urlscan.io logo urlscan.io
SecurityTrails logo

iphonetsu.com
2a06:98c1:3120::3 

Go To Rescan Add Verdict Report
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Submission: On July 09 via manual from UA — Scanned from NL
 Behaviour Indicators
Similar DOM Content API
Verdicts

Summary

This website contacted 23 IPs in 3 countries across 16 domains to perform 162 HTTP transactions. The main IP is 2a06:98c1:3120::3, located in United States and belongs to CLOUDFLARENET, US. The main domain is iphonetsu.com.
TLS certificate: Issued by GTS CA 1P5 on June 11th 2023. Valid for: 3 months.
iphonetsu.com scanned 42 times on urlscan.io Show Scans 42

urlscan.io Verdict: No classification

Live information

Google Safe Browsing: No classification for iphonetsu.com
Current DNS A record: 188.114.96.3 (AS13335 - CLOUDFLARENET, US)
Domain created: December 4th 2017, 07:00:00 (UTC)
Domain registrar: NameSilo, LLC

Domain & IP information

IP Address AS Autonomous System
20 2a06:98c1:312... 13335 (CLOUDFLAR...)
1 2a00:1450:400... 15169 (GOOGLE)
36 2a00:1450:400... 15169 (GOOGLE)
18 2a00:1450:400... 15169 (GOOGLE)
1 2001:4860:480... 15169 (GOOGLE)
1 2a00:1450:400... 15169 (GOOGLE)
3 2a00:1450:400... 15169 (GOOGLE)
1 37 2a00:1450:400... 15169 (GOOGLE)
1 2 2a00:1450:400... 15169 (GOOGLE)
8 2a00:1450:400... 15169 (GOOGLE)
5 2a00:1450:400... 15169 (GOOGLE)
6 2a00:1450:400... 15169 (GOOGLE)
3 2a00:1450:400... 15169 (GOOGLE)
5 6 142.250.185.194 15169 (GOOGLE)
2 4 185.80.39.216 27381 (CASALE-MEDIA)
2 3 37.252.171.53 29990 (ASN-APPNEX)
2 34.98.64.218 396982 (GOOGLE-CL...)
2 104.102.35.84 16625 (AKAMAI-AS)
8 2a00:1450:400... 15169 (GOOGLE)
1 2a00:1450:400... 15169 (GOOGLE)
4 142.250.185.66 15169 (GOOGLE)
2 18.66.147.40 16509 (AMAZON-02)
162 23
20    2a06:98c1:3120::3 (United States)

ASN13335 (CLOUDFLARENET, US)
iphonetsu.com
1    2a00:1450:4001:808::2008 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
www.googletagmanager.com
36    2a00:1450:4001:813::2002 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
pagead2.googlesyndication.com
18    2a00:1450:4001:828::2002 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
googleads.g.doubleclick.net
1    2001:4860:4802:34::36 (United States)

ASN15169 (GOOGLE, US)
region1.google-analytics.com
1    2a00:1450:4001:831::2002 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
partner.googleadservices.com
3    2a00:1450:4001:808::2002 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
adservice.google.com
37    2a00:1450:4001:827::2001 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
tpc.googlesyndication.com
2    2a00:1450:4001:830::2004 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
www.google.com
8    2a00:1450:4001:80e::2003 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
www.gstatic.com
5    2a00:1450:4001:829::200a (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
fonts.googleapis.com
6    2a00:1450:4001:810::2002 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
www.googletagservices.com
3    2a00:1450:4001:809::2003 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
fonts.gstatic.com
6    142.250.185.194 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s52-in-f2.1e100.net
cm.g.doubleclick.net
4    185.80.39.216 (Canada)

ASN27381 (CASALE-MEDIA, CA)
dsum-sec.casalemedia.com
3    37.252.171.53 (Frankfurt am Main, Germany)

ASN29990 (ASN-APPNEX, US)
PTR: 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net
ib.adnxs.com
2    34.98.64.218 (Kansas City, United States)

ASN396982 (GOOGLE-CLOUD-PLATFORM, US)
PTR: 218.64.98.34.bc.googleusercontent.com
us-u.openx.net
2    104.102.35.84 (Frankfurt am Main, Germany)

ASN16625 (AKAMAI-AS, US)
PTR: a104-102-35-84.deploy.static.akamaitechnologies.com
sync.teads.tv
8    2a00:1450:4001:82b::2006 (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
s0.2mdn.net
1    2a00:1450:4001:80f::200e (Frankfurt am Main, Germany)

ASN15169 (GOOGLE, US)
mts0.google.com
4    142.250.185.66 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s48-in-f2.1e100.net
googleads4.g.doubleclick.net
2    18.66.147.40 (United States)

