Overview

URL freeadultcomix.com/category/mana-world/
IP172.67.71.163
ASNCLOUDFLARENET
Location United States
Report completed2022-10-02 22:58:45 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-02 2 tsyndicate.com/api/v1/retargeting/set/b5e023d7-d6ac-495d-8e3b-e65703a0f52a Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (54)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS main.exoclick.com (2) 33599 2015-09-01 10:25:49 UTC 2022-10-02 17:53:02 UTC 95.211.229.248
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-02 11:37:29 UTC 142.250.74.3
mnemonic passive DNS gjxsq65j0216.n4.adsco.re (1) 0 No data No data 38.132.109.186 Domain (adsco.re) ranked at: 8541
mnemonic passive DNS e1.o.lencr.org (6) 6159 2021-08-20 07:36:30 UTC 2022-10-02 11:34:26 UTC 23.36.77.32
mnemonic passive DNS flixdot.com (2) 0 2020-07-22 06:38:38 UTC 2022-10-02 06:54:03 UTC 104.21.95.106 Unknown ranking
mnemonic passive DNS ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2022-10-02 04:45:05 UTC 172.64.155.188
mnemonic passive DNS a.exdynsrv.com (1) 40663 2019-05-21 05:34:42 UTC 2022-10-02 12:52:57 UTC 205.185.216.42
mnemonic passive DNS c.adsco.re (1) 16577 2017-11-29 18:42:15 UTC 2022-10-02 17:27:51 UTC 104.17.167.186
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-10-02 16:25:36 UTC 18.165.201.103
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-10-02 15:44:45 UTC 93.184.220.29
mnemonic passive DNS poweredby.jads.co (6) 30525 2019-12-04 10:34:12 UTC 2022-10-02 12:08:15 UTC 185.94.236.247
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-10-02 11:36:31 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-02 11:24:29 UTC 34.120.237.76
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-02 17:15:51 UTC 142.250.74.164
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-02 04:45:21 UTC 34.117.237.239
mnemonic passive DNS syndication.realsrv.com (8) 9112 2019-07-03 21:39:52 UTC 2022-10-02 13:44:14 UTC 95.211.229.247
mnemonic passive DNS cdn4ads.com (1) 46207 2020-04-19 20:21:04 UTC 2022-10-02 13:48:49 UTC 216.59.63.128
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-10-02 12:36:46 UTC 74.125.131.156
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-02 05:00:42 UTC 108.156.28.39
mnemonic passive DNS 6.adsco.re (1) 17812 2018-01-15 04:15:29 UTC 2022-10-02 17:27:51 UTC 104.17.166.186
mnemonic passive DNS goplayhere.com (1) 0 2016-01-26 12:17:53 UTC 2022-10-02 19:53:13 UTC 172.67.187.242 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-10-02 05:33:45 UTC 23.36.76.226
mnemonic passive DNS gjxsq65j0216.s4.adsco.re (1) 0 No data No data 185.200.116.90 Domain (adsco.re) ranked at: 8541
mnemonic passive DNS runative-syndicate.com (1) 31587 2019-03-19 12:21:36 UTC 2022-10-02 17:40:25 UTC 94.130.141.49
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-10-02 14:15:11 UTC 151.101.85.140
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-10-02 05:01:45 UTC 142.250.74.3
mnemonic passive DNS adsco.re (1) 8541 2017-04-03 03:11:30 UTC 2022-10-02 17:27:51 UTC 162.252.214.5
mnemonic passive DNS main.realsrv.com (2) 91110 2019-02-11 13:11:59 UTC 2022-10-02 18:52:15 UTC 95.211.229.247
mnemonic passive DNS my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-10-02 11:43:59 UTC 139.45.195.8
mnemonic passive DNS s3t3d2y8.afcdn.net (5) 0 2022-08-08 22:22:56 UTC 2022-10-02 12:19:25 UTC 185.76.9.15 Unknown ranking
mnemonic passive DNS free-cosmetics-online.com (1) 407567 2021-05-16 10:37:46 UTC 2022-10-01 11:18:03 UTC 172.67.209.47
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-10-02 14:05:11 UTC 142.250.74.168
mnemonic passive DNS tsyndicate.com (1) 13042 2017-03-16 09:04:54 UTC 2022-10-02 20:19:12 UTC 136.243.51.205
mnemonic passive DNS www.cdn4ads.com (1) 105393 2020-04-19 20:21:04 UTC 2022-10-02 13:48:48 UTC 185.76.9.23
mnemonic passive DNS 4.adsco.re (2) 19179 2021-01-04 16:47:52 UTC 2022-10-02 17:27:51 UTC 162.252.214.5
mnemonic passive DNS freeadultcomix.com (2) 655838 2016-05-28 19:11:52 UTC 2022-10-01 15:47:58 UTC 172.67.71.163
mnemonic passive DNS ipv6-test.com (1) 146362 2012-05-23 11:24:12 UTC 2022-10-02 06:03:59 UTC 51.75.78.103
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-10-02 04:45:21 UTC 31.13.72.36
mnemonic passive DNS main.exdynsrv.com (2) 91821 2017-01-30 11:01:34 UTC 2022-10-02 18:52:15 UTC 95.211.229.247
mnemonic passive DNS alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2022-10-02 16:02:05 UTC 151.101.85.140
mnemonic passive DNS syndication.exdynsrv.com (1) 34243 2016-04-20 18:35:15 UTC 2022-10-02 14:05:03 UTC 95.211.229.248
mnemonic passive DNS cdn.banhq.com (1) 287812 2022-10-01 04:27:20 UTC 2022-10-02 16:36:18 UTC 143.204.55.38
mnemonic passive DNS gjxsq65j0216.l4.adsco.re (1) 0 No data No data 185.200.118.90 Domain (adsco.re) ranked at: 8541
mnemonic passive DNS suchenachmuschi.space (1) 168968 2019-09-13 22:34:01 UTC 2022-09-29 15:07:31 UTC 104.21.10.141
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-10-02 15:34:27 UTC 104.18.32.68
mnemonic passive DNS a.hentai369.com (8) 0 2022-04-25 14:29:01 UTC 2022-09-25 22:28:42 UTC 135.181.208.216 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-02 10:20:02 UTC 35.161.231.36
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-10-02 18:30:13 UTC 142.250.74.174
mnemonic passive DNS s4.histats.com (1) 12782 2012-05-21 17:14:14 UTC 2022-10-02 12:26:42 UTC 192.99.8.27
mnemonic passive DNS highlevelcount.com (1) 0 2022-02-26 13:23:08 UTC 2022-09-29 17:14:17 UTC 104.21.30.122 Unknown ranking
mnemonic passive DNS a.shukriya90.com (3) 71663 2020-04-18 21:27:42 UTC 2022-10-02 19:37:15 UTC 135.181.208.216
mnemonic passive DNS syndication.traffichaus.com (1) 53588 2016-11-06 03:07:53 UTC 2022-10-02 09:55:24 UTC 66.254.114.233
mnemonic passive DNS s10.histats.com (1) 15211 2012-05-21 17:14:14 UTC 2022-10-02 12:09:07 UTC 46.105.201.240
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-10-02 16:00:45 UTC 142.250.74.10


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.67.71.163

Date UQ / IDS / BL URL IP
2022-11-02 20:05:11 +0000
0 - 0 - 1 dollarsurvey.site/finance-survey.html 172.67.71.163
2022-10-12 02:45:09 +0000
0 - 0 - 2 dollarsurvey.site/captcha1.html 172.67.71.163
2022-10-02 22:58:45 +0000
0 - 0 - 1 freeadultcomix.com/category/mana-world/ 172.67.71.163
2022-09-25 13:57:14 +0000
0 - 0 - 2 dollarsurvey.site/captcha1.html 172.67.71.163
2022-09-12 01:10:17 +0000
0 - 0 - 2 dollarsurvey.site/survey.html 172.67.71.163

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-02 13:07:12 +0000
0 - 0 - 24 tdspp.pw/vkbonus 104.21.6.196
2022-12-02 13:06:16 +0000
0 - 0 - 2 winluckylinks.com/landers/iphone13_spin3/index.php 188.114.97.1
2022-12-02 13:05:24 +0000
0 - 0 - 3 bafybeihxfrlg2xnil3sczvdsjdap7tcesuhjqmrm5cyp (...) 104.18.22.52
2022-12-02 13:05:23 +0000
0 - 0 - 3 uinvestglobal.sbs/strongtv 188.114.97.1
2022-12-02 13:04:03 +0000
0 - 0 - 6 mendprotnestu.tk/?uid=Tonya 188.114.97.1

Last 2 reports on domain: freeadultcomix.com

Date UQ / IDS / BL URL IP
2022-11-06 18:44:17 +0000
0 - 0 - 1 freeadultcomix.com/crazydad3d-amanda-25/ 104.26.3.231
2022-10-02 22:58:45 +0000
0 - 0 - 1 freeadultcomix.com/category/mana-world/ 172.67.71.163

No other reports with similar screenshot



JavaScript

Executed Scripts (58)


Executed Evals (140)

#1 JavaScript::Eval (size: 22, repeated: 1) - SHA256: c49e342522959187d587f89ed7dde961d8df29cec6b02dce869f4aa1ac3ef254

                                        window.mozInnerScreenX
                                    

#2 JavaScript::Eval (size: 23, repeated: 1) - SHA256: fac21d8a86a99b88e4eb395a35aa2970ffb8ffdac1b12280959be2c117e3a09c

                                        window.devicePixelRatio
                                    

#3 JavaScript::Eval (size: 16, repeated: 1) - SHA256: d17194a96291e963420dd3361221101c8fdb7d8d382fc8993563576d3fd29dd6

                                        navigator.vendor
                                    

#4 JavaScript::Eval (size: 15, repeated: 1) - SHA256: de7f7b137340e1d218833d7afef73ea711325f139a4428eed317ca0374f67c91

                                        navigator.oscpu
                                    

#5 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 11ae4500086472eb307c6d2459f0d1446b2cc02b1afda7925d800e2d49f1c9d1

                                        window.opener.outerHeight
                                    

#6 JavaScript::Eval (size: 24, repeated: 1) - SHA256: ae3766b014bf6a5b6452d14a9f1de103d584e98933db2577122c136bfb9eb0c6

                                        navigator.connection.rtt
                                    

#7 JavaScript::Eval (size: 34, repeated: 1) - SHA256: de98f45cade0178e1fd1a8257ab99e8431b3d5b35a393217e74ad6caa4efed60

                                        performance.timing.domainLookupEnd
                                    

#8 JavaScript::Eval (size: 51, repeated: 1) - SHA256: 8c6276b2ab288fa398c4bc128bf765ffc10696c7adb7b2db18019870fa29cbdd

                                        window.external.getHostEnvironmentValue("os-mode");
                                    

#9 JavaScript::Eval (size: 29, repeated: 1) - SHA256: 9c27754d9297bf8d4022ded2628940ae5a837c7d7d130b197c3dc80627a453e2

                                        HTMLElement.prototype.animate
                                    

#10 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 51c1083130407a8772738aa2380eb5a583240a47d98f2204b124c06fd11aabd5

                                        top.frames.length
                                    

#11 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 0098b3fb5f82abbebff8c293e42863b93e210b01f0032c4147fe1457f5b48a93

                                        window.offscreenBuffering
                                    

#12 JavaScript::Eval (size: 15, repeated: 1) - SHA256: 4f61f9e962c8c1d90b453b461dd9431c1d3a6a706e61ab5c2a9faf6a71aea93f

                                        screen.availTop
                                    

#13 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 793401a4baa2fb67b2049b633d5ebb8c25d2dc67d41071aabd7c180ddbdd2599

                                        navigator.cpuClass
                                    

#14 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 4b653dda0da63fbe970902ed9a8dc33f1f0555edd3d9f2ae1ad8ed9284632d72

                                        navigator.maxTouchPoints
                                    

#15 JavaScript::Eval (size: 26, repeated: 1) - SHA256: 92f68565a2781a0fbd595ff5c54717d6b87c6cf19d42c7f3d3d4c81193bb2cb4

                                        navigator.battery.charging
                                    

#16 JavaScript::Eval (size: 6, repeated: 1) - SHA256: 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba

                                        window
                                    

#17 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 02665a4c106fc96e71ef5a17511cf353ec3f5cccb82ec9fce719b23967728897

                                        typeof window.WebAssembly
                                    

#18 JavaScript::Eval (size: 17, repeated: 1) - SHA256: b4a3a83fe09d48db0c0b4416fefb19af5f9e069c12d2af8793a18f159574bb79

                                        window.outerWidth
                                    

#19 JavaScript::Eval (size: 11, repeated: 1) - SHA256: c42b2a75055edd538c357b5923a7eca102ebf4e63f14d7d8b6fa2778d6b1cdd2

