.com
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.zzcartoon.com
date: Tue, 13 Sep 2022 21:00:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 21:00:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
z.moatads.com/addthismoatframe568911941483/moatframe.js
95.101.172.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 95.101.172.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TYrAmp44ddThNKrHeBmfOrJOox8ItZdAJeP4Uj7Uut6T7Jvp1PpX/XFzXT0gU1oJH/SwK8Irisw=
x-amz-request-id: 598E0BAF9E725A50
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
unused62: 8096267
cache-control: max-age=26135
date: Tue, 13 Sep 2022 21:00:08 GMT
X-Firefox-Spdy: h2
cdn.itsup.com/creatives/6/300x250gamesaug2635d63dbd4bd6a6.gif
64.210.135.116200 OK 761 kB URL HTTP/2 cdn.itsup.com/creatives/6/300x250gamesaug2635d63dbd4bd6a6.gif
IP 64.210.135.116:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 761 kB (761286 bytes)
Hash b3dd6a67b27880ee187163f91c3c418c
b327aba92e02dd49132c3a3eed43fa16e8e6bf24
a4100306a40bff094e56be49914a50a4cf3639c12ab68efc31b1691367a01002
GET /creatives/6/300x250gamesaug2635d63dbd4bd6a6.gif HTTP/1.1
Host: cdn.itsup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.seeawhale.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: image/gif
content-length: 761286
last-modified: Tue, 12 Jan 2021 18:26:32 GMT
etag: "b3dd6a67b27880ee187163f91c3c418c"
cache-control: public,s-maxage=86400,max-age=31536000
accept-ranges: bytes
x-cdn-diag: ams5-6249-2-19529-r-0-0-304-0.000--;7619-23-25086----0-0-3
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=6320ef4ac738f9cf&bkl=0&bl=1&pdt=626&sid=6320ef4ac738f9cf&pub=ra-509acf491aa4588a&rev=v8.28.8-wp&ln=en&pc=men&cb=1&ab=-&dp=www.zzcartoon.com&fp=videos%2Fkemonokko-tsuushin-the-animation.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663102795041&jsl=1&uvs=6320ef4a05834d52000&skipb=1&callback=addthis.cbs.jsonp__71512765914189270
2.18.172.123200 OK 48 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=6320ef4ac738f9cf&bkl=0&bl=1&pdt=626&sid=6320ef4ac738f9cf&pub=ra-509acf491aa4588a&rev=v8.28.8-wp&ln=en&pc=men&cb=1&ab=-&dp=www.zzcartoon.com&fp=videos%2Fkemonokko-tsuushin-the-animation.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663102795041&jsl=1&uvs=6320ef4a05834d52000&skipb=1&callback=addthis.cbs.jsonp__71512765914189270
IP 2.18.172.123:0
File type ASCII text, with no line terminators
Hash 815820da71cc7a7ce36eb36bcfed5ded
3f1ffb0309e5ace830137a69ec38101994a20ea9
20335a9a2b7b749f26fb71ac1549d46ce962123f144708e53866d0112449fb5a
GET /live/red_lojson/300lo.json?si=6320ef4ac738f9cf&bkl=0&bl=1&pdt=626&sid=6320ef4ac738f9cf&pub=ra-509acf491aa4588a&rev=v8.28.8-wp&ln=en&pc=men&cb=1&ab=-&dp=www.zzcartoon.com&fp=videos%2Fkemonokko-tsuushin-the-animation.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663102795041&jsl=1&uvs=6320ef4a05834d52000&skipb=1&callback=addthis.cbs.jsonp__71512765914189270 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 48
date: Tue, 13 Sep 2022 21:00:08 GMT
content-type: application/json
cache-control: no-transform, s-maxage=0, max-age=0
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
2.18.172.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 2.18.172.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 13 Sep 2022 21:00:08 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-509acf491aa4588a/_ate.track.config_resp
2.18.172.123200 OK 34 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-509acf491aa4588a/_ate.track.config_resp
IP 2.18.172.123:0
File type ASCII text, with no line terminators
Hash 3a9241a346d3b446f471156301fabaa4
4a108436729c1373ca5a639e2eccd1c758862aac
2cfc87cde7d1d87e0e1cb7cae35006a9a842d436e348d4b223b87efc484b5b5d
GET /live/boost/ra-509acf491aa4588a/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 34
date: Tue, 13 Sep 2022 21:00:08 GMT
content-type: application/json
cache-control: no-transform, s-maxage=0, max-age=0
X-Firefox-Spdy: h2
www.zzcartoon.com/styles/magnific-popup.css
162.251.111.157200 OK 0 B URL HTTP/2 www.zzcartoon.com/styles/magnific-popup.css
IP 162.251.111.157:0