ASN16509 (AMAZON-02, US)
PTR: server-18-66-147-40.fra60.r.cloudfront.net
tag.researchnow.com
Apex Domain
Subdomains		 Transfer
73 googlesyndication.com
pagead2.googlesyndication.com — Cisco Umbrella Rank: 135
tpc.googlesyndication.com — Cisco Umbrella Rank: 160
1 MB
28 doubleclick.net
googleads.g.doubleclick.net — Cisco Umbrella Rank: 57
cm.g.doubleclick.net — Cisco Umbrella Rank: 254
googleads4.g.doubleclick.net — Cisco Umbrella Rank: 346
268 KB
20 iphonetsu.com
iphonetsu.com
303 KB
11 gstatic.com
www.gstatic.com
fonts.gstatic.com
148 KB
8 2mdn.net
s0.2mdn.net — Cisco Umbrella Rank: 325
255 KB
6 googletagservices.com
www.googletagservices.com — Cisco Umbrella Rank: 205
337 KB
6 google.com
adservice.google.com — Cisco Umbrella Rank: 113
www.google.com — Cisco Umbrella Rank: 10
mts0.google.com — Cisco Umbrella Rank: 4234
2 KB
5 googleapis.com
fonts.googleapis.com — Cisco Umbrella Rank: 88
4 KB
4 casalemedia.com
dsum-sec.casalemedia.com — Cisco Umbrella Rank: 635
3 KB
3 adnxs.com
ib.adnxs.com — Cisco Umbrella Rank: 257
2 KB
2 researchnow.com
tag.researchnow.com — Cisco Umbrella Rank: 2904
887 B
2 teads.tv
sync.teads.tv — Cisco Umbrella Rank: 1425
330 B
2 openx.net
us-u.openx.net — Cisco Umbrella Rank: 496
420 B
1 googleadservices.com
partner.googleadservices.com — Cisco Umbrella Rank: 1129
607 B
1 google-analytics.com
region1.google-analytics.com — Cisco Umbrella Rank: 1623
253 B
1 googletagmanager.com
www.googletagmanager.com — Cisco Umbrella Rank: 79
87 KB
162 16
Domain Requested by
37 tpc.googlesyndication.com 1 redirects pagead2.googlesyndication.com
tpc.googlesyndication.com
googleads.g.doubleclick.net
iphonetsu.com
36 pagead2.googlesyndication.com iphonetsu.com
pagead2.googlesyndication.com
tpc.googlesyndication.com
googleads.g.doubleclick.net
www.googletagservices.com
20 iphonetsu.com iphonetsu.com
18 googleads.g.doubleclick.net pagead2.googlesyndication.com
googleads.g.doubleclick.net
iphonetsu.com
8 s0.2mdn.net iphonetsu.com
s0.2mdn.net
8 www.gstatic.com googleads.g.doubleclick.net
6 cm.g.doubleclick.net 5 redirects googleads.g.doubleclick.net
6 www.googletagservices.com googleads.g.doubleclick.net
iphonetsu.com
5 fonts.googleapis.com googleads.g.doubleclick.net
4 googleads4.g.doubleclick.net iphonetsu.com
4 dsum-sec.casalemedia.com 2 redirects googleads.g.doubleclick.net
3 ib.adnxs.com 2 redirects googleads.g.doubleclick.net
3 fonts.gstatic.com fonts.googleapis.com
3 adservice.google.com pagead2.googlesyndication.com
2 tag.researchnow.com googleads.g.doubleclick.net
2 sync.teads.tv googleads.g.doubleclick.net
2 us-u.openx.net googleads.g.doubleclick.net
2 www.google.com 1 redirects tpc.googlesyndication.com
1 mts0.google.com googleads.g.doubleclick.net
1 partner.googleadservices.com pagead2.googlesyndication.com
1 region1.google-analytics.com www.googletagmanager.com
1 www.googletagmanager.com iphonetsu.com
162 22

This site contains links to these domains. Also see Links.

Domain
blog.with2.net
mobile.blogmura.com
Subject Issuer Validity Valid
iphonetsu.com
GTS CA 1P5		 2023-06-11 -
2023-09-09		 3 months crt.sh
*.google-analytics.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.g.doubleclick.net
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.googleadservices.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.google.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
tpc.googlesyndication.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
www.google.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.gstatic.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
upload.video.google.com
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.openx.net
GeoTrust RSA CA 2018		 2022-07-21 -
2023-08-21		 a year crt.sh
teads.tv
R3		 2023-06-26 -
2023-09-24		 3 months crt.sh
*.doubleclick.net
GTS CA 1C3		 2023-06-19 -
2023-09-11		 3 months crt.sh
*.researchnow.com
Amazon RSA 2048 M01		 2023-03-02 -
2023-11-11		 8 months crt.sh

This page contains 26 frames:

Primary Page: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Frame ID: 08B1BA0FF73B8F71A2EB64843F99F0B2
Requests: 34 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20190131/zrt_lookup.html
Frame ID: E8CE0DDA56DA8C3F1CC642022E99D4E0
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Frame ID: 49BE283D46E2787C322EB6556E8B161A
Requests: 17 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Frame ID: FE56DA73AB594491000396576F6BC6A9
Requests: 15 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&adk=1812271804&adf=3025194257&lmt=1688922884&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=212x945_l%7C212x945_r&format=0x0&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&ea=0&pra=7&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883930&bpp=1&bdt=401&idt=158&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280%2C1082x280&nras=1&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=706701340&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=3&uci=a!3&fsb=1&dtd=170
Frame ID: 309AE2F06E606771FA125F0D75AA6ED8
Requests: 1 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Frame ID: A0159172B125EE3A1596D4D0CA02D58A
Requests: 3 HTTP requests in this frame

Frame: https://www.google.com/recaptcha/api2/aframe
Frame ID: F314FE008F8A43B4F279C1511799AA98
Requests: 2 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
Frame ID: 8301F14678211FE8B4980FF3E7B80FC3
Requests: 2 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Frame ID: 360F2CEA3EE2C690BE1894281BD5C636
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=90&adk=1365415531&adf=2807653287&pi=t.aa~a.4196110798~rp.1&w=1142&fwrn=4&fwrnh=100&lmt=1688922885&rafmt=1&to=qs&pwprc=8806849545&format=1142x90&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922885068&bpp=1&bdt=1538&idt=0&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D76674d54942c3a99-228576f724de0019%3AT%3D1688922884%3ART%3D1688922884%3AS%3DALNI_MbA4jZcg-hZUlF62KYNFmOIpHIkig&gpic=UID%3D00000c38d972b1a2%3AT%3D1688922884%3ART%3D1688922884%3AS%3DALNI_MaGq1Jz4m1va_Z8Nazu4dmVpMyDHA&prev_fmts=1082x280%2C1082x280%2C0x0&nras=2&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=229&ady=1779&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&psts=ABnkTfARNtd2f2d0Yexz1vBoYf8D6NGp5cYl6V-48z4luAOvOTCutgKyzoMnik2TlVjuUANniypG_7Tk9hDxK1F8QXy14bu9&pvsid=1636824093891941&tmod=706701340&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&ifi=4&uci=a!4&btvi=2&fsb=1&xpc=VS9qknnvE8&p=https%3A//iphonetsu.com&dtd=5
Frame ID: DD35D5606AC16E64483671E0CD61A65E
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Frame ID: DCD855D9B8E502B362AE498F942E1B64
Requests: 5 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Frame ID: DB171F1A57561532855E92189FE13C2A
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Frame ID: 1575F0FC1417973A6FE726DB366BFA6F
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Frame ID: 6EA9B1E4B3CEB4B0135A9E2F6FC1D2D1
Requests: 18 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Frame ID: 8D29533F5AF12AD15DC2D16EA88A8C6C
Requests: 5 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Frame ID: 54A59D5B1AE86679F98B7DF9036D874C
Requests: 19 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Frame ID: 7A15F6BA6F8E29A64D3D20D879F3BE48
Requests: 5 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Frame ID: EEF1FE07227498B1962A79D89CFA9723
Requests: 19 HTTP requests in this frame