                                        screen.left
                                    

#20 JavaScript::Eval (size: 17, repeated: 1) - SHA256: c66ced51cafdeb3a9e3544b0b2e7de4c955a4cd347c4d7b5d74f36923df5a7bd

                                        navigator.product
                                    

#21 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 0200f755a2c13b9335fe39b3a88f696c334e518e8407780c4731d8e6be966c4e

                                        window.outerHeight
                                    

#22 JavaScript::Eval (size: 16, repeated: 1) - SHA256: cd74e6a3b779a514972758fa195725f40176261af18fbcd246e5f401a3ecf849

                                        screen.availLeft
                                    

#23 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 13e19bbb45d0bb1d1915240763b5bca4ddef99d01edd749954115168c7842c9c

                                        navigator.buildID
                                    

#24 JavaScript::Eval (size: 30, repeated: 1) - SHA256: b6a3c0492b8e7ae0ff680b4806058d22f740029707c1f7dda3cad6f985020ba3

                                        (new Date).getTimezoneOffset()
                                    

#25 JavaScript::Eval (size: 50, repeated: 1) - SHA256: 203d92af34680f7fe84b0047f738fae4e2d401f5d28af8d70f067dc77f5acb6a

                                        window.external.getHostEnvironmentValue("os-sku");
                                    

#26 JavaScript::Eval (size: 27, repeated: 1) - SHA256: c66fd00bf884bbcc3f43284fb1c86bcea447ce653124ca7b7202d0e5fd30ae08

                                        window.opener.location.href
                                    

#27 JavaScript::Eval (size: 30, repeated: 1) - SHA256: 55ef02d9591328210e59a68fcd1945791f4d0f70cdc7cd3999eb4ba175adbafb

                                        performance.timing.redirectEnd
                                    

#28 JavaScript::Eval (size: 29, repeated: 1) - SHA256: d01a385e50e8e57c5f15bc18b82e1304ed42dcbe38967d66a30a786e39ed847b

                                        performance.timing.connectEnd
                                    

#29 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 2c6631ee0cabea9afb499cec860aab5fcf40ed956651a0b0ea7b3411e1a31cd9

                                        window.open
                                    

#30 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 3f3d3b81e8706983e30a63da7389e8cd3e70bd7778063d63f748984c42007425

                                        IntersectionObserver
                                    

#31 JavaScript::Eval (size: 26, repeated: 1) - SHA256: e495f8780d35a18d80e09be6211760313cd30ac601a5c7478f9ddf4ebf8536ba

                                        navigator.pdfViewerEnabled
                                    

#32 JavaScript::Eval (size: 15, repeated: 1) - SHA256: 2daa1a91b2430e9867296c9cb26d1483785954a9bdd66f79b2c754bab7092cae

                                        typeof __gCrWeb
                                    

#33 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 6b612f597a0ed972ce30182713c197e510528ac68ff1711b560641d5f47afefa

                                        navigator.productSub
                                    

#34 JavaScript::Eval (size: 32, repeated: 1) - SHA256: d0ea77c33d12565615b751dd5d753895e6287577bc0cfe0522961048b211daa6

                                        navigator.connection.downlinkMax
                                    

#35 JavaScript::Eval (size: 32, repeated: 1) - SHA256: 8d8003d5d1afbb2b7118b1f14afe89138588ed08982c3e8ff31dd4123e7cb076

                                        performance.timing.responseStart
                                    

#36 JavaScript::Eval (size: 19, repeated: 1) - SHA256: fc5a1ffc9513896711ec2c788490995715c8d32ccda8c4e2c68a9bd8cb214e77

                                        document.innerWidth
                                    

#37 JavaScript::Eval (size: 26, repeated: 1) - SHA256: 2638f8c5d74932a6dfe72bc21a585ef3525f7e26bd3dbb1f480071141c325af1

                                        navigator.msMaxTouchPoints
                                    

#38 JavaScript::Eval (size: 12, repeated: 1) - SHA256: 5191a526bd66a118a4a51956503fdcf4555cc92b48b9a426d04a7af25d3980e1

                                        window.brave
                                    

#39 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 7f96f13e41030d403da6d3c41ed3e161053572b43346d4e7c6ade69c0861d6ca

                                        typeof document.visibilityState
                                    

#40 JavaScript::Eval (size: 52, repeated: 1) - SHA256: b218e02bbc9cda846447b2e8fff62bc41f7f5b0e12ad8adfc05380f8df3288a4

                                        window.external.getHostEnvironmentValue("os-build");
                                    

#41 JavaScript::Eval (size: 20, repeated: 1) - SHA256: a5e2bc908c3bd3196d273564d073484f9905d13817490eca5aa249e701139cdc

                                        typeof window.chrome
                                    

#42 JavaScript::Eval (size: 29, repeated: 1) - SHA256: cb6f5b3573826ffd9a881e026fd85eb842d31266833666399582737149c5fc14

                                        navigator.connection.saveData
                                    

#43 JavaScript::Eval (size: 30, repeated: 1) - SHA256: c2ea2223b59cfea384b15228f4cdc0f7337d4909e20e97e2fa42648ef8ecf610

                                        window.webkitRTCPeerConnection
                                    

#44 JavaScript::Eval (size: 22, repeated: 1) - SHA256: b19d05a8d492320ab4db4d74ea0e9e90374bed47a18e805f8018ebb00af0c23c

                                        window.menubar.visible
                                    

#45 JavaScript::Eval (size: 20, repeated: 1) - SHA256: dfafe4f2e08c006ec277e8042267c6237512a1a93bfcf57657420d4becc0a97b

                                        window.mozPaintCount
                                    

#46 JavaScript::Eval (size: 108, repeated: 1) - SHA256: 8eab171b0d256cf386d222b71fbf5380f2051b67452dbd83f41401a6216a789c

                                        !!document.fullscreen || !!document.mozFullscreen || !!document.webkitIsFullScreen || !!document.fullScreenElement
                                    

#47 JavaScript::Eval (size: 37, repeated: 1) - SHA256: 0e27576eb1e9c067b58d47b8749be97d9e94c1e3d67cdf541784148cd80a04b1

                                        MouseEvent.WEBKIT_FORCE_AT_MOUSE_DOWN
                                    

#48 JavaScript::Eval (size: 12, repeated: 1) - SHA256: bc1a6bd7f4ddbcd78987ea609d4595bdf2422cb1be9e85af5d6c199f62000d6c

                                        screen.width
                                    

#49 JavaScript::Eval (size: 16, repeated: 1) - SHA256: d6b5ca1760fc8b29e007efc9c8d2cf7e8a2395825f6f77dada95483fc3171bdf

                                        navigator.onLine
                                    

#50 JavaScript::Eval (size: 28, repeated: 1) - SHA256: ef184af14e9e4c14bc286dcbd2a00161c209ce5cf6f9e30c4e7de6d929e9aa4d

                                        typeof document.ontouchstart
                                    

#51 JavaScript::Eval (size: 15, repeated: 1) - SHA256: da82a56eb8524f5d12a2afcf2c5d0cb6184f26995167212a0ccb3bc2ba0def36

                                        document.hidden
                                    

#52 JavaScript::Eval (size: 17, repeated: 1) - SHA256: e5ee82e31ec94cc385b3637227b4435f0547b3d0a4aa60cdda1d8fada4779df3

                                        screen.availWidth
                                    

#53 JavaScript::Eval (size: 17, repeated: 1) - SHA256: f8b516a2a0538b8599ab0452be3f3aa473cf3b0c510275d0a30565cefd564701

                                        screen.pixelDepth
                                    

#54 JavaScript::Eval (size: 21, repeated: 1) - SHA256: 561f7f2574775993811ac7bc852a2054ede9fb58a62eb0804030e1ff877f4350

                                        document.webkitHidden
                                    

#55 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 6e880572810251d722d33109fc0420864f46d69522d25a1df47338c553e38e07

                                        window.isSecureContext
                                    

#56 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 5c5bb18e544cb67f765d8a6d2c774838d3ae95df9b62f25660c64554a7302d8e

                                        document.referrer
                                    

#57 JavaScript::Eval (size: 46, repeated: 1) - SHA256: b1101545a9bed4591a67166c932701b5ec44cb1976bb9df3d584fa2ab8ba8245

                                        window.opener.screenY || window.opener.screenTop
                                    

#58 JavaScript::Eval (size: 26, repeated: 1) - SHA256: e5a13721b456c9e090f80944728fc91767f5ae01b01f59160e73ff2c7cacc587

                                        window.locationbar.visible
                                    

#59 JavaScript::Eval (size: 32, repeated: 1) - SHA256: 1138f8c1bb11f4a5f7d8354b8c8a642ef94c9c741d76a7f476bac6473b7de085

                                        window.screenY || window.screenTop
                                    

#60 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 031688cb60b9631e34bc623cf81a9eeef73de67ca290d15cccfaa65399420932

                                        screen.colorDepth
                                    

#61 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 13871edf9ac7e58046d0f0d03811464e388c3f2323eebc6b61954c79dc883459

                                        screen.deviceXDPI
                                    

#62 JavaScript::Eval (size: 21, repeated: 1) - SHA256: 023250096bcba5a18a624685884b3126896db722289f3281cea8ec5cc63476e7

                                        navigator.appCodeName
                                    

#63 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 893fe12669f916947d99616b788aa245f8b45c5b8b34544df4114a6a789217ab

                                        navigator.systemLanguage
                                    

#64 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 89e4c05e12e12f5bdf85a4fb89bad572dd85256091add09fdb9c6e42e703e2bb

                                        document.visibilityState
                                    

#65 JavaScript::Eval (size: 21, repeated: 1) - SHA256: 61e43d202b6cd0ebf29ac8014115fcb890eb5593c4160b9ae285206ca911bce6

                                        window.history.length
                                    

#66 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 1b0f9a28e673c21b9a668e2973157b075ac420eda7f39fd5727a77bb32b45ffe

                                        navigator.appVersion
                                    

#67 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 526c9d85cebcd21526a3b7ffdb87a9c2b6229e00b0bf210634abf6c84e0ad143

                                        navigator.msDoNotTrack
                                    

#68 JavaScript::Eval (size: 34, repeated: 1) - SHA256: 9e0e45f2f824eefaed5af40bcadf2c0ce7943df52cda4c3d67ddb03583418dab

                                        window.ScriptEngineMinorVersion();
                                    

#69 JavaScript::Eval (size: 4, repeated: 1) - SHA256: 1bbd174404efbce95f1af489ef93f4aa0f4d55718f24c3504682216afa7b7fb1

                                        eval
                                    

#70 JavaScript::Eval (size: 33, repeated: 1) - SHA256: 0b543b4a53bd5beb9a294e018ea9a8c704e5487af1227121d60699a5ec715c5d

                                        navigator.connection.effectieType
                                    

#71 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 28be88d787b6e773eaf5d0818a6c62446ce628dd8ec0659c6f78410588838337

                                        window.toolbar.visible
                                    

#72 JavaScript::Eval (size: 17, repeated: 1) - SHA256: e0bc19473df9795cd42be5da545b5a6828d31527b4ffa3769564f735abec0deb

                                        document.hasFocus
                                    

#73 JavaScript::Eval (size: 13, repeated: 1) - SHA256: 56e57af29d4af8b1fb7008dbfdf84a764970a6673f1f19165f1a8498ce903d93

                                        screen.height
                                    

#74 JavaScript::Eval (size: 19, repeated: 1) - SHA256: b37d024d71bdbd575b951acfa9a59a5e84dc2f9d7c89748081ccb862ff3c9033

                                        navigator.vendorSub
                                    

#75 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 329a9b85817fb7d3bb2492cbcb23f12b14cf9abd181473b838250e3b745fab50

                                        navigator.connection.type
                                    

#76 JavaScript::Eval (size: 37, repeated: 1) - SHA256: 998158f6df4183edd82539e6dc971d32f50bc7ee075f64d4abc46d3011a9da27

                                        document.documentElement.clientHeight
                                    

#77 JavaScript::Eval (size: 22, repeated: 1) - SHA256: e924fcaf65b8ea057cb30e32bbdf04fdafe2bde622539d6d1abc466b050917d5

                                        navigator.userLanguage
                                    

#78 JavaScript::Eval (size: 30, repeated: 1) - SHA256: ca1a06e2314f272f03bc401a7ae0f4056692895b060fd13c00280536b6c56e85

                                        performance.timing.responseEnd
                                    

#79 JavaScript::Eval (size: 6, repeated: 1) - SHA256: 4cd6c2914887dd4a68e4c9ffbed8b077f048cf795d6cfa0b801d43e0ea5a1560