GET /styles/magnific-popup.css HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: text/css
last-modified: Mon, 27 Jul 2015 19:32:10 GMT
vary: Accept-Encoding
etag: W/"55b6873a-1e6d"
content-encoding: gzip
X-Firefox-Spdy: h2
www.zzcartoon.com/styles/style.css?v=97683
162.251.111.157200 OK 0 B URL HTTP/2 www.zzcartoon.com/styles/style.css?v=97683
IP 162.251.111.157:0
GET /styles/style.css?v=97683 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: text/css
last-modified: Sat, 15 Dec 2018 22:58:26 GMT
vary: Accept-Encoding
etag: W/"5c158712-cf0f"
content-encoding: gzip
X-Firefox-Spdy: h2
ads2.contentabc.com/ads?spot_id=6418961&rand=1879331408
66.254.114.171200 OK 0 B URL HTTP/2 ads2.contentabc.com/ads?spot_id=6418961&rand=1879331408
IP 66.254.114.171:0
GET /ads?spot_id=6418961&rand=1879331408 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KJmMg71cg/ik+o9Y3Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded6742; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF56-42FE72AB01BB2617-269170D6
X-Firefox-Spdy: h2
ads2.contentabc.com/ads?spot_id=2519850&rand=486922664
66.254.114.171200 OK 0 B URL HTTP/2 ads2.contentabc.com/ads?spot_id=2519850&rand=486922664
IP 66.254.114.171:0
GET /ads?spot_id=2519850&rand=486922664 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zzcartoon.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KAmMg71cBXwMvMbJDAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded6973; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF57-42FE72AB01BB2617-269170DE
X-Firefox-Spdy: h2
www.zzcartoon.com/js/KernelTeamVideoSharingSystem.js?v=5.0.1
162.251.111.157200 OK 0 B URL HTTP/2 www.zzcartoon.com/js/KernelTeamVideoSharingSystem.js?v=5.0.1
IP 162.251.111.157:0
GET /js/KernelTeamVideoSharingSystem.js?v=5.0.1 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Wed, 22 Oct 2014 15:42:40 GMT
vary: Accept-Encoding
etag: W/"5447d070-1ec6"
content-encoding: gzip
X-Firefox-Spdy: h2
www.zzcartoon.com/js/KernelTeamVideoSharingVideoView.js?v=5.0.1
162.251.111.157200 OK 0 B URL HTTP/2 www.zzcartoon.com/js/KernelTeamVideoSharingVideoView.js?v=5.0.1
IP 162.251.111.157:0
GET /js/KernelTeamVideoSharingVideoView.js?v=5.0.1 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Wed, 22 Oct 2014 15:42:40 GMT
vary: Accept-Encoding
etag: W/"5447d070-4c43"
content-encoding: gzip
X-Firefox-Spdy: h2
ads2.contentabc.com/ads?spot_id=6418626&rand=751251593
66.254.114.171200 OK 0 B URL HTTP/2 ads2.contentabc.com/ads?spot_id=6418626&rand=751251593
IP 66.254.114.171:0
GET /ads?spot_id=6418626&rand=751251593 HTTP/1.1
Host: ads2.contentabc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: adtool_guid=Ch5KHmMg71cwdXb2SauqAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/; Secure; HTTPOnly; SameSite=None;
RNLBSERVERID=ded7078; path=/; HttpOnly; Secure; SameSite=None
x-request-id: 6320EF57-42FE72AB01BB2617-26917108
X-Firefox-Spdy: h2
wf66l5ylwq.com/get/1880024?zoneid=1880024&jp=_cl6bvvhvzvhwd5uirk9igc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=1797842965003885
62.122.171.6200 OK 0 B URL HTTP/2 wf66l5ylwq.com/get/1880024?zoneid=1880024&jp=_cl6bvvhvzvhwd5uirk9igc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=1797842965003885
IP 62.122.171.6:0
GET /get/1880024?zoneid=1880024&jp=_cl6bvvhvzvhwd5uirk9igc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=1797842965003885 HTTP/1.1
Host: wf66l5ylwq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:07 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2209131600920da2fbde764b41a855295377; Path=/; Expires=Wed, 13 Sep 2023 21:00:07 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.zzcartoon.com/js/KernelTeamImageRotator.js?v=5.0.1
162.251.111.157200 OK 0 B URL HTTP/2 www.zzcartoon.com/js/KernelTeamImageRotator.js?v=5.0.1
IP 162.251.111.157:0
GET /js/KernelTeamImageRotator.js?v=5.0.1 HTTP/1.1
Host: www.zzcartoon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zzcartoon.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 21:00:06 GMT
content-type: application/javascript
last-modified: Wed, 22 Oct 2014 15:42:40 GMT
vary: Accept-Encoding
etag: W/"5447d070-bbc"
content-encoding: gzip
X-Firefox-Spdy: h2