Frame: https://fonts.googleapis.com/css?family=Noto%20Sans%20JP%3A400%2C500&text=%E3%82%8B%E9%96%89%E3%81%98
Frame ID: 980F90D2192D676FA2762B193A105C1F
Requests: 7 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Frame ID: 2F51E85931A7FE6F53AE0FCB57BC8BBD
Requests: 1 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Frame ID: 52F87E9C4A30B3A4DDECBC2B17DC2AA5
Requests: 1 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Frame ID: 96A72165F10CE2E82E27FCF69C67E360
Requests: 3 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Frame ID: 078F4AF139D9D582F82FDEE485B6301B
Requests: 3 HTTP requests in this frame

Frame: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Frame ID: C7509530AC26B1AE68054B0EE57354A5
Requests: 3 HTTP requests in this frame

Frame: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Frame ID: F14A31421E67D003D933239AA6E950C5
Requests: 3 HTTP requests in this frame

Frame: https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Frame ID: 69BB2E3930AD8A167C621C7F9F5205DA
Requests: 1 HTTP requests in this frame

Screenshot
Live screenshot
Full Image

Detected technologies

Overall confidence: 100%
Detected patterns
  • /wp-(?:content|includes)/
Overall confidence: 100%
Detected patterns
  • adnxs\.(?:net|com)
Overall confidence: 100%
Detected patterns
  • 2mdn\.net
Overall confidence: 100%
Detected patterns
  • (?:F|f)o(?:n|r)t-?(?:A|a)wesome(?:.*?([0-9a-fA-F]{7,40}|[\d]+(?:.[\d]+(?:.[\d]+)?)?)|)
Overall confidence: 100%
Detected patterns
  • googlesyndication\.com/
  • 2mdn\.net
Overall confidence: 100%
Detected patterns
Overall confidence: 100%
Detected patterns
  • googletagmanager\.com/gtag/js
Overall confidence: 100%
Detected patterns
  • https?://[^/]*\.openx\.net
Overall confidence: 100%
Detected patterns
  • jquery.*\.js(?:\?ver(?:sion)?=([\d.]+))?
Overall confidence: 100%
Detected patterns
  • jquery[.-]migrate(?:-([\d.]+))?(?:\.min)?\.js(?:\?ver=([\d.]+))?

Page Statistics

162
Requests

96 %
HTTPS

68 %
IPv6

16
Domains

22
Subdomains

23
IPs

3
Countries

2643 kB
Transfer

6247 kB
Size

13
Cookies

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 50
  • https://www.google.com/pagead/drt/ui HTTP 302
  • https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
Request Chain 95
  • https://tpc.googlesyndication.com/pageadimg/imgad?id=CICAgKDnzZ6-SBCAAhiAAjIIl_CwzP3A9-Y HTTP 301
  • https://tpc.googlesyndication.com/simgad/17316840736927838592
Request Chain 103
  • https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm HTTP 302
  • https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1
Request Chain 104
  • https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D HTTP 302
  • https://dsum-sec.casalemedia.com/rrum?cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D&cm_dsp_id=85&ixi=0&C=1 HTTP 302
  • https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_hm=ZKrrBTcvhud3wy9Pi.5Q4wAA HTTP 302
  • https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1&google_hm=2
Request Chain 105
  • https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm HTTP 302
  • https://ib.adnxs.com/setuid?entity=101&code=CAESEFZC56Di_X0svQI4sxaASYk&google_cver=1
Request Chain 106
  • https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC} HTTP 307
  • https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus%26google_hm%3D%24%7BBASE64_UID_ENC%7D HTTP 302
  • https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=Njg2OTI1NTI4Mjk3NzE4MzgxMw%3D%3D
Request Chain 111
  • https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_dbm HTTP 302
  • https://us-u.openx.net/w/1.0/sd?id=537072991&val=CAESEES5cQAJqJAxv89z2gU8ufI&google_cver=1
Request Chain 113
  • https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm HTTP 302
  • https://sync.teads.tv/um?eid=3&uid=CAESED8171g3RFO3gyltmRHlVEM&google_cver=1

162 HTTP transactions

Resource
Path		 Size
x-fer		 Type
MIME-Type
Primary Request yuyu-hakusho-anime-wallpaper
iphonetsu.com/anime/ 		93 KB
23 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare / PHP/5.6.40
Resource Hash
6728ea0fec8ee1e27edbb030f8a89bc96b144d38233e0b6bdf6f9f5bac399578

Request headers

Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=86400
cf-cache-status
DYNAMIC
cf-ray
7e42346bbe7218e0-FRA
content-encoding
br
content-type
text/html; charset=UTF-8
date
Sun, 09 Jul 2023 17:14:43 GMT
expires
Mon, 10 Jul 2023 05:14:42 GMT
link
<https://iphonetsu.com/?p=6615>; rel=shortlink
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7MiDH0zxZDvd5m4b43p%2BnRjDoEZlVYLRRfRgGY5%2FLXgipHEyUpbD%2Btg%2FshRAvpOG3HFyEACkWfeFvy2EpRDqroVyhC8JFgMTHPBD%2FwF7ajE6xhOSVRrERNwPJ%2Fmey%2FUy%2BXTxo9ptYQPhJO1"}],"group":"cf-nel","max_age":604800}
server
cloudflare
vary
Accept-Encoding,User-Agent
x-hyper-cache
stop - no cache header
x-powered-by
PHP/5.6.40
YuYu-Hakusho-Anime-Wallpaper-425x600.jpg
iphonetsu.com/wp-content/uploads/2023/07/ 		50 KB
51 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/07/YuYu-Hakusho-Anime-Wallpaper-425x600.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
fcbe17640c50ffb017e34d09745e96db1ce75ab81e4e97cc0e1d862d45ba729c

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Thu, 06 Jul 2023 17:22:38 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"64a6f85e-c9f6"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BqKkNMFckanm6dCFrevddaZqMPnrG8hB4XpX%2Bx5JRBrzSuwDYEF1zms%2BCEAlxwcigPslh1Sf1TSjYiPi6GTU48L%2BPmBxMKkoaq8R8ddTm0RQLPE7IVPeRr5FESsP%2BaAx3%2FhsKFd9gE45FAL%2F"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cde18e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
51702
expires
Sat, 05 Aug 2023 15:42:43 GMT
br_c_1001_1.gif
iphonetsu.com/wp-content/uploads/ 		2 KB
3 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/br_c_1001_1.gif
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
47f3305c3a4882c30b7c5ac795f3a2e10d98674961b1cf42c81f7cdf0102fbcb