                                        screen
                                    

#80 JavaScript::Eval (size: 27, repeated: 1) - SHA256: e94a47b072c1a87127e88c17e992124bcf93c5d0d6b4e96c73a909444a7cd0d6

                                        window.mozRTCPeerConnection
                                    

#81 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 64e360e85164e7675724c7fe1ed681b25a138c51d437bac5ff97e8910ccf2aa7

                                        window.innerHeight
                                    

#82 JavaScript::Eval (size: 24, repeated: 1) - SHA256: ebca0f427d949e5889ac01faf63de6370743bddd0169c9354c84bc47e3e8a0b1

                                        window.opener.innerWidth
                                    

#83 JavaScript::Eval (size: 17, repeated: 1) - SHA256: d204422e9d49293ab422bfabae9607635876cb30f77215f133603bac691f6f4b

                                        document.location
                                    

#84 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 9094a3d888951e5671f4b6dce42ef291cd071cb196d8761fef42c010ecf5b142

                                        navigator.plugins
                                    

#85 JavaScript::Eval (size: 29, repeated: 1) - SHA256: 12c1e4b959357815447bdfe9fde3665a628e0cd4bbd622c9915820ea57fe01e3

                                        window.InstallTrigger.install
                                    

#86 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 6b5c93eab3b74dadfbe0f6c5949ab9f1ec8f012df8f49495664b96b51881ed85

                                        window.RTCPeerConnection
                                    

#87 JavaScript::Eval (size: 48, repeated: 1) - SHA256: e7678fa8be4ae3ca69e517858903bb107391f9de7ae346a75288b81b57630269

                                        Intl.DateTimeFormat().resolvedOptions().timeZone
                                    

#88 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 38be2b1c1c886666cd4ac85d71bb8b65e51d95c7c5f40b0c575f7d196a0442cd

                                        window.statusbar.visible
                                    

#89 JavaScript::Eval (size: 33, repeated: 1) - SHA256: 511e9d231c9360fcb7670f7cbaffb35bf8180f124fc080ebbfa5962d4c8bb089

                                        window.screenX || window.screenLeft
                                    

#90 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 791b28f4c489619d78906b8af22fbc11b48c0576134d36470ef92468e47da29c

                                        navigator.appMinorVersion
                                    

#91 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 4b14cf9e41e192a741c1cb8ec58f13b0495941f984f312bec01ab28807fe99ab

                                        navigator.deviceMemory
                                    

#92 JavaScript::Eval (size: 34, repeated: 1) - SHA256: fa103a26e90f8e37ab2371d0dd320ca199c0ff194f4ded9cee3ccfa85c22f713

                                        window.ScriptEngineMajorVersion();
                                    

#93 JavaScript::Eval (size: 12, repeated: 1) - SHA256: 27f88609267c27a6f4e778dcb686f1f2fdf0f4f7cd29ad34826b916266ae45a8

                                        window.close
                                    

#94 JavaScript::Eval (size: 24, repeated: 1) - SHA256: a097c9a52546fb53f0340afda7f34b4e47b836e551135e5ad0b5339ebb314a30

                                        window.opener.outerWidth
                                    

#95 JavaScript::Eval (size: 36, repeated: 1) - SHA256: a7dc60bd6993c201941ea0bfc5218f7fea0bc015ee5dc88e658db78d98f8d98a

                                        performance.timing.domainLookupStart
                                    

#96 JavaScript::Eval (size: 29, repeated: 1) - SHA256: a9dc93ae3dc52ac584bff8e382bf1db1f87b8e3a54243eae8d1e3badb180e834

                                        navigator.connection.downlink
                                    

#97 JavaScript::Eval (size: 17, repeated: 1) - SHA256: b18f7c2e4dbfe2926b0413634f7cd6781be55e27b4b885dc68a8f740a80d72e1

                                        window.innerWidth
                                    

#98 JavaScript::Eval (size: 18, repeated: 1) - SHA256: c1fcce173bd0b08415367c934d5db7c4ed130c7f83a485c91682873bff2954ee

                                        screen.availHeight
                                    

#99 JavaScript::Eval (size: 46, repeated: 1) - SHA256: 30f73e7f08c8e6a25fec00672f75fa725d3fa7a30bf847fb1dcb0115ec2f8607

                                        Intl.DateTimeFormat().resolvedOptions().locale
                                    

#100 JavaScript::Eval (size: 41, repeated: 1) - SHA256: af18ee7d06fe2ee2da28af260ea0c78923664ecbc220f3ce395c50b1822dab7a

                                        window.performance.memory.jsHeapSizeLimit
                                    

#101 JavaScript::Eval (size: 18, repeated: 1) - SHA256: addd231a2f2807fb0b4ebdadd2bc23ae2a1cb93a92b07fa6e20ee9af832a8b47

                                        navigator.platform
                                    

#102 JavaScript::Eval (size: 23, repeated: 1) - SHA256: c5d184acbefde172c402f1100cb756d11e8a1c83484977f1d5975bc65a79a7c5

                                        navigator.cookieEnabled
                                    

#103 JavaScript::Eval (size: 32, repeated: 1) - SHA256: 90190e51d410f9862884d5984262f9e1b8e46dd1010b50f1c22c9ef3fa1565fc

                                        window.opener.offscreenBuffering
                                    

#104 JavaScript::Eval (size: 31, repeated: 1) - SHA256: 043b61c407c6f51e3a4ee18efee76fac227501d805df309988fc1494ae0a30dc

                                        performance.timing.connectStart
                                    

#105 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 3688d7e88d248ea850c456f0233738d10695a410a3dec97785ca7422c3f562c1

                                        document.innerHeight
                                    

#106 JavaScript::Eval (size: 36, repeated: 1) - SHA256: 436179ef4964c80a03e62015696ba10c5ae70602c6538d07f50b75f35bd72a27

                                        document.documentElement.clientWidth
                                    

#107 JavaScript::Eval (size: 17, repeated: 1) - SHA256: c03ab22471edc55763f012b82b8d32f981b31ca921a55cc4a663b8bd953b96e7

                                        screen.deviceYDPI
                                    

#108 JavaScript::Eval (size: 23, repeated: 1) - SHA256: 76fae4cd7853897c738cd23148b2ebab825379d6ba153e245965183cc3304082

                                        navigator.battery.level
                                    

#109 JavaScript::Eval (size: 19, repeated: 1) - SHA256: c26c62a09a687d08a3ef9d9a960c5ae2ad47fecc853b4fb0380d71586d260a1b

                                        window.opener == null
                                    

#110 JavaScript::Eval (size: 12, repeated: 1) - SHA256: 20dbc48604a9afee27f0eaf4b84634fabbf1b2c09f78e795896b6fa1747b154a

                                        window.alert
                                    

#111 JavaScript::Eval (size: 59, repeated: 1) - SHA256: f8aac102dc71390ed9b53b485b34d036f4c871e18d7015b307b95c8f1dcd9fa1

                                        window.external.getHostEnvironmentValue("os-architecture");
                                    

#112 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 15eb7e222abfc64660d0f94c04053839498df20ea9ac9a13a201701a56ce3bf6

                                        typeof window.chrome.csi
                                    

#113 JavaScript::Eval (size: 26, repeated: 1) - SHA256: 7510742fba4d25113b6124987e97cba40776bc5030a6a3678974dc8ba075bf81

                                        window.personalbar.visible
                                    

#114 JavaScript::Eval (size: 27, repeated: 1) - SHA256: bc9c06f981e7daa0478c449324d4010cdbc3c83c9a95879b99a0b531f5cabb87

                                        window.navigator.standalone
                                    

#115 JavaScript::Eval (size: 30, repeated: 1) - SHA256: 44e10caa26e37d5f8678a008f0d667c1975fbaec0f613439eb60694249001780

                                        navigator.languages.toString()
                                    

#116 JavaScript::Eval (size: 47, repeated: 1) - SHA256: 423946cdca01d4915fdc795bb03491ce4251b32ed1717a7c0146ce14c838d373

                                        window.opener.screenX || window.opener.screenLeft
                                    

#117 JavaScript::Eval (size: 27, repeated: 1) - SHA256: 1c82db5b05628505080952437a7fd64f03942b6e8ec97f799f4f867eaf492134

                                        typeof window.ondevicelight
                                    

#118 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 42c1dc825c7afb2edca4a8bca3f669784ae08b69226a5ec5044ee7600fccb397

                                        window.mozInnerScreenY
                                    

#119 JavaScript::Eval (size: 14, repeated: 1) - SHA256: 28d9693460ce57dd4e01742e50a1baa10cbed3fa6c20c2a69f02424f80fb9a2e

                                        !(top == window)
                                    

#120 JavaScript::Eval (size: 29, repeated: 1) - SHA256: 95b2bbef556b3dc3b807638cb7b08274af9b8998def0c82d81e3a1517100d68f

                                        performance.timing.fetchStart
                                    

#121 JavaScript::Eval (size: 31, repeated: 1) - SHA256: df3486f2ca74e18e1c81ba55663a8dd4e668e36fed82949b9cca595051bd5064

                                        performance.timing.requestStart
                                    

#122 JavaScript::Eval (size: 37, repeated: 1) - SHA256: 6530649612f535f1adde48ecf8b5de0677e9b5d77db12eb3dfd90b79b363559e

                                        HTMLCanvasElement.prototype.toDataURL
                                    

#123 JavaScript::Eval (size: 13, repeated: 1) - SHA256: 32c6c6c6d07bb5224356b89b5de1adc4c02b1f7b2f464830005443afc6624e85

                                        window.google
                                    

#124 JavaScript::Eval (size: 19, repeated: 1) - SHA256: 63fd63a33ca43f07ce872672d604657ec0fbfbe24bec43f4b322c0f7a1c2ce25

                                        document.hasFocus()
                                    

#125 JavaScript::Eval (size: 10, repeated: 1) - SHA256: f73e4e03067983dd5196907f86c9020b174651f1bd0b5d291b217dc927ff068f

                                        screen.top
                                    

#126 JavaScript::Eval (size: 19, repeated: 1) - SHA256: 9b078b8e24e4655c21a5876570daac97f2ddc241bfdb259644582b6a7a60930b

                                        navigator.userAgent
                                    

#127 JavaScript::Eval (size: 25, repeated: 1) - SHA256: de1b699e93a44c66a069974d1603aee656a6e063b19b8bbf5b09946a3a1b9904

                                        window.opener.innerHeight
                                    

#128 JavaScript::Eval (size: 24, repeated: 1) - SHA256: 15dde2f8fcb5a8a423088da92307a50f6ba6c59577490e49e2ae24a15c75c2bd

                                        window.clientInformation
                                    

#129 JavaScript::Eval (size: 25, repeated: 1) - SHA256: cfab5312f1cfff1e8162225ab27453306ff627f512bcf18225c0a305ca093e1c

                                        window.scrollbars.visible
                                    

#130 JavaScript::Eval (size: 23, repeated: 1) - SHA256: 2ef7ca07ed70c4ffbc59b1d3fa8df8cd2be1bfc66d1604246926066c9f44fd0c

                                        screen.orientation.type
                                    

#131 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 318e5db431b7c9515f38ae97da21d7c4e75ec281aea96271c0d0f4e22b35df92

                                        navigator.language
                                    

#132 JavaScript::Eval (size: 34, repeated: 1) - SHA256: 3db042ba8dbf234b0ba7ed8b47e5c8cb58b267af983635a41652258f1e282c0c

                                        window.ScriptEngineBuildVersion();
                                    

#133 JavaScript::Eval (size: 18, repeated: 1) - SHA256: 17720ad70d18a072962c7509a9e8f79d6227be2728fb0e89dafb5a1edbc19f40

                                        window.console.log
                                    

#134 JavaScript::Eval (size: 29, repeated: 1) - SHA256: 876f3c9374f7069c7cabd0907ddad5466010a649a0f34984e5e2cc72f64878a5

                                        navigator.hardwareConcurrency
                                    

#135 JavaScript::Eval (size: 36, repeated: 1) - SHA256: 4105e0401cf30138cd3ec66def6e14b091f0617777c14cd703ba3e8be17d5777

                                        performance.navigation.redirectCount
                                    

#136 JavaScript::Eval (size: 25, repeated: 1) - SHA256: 63d0de96ffe6e24d709e64517f883a6e6a72e3629aea379ee43b727541794c64

                                        navigator.browserLanguage
                                    

#137 JavaScript::Eval (size: 20, repeated: 1) - SHA256: 6af0594857ab3b4e97420ca6bf7e098fc0901e86860d2e6a26cdf1d176c37dec

                                        navigator.doNotTrack
                                    

#138 JavaScript::Eval (size: 27, repeated: 1) - SHA256: d411f352f2428265f0fc9f43b7429dafafad74f69cf4022cd51d9df23a67f157

                                        performance.navigation.type
                                    

#139 JavaScript::Eval (size: 40, repeated: 1) - SHA256: ba8f16658b19940e1168ca8394756fb18272a9ef95d5fb11442ba56601568687

                                        performance.timing.secureConnectionStart
                                    

#140 JavaScript::Eval (size: 9, repeated: 1) - SHA256: ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a

                                        navigator
                                    

Executed Writes (5)

#1 JavaScript::Write (size: 247, repeated: 1) - SHA256: e42c330401af3f4485dc371c32105271bd940a05db680a5206af8161816d7370

                                        < script async type = "application/javascript"
src = "https://a.realsrv.com/ad-provider.js" > < /script> < ins class = "adsbyexoclick"
data - keywords = ""
data - zoneid = "4530224" > < /ins> < script > (AdProvider = window.AdProvider || []).push({
    "serve": {}
}); < /script>
                                    

#2 JavaScript::Write (size: 266, repeated: 1) - SHA256: 2ab2bdafbcce110751f0f3c0e7e832e7a55e169978730fe7fff8b7e8c4e94af6

                                        < script async type = "application/javascript"
src = "https://a.realsrv.com/ad-provider.js" > < /script> < ins class = "adsbyexoclick"
data - keywords = ""
data - zoneid = "4403410"
data - sub2 = "403410" > < /ins> < script > (AdProvider = window.AdProvider || []).push({
    "serve": {}
}); < /script>
                                    

#3 JavaScript::Write (size: 247, repeated: 1) - SHA256: b450fb81d6cf0fd08fd3cf641a5ce5fbee8372cdd6eaa2c09feed4740494f87e

                                        < script async type = "application/javascript"
src = "https://a.realsrv.com/ad-provider.js" > < /script> < ins class = "adsbyexoclick"
data - keywords = ""
data - zoneid = "3896676" > < /ins> < script > (AdProvider = window.AdProvider || []).push({
    "serve": {}
}); < /script>
                                    

#4 JavaScript::Write (size: 131, repeated: 1) - SHA256: 6f0be258ae85fcca4ca981cdc8b7636218bc348906ba35e98b16e5c8eb2f6b5f

                                        < script type = "application/javascript"
data - idzone = "4219236"
data - ad_sub = ""
src = "https://a.exdynsrv.com/nativeads-v2.js" > < /script>
                                    

#5 JavaScript::Write (size: 247, repeated: 1) - SHA256: 6255d879ef1e0de0817bce56571267dbcd1276978e4076b85272247894013888

                                        < script async type = "application/javascript"
src = "https://a.realsrv.com/ad-provider.js" > < /script> < ins class = "adsbyexoclick"
data - keywords = ""
data - zoneid = "3936581" > < /ins> < script > (AdProvider = window.AdProvider || []).push({
    "serve": {}
}); < /script>
                                    


HTTP Transactions (114)


Request Response
                                        
                                            GET /category/mana-world/ HTTP/1.1 
Host: freeadultcomix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.71.163
HTTP/1.1 301 Moved Permanently
                                        
Date: Sun, 02 Oct 2022 22:58:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 02 Oct 2022 23:58:34 GMT
Location: https://freeadultcomix.com/category/mana-world/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4xdwcBMSzEaDHQLm1M1WtX6nD6EB4zOqn4vF1zohNPHQzpHXmCChPu%2BiewHEWoNnMelWdm%2FjDTucDWhC74lXPkvlAu32kNj9FIbZ4199ZbgHgBurcWMXh90ynqb9th7KWGPuWw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75410b227ae7b4ff-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14676
Expires: Mon, 03 Oct 2022 03:03:10 GMT
Date: Sun, 02 Oct 2022 22:58:34 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.103
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 22:03:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 675c3f96928d591debc37b54f2b16dc2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: QhKGr7ydhpiYgZ0PQUdaAI1ztu-35YTX1dmXAYA0Fl4fOOopBLSQQw==
Age: 3313


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.39
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 890956aa1c00640d3d3a57403fa234d0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: TIK1BpIqwiTkqMFEt4i-6UYY1pY_tk38a6q1DvIk_iB8NnhMNW3PsA==
age: 69918
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:34 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.103
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Cache-Control, Alert, Last-Modified, Backoff, Retry-After, Expires, Content-Length, Pragma, ETag
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 22:32:53 GMT
Expires: Sun, 02 Oct 2022 22:38:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c52c2a46d6ce20208b2160aa3b35a5a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: Otyc3rIG5LE7pSclMUNoCMmheVqRsSCmu6fjTdbJwZvxnHX2J_oasw==
Age: 1541


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   12359
Md5:    06e0ce2e2b62bc9a54451864a1f712db
Sha1:   44301e6d704ac853faf6bdba5f033954d0eb1793
Sha256: 6add6577f25d8bfb53ece9a923dc7787517057156c124a23c95bda3f5a6005c2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1764
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 22:58:34 GMT
Last-Modified: Sun, 02 Oct 2022 22:29:10 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   2538
Md5:    153428f32289a95ab8c324d6bb2cac93
Sha1:   cb09fd88a2145ab0eb04843bfc12dd71128f2248
Sha256: 8138faed159c012d34882dbc6fe8ec34a77205b18a039ee8c82e76c51999d2e4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 20:27:05 GMT
Expires: Fri, 07 Oct 2022 20:27:04 GMT
Etag: "66a44df59eb23973333a649b383b6bb9362ca71a"
Cache-Control: max-age=422309,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75410b288b590b02-OSL


--- Additional Info ---
Magic:  data
Size:   4886
Md5:    8e5d39c749aa80ba539bfd1ff0e60910
Sha1:   d16067ec5077b4d93a5f5caee5e1db518c88d944
Sha256: 08ee5729f69f36fb306d2e39c2437b6d9fef686383120c58a2a1573313f8277f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/jads.js HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Content-Length: 178
Connection: keep-alive
Location: jads2.js


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   32430
Md5:    ada36d9db1fecae9adc71dcfa6e41c9c
Sha1:   49cf7507291094b5b7be540f57f365e9ec46bf40
Sha256: 80dc5e73c5d9dc96b8465fd4d38e0721cf789e532ddd67b89bae98393721ab0c
                                        
                                            GET /gtag/js?id=UA-89008120-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 02 Oct 2022 22:58:35 GMT
expires: Sun, 02 Oct 2022 22:58:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2039)
Size:   43446
Md5:    c52aefda890f5e81807872a81b018f50
Sha1:   3c779909e7a2badac0bedac9949ae9d56e225592
Sha256: de83ad6d922da0adfb01c4a43636354f037ebc8b583350c41afd17e21f0844df
                                        
                                            GET /js/jads2.js HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://freeadultcomix.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eae"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (3758), with no line terminators
Size:   1719
Md5:    558e1b61fc513016183a3812938e79fb
Sha1:   5f72ea61a2aad8f7a0956321d3fd8524db70eddf
Sha256: a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
                                        
                                            GET /api/click/3545292715125713095?c=90 HTTP/1.1 
Host: a.shukriya90.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.shukriya90.com/api/spots/302737?p=1&s1=%subid1%&kw=
Cookie: nauid=qqYt4mYWci0b3TpsuPVs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         135.181.208.216
HTTP/2 200 OK
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /api/spots/302737?p=1&s1=%subid1%&kw= HTTP/1.1 
Host: a.shukriya90.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
vary: Accept-Encoding
set-cookie: nauid=D0cRbeFo5SbVyi2CCrB4; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (53297)
Size:   27161
Md5:    b034b76e117e392979890d20d42a9eb3
Sha1:   9b9ba1ad6990996f7089a668229a418ad614dc56
Sha256: 3b1b6c0731b8e272b51769d06c8bdbf8b3817cf4d682c723eac5637c3fb130bb
                                        
                                            GET /OrgChart.min.js HTTP/1.1 
Host: www.cdn4ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.23
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Tue, 04 Oct 2022 11:23:36 GMT
access-control-allow-origin: *
link: <https://cdn4ads.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1664882616
server: CDN77-Turbo
x-77-nzt: AblMCRSXdUb/YzoHAA
x-77-nzt-ray: 657EQzCmh6A
x-cache: HIT
x-age: 473699
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13309
Md5:    8172bcd437b945435d76995aea527e44
Sha1:   bac55b9400670bba7eb9ac8bef0bdba00722a76c
Sha256: 1ebd9ce13381b8eabc1468957a08cda86e6ed2b9089b8cd5e305e4bf1e154a1c
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: F/0JBxvmEdbD1PdW6gyNCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.231.36
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uztFR6A1tug9kB1vWHIsKAtIYBM=

                                        
                                            GET /adshow.php?adzone=978378 HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
Content-Encoding: gzip

                                        
                                            GET / HTTP/1.1 
Host: 6.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.166.186
HTTP/2 200 OK
content-type: text/plain;charset=UTF-8
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 0
access-control-allow-origin: https://freeadultcomix.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 75410b2b381fb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /pzRTcQb.js HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 77571
expires: Fri, 22 Sep 2023 14:17:50 GMT
content-encoding: gzip
last-modified: Thu, 22 Sep 2022 14:12:29 GMT
etag: "632c6d4d-12f03"
cache-control: max-age=315360000, public
x-hw: 1663856270.dop113.am5.t,1663856270.cds249.am5.c
access-control-allow-origin: *
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size:   77571
Md5:    d1f7863014f99fc8679a148c9e903c49
Sha1:   9a885989fd4558f458a944dc318fb7cae95e4459
Sha256: 4fb1cfe8223ef58654f1e79113b6b82d3ff72c17ae03d61939b84a3ec819b184
                                        
                                            POST /v1/api.php HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 291
Origin: https://a.shukriya90.com
Connection: keep-alive
Referer: https://a.shukriya90.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.shukriya90.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b487768.726869852976896652%22%3B%7D; expires=Tue, 01-Oct-2024 22:58:35 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   6834
Md5:    bf8e921366b008cf2a1756848e516b39
Sha1:   9505ee270bbfd1b75c0d474f4b7d6fbaab5bff94
Sha256: 2c22ad5880d5cc377855dbbebdaf4b7a2372757bdabcb541ebd45ba4c87a9da6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "69FDC110B2980C2A5190FD9F6D7F7F0E87EAE3EDFF018A632D6918791DCAB238"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3160
Expires: Sun, 02 Oct 2022 23:51:15 GMT
Date: Sun, 02 Oct 2022 22:58:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: gjxsq65j0216.l4.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.200.118.90
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes

                                        
                                            GET / HTTP/1.1 
Host: 4.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         162.252.214.5
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://freeadultcomix.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   62
Md5:    adde5febc7b5b6c2c759ec735cce83a0
Sha1:   77ec17be8a9970ff04663294d41c590d0d24fde4
Sha256: ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
                                        
                                            POST /v1/api.php HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 305
Origin: https://a.shukriya90.com
Connection: keep-alive
Referer: https://a.shukriya90.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.shukriya90.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; expires=Tue, 01-Oct-2024 22:58:35 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1437), with no line terminators
Size:   1075
Md5:    a6ce2edd53b319f8481a414029d20268
Sha1:   b9468ae29a6a6b57941e4ce5d7b7b4580a4c34ae
Sha256: 9ad31f31957a8227fec9c050006616de8dd7890ffec56ac7f2a062cf04a04c60
                                        
                                            GET /nativeads-v2.js HTTP/1.1 
Host: a.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         205.185.216.42
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 16534
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"c64ada9d813a3a654ae367ba707"
X-HW: 1664751515.dop228.sk1.t,1664751515.cds237.sk1.shn,1664751515.dop228.sk1.t,1664751515.cds021.sk1.c
Access-Control-Allow-Origin: *, *


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (58918), with no line terminators
Size:   16534
Md5:    5a8c9857fefa2a7c2c60f3bed2596679
Sha1:   094100e019ea07ac2747210282bfabb4faf97caf
Sha256: e6ed3b98ef9dcdd0868dae319837df6028996b6ee954f3b7f57bf70db57b7cdf
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C64425441527AF1A761E778ADDA536845EB2C615A4D14947531D4C0C8E4383DF"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11456
Expires: Mon, 03 Oct 2022 02:09:31 GMT
Date: Sun, 02 Oct 2022 22:58:35 GMT
Connection: keep-alive