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Sat, 11 Jan 2020 13:40:22 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"5e19d046-979"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IiJ46uT9fmKCEcVIYK%2FyxiASTYELZ3rQRWMGPDEvWAaj89ZP%2BupKzFATM7LQmcIGqUHRzLO02AWUcmd2zlLITF9VpNsN2y%2BB%2BVzhyfLGeIQMXsWiqFpPCbnrEGgL38j7OLZfJlsmfMowJ8Z%2B"}],"group":"cf-nel","max_age":604800}
content-type
image/gif
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762ce118e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
2425
expires
Tue, 25 Jul 2023 20:35:17 GMT
88_31.gif
iphonetsu.com/wp-content/uploads/ 		3 KB
3 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/88_31.gif
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
4d26f87d1cd304c9b81f09b65c6a87fd7a81e18284f4b8225778402b518fcc84

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Sat, 11 Jan 2020 13:40:22 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"5e19d046-a37"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zQPZZLdFgalPu5BFpjbKIvxtIh2s7kFliPlb4yUwRTZPKccbLFgpyK%2BjOZxlAF2kJPyZ8JPgSQa9XCahRB7HxAoHLz1PXjWG2vAoRpMthgbwz8cN0WcoltsYUX9FOAnvVzAt2FH6qZcUsVJv"}],"group":"cf-nel","max_age":604800}
content-type
image/gif
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cee18e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
2615
expires
Mon, 07 Aug 2023 12:06:51 GMT
Fate-Stay-Night-Unlimited-Blade-Works-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2023/05/ 		13 KB
14 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/05/Fate-Stay-Night-Unlimited-Blade-Works-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
59f446f07c53f75a26fdd227ecece9b7f3a992aae9a2c4339b5c36cc23fd6692

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Sat, 06 May 2023 22:05:50 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"6456cf3e-35ed"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fh%2BMZvc090nL6vRIoiy6uyFhcARKErV57P6JJAOromOeLLSmRCkSce0qYdZy8pBHFOJtTcV2czipLxSb%2B1y8tt3ZhJUYy4h34PxCjJGIDuB2eZtAdYpIuPb%2B0ikymGm0Xj7qb3ZO%2F%2FS88U89"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cf018e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
13805
expires
Sat, 05 Aug 2023 05:09:07 GMT
Dragon-Ball-Son-Goku-Smartphone-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2023/04/ 		12 KB
12 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/04/Dragon-Ball-Son-Goku-Smartphone-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
1e994ae82b4deedad4bd31123b5083dacaa1f13aa059befe5da1be7bd6c157fa

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Sat, 08 Apr 2023 07:05:42 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"64311246-30ab"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JzgYUH9aZPgoly825eQzZkQXWFQodJaQMoRIzM2y7I1UG5eeO4JceAcQx2MpdVs7uaDCScNppXn%2FU1JDrxpyc8ROYFBb5J5u34%2BfHe96gPDX04GZlpyIlGwYlHqF0FREHkoM6D1IblxT8LFE"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cf218e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
12459
expires
Sat, 05 Aug 2023 15:42:43 GMT
Shelter-Anime-Mobile-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2023/04/ 		12 KB
13 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/04/Shelter-Anime-Mobile-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
c2ba2ea7bfe865f067106ace7f645fd5af78259be601d89a5196325b7e4cecac

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
MISS
last-modified
Tue, 04 Apr 2023 00:53:05 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"642b74f1-30b4"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EHGn67DHIlO7KKn6a8CVukKOxvcqEJbBRSDcxmWbX1rxSKUZomSCZ1h5RMtLX%2BGWi5PWoJa1G5gwegIy7Cl9%2Ffz%2FOTkZbhwkdx01%2Bh1VcB%2FZHeUcYy0YRZk6n26e%2BodrW5VdMHeO8tY2jnTU"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cf418e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
12468
expires
Sun, 06 Aug 2023 17:14:43 GMT
High-School-DxD-Anime-Free-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2023/04/ 		16 KB
17 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/04/High-School-DxD-Anime-Free-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
09514ec849c3977f29e972ceef2351c48a5f7fc3e3040cc9ff66d43490b1be7c

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Sun, 02 Apr 2023 17:59:18 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"6429c276-41db"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NGfTvHfvhXoYR1KmsBlJsCUANBGS10XwFgmoD6efvXO5LqpOCeaXyQrnOE4gvZtjILBy94somJS%2FOdE7YRdZXFKzbDmmttJIootZvxHSDI0A0APbldvsjf8%2BbEWjbF5ZMwq%2BdXuhnX37Mvct"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cf518e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
16859
expires
Sat, 05 Aug 2023 15:42:44 GMT
The-Pet-Girl-of-Sakurasou-Mobile-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2023/01/ 		12 KB
13 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2023/01/The-Pet-Girl-of-Sakurasou-Mobile-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
c356cf3440cac9d8b2c7c3a04b6457268c866c09b6f1b2c28c37ee1c12ecb14d

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Mon, 16 Jan 2023 01:13:26 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"63c4a4b6-30b5"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zulrE%2FJh%2F0ekbH5DGrzYZf23Lu2ycL8ooL8RKqe%2FUG%2Fqe1E8fCUn6%2F9luostqExQSJl8hvLdi3UpyXoPlfUB0vJRWO4bsQHjrSmz0hJhj8qMJ89yv63cpLSPErtbUGdyOz7APzg%2FFDOE0JJo"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234762cf618e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
12469
expires
Sat, 05 Aug 2023 15:42:43 GMT
Date-A-Live-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2022/12/ 		12 KB
12 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2022/12/Date-A-Live-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
15429380fd0a5bce485419d882fa6799fb05f99452b11fdc18fd82dee04e52f1

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
HIT
last-modified
Fri, 02 Dec 2022 18:38:03 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"638a460b-2f69"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZD83CwY0zxs1jqBIMlBqpDVe3IPItVRB%2F3z1d3GeklvhaJYBGu39OdB2vL%2FepVmso1oVZ8svRO3czBY%2FLsJm%2BAFjqmmoqTN1L3T27x1lTbyUe0oj2OjRMw7hAFFrDv%2F3ptu18%2BoLb%2FMV9kfD"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234763cf718e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
12137
expires
Sat, 05 Aug 2023 15:42:44 GMT
Amagi-Brilliant-Park-Wallpapers-170x250.jpg
iphonetsu.com/wp-content/uploads/2022/02/ 		13 KB
13 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2022/02/Amagi-Brilliant-Park-Wallpapers-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
3eff13a2f1d4435ea6a2712782fc1c71fa6cf847bf55f1380d72ad2515838adf

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
MISS
last-modified
Sun, 13 Feb 2022 10:59:27 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"6208e48f-332f"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CTaedy7OEbKLWuQL9lBHHYVlkwlfSdFrnAZGp9fUyiy%2FwxumONG%2Fhm5%2FYLqsJD0jXKtJ5oYPcndcr9N6FscFmCeakGe3ht12%2FWYvomZUqo8ujiuYU9Uvyh3aM7ybtKpUzSE%2FPyWoan3%2FnMKC"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234763cf818e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
13103
expires
Sun, 06 Aug 2023 17:14:43 GMT
Mai-Kawakami-Myriad-Colors-Phantom-World-Wallpaper-170x250.jpg
iphonetsu.com/wp-content/uploads/2022/02/ 		14 KB
14 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://iphonetsu.com/wp-content/uploads/2022/02/Mai-Kawakami-Myriad-Colors-Phantom-World-Wallpaper-170x250.jpg
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
26342841cc2c316e0c3b5ff65b525794271755fce66272ff18a3cde897a6ff93

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
MISS
last-modified
Wed, 09 Feb 2022 09:08:17 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"62038481-3863"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yqu0G7k9LnztpGg1JeMuQwB6gj9nTS%2F5xEA0OgG%2F3MJfg3TB%2B1oQxK%2FW23IESh41IPbYNGrw3WjGIA6prYBDWpS2K4kwLSoUDawU9g1J%2BerwVy%2Bsw6NQdw2FA3YXv3jsivfOlwft1PHPLG5o"}],"group":"cf-nel","max_age":604800}
content-type
image/jpeg
cache-control
max-age=2592000
accept-ranges
bytes
cf-ray
7e4234764d1718e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
14435
expires
Sun, 06 Aug 2023 17:14:43 GMT
rocket-loader.min.js
iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/ 		12 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Frame-Options DENY

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
gzip
x-content-type-options
nosniff
last-modified
Tue, 04 Jul 2023 15:21:35 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
W/"64a438ff-302c"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi2r%2FzS2P1uSS2RWSwKYMabkVETVuWlv%2Fd8f%2Fkrr6SPKHZ7jrdBJqs%2Bm0bPm%2BR%2FyOjW64T7upt4umbddfuVXFQkXbJ7%2F462rpVVhCPkSm48Bl05RJgvDkqMBw2pHkSTu2hLkFMf6xur4CzLe"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
x-frame-options
DENY
cache-control
max-age=172800, public
cf-ray
7e4234764d1a18e0-FRA
expires
Tue, 11 Jul 2023 17:14:43 GMT
truncated
/ 		3 KB
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
c39e3829591f1ad04f92a56ede1d397104cb5e68081c5fd146c0445f3148aa6a

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
fontawesome-webfont.woff2
iphonetsu.com/wp-content/themes/pingraphy/fonts/ 		55 KB
56 KB 		Font
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-content/themes/pingraphy/fonts/fontawesome-webfont.woff2?v=4.5.0
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

Request headers

Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Origin
https://iphonetsu.com
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
cf-cache-status
REVALIDATED
last-modified
Thu, 30 Nov 2017 22:39:59 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
"5a2088bf-ddcc"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CcW6yJ%2FX6JUgvvQVw4JdFK4x9Ba5F8CBQrcII%2FSY1x0sAdhdPORQWxSgXezLQQcopkuyz73qQpuIx%2BWXWAvAw7aHWcpDPstD3oWaBzmF6NCXOPjFjihKqLQ%2B12r%2FEiYqkf4aFtwS%2BwXjB4pG"}],"group":"cf-nel","max_age":604800}
content-type
application/octet-stream
cache-control
max-age=14400
accept-ranges
bytes
cf-ray
7e4234764d1b18e0-FRA
alt-svc
h3=":443"; ma=86400
content-length
56780
expires
Sun, 09 Jul 2023 17:14:48 GMT
skip-link-focus-fix.js
iphonetsu.com/wp-content/themes/pingraphy/js/ 		588 B
811 B 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-content/themes/pingraphy/js/skip-link-focus-fix.js?ver=20160115
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
b2ff39ccfc80daf66110e4b104956bc70911dec5c51764de1c19422439a34ba5

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-polished
origSize=751
alt-svc
h3=":443"; ma=86400
cf-bgj
minify
last-modified
Thu, 30 Nov 2017 22:40:01 GMT
x-accel-version
0.01
server
cloudflare
etag
W/"2ef-55f3aeebd13ca-gzip"
vary
Accept-Encoding,User-Agent
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HNU9YFHDIQSCE8ZPffb1mqxOMM7pnyRpXs%2Bg37zF6%2FHzKpXC2Q0zOdWomIUlSqBW3b43rBrvf3uXR0FUDhA29v0%2FOIycf663RpinAktVrG9geZb2bWMKku%2FyEW%2BYdc6WYv46z%2Fh2o%2F2kz4bo"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d632c20-FRA
expires
Fri, 14 Jul 2023 06:41:20 GMT
script.js
iphonetsu.com/wp-content/themes/pingraphy/js/ 		4 KB
2 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-content/themes/pingraphy/js/script.js?ver=20160115
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
9981135767d0dd32228a5fa82f21ac19c61a8577522b0353af7a787e4298a684

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-polished
origSize=5465
alt-svc
h3=":443"; ma=86400
cf-bgj
minify
last-modified
Thu, 30 Nov 2017 22:40:01 GMT
server
cloudflare
etag
W/"5a2088c1-1559"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iCgrxlOz4uCXaimxbZYDkp72iJgN3Muyr6xnaURGLGAkbqp%2BAVDv2t50CSooYF54x3J8XhkrcKuRZtm00B1smBbxLFt5AMqxmNQ11ODrzqZ1YS%2BRUVzvLUxd8YzDYS9bwkjrJxt4TDDJePJN"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d662c20-FRA
expires
Sun, 09 Jul 2023 22:31:22 GMT
imagesloaded.pkgd.min.js
iphonetsu.com/wp-content/themes/pingraphy/js/ 		5 KB
2 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-content/themes/pingraphy/js/imagesloaded.pkgd.min.js?ver=20160115
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
23bd7e5fac741d9a4b7cd4572ab0df7556b4dd610c67e3dfaa852d28812b4250