                                        
                                            GET /api/click/8661109325835620095?c=90 HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/api/spots/371080?p=1&s1=%subid1%&kw=
Cookie: nauid=qqqEK3iF6kaRfqAUCkBM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         135.181.208.216
HTTP/2 200 OK
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            GET /api/click/9655177988179590095?c=90 HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/api/spots/302741?p=1&s1=%subid1%&kw=
Cookie: nauid=qqqEK3iF6kaRfqAUCkBM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         135.181.208.216
HTTP/2 200 OK
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /v1/api.php HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 290
Origin: https://a.hentai369.com
Connection: keep-alive
Referer: https://a.hentai369.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.hentai369.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  data
Size:   4656
Md5:    7faa459a8af4ad8f9a9bcbba6f958514
Sha1:   1487645f6b1bfc25b04c37f5a2d44f4a649e2e4d
Sha256: 509e87657c3559e2b61c7f41369dcc046c8268653a34f0cb82515dda61011d1d
                                        
                                            GET / HTTP/1.1 
Host: c.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.167.186
HTTP/2 200 OK
content-type: text/html
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Wed, 02 Nov 2022 22:58:35 GMT
etag: W/"11BCsVfRLqCHC9ZZvH4GUw=="
cf-cache-status: HIT
age: 1472027
vary: Accept-Encoding
server: cloudflare
cf-ray: 75410b2a4896b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Size:   23151
Md5:    5ff7ea9de3a3dfff097fa6d8350de900
Sha1:   840ceca27bbd7af0cbc10b2f3f10eef985633235
Sha256: dbd02b72c8919a0f4945d9eaf3ad79ed4f56422ace84b21c9d3dd46b9a1abeb6
                                        
                                            POST /v1/api.php HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 290
Origin: https://a.hentai369.com
Connection: keep-alive
Referer: https://a.hentai369.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.hentai369.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (5962), with no line terminators
Size:   2575
Md5:    52797729c99fa6a545e684f664832d28
Sha1:   83be3754badddb17d1b9fb244e184a4c164e8451
Sha256: 9e100bb5b744adb83811f52a23e76936a3b42a49de4a7a0469c06bef9767f44c
                                        
                                            GET /splash.php?native-settings=1&idzone=4219236&cookieconsent=true&sub=&p=https%3A%2F%2Ffreeadultcomix.com%2F&max=1&loaded=0 HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.hentai369.com
Connection: keep-alive
Referer: https://a.hentai369.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.hentai369.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179bb525f0.493654643412278845%22%3B%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none impressions=oslmroemnxgxaacmcrlolgeicxbmsbocnxgxaacmcloxageioslmrxbrnxgxaacmobexrgeicxbmsbxcnxgxaacmcrlolgeicxbmsbcenxgxaacsxbrblgeislsaroornxgxaacmobexrgeicxbmsboenxgxaacmremaxgeimreaomxcnxgxaasaoabsrgeimreaobsonxgxaasaoabsrgeioslmrxbmnxgxaacmobeecgeimcclsoeenxgxaasamsoccgeimcclosconxgxaacobbxcxgeimrblelmonxgxaasamsoccgeimrblxembnxgxaasamsoccgeimrblxeecnxgxaasamsoccgeimrblxemcnxgxaasamsoccgeialbserecnxgxaacxeermsgeioslmrxlsnxgxaacmobeeageicaormbbonxgxaacxeermsgeioslmrxlrnxgxaacmremaxgeimcclsxscnxgxaacsxbrblgeimrerbmbbnxgxaasmeceesgeialbsereanxgxaacsxbrblgeialbserebnxgxaasborcsogeiccmblmmcnxgxaacosxlaageimrblelxcnxgxaasblsoxxgeimcclsxoanxgxaacmobexrgeimrblelmbnxgxaasblsoxxgeimcclossanxgxaacmobexrgeimcclselenxgxaasblsoxxgeimcclsoeonxgxaacmobexrgeimccloscenxgxaaslcsrobgeimcclsxacnxgxaaslcsrobgeicaormlebnxgxaacxeermsgeimcersxranxgxaacxeermsgeisaeeasslnxgxaacxeermsgeimcersxacnxgxaacxeermsgeimcersxrenxgxaacxeermsgeiccmblmmbnxgxaacosereageiccmblmmanxgxaacoabbclgeislsarosxnxgxaacsremoegeimrsreamanxgxaacaboxamgxcceimrsreamcnsgxaacmxsxargxcceimclsaoxbncgxaacmooxrxgxcceimcoaxmxoncgxaacmoocbcgxcceiaaxcabeonxgxaacmomcebgxcceiabeocmsbnxgxaacmobeeageimemlxbocnxgxaacmobeecgxcceialbbebsanxgxaacmobeeagxcceimcclsxcanxgxaacmobexrgeimaecobxanxgxaacmobexrgeimcssmlronsgxaacmobexrgxcceimsacexoonxgxaacmobexrgxcceimraeelsenxgxaacmobexrgxcceimrsreaabnogxaacmollcmgxcceiaaxcabecnxgxaacmsxeebgxcceialaroxrcnxgxaacmsxeebgxcceimcoaxmxcncgxaacmsxessgxcceimxlbmosanogxaacmsrbrmgxcceimxeoxsbenxgxaacmsrbrmgxcceimxlbmosonogxaacmsrbrmgxcceimcssmlrcnsgxaacmsrbrmgxcceimcssmlrenxgxaacmsrbrmgxcceimxlbmoobnogxaacmsrbrmgxcceiceecmorsnxgxaacmsabebgxcceiaaxcamlcnxgxaacmslrcrgxcceiaaxcamlanxgxaacmcserbgxcceimxlbmoscnxgxaacmcserbgxcceimxlbmoconogxaacmcserbgxcceimxlbmosenxgxaacmcserbgxcceimcclsxsbnxgxaacmcrlolgeialbmmbbonxgxaacmclecrgxcceialbmmbbenxgxaacmclecrgxcceialbmmblcnxgxaacmclecmgxcceialbmmbmbnxgxaacmclecbgxcceimraeelabnxgxaacmclxrxgxcceixaoossalnxgxaacmclxrxgxcceimraeelaanxgxaacmclxrxgxcceimemlxmcbnxgxaacmclxrxgxcceixaoosscrnogxaacmclxrogxcceimrcscosbnxgxaacmclxrogxcceimxxrecsanxgxaacmclxrogxcceialbbebsbnxgxaacmcloxagxcceiccmblmmonxgxaacmremaxgeialbserxonxgxaacmremaxgeiabboxexxnxgxaacmrxoccgxcceiabboxeoxnxgxaacmrxoccgxcce; expires=Mon, 03 Oct 2022 22:58:35 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4219236%7C71987228%7C100644%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce9e341987e1cdd539c18cf5f9805a31b%7C0%7Cfreeadultcomix.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Mon, 03 Oct 2022 22:58:35 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3504), with no line terminators
Size:   1882
Md5:    8e9067566ecfc39d18fe75fdc455fca0
Sha1:   80f5b046c2d686c711464322d039b28410ae2123
Sha256: 246bbd531daf4a8a1a3e15c748fcb7e9880f5e3d99f90b8f4ad97069c801abd1
                                        
                                            GET /library/448451/8a1ab23f9eb4b4c8d480ee9c0b703427c91a02d5.mp4 HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.shukriya90.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.15
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 21956
last-modified: Fri, 29 Jul 2022 16:34:04 GMT
etag: "62e40bfc-55c4"
expires: Sat, 29 Jul 2023 16:45:10 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1690649128
server: CDN77-Turbo
x-77-nzt: AblMCQ0xnEH/8whWAA
x-77-nzt-ray: UaK1DhNtP3Y
x-cache: HIT
x-age: 5638387
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-21955/21956
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   21956
Md5:    7aab39bd95f3b8fe10a021cef327eee8
Sha1:   8a1ab23f9eb4b4c8d480ee9c0b703427c91a02d5
Sha256: 0405eb10aa1fce693abb9d60fbfbb1f82f07b6a72692d0addf003449d11b79eb
                                        
                                            POST / HTTP/1.1 
Host: gjxsq65j0216.n4.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         38.132.109.186
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sun, 02 Oct 2022 22:58:35 GMT
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes

                                        
                                            GET /library/448451/8a1ab23f9eb4b4c8d480ee9c0b703427c91a02d5.mp4 HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.shukriya90.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.76.9.15
HTTP/2 206 Partial Content
content-type: video/mp4
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 21956
last-modified: Fri, 29 Jul 2022 16:34:04 GMT
etag: "62e40bfc-55c4"
expires: Sat, 29 Jul 2023 16:45:10 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1690649128
server: CDN77-Turbo
x-77-nzt: AblMCQ3xDFL/8whWAA
x-77-nzt-ray: wSxqmUEo6FQ
x-cache: HIT
x-age: 5638387
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-21955/21956
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size:   21956
Md5:    7aab39bd95f3b8fe10a021cef327eee8
Sha1:   8a1ab23f9eb4b4c8d480ee9c0b703427c91a02d5
Sha256: 0405eb10aa1fce693abb9d60fbfbb1f82f07b6a72692d0addf003449d11b79eb
                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2PW2oDMQxFt9INjNHTj3z3O4WWLsCecUhok0CTQgJafOVpG18M8pF8JREQTQgT0BPmjeYNqxUMBYJQQBXbvryaoO376VoPx/O1f4b5fDSRLIoWC4GA5ciiZFyEYhFDBFNMKQNYksKRMBuqsYGLlEVGFACcJ7D3t+f1ostdAG6k4PHobQTmjga38ZdpKXPH3kExxzIjYUzMrXLbEefdKLQaLvvvj6/DvfoaY1j4VUAsurb4A8YoTEI24eMh5gfMBFhw1NTL/TSv7F/yyOnq5eM5cmMlQakL6yKpdXHYVHqbW1lol5v+AE3LfYhtAQAA HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.shukriya90.com
Connection: keep-alive
Referer: https://a.shukriya90.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.shukriya90.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=; domain=.realsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%7C508.019701%22%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1Qy24DIQz8lf7AIr8wOOeeW6lVP4DdZdVKTXJIDq3kj6+hUhjZGHlgxhAQLQgL0BPWU64nzm6YDJJQwiz+8vrmgv7ZL/f2db7e+3farmfXosXM1QgEvCpLJudqGg1HBM9ARWv1glYjyDE7OwQos8ioEgBK0Av4x/vzDAwQeOShO0qJGn7GPd27HZx7aQbMZd3rEQYb5L5yr2KD6C39O2W16TOMkDI4AuhQTVBMh8i0MsAoTEK+4OMgHgt8ttvt97K5P+iic8vzhZhKYnz0A7piPajz0YhqxrrGh4QibryTwB/WAGNaZwEAAA== HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.hentai369.com
Connection: keep-alive
Referer: https://a.hentai369.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.hentai369.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=; domain=.realsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22110.0199%7C508.019701%22%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /library/676799/c8dcd8132d19fbaf195eccaab075f2180db8dd70.webp HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.76.9.15
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 9956
last-modified: Thu, 04 Nov 2021 10:09:14 GMT
etag: "6183b14a-26e4"
expires: Fri, 30 Jun 2023 15:10:16 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195325
server: CDN77-Turbo
x-77-nzt: AblMCQ3h05v/Hnp7AA
x-77-nzt-ray: KM+z55wDZRA
x-cache: HIT
x-age: 8092190
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9956
Md5:    21a6ba0d15d51f90b0bb08adaf869ea0
Sha1:   c8dcd8132d19fbaf195eccaab075f2180db8dd70
Sha256: 31487f3242ccf67da001889b69026904d3f5c116d64f5ae642b633fbb941cf45
                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1PS05DMQy8Chd4kb9J3DVrkEAcIHkfgUTbRbsAyYfHCVIzcuI4Hs+EgGhBWICesJ60nljdMBkkoYQq/vL65oL+uV/u7et8ve/fab2ePZdczDwbgYDXzKLkbJy1oivUCCpFxAtaLcTiqM4OAVKOemQJAIUNvYB/vD/PwACBxz6ERxpMh59B1M5rzwAbdKlSWtVcVlv10K0BMY1Gb+nfKmebRoNGmcERIA/ZBDXbEJleBjhMkJAv+LiIxwKfz+32e1ndH+2S56FzQmhK/D/GWWtHMdnx2PZ138pWiHrHw5S4N/4DvFT1fmgBAAA= HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.hentai369.com
Connection: keep-alive
Referer: https://a.hentai369.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.hentai369.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=; domain=.realsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D; expires=Tue, 01 Oct 2024 22:58:35 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /library/676799/1397422b38b5acc9288b0d559924b9b65996ddac.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.76.9.15
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 32904
last-modified: Tue, 15 Mar 2022 12:26:31 GMT
etag: "623085f7-8088"
expires: Fri, 30 Jun 2023 11:16:42 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195433
server: CDN77-Turbo
x-77-nzt: AblMCQ2fsmL/snl7AA
x-77-nzt-ray: c9bq61bI7W8
x-cache: HIT
x-age: 8092082
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   32904
Md5:    352dbc1ce50b100951be151c8e7c0cd0
Sha1:   1397422b38b5acc9288b0d559924b9b65996ddac
Sha256: c1b3246352d2bd0f0891746d763210002517eba89a7c39d0d082d0e0fde11a60
                                        
                                            GET /library/676799/60f4adb1968b8111d2fc461886cfd9820c7dba6f.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.hentai369.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.76.9.15
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 22:58:35 GMT
content-length: 22930
last-modified: Fri, 27 Aug 2021 14:16:32 GMT
etag: "6128f3c0-5992"
expires: Fri, 30 Jun 2023 11:18:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195349
server: CDN77-Turbo
x-77-nzt: AblMCQ351n7/Bnp7AA
x-77-nzt-ray: Kt7OKUnZEGI
x-cache: HIT
x-age: 8092166
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   22930
Md5:    a84c6a25873a8ddb405b6adff075bff0
Sha1:   60f4adb1968b8111d2fc461886cfd9820c7dba6f
Sha256: e733ca4ba0d4664b6be9ad7f0619ff6b4af406a0e2456858c611793e6d09eb96
                                        
                                            POST /p HTTP/1.1 
Host: adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1815
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         162.252.214.5
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://freeadultcomix.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   171
Md5:    b50813e0ecf6aa1c557e864297f8c521
Sha1:   ce6bece01deef6d589167e289faf3c97b70c6cda
Sha256: 783d3cbf39398bdb64f88c76c42e07bbec2c5148f10e941923a8c17c93bdf343
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A883334384482950E7B8FD7623CBA8FCA231AEDCC2D288C7D5BFB4E324A42722"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4399
Expires: Mon, 03 Oct 2022 00:11:55 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /adshow.php?adzone=929087 HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=142d34b719333e8d2ebcc275a6bdeb18; expires=Mon, 02-Oct-2023 22:58:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co juicy_data_1=YTowOnt9; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1367
Md5:    bc170377a3183076fd7844692112ff47
Sha1:   284e80d00995749df6df4da609943635e965e7f1
Sha256: e44a23186729b602ef3214789d5fb4e3722b7df5b76f74ad63032605ae0895ab
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:36 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 06:57:09 GMT
Expires: Sun, 09 Oct 2022 06:57:08 GMT
Etag: "213f16d0fdb995de67a7f42c975cbf01bbfdd69c"
Cache-Control: max-age=546511,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75410b307b230b02-OSL

                                        
                                            GET /adshow.php?adzone=932003 HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=142d34b719333e8d2ebcc275a6bdeb18; expires=Mon, 02-Oct-2023 22:58:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co juicy_data_1=YTowOnt9; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1365
Md5:    49af8a5e8c2d4aabd79d4a495ca76fd7
Sha1:   61084166f86f2617460c40433d01ffcf55b312d8
Sha256: ac0aa95e960317959b0f3d36c60c4ab112b89904aedf519ed6cc33b7407cd48a
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "562A5762A8E2C5A0F3C5A13C1676358BE95E3B5638D9C434A990CFFB13E3FFF5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11822
Expires: Mon, 03 Oct 2022 02:15:38 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /LC.html?_=BAYAYzoXnAFjOhecgAGBAsAAIK-PrSRLeLHvPzptIOIh-sSWkYUFd91Xyv7uZA9F662iwQBHMEUCICbqangKUBzQ5b-PffMtKwYgjdZIxu9u0mFrR3vtFmnmAiEAxS-RDO8wCNJujR7E90uDYLPzUcC3fqjuFjUwbW4QHis&v=4&aTvVIefX=2534504&veklugfo=&BEgCcLVS=0:1,0&AaZyUcYC=&LciaXbxP=&s=1280,1024,1,1280,1024,0 HTTP/1.1 
Host: cdn4ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.59.63.128
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
asf: 6
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
set-cookie: PP_CV=yes; expires=Sun, 02-Oct-2022 23:58:36 GMT; Max-Age=3600 fraudcheck=e7f67899c3891a71e598cb8d51dde248; expires=Tue, 01-Nov-2022 22:58:36 GMT; Max-Age=2592000; path=/; domain=.popads.net PopAds_CF_Pass=1; expires=Mon, 03-Oct-2022 04:58:36 GMT; Max-Age=21600
link: <https://free-cosmetics-online.com>;rel=preconnect
content-length: 829
content-encoding: br
vary: Accept-Encoding
date: Sun, 02 Oct 2022 22:58:36 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1161), with no line terminators
Size:   829
Md5:    312faf0cecbcaed5a5715a37cce97f04
Sha1:   6a19229771031025aec14594332436d859aac926
Sha256: 98e7c5bbd56ee687ae37a526ce0b2a7c6e2709c6fd0d19f6b4d9ed351a8ace47
                                        
                                            GET /adshow.php?adzone=978905 HTTP/1.1 
Host: poweredby.jads.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         185.94.236.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=142d34b719333e8d2ebcc275a6bdeb18; expires=Mon, 02-Oct-2023 22:58:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co juicy_data_1=YTowOnt9; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Wed, 05-Oct-2022 22:58:35 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (301), with CRLF, LF line terminators
Size:   1580
Md5:    d71646fcb3900ae8c6658c6e751da91c
Sha1:   aa69ecc17bf76437457d7eaded032adef060b376
Sha256: 401f66ba17e48acac9e32ea4fbb34a85a1f0af937dc1320d75db8038d47e8a0f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2519
Expires: Sun, 02 Oct 2022 23:40:35 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2519
Expires: Sun, 02 Oct 2022 23:40:35 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2519
Expires: Sun, 02 Oct 2022 23:40:35 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21b653ea-1faa-4101-b02e-44da6b46de9c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9095
x-amzn-requestid: 9f6cbd35-adf6-4163-aaf0-a3534bfc25c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNes7G79oAMF2DQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544b8-306a82aa5f91bcdb3b349b87;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9pqwazWdgS9eR0U_HxtfgHvTUTnUyN0IRVZlQUzrimpv-9dMLHlcVg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:59:36 GMT
age: 3540
etag: "f964cf69ae825bb32eef4b364df8227c5fb73fce"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9095
Md5:    a59b70f464b106c9e54579d8b2f967fa
Sha1:   f964cf69ae825bb32eef4b364df8227c5fb73fce
Sha256: cf2c8c1d3ebbdb8fea6b90d81d240120749cfdceb525713ef153481cb15a438e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6321
x-amzn-requestid: 605adeca-4345-4481-999e-d50ebc123767
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabGsgIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-68542d1b56697ab33dd63941;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xZUu90wyCNVEexHxRRNQz0aDhNy_u0WC2v8TVxHkQvW-evaDwfKTtQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:27 GMT
etag: "89ce0e6d742144439a96ace034adae4e7e167311"
age: 4389
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6321
Md5:    8bb7613964aef696917cb85a6d0bcac4
Sha1:   89ce0e6d742144439a96ace034adae4e7e167311
Sha256: 24b100b10aa041effad83e9379447f4f62d95dcf6eb27a6b093a7caaa484f964
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8277
x-amzn-requestid: a7d76241-7da1-4c84-9c73-2e3a71b81b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZTMfEGHiIAMFpmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63378df9-3727a65235e4dbc60cc11cf0;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 00:46:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 09iwZNlJ5pUQqongHTbgUlh_i1CyHZ6uGvHPV8SfbEGixTWM1A_BoQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 20:14:10 GMT
age: 9866
etag: "43a66cd291d1413d7147a29b2a7b27277a443f0b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8277
Md5:    6a90e53b55500427aed06efa3a9baa8c
Sha1:   43a66cd291d1413d7147a29b2a7b27277a443f0b
Sha256: 2cf5790e81140bc56b46163787f84c54a07f58e90001837624f426aafa8031c5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4522
x-amzn-requestid: cc836204-3c4f-48d0-9569-b1622e6d2178
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMVoRH9toAMFwig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334cfce-096ff90412945ca06335e987;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 22:50:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BzgI7sWS7fsSOANaDI0S4qrT_2iIkp2TOt3bPfm56T0m9jmxRFfSIA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 12:52:35 GMT
age: 36361
etag: "58f10485c5273cbed8159c98b9065b192ba3d00b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4522
Md5:    34ba42086104460665f7f4f579235592
Sha1:   58f10485c5273cbed8159c98b9065b192ba3d00b
Sha256: 79f1febc020ab611c5d9a8bc1af237a63420f8215963fd97f6c4b9bccfa17d24
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4b91592-bb2f-4b2e-9c62-80d06ad4b698.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3695
x-amzn-requestid: f1f35cb1-9fc2-4694-8bf4-9d9e41f9bd7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabEM8oAMF0RQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-3140202b1a3b892702978a7e;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kxxeDkHccWmlQFBbBf-5gKzqY0utY15Czvx0Ms7QS1lJMXExRmbjjQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:48:46 GMT
age: 4190
etag: "6d0cee63012a8f79aef1f1e751e2940582b981e1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3695
Md5:    e3dfda0e06e989942bf45f4c2bf18d7c
Sha1:   6d0cee63012a8f79aef1f1e751e2940582b981e1
Sha256: a79d4015713255da4475ff9193ccfeed72737f5f03027a42fd86cc7b095ddf03
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:00 GMT
age: 65856
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "31FE330840CB0873DFFF5EF5CA2DFF3D8B7B001D7A7E8B3166545D9F9051D3B5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12059
Expires: Mon, 03 Oct 2022 02:19:35 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 344
ETag: "562A5762A8E2C5A0F3C5A13C1676358BE95E3B5638D9C434A990CFFB13E3FFF5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11822
Expires: Mon, 03 Oct 2022 02:15:38 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "31FE330840CB0873DFFF5EF5CA2DFF3D8B7B001D7A7E8B3166545D9F9051D3B5"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12059
Expires: Mon, 03 Oct 2022 02:19:35 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /zone/25610/?aff=271091 HTTP/1.1 
Host: flixdot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.21.95.106
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: *
access-control-expose-headers: Cache-Control,Content-Language,Content-Type,Expires,Last-Modified,Pragma
cache-control: no-cache, private
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vN79Drl9cbiRqEU8xAZL4UqeQOKpsDlVVeYZGscNRCfKLRnyj7UXO0ho069QTKV5qimcI7A4eEPvXPaZvG8kXX2RQ%2FBzdXO%2BGcXGvRB%2BWGaFle%2BTPBSD5%2BG%2FcwlIsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75410b311f96b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1817
Md5:    1d6c654071a19d64120195e29bb07971
Sha1:   d82870316aa831ffd9e78c933faad557c03b4c9d
Sha256: abdcc48e8c61e0a45b4476645c4cdb77b37befbd8acdb609e0c9237194b4f7fd
                                        
                                            GET /png/9/b/9b22570a127f6d6d3dc90fd5cf5efee8.png HTTP/1.1 
Host: cdn.banhq.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.banhq.com/html/1/1/11321e1daf4c2533ff4f1194db01c18f.html?clickdata=https%3A%2F%2Fflixdot.com%2Ftrack%2Fclick%2F37%2F25637%2F4140%2F221799%2F517%3Faff%3D271091
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         143.204.55.38
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 1596
date: Fri, 26 Aug 2022 02:13:50 GMT
last-modified: Mon, 11 Jan 2021 20:13:26 GMT
etag: "9b22570a127f6d6d3dc90fd5cf5efee8"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bgI7MvuiFht6gNBqX_12PNUj1I3t8VRScC75LgfZhE_6zg2noNRCiA==
age: 3271487
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   1596
Md5:    9b22570a127f6d6d3dc90fd5cf5efee8
Sha1:   23da0efa8db9a0fd42ec9dc16fe94e96710ce087
Sha256: 7eb9d2a4a7d68481782c6a5f956efc68eaec194025842dd2a10e9dcf05771aee
                                        
                                            POST / HTTP/1.1 
Host: gjxsq65j0216.s4.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.200.116.90
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sun, 02 Oct 2022 22:58:36 GMT
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "D336D82FCF5812615B44019F02505A7418DC348E0EE9FD171CA4E79CFD1B997C"
Last-Modified: Fri, 30 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12415
Expires: Mon, 03 Oct 2022 02:25:31 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /bnr/4/819/6b4cc6/8196b4cc6225d90185aa5b66c0cbf738.jpg HTTP/1.1 
Host: suchenachmuschi.space
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.10.141
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
content-length: 13573
last-modified: Fri, 23 Sep 2022 12:46:58 GMT
etag: "632daac2-3505"
expires: Mon, 03 Oct 2022 16:11:20 GMT
cache-control: max-age=86400
cf-cache-status: HIT
age: 24436
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KmtzuAYriP3VsvdiTSx7ddkghqTfMRkW2gmi44ETN2fzPTIxVp%2FbbRtnpG2lg%2BE%2B7Z66wnbfFsZBeQC0J9n%2Fm8sDGaeyBpg%2F8b0xtEpRzNXdgXjnowWjlP9AsRF91p8Rq%2Ffk99VzvxI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75410b33785c0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 160x600, components 3\012- data
Size:   13573
Md5:    55ab98e7345ac21f448b6138772e9277
Sha1:   9900aabb4dcc1961fbbffc087e24a5d42e34d124
Sha256: d01d1a858ef9ffd61c4c44d412f170891f12c3542b9c1aa5964f693d613a766e
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "D336D82FCF5812615B44019F02505A7418DC348E0EE9FD171CA4E79CFD1B997C"
Last-Modified: Fri, 30 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12415
Expires: Mon, 03 Oct 2022 02:25:31 GMT
Date: Sun, 02 Oct 2022 22:58:36 GMT
Connection: keep-alive