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
last-modified
Thu, 30 Nov 2017 22:40:00 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
W/"5a2088c0-151f"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F2cqsdOb9gAk8k2sckd2FsEClnjsLQ1BCD%2BclYXYwcan6YPDvDrE0fOsGytXyT0rELqZ1WkCucx%2FnLyIJwHP%2BIiE9NST98NhBAS5ofhY1tC7c3uY%2BSdHy%2FGlANpuRoHubO2IN00VZ4LO2aHV"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d6d2c20-FRA
alt-svc
h3=":443"; ma=86400
expires
Sat, 15 Jul 2023 01:37:52 GMT
isotope.pkgd.min.js
iphonetsu.com/wp-content/themes/pingraphy/js/ 		40 KB
12 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-content/themes/pingraphy/js/isotope.pkgd.min.js?ver=20160115
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
338867db60061d0d769700bd29def22fd63bce55e904001ecb7a4bfe2f4912b4

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
last-modified
Thu, 30 Nov 2017 22:40:01 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
W/"5a2088c1-9f8f"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4FF56RviBR6b1wvCQHBoF7ekoECB6bg%2FABrJ3wTlt2YGBoxpJudnNGP7BvxkuQBIf52Q9mGCMW1d7SBGUNVayTo3meE4DJpEYcV2TWdkaReanmOGT6aVr2hOI260Wm8QWQgsLG7FWfe9E1Q1"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d712c20-FRA
alt-svc
h3=":443"; ma=86400
expires
Fri, 14 Jul 2023 17:24:09 GMT
js
www.googletagmanager.com/gtag/ 		258 KB
87 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagmanager.com/gtag/js?id=G-VVQVH7EX8Z
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:808::2008 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
Google Tag Manager /
Resource Hash
414f9b11deffabc4d8576d069abb09562c90523a2cb7c6aade5cebd0a0d4b3cd
Security Headers
Name Value
Strict-Transport-Security max-age=31536000; includeSubDomains
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
strict-transport-security
max-age=31536000; includeSubDomains
server
Google Tag Manager
vary
Accept-Encoding
content-type
application/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
private, max-age=900
access-control-allow-credentials
true
cross-origin-resource-policy
cross-origin
access-control-allow-headers
Cache-Control
content-length
88695
x-xss-protection
0
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires
Sun, 09 Jul 2023 17:14:43 GMT
adsbygoogle.js
pagead2.googlesyndication.com/pagead/js/ 		139 KB
48 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
267ffb3187a2e408dac170fd350064c79aafb81483ada686de49176aff0305cb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
48840
x-xss-protection
0
server
cafe
etag
304740473639370149
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
private, max-age=3600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:43 GMT
jquery-migrate.min.js
iphonetsu.com/wp-includes/js/jquery/ 		10 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
last-modified
Thu, 30 Nov 2017 21:47:13 GMT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server
cloudflare
etag
W/"5a207c61-2748"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hX5eGVEZAUf2WnjqscRWacOSK2Oskdzp6uqfsIPpXHA80ioO2E1ZpXNBB3yuKVe3DkGzTgbaMzQU5a9CWYFhDxDRmwrSx%2FkZxWc7A7xik8r9CaBJHwTbtZjlq3x2UKe1yqATFSXZp4Ft1MS9"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d772c20-FRA
alt-svc
h3=":443"; ma=86400
expires
Fri, 14 Jul 2023 11:37:17 GMT
jquery.js
iphonetsu.com/wp-includes/js/jquery/ 		95 KB
35 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://iphonetsu.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a06:98c1:3120::3 , United States, ASN13335 (CLOUDFLARENET, US),
Reverse DNS
Software
cloudflare /
Resource Hash
8a4c252da9c4b03a65ca99a734ef82408df893c1b6a5d5a49c4f87f774bc4f75

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
cf-cache-status
HIT
nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-polished
origSize=97184
alt-svc
h3=":443"; ma=86400
cf-bgj
minify
last-modified
Thu, 30 Nov 2017 21:47:13 GMT
server
cloudflare
etag
W/"5a207c61-17ba0"
vary
Accept-Encoding
report-to
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LhY63NZoKxquBnF3jFWdMVeu%2Bvfe%2FjR2kPIgwNpayA8y5Yno4bTO1cqjdjcwDAWDQdtDMlBEwhNxQrhDGrWqNRdgZFZ5mVo17xV1S76PFwpyL7WLt3HE02q1HiyFyfp32HbCSONYl3ZDGxye"}],"group":"cf-nel","max_age":604800}
content-type
application/javascript
cache-control
max-age=604800
cf-ray
7e4234768d7b2c20-FRA
expires
Sun, 16 Jul 2023 13:27:40 GMT
adsbygoogle.js
pagead2.googlesyndication.com/pagead/js/ 		139 KB
48 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef9d54ce28b9c2aba2862128ada5f3c6a0754b58fbc569eb19b784ef47235447
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
48845
x-xss-protection
0
server
cafe
etag
10944117611789697132
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
private, max-age=3600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:43 GMT
show_ads_impl_with_ama_fy2021.js
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/ 		344 KB
118 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
1ae348f34424c39a704c60ea565791fcf5ef6ec4fbcf4201f449c4d884e5526d
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:43 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
121043
x-xss-protection
0
server
cafe
etag
15052706338036114434
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=3600, stale-while-revalidate=3600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:43 GMT
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230705/r20190131/ Frame E8CE 		10 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20190131/zrt_lookup.html
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
12329
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 13:49:14 GMT
etag
12368291122986407432
expires
Sun, 23 Jul 2023 13:49:14 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
collect
region1.google-analytics.com/g/ 		0
253 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://region1.google-analytics.com/g/collect?v=2&tid=G-VVQVH7EX8Z&gtm=45je3750&_p=903361985&cid=1076016080.1688922884&ul=en-us&sr=1600x1200&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&ngs=1&_s=1&sid=1688922883&sct=1&seg=0&dl=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&dt=%E5%B9%BD%E2%98%86%E9%81%8A%E2%98%86%E7%99%BD%E6%9B%B8%EF%BC%88YuYu%20Hakusho%20Anime%20Wallpaper%EF%BC%89%E3%82%A2%E3%83%8B%E3%83%A1%E5%A3%81%E7%B4%99%20%7C%20iPhone%E3%83%81%E3%83%BC%E3%82%BA&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
Requested by
Host: www.googletagmanager.com
URL: https://www.googletagmanager.com/gtag/js?id=G-VVQVH7EX8Z
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2001:4860:4802:34::36 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
Software
Golfe2 /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:43 GMT
server
Golfe2
content-type
text/plain
access-control-allow-origin
https://iphonetsu.com
cache-control
no-cache, no-store, must-revalidate
access-control-allow-credentials
true
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
cookie.js
partner.googleadservices.com/gampad/ 		393 B
607 B 		Script
General
Check archive.org
Download Go to
Full URL
https://partner.googleadservices.com/gampad/cookie.js?domain=iphonetsu.com&callback=_gfp_s_&client=ca-pub-7652110621730409
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:831::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
65608087d73a2f44d7be21265539d84f01d18ec81894746f1a2b4fb2697ec863
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
content-type
text/javascript; charset=UTF-8
cache-control
private
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
254
x-xss-protection
0
integrator.js
adservice.google.com/adsid/ 		107 B
457 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=iphonetsu.com
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:808::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
content-type
application/javascript; charset=UTF-8
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 49BE 		140 KB
43 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
c57bbc6315327c46a7263915e8eb0c3efdcf86adb1517f8de2a4109d8e05a3c2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
43534
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:45 GMT
expires
Sun, 09 Jul 2023 17:14:45 GMT
observe-browsing-topics
?1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
sodar
pagead2.googlesyndication.com/getconfig/ 		15 KB
11 KB 		XHR
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230705&st=env
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
94f3a7ae39a933a080c5cd0155042e22133d44c0fe2ce5de3b85c211107a391a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
br
x-content-type-options
nosniff
server
cafe
content-type
application/json; charset=UTF-8
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
11691
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame FE56 		112 KB
39 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
f7a0cbf30778a8e9d14fd7c463f9b808509e907bb3c8eb74da9b19d354dcc0fe
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
39571
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:44 GMT
expires
Sun, 09 Jul 2023 17:14:44 GMT
observe-browsing-topics
?1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame 309A 		405 KB
88 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&adk=1812271804&adf=3025194257&lmt=1688922884&plat=9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=212x945_l%7C212x945_r&format=0x0&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&ea=0&pra=7&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883930&bpp=1&bdt=401&idt=158&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280%2C1082x280&nras=1&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=706701340&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&ifi=3&uci=a!3&fsb=1&dtd=170
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
a2111d01431f8d35c49cbf5e2a586768b2cb719b806e4f0f89de885d7872ea84
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
90158
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:44 GMT
expires
Sun, 09 Jul 2023 17:14:44 GMT
observe-browsing-topics
?1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
sodar2.js
tpc.googlesyndication.com/sodar/ 		17 KB
7 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2.js
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
6386
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
etag
"1637097310169751"
vary
Accept-Encoding
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
expires
Sun, 09 Jul 2023 17:14:44 GMT
runner.html
tpc.googlesyndication.com/sodar/sodar2/225/ Frame A015 		13 KB
5 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