                                        
                                            GET /tag.php?goal=f84a30695485b0b005f7984d20b6af81 HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83749%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /tag.php?goal=05f747f9753a0b4172a8faf1128a78e1 HTTP/1.1 
Host: main.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A43686%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /tag.php?goal=05f747f9753a0b4172a8faf1128a78e1 HTTP/1.1 
Host: main.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179bb525f0.493654643412278845%22%3B%7D; impressions=oslmroemnxgxaacmcrlolgeicxbmsbocnxgxaacmcloxageioslmrxbrnxgxaacmobexrgeicxbmsbxcnxgxaacmcrlolgeicxbmsbcenxgxaacsxbrblgeislsaroornxgxaacmobexrgeicxbmsboenxgxaacmremaxgeimreaomxcnxgxaasaoabsrgeimreaobsonxgxaasaoabsrgeioslmrxbmnxgxaacmobeecgeimcclsoeenxgxaasamsoccgeimcclosconxgxaacobbxcxgeimrblelmonxgxaasamsoccgeimrblxembnxgxaasamsoccgeimrblxeecnxgxaasamsoccgeimrblxemcnxgxaasamsoccgeialbserecnxgxaacxeermsgeioslmrxlsnxgxaacmobeeageicaormbbonxgxaacxeermsgeioslmrxlrnxgxaacmremaxgeimcclsxscnxgxaacsxbrblgeimrerbmbbnxgxaasmeceesgeialbsereanxgxaacsxbrblgeialbserebnxgxaasborcsogeiccmblmmcnxgxaacosxlaageimrblelxcnxgxaasblsoxxgeimcclsxoanxgxaacmobexrgeimrblelmbnxgxaasblsoxxgeimcclossanxgxaacmobexrgeimcclselenxgxaasblsoxxgeimcclsoeonxgxaacmobexrgeimccloscenxgxaaslcsrobgeimcclsxacnxgxaaslcsrobgeicaormlebnxgxaacxeermsgeimcersxranxgxaacxeermsgeisaeeasslnxgxaacxeermsgeimcersxacnxgxaacxeermsgeimcersxrenxgxaacxeermsgeiccmblmmbnxgxaacosereageiccmblmmanxgxaacoabbclgeislsarosxnxgxaacsremoegeimrsreamanxgxaacaboxamgxcceimrsreamcnsgxaacmxsxargxcceimclsaoxbncgxaacmooxrxgxcceimcoaxmxoncgxaacmoocbcgxcceiaaxcabeonxgxaacmomcebgxcceiabeocmsbnxgxaacmobeeageimemlxbocnxgxaacmobeecgxcceialbbebsanxgxaacmobeeagxcceimcclsxcanxgxaacmobexrgeimaecobxanxgxaacmobexrgeimcssmlronsgxaacmobexrgxcceimsacexoonxgxaacmobexrgxcceimraeelsenxgxaacmobexrgxcceimrsreaabnogxaacmollcmgxcceiaaxcabecnxgxaacmsxeebgxcceialaroxrcnxgxaacmsxeebgxcceimcoaxmxcncgxaacmsxessgxcceimxlbmosanogxaacmsrbrmgxcceimxeoxsbenxgxaacmsrbrmgxcceimxlbmosonogxaacmsrbrmgxcceimcssmlrcnsgxaacmsrbrmgxcceimcssmlrenxgxaacmsrbrmgxcceimxlbmoobnogxaacmsrbrmgxcceiceecmorsnxgxaacmsabebgxcceiaaxcamlcnxgxaacmslrcrgxcceiaaxcamlanxgxaacmcserbgxcceimxlbmoscnxgxaacmcserbgxcceimxlbmoconogxaacmcserbgxcceimxlbmosenxgxaacmcserbgxcceimcclsxsbnxgxaacmcrlolgeialbmmbbonxgxaacmclecrgxcceialbmmbbenxgxaacmclecrgxcceialbmmblcnxgxaacmclecmgxcceialbmmbmbnxgxaacmclecbgxcceimraeelabnxgxaacmclxrxgxcceixaoossalnxgxaacmclxrxgxcceimraeelaanxgxaacmclxrxgxcceimemlxmcbnxgxaacmclxrxgxcceixaoosscrnogxaacmclxrogxcceimrcscosbnxgxaacmclxrogxcceimxxrecsanxgxaacmclxrogxcceialbbebsbnxgxaacmcloxagxcceiccmblmmonxgxaacmremaxgeialbserxonxgxaacmremaxgeiabboxexxnxgxaacmrxoccgxcceiabboxeoxnxgxaacmrxoccgxcce; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4219236%7C71987228%7C100644%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce9e341987e1cdd539c18cf5f9805a31b%7C0%7Cfreeadultcomix.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A43686%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /tag.php?goal=f84a30695485b0b005f7984d20b6af81 HTTP/1.1 
Host: main.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179bb525f0.493654643412278845%22%3B%7D; impressions=oslmroemnxgxaacmcrlolgeicxbmsbocnxgxaacmcloxageioslmrxbrnxgxaacmobexrgeicxbmsbxcnxgxaacmcrlolgeicxbmsbcenxgxaacsxbrblgeislsaroornxgxaacmobexrgeicxbmsboenxgxaacmremaxgeimreaomxcnxgxaasaoabsrgeimreaobsonxgxaasaoabsrgeioslmrxbmnxgxaacmobeecgeimcclsoeenxgxaasamsoccgeimcclosconxgxaacobbxcxgeimrblelmonxgxaasamsoccgeimrblxembnxgxaasamsoccgeimrblxeecnxgxaasamsoccgeimrblxemcnxgxaasamsoccgeialbserecnxgxaacxeermsgeioslmrxlsnxgxaacmobeeageicaormbbonxgxaacxeermsgeioslmrxlrnxgxaacmremaxgeimcclsxscnxgxaacsxbrblgeimrerbmbbnxgxaasmeceesgeialbsereanxgxaacsxbrblgeialbserebnxgxaasborcsogeiccmblmmcnxgxaacosxlaageimrblelxcnxgxaasblsoxxgeimcclsxoanxgxaacmobexrgeimrblelmbnxgxaasblsoxxgeimcclossanxgxaacmobexrgeimcclselenxgxaasblsoxxgeimcclsoeonxgxaacmobexrgeimccloscenxgxaaslcsrobgeimcclsxacnxgxaaslcsrobgeicaormlebnxgxaacxeermsgeimcersxranxgxaacxeermsgeisaeeasslnxgxaacxeermsgeimcersxacnxgxaacxeermsgeimcersxrenxgxaacxeermsgeiccmblmmbnxgxaacosereageiccmblmmanxgxaacoabbclgeislsarosxnxgxaacsremoegeimrsreamanxgxaacaboxamgxcceimrsreamcnsgxaacmxsxargxcceimclsaoxbncgxaacmooxrxgxcceimcoaxmxoncgxaacmoocbcgxcceiaaxcabeonxgxaacmomcebgxcceiabeocmsbnxgxaacmobeeageimemlxbocnxgxaacmobeecgxcceialbbebsanxgxaacmobeeagxcceimcclsxcanxgxaacmobexrgeimaecobxanxgxaacmobexrgeimcssmlronsgxaacmobexrgxcceimsacexoonxgxaacmobexrgxcceimraeelsenxgxaacmobexrgxcceimrsreaabnogxaacmollcmgxcceiaaxcabecnxgxaacmsxeebgxcceialaroxrcnxgxaacmsxeebgxcceimcoaxmxcncgxaacmsxessgxcceimxlbmosanogxaacmsrbrmgxcceimxeoxsbenxgxaacmsrbrmgxcceimxlbmosonogxaacmsrbrmgxcceimcssmlrcnsgxaacmsrbrmgxcceimcssmlrenxgxaacmsrbrmgxcceimxlbmoobnogxaacmsrbrmgxcceiceecmorsnxgxaacmsabebgxcceiaaxcamlcnxgxaacmslrcrgxcceiaaxcamlanxgxaacmcserbgxcceimxlbmoscnxgxaacmcserbgxcceimxlbmoconogxaacmcserbgxcceimxlbmosenxgxaacmcserbgxcceimcclsxsbnxgxaacmcrlolgeialbmmbbonxgxaacmclecrgxcceialbmmbbenxgxaacmclecrgxcceialbmmblcnxgxaacmclecmgxcceialbmmbmbnxgxaacmclecbgxcceimraeelabnxgxaacmclxrxgxcceixaoossalnxgxaacmclxrxgxcceimraeelaanxgxaacmclxrxgxcceimemlxmcbnxgxaacmclxrxgxcceixaoosscrnogxaacmclxrogxcceimrcscosbnxgxaacmclxrogxcceimxxrecsanxgxaacmclxrogxcceialbbebsbnxgxaacmcloxagxcceiccmblmmonxgxaacmremaxgeialbserxonxgxaacmremaxgeiabboxexxnxgxaacmrxoccgxcceiabboxeoxnxgxaacmrxoccgxcce; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4219236%7C71987228%7C100644%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Ce9e341987e1cdd539c18cf5f9805a31b%7C0%7Cfreeadultcomix.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83749%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /zone/25637/?aff=271091 HTTP/1.1 
Host: flixdot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.21.95.106
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: *
access-control-expose-headers: Cache-Control,Content-Language,Content-Type,Expires,Last-Modified,Pragma
cache-control: no-cache, private
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OAsoiM4ZAaTqivsgpWBbqXzA8T55OJUK8y3XR5TX2GBBKW%2FyPukVRnz5VIrNCEKxTkG3AOAxdm3z46zoQwTljScuGNlcNv1351Bcjh9WLyA3aD0H0BPcV3xWgYXy4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75410b311f91b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   2058
Md5:    8294fe3ec4d913edf886e712ebff4fde
Sha1:   ca519902fa610e795f0a5dcd8411a04cfa9b45b0
Sha256: 00484fe1891649a5f520fa7198ff3545de7291f5bca696f0ce6dd5d9b4321d68
                                        
                                            GET /api/v1/retargeting/set/b5e023d7-d6ac-495d-8e3b-e65703a0f52a HTTP/1.1 
Host: tsyndicate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         136.243.51.205
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:36 GMT
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: fcdbc4fd2ae6fbad
set-cookie: ts_rt_b5e023d7-d6ac-495d-8e3b-e65703a0f52a=AAMC; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    c2196de8ba412c60c22ab491af7b1409
Sha1:   5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
Sha256: 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /api/v1/retargeting/set/1a59e97d-a1c2-4718-89ea-5a19b9d400ea HTTP/1.1 
Host: runative-syndicate.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         94.130.141.49
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:36 GMT
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: fcc3c4941548699a
set-cookie: ts_rt_1a59e97d-a1c2-4718-89ea-5a19b9d400ea=AAMC; expires=Mon, 02 Oct 2023 22:58:36 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.runative-syndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    c2196de8ba412c60c22ab491af7b1409
Sha1:   5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
Sha256: 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 02 Oct 2022 22:58:36 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    95212d33cfff78ad59f5af5b20c48c53
Sha1:   9b99a4091a6eb716bc68f1428e3c86eca068b25b
Sha256: bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:36 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 06:52:57 GMT
Expires: Fri, 07 Oct 2022 06:52:56 GMT
Etag: "e12d11756f3147d297ae58d4d03c3f3c4f4687ba"
Cache-Control: max-age=603286,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75410b33ce08b4f4-OSL