accept-ranges
bytes
age
12425
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
5046
content-type
text/html
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 13:47:39 GMT
expires
Mon, 08 Jul 2024 13:47:39 GMT
last-modified
Mon, 21 Jun 2021 20:47:05 GMT
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server
sffe
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
aframe
www.google.com/recaptcha/api2/ Frame F314 		783 B
1 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://www.google.com/recaptcha/api2/aframe
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:830::2004 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
GSE /
Resource Hash
8690a90ee5e1daac7decd19de13918c586536faa14e49c000686e25949dac960
Security Headers
Name Value
Content-Security-Policy script-src 'report-sample' 'nonce--5CbglhJhPy7pAOy5DGuUg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
X-Content-Type-Options nosniff
X-Xss-Protection 1; mode=block

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private, max-age=300
content-encoding
gzip
content-length
512
content-security-policy
script-src 'report-sample' 'nonce--5CbglhJhPy7pAOy5DGuUg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type
text/html; charset=utf-8
cross-origin-embedder-policy
require-corp
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:44 GMT
expires
Sun, 09 Jul 2023 17:14:44 GMT
report-to
{"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
server
GSE
x-content-type-options
nosniff
x-xss-protection
1; mode=block
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame A015 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66963
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
sodar
pagead2.googlesyndication.com/pagead/ Frame F314 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230705&jk=1636824093891941&rc=
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://www.google.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers
90cda0d4b2e9798013d5ae8e8588fe0b.js
www.gstatic.com/mysidia/ Frame FE56 		9 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/90cda0d4b2e9798013d5ae8e8588fe0b.js?tag=client_fast_engine_2019
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
aa7074f9a3c53a17de894245299386751108ee411500d2548aaf09c30fc1e555
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Mon, 03 Jul 2023 23:17:17 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
496647
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
3972
x-xss-protection
0
last-modified
Thu, 29 Jun 2023 19:09:06 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Sun, 01 Oct 2023 23:17:17 GMT
369d21e23798e41a4bd263e83a9ef671.js
www.gstatic.com/mysidia/ Frame FE56 		10 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/369d21e23798e41a4bd263e83a9ef671.js?tag=text/vanilla_highlight
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
fffeca646555545c8fb0fb9fc1d08b6e9481509b0f0fb78b4243807ca076410c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 19:38:20 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
250584
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
4215
x-xss-protection
0
last-modified
Wed, 05 Jul 2023 16:59:38 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Wed, 04 Oct 2023 19:38:20 GMT
css
fonts.googleapis.com/ Frame FE56 		914 B
861 B 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://fonts.googleapis.com/css?family=Noto%20Sans%20JP%3A400%2C500&text=%E3%80%8D%E3%81%AE%E8%B3%BC%E3%81%A3%E3%81%BCM%E3%81%8D%E8%B2%A9%E3%83%B3%E3%82%A4%E3%80%8C%CE%B1%E8%83%BD%E6%9C%9F%E5%8F%AFY%E5%A3%B2%E3%80%81R%E3%82%8Dv%E5%A3%AB%E3%83%95%E9%99%90U%E3%83%A0%E8%A6%96C%E3%81%8C%E5%AE%9ArHe%E5%85%A5A%E3%81%A1%E4%BA%A4V%E3%81%8F%E8%81%B4%20%E3%81%96%E3%82%A2%E5%90%8Ca%E3%83%86s%E3%81%AF%E6%B5%81%E9%96%8B%E3%82%8BPtT%EF%BC%81m%E3%82%84%E6%B1%BA%E3%82%A1%E3%83%BB%E3%81%A7%E9%96%93W
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:829::200a Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
d461be4ba50a9855d7a96418350ead38f271114da17b9391778f70f5aa34c664
Security Headers
Name Value
Strict-Transport-Security max-age=31536000
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