                                        
                                            GET /img.gif?f=sync&lr=1&partner=306f137c13013ee4f568122355835e079f577844602bde9f161b0a61a23db502 HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:36 GMT
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=5787911878fb4df8bc7a3cee867e2792; expires=Mon, 02 Oct 2023 22:58:36 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /button-ipv6-80x15.png HTTP/1.1 
Host: ipv6-test.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         51.75.78.103
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 02 Oct 2022 22:58:36 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Fri, 28 Mar 2014 20:31:50 GMT
ETag: "202-4f5b09766f980"
Accept-Ranges: bytes
Content-Length: 514
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 80 x 15, 8-bit/color RGB, non-interlaced\012- data
Size:   514
Md5:    2ee40e464bab4891ac749a9440a376f6
Sha1:   0fc12c4978e080c2be746a1a5cd6c6c3f25043f2
Sha256: 447e546ad25c88c3df88416348fb57a8d8c490f854093a3b6e847ff1cc33fc98
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3277
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 22:58:36 GMT
Last-Modified: Sun, 02 Oct 2022 22:03:59 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /tr?id=501600588008038&ev=PageView&noscript=1 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 02 Oct 2022 22:58:36 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6322E7F84AFD04067C68A559E1CB52D60408184B026824DD2453F135CBCEC40B"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16854
Expires: Mon, 03 Oct 2022 03:39:31 GMT
Date: Sun, 02 Oct 2022 22:58:37 GMT
Connection: keep-alive

                                        
                                            GET /tag.php?goal=05f747f9753a0b4172a8faf1128a78e1 HTTP/1.1 
Host: main.exoclick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A43686%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:37 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3278
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 22:58:37 GMT
Last-Modified: Sun, 02 Oct 2022 22:03:59 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /tag.php?goal=f84a30695485b0b005f7984d20b6af81 HTTP/1.1 
Host: main.exoclick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.248
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A83749%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D; expires=Mon, 02 Oct 2023 22:58:37 GMT; path=/; domain=.exoclick.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /rp.gif?ts=1664751516579&id=t2_a7co1m6o&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=546216cd-942c-4551-b77f-eace28faa683&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Sun, 02 Oct 2022 22:58:37 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /adserve/r.php?k=HAT&adv_id=94511&exp=25920000&dh=969205b0247754250d921d8da45875fa&bh=48c011d2648afe0455d203967aa130a5&dom=&cb=1606322079002 HTTP/1.1 
Host: syndication.traffichaus.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         66.254.114.233
HTTP/1.1 200 OK
content-type: image/png
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:37 GMT
transfer-encoding: chunked
set-cookie: re_94511_SEFU=eyJ0IjoiSEFUIiwiYSI6Ijk0NTExIiwiZCI6IiIsImRoIjoiOTY5MjA1YjAyNDc3NTQyNTBkOTIxZDhkYTQ1ODc1ZmEiLCJiaCI6IjQ4YzAxMWQyNjQ4YWZlMDQ1NWQyMDM5NjdhYTEzMGE1IiwiaXAiOiI5MS45MC40Mi4xNTQiLCJlIjoxNjkwNjcxNTE3fQ%3D%3D; expires=Sat, 29-Jul-2023 22:58:37 GMT; Max-Age=25920000; path=/ RNLBSERVERID=ded5930; path=/
x-request-id: 633A179C-42FE72E901BB3115-24BAAE28


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size:   95
Md5:    71a50dbba44c78128b221b7df7bb51f1
Sha1:   0ec63b140374ba704a58fa0c743cb357683313dd
Sha256: 3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
                                        
                                            GET / HTTP/1.1 
Host: 4.adsco.re
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         162.252.214.5
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   62
Md5:    adde5febc7b5b6c2c759ec735cce83a0
Sha1:   77ec17be8a9970ff04663294d41c590d0d24fde4
Sha256: ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
                                        
                                            GET /api/spots/10941200596249798095/1870910?fill=0&kw=big%20penis,dark%20skin,elf,old%20man,anal,big%20ass,big%20breasts,catgirl,collar,double%20penetration,huge%20breasts,lactation,thigh%20high%20boots,yuri,comic,full%20color,story%20arc HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://freeadultcomix.com/
Origin: https://freeadultcomix.com
Connection: keep-alive
Cookie: nauid=qqqEK3iF6kaRfqAUCkBM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/xml
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:37 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://freeadultcomix.com
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text, with very long lines (1586)
Size:   3516
Md5:    8db3ef16e56209e1e010a1ff5fb7d359
Sha1:   a8ea5772e96d02b1e0129f6a3be8717eacf7554d
Sha256: c79fcd79a92f4feda2110a36fdf5a03e6d768841fa0c44e3024b2ffb15e945c5
                                        
                                            GET /splash.php?idzone=4790366&sub=%25subid1%25&tags=big+penis%2Cdark+skin%2Celf%2Cold+man%2Canal%2Cbig+ass%2Cbig+breasts%2Ccatgirl%2Ccollar%2Cdouble+penetration%2Chuge+breasts%2Clactation%2Cthigh+high+boots%2Cyuri%2Ccomic%2Cfull+color%2Cstory+arc HTTP/1.1 
Host: syndication.realsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://freeadultcomix.com/
Origin: https://freeadultcomix.com
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%22633a179b4a2646.143927682841533473%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.029701%22%7D; goals=a%3A1%3A%7Bi%3A43686%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222022-10-02%22%3B%7D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.247
HTTP/1.1 200 OK
Content-Type: text/xml;charset=UTF-8
                                        
Server: nginx
Date: Sun, 02 Oct 2022 22:58:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633a179b4a2646.143927682841533473%22%3B%7D; expires=Tue, 01 Oct 2024 22:58:37 GMT; path=; domain=.realsrv.com; Secure; SameSite=none c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4790366%7C70949466%7C127964%7C%7C110%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C633a179b4a2646.143927682841533473%7C%7C0%7Cfreeadultcomix.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Mon, 03 Oct 2022 22:58:37 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://freeadultcomix.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text, with very long lines (1590)
Size:   2801
Md5:    1f706730fb9d10635856228a360c10d1
Sha1:   b260129f07329efe3903a4f8d967e1f7e374c4cd
Sha256: 9f870e1c1bc1952134b920d5cf21d13209e6188fd469113a0ec4044c4847cd95
                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         46.105.201.240
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Sun, 02 Oct 2022 22:57:46 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 522453124
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   9239
Md5:    ea54ae14f486175417b87ad208c79d91
Sha1:   67e898b7ed79893746d462346954f8085f9ace17
Sha256: 3db1fc94522806642a08a2d2d0a55889b1ff1b813ec372c31bf253a187ece54e
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 02 Oct 2022 22:41:09 GMT
expires: Mon, 03 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 1048
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-89008120-1&cid=861104180.1664751517&jid=414257664&gjid=713071507&_gid=328062327.1664751517&_u=YADAAUAAAAAAAC~&z=327499159 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         74.125.131.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://freeadultcomix.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 02 Oct 2022 22:58:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /api/spots/302739?v2=1&fill=0&kw=big%20penis%2Cdark%20skin%2Celf%2Cold%20man%2Canal%2Cbig%20ass%2Cbig%20breasts%2Ccatgirl%2Ccollar%2Cdouble%20penetration%2Chuge%20breasts%2Clactation%2Cthigh%20high%20boots%2Cyuri%2Ccomic%2Cfull%20color%2Cstory%20arc&s1=%25subid1%25&s2=%25subid2%25 HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://freeadultcomix.com/
Origin: https://freeadultcomix.com
Connection: keep-alive
Cookie: nauid=qqqEK3iF6kaRfqAUCkBM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/xml
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:37 GMT
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://freeadultcomix.com
access-control-expose-headers: X-Asg-Config, X-t
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1627
Md5:    dd6c3092fb6a7eea86fb21007612e432
Sha1:   6059a5671968f9a02e2050060b0eaf8a9a37a97c
Sha256: c2e0dc45c5f87a2c805ababc65e11201026777a623de81c0d3d45165cd29ae77
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-89008120-1&cid=861104180.1664751517&jid=414257664&_u=YADAAUAAAAAAAC~&z=313092484 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 02 Oct 2022 22:58:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-89008120-1&cid=861104180.1664751517&jid=414257664&_u=YADAAUAAAAAAAC~&z=313092484 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 02 Oct 2022 22:58:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /stats/0.php?4208867&@f16&@g1&@h1&@i1&@j1664751517331&@k0&@l1&@mMana%20world%20%7C%20FreeAdultComix&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-92820581&@b3:1664751517&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Ffreeadultcomix.com%2Fcategory%2Fmana-world%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.99.8.27
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Sun, 02 Oct 2022 22:58:37 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    5b687b8e4bee6c766d5895e875f1bd01
Sha1:   429cdd317379579f59ecb8d3c4e8667c5b2a215c
Sha256: e2d20b16804e7ed6d0eed66a11cea1e6ea3156522947df042fbb7043f8c4a2af
                                        
                                            POST /g/collect?v=2&tid=G-WMHSZJZ7NC&gtm=2oe9s0&_p=961501863&cid=861104180.1664751517&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664751517&sct=1&seg=0&dl=https%3A%2F%2Ffreeadultcomix.com%2Fcategory%2Fmana-world%2F&dt=Mana%20world%20%7C%20FreeAdultComix&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freeadultcomix.com
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://freeadultcomix.com
date: Sun, 02 Oct 2022 22:58:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /api/spots/317599?p=1&s1=%subid1%&kw= HTTP/1.1 
Host: a.shukriya90.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
vary: Accept-Encoding
set-cookie: nauid=qqYt4mYWci0b3TpsuPVs; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /api/spots/302742?p=1&s1=%subid1%&kw= HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
vary: Accept-Encoding
set-cookie: nauid=WFpUpXB6lGNq8r6bjVUE; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: free-cosmetics-online.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.209.47
HTTP/2 404 Not Found
content-type: text/html
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 97
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6wUGLbnP6RgdHq4Docw53yX9Se2vnnulZWlZBy0BAcPzPmiBDd25bY4bUX%2BvursAm%2FPVjwdEhix%2FTzgz6fRewbZpo23M6xmnZiECh0ZG5nznh5PJn2VfYZYE2DIFBWYbk4yRhZTDGoOL8xpF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75410b322be80b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /iframe/6332ec4e01408?iframe&ag_custom_domain=freeadultcomix.com HTTP/1.1 
Host: goplayhere.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.67.187.242
HTTP/2 200 OK
content-type: text/html
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
set-cookie: showed_14947_99624=[2498531]; Expires=Mon, 03-Oct-22 22:58:36 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None c_15d442001fcdb498349dfd2e73e7ac5e=1; Expires=Mon, 03-Oct-22 22:58:36 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None z_953a83a9ef13f3b5414170d555820d76=1; Expires=Mon, 03-Oct-22 22:58:36 GMT; Domain=goplayhere.com; Path=/; Secure; SameSite=None
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j53kIdZcy24H6JhmRMeks5NNg8tNBzo%2F7fzxrydRGzI93o6Cr6rJwH%2Bui1ERpka%2F9rKgvjyZOX4wnJWUgG80TVebvzfzT%2FQk7IpIJxJN3EhBu25aEOiWPXRq%2FcZQu%2FqWFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75410b322c2db4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /category/mana-world/ HTTP/1.1 
Host: freeadultcomix.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.67.71.163
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Sun, 02 Oct 2022 22:58:34 GMT
cf-edge-cache: cache,platform=wordpress
cache-control: max-age=160, public
vary: Accept-Encoding
age: 120830
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5uBNa7NxWTpPeXTGZwYp45NN41KRs9ky9287VcJX3z06JsMos6o93AyLGL%2Bmq0kuGPNcQqmIsPt%2Bved2tVz7jGj8RQccn8phnhqC4D5yEIgIAjl1prNb84zsBQvZDcNzU35KUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75410b247898b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Open+Sans HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 02 Oct 2022 22:58:34 GMT
date: Sun, 02 Oct 2022 22:58:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /api/spots/302741?p=1&s1=%subid1%&kw= HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
vary: Accept-Encoding
set-cookie: nauid=qqqEK3iF6kaRfqAUCkBM; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /index.min.js?pk=e39a6a46f15b8ccd52813778a058820a HTTP/1.1 
Host: highlevelcount.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goplayhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.30.122
HTTP/2 404 Not Found
content-type: text/html
                                        
date: Sun, 02 Oct 2022 22:58:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 78
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X3MfiqiJsVwi54LbQOSQfK7CtU5MgI7%2FMFrTd3cc9tan9CCedP2embJ2thqQrNwMKm3%2FQ%2Bxo5EuGpr7uA8ldrR11oDLj7z%2FAvi1Dl%2BMR5AE%2FxxToV38w3cK09CbRZ0Fd9M3VwDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75410b337e79b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /api/spots/371080?p=1&s1=%subid1%&kw= HTTP/1.1 
Host: a.hentai369.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freeadultcomix.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         135.181.208.216
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Sun, 02 Oct 2022 22:58:35 GMT
vary: Accept-Encoding
set-cookie: nauid=GgvlUGL90p7JHDZMjKXT; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---