strict-transport-security
max-age=31536000
date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection
0
last-modified
Sun, 09 Jul 2023 17:14:44 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
text/css; charset=utf-8
access-control-allow-origin
*
cache-control
private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin
*
link
<https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires
Sun, 09 Jul 2023 17:14:44 GMT
css
fonts.googleapis.com/ Frame FE56 		7 KB
1 KB 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://fonts.googleapis.com/css?family=Google%20Sans%3A400
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:829::200a Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
98ea92621a1e03efc11987fba7aff5dae88cd39ffa85960a627b7c8c7b002e8e
Security Headers
Name Value
Strict-Transport-Security max-age=31536000
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

strict-transport-security
max-age=31536000
date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection
0
last-modified
Sun, 09 Jul 2023 15:40:11 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
text/css; charset=utf-8
access-control-allow-origin
*
cache-control
private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin
*
link
<https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires
Sun, 09 Jul 2023 17:14:44 GMT
load_preloaded_resource_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame FE56 		2 KB
892 B 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/load_preloaded_resource_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3ab7853ddfc8ef3468082187bff5636436df85cd9d1e54653530c018cf9d9280
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:01 GMT
content-encoding
br
x-content-type-options
nosniff
age
86143
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
865
x-xss-protection
0
server
cafe
etag
5051423035144352294
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:01 GMT
abg_lite_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame FE56 		23 KB
9 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
02193fbcb11d960448e0fa887ff68d5ce73f01076893523fc3037e00a7149bc2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:18:57 GMT
content-encoding
br
x-content-type-options
nosniff
age
86147
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
9104
x-xss-protection
0
server
cafe
etag
12939045362079141464
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:18:57 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame FE56 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12425
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame FE56 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86134
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame FE56 		179 KB
57 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:44 GMT
5f03bef6f00b7a8cf9d43233a2aa7e67.js
www.gstatic.com/mysidia/ Frame FE56 		33 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/5f03bef6f00b7a8cf9d43233a2aa7e67.js?tag=mysidia_one_click_handler_one_afma_2019
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
3a5fa3073b94aa8259d04802566504c897fd640610ea9f36654cfacc615f325e
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 19:38:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
250594
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14183
x-xss-protection
0
last-modified
Thu, 29 Jun 2023 19:09:06 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Wed, 04 Oct 2023 19:38:10 GMT
generate_204
tpc.googlesyndication.com/ Frame A015 		0
10 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/generate_204?SGUlNg
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
s
googleads.g.doubleclick.net/pagead/drt/ Frame 8301 		143 B
166 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18088c10e79c926292732af98a0ce470e90f3fbcba4bb4896ab3310c2d94e421
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
3493
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=3600
content-encoding
gzip
content-length
145
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 16:16:31 GMT
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
truncated
/ Frame FE56 		214 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
86907bb402003bde26ddfc110cd6156127a58db7a9a6dc2afc1ab47c5eb139a2

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
si
googleads.g.doubleclick.net/pagead/drt/ Frame 8301
Redirect Chain
  • https://www.google.com/pagead/drt/ui
  • https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
0
17 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-length
0
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:44 GMT
expires
Sun, 09 Jul 2023 17:14:44 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
x-content-type-options
nosniff
x-xss-protection
0

Redirect headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-length
0
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:44 GMT
location
https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
font
fonts.gstatic.com/l/ Frame FE56 		28 KB
28 KB 		Font
General
Check archive.org
Download Go to
Full URL
https://fonts.gstatic.com/l/font?kit=-F62fjtqLzI2JPCgQBnw7HFowxq903ckxKJYRIs0ms2lj9Va1bLkFcio9ETNob-Q0I_OcJihTCLtg1znM77qhDrp2nBC3qgpOx4zLVJGu8MT3qaiTJAim7h65jrO_3lm7fR89Q7Puv4LoI8F_J5oaiZSP8F-v9pPxb7wH30humlAajdnhtMCi6tLJtXKg9VtSLyYYtwptZVpkHVlNEU1Kzy_gWpgrtFtlov262a13onfDkjdNUdNa064_SocRca5IV2oWoj0EGSn60z1rw&skey=72472b0eb8793570&v=v52
Requested by
Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Noto%20Sans%20JP%3A400%2C500&text=%E3%80%8D%E3%81%AE%E8%B3%BC%E3%81%A3%E3%81%BCM%E3%81%8D%E8%B2%A9%E3%83%B3%E3%82%A4%E3%80%8C%CE%B1%E8%83%BD%E6%9C%9F%E5%8F%AFY%E5%A3%B2%E3%80%81R%E3%82%8Dv%E5%A3%AB%E3%83%95%E9%99%90U%E3%83%A0%E8%A6%96C%E3%81%8C%E5%AE%9ArHe%E5%85%A5A%E3%81%A1%E4%BA%A4V%E3%81%8F%E8%81%B4%20%E3%81%96%E3%82%A2%E5%90%8Ca%E3%83%86s%E3%81%AF%E6%B5%81%E9%96%8B%E3%82%8BPtT%EF%BC%81m%E3%82%84%E6%B1%BA%E3%82%A1%E3%83%BB%E3%81%A7%E9%96%93W
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:809::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
0d68234c4b8cc873f8d9a55ede1d0af66587ef4e6763e5ac7b2d58bec4dcdf78
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

Referer
https://fonts.googleapis.com/
Origin
https://googleads.g.doubleclick.net
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:44 GMT
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="font.woff2"; filename*=UTF-8''font.woff2
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
28788
x-xss-protection
0
last-modified
Tue, 02 May 2023 23:59:44 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
font/woff2
access-control-allow-origin
*
cache-control
public, max-age=86400
timing-allow-origin
*
expires
Mon, 10 Jul 2023 17:14:44 GMT
4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2
fonts.gstatic.com/s/googlesans/v58/ Frame FE56 		21 KB
21 KB 		Font
General
Check archive.org
Download Go to
Full URL
https://fonts.gstatic.com/s/googlesans/v58/4Ua_rENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RFD48TE63OOYKtrwEIJllpyk.woff2
Requested by
Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Google%20Sans%3A400
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:809::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
3fd13aa5309882955edefa1157aab289e1542b6cac5b258f7a486ef88ed1d876
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://fonts.googleapis.com/
Origin
https://googleads.g.doubleclick.net
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 18:35:47 GMT
x-content-type-options
nosniff
age
254337
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
21360
x-xss-protection
0
last-modified
Tue, 23 May 2023 16:35:55 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="apps-themes"
report-to
{"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-type
font/woff2
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
expires
Fri, 05 Jul 2024 18:35:47 GMT
adview
googleads.g.doubleclick.net/pagead/ Frame FE56 		0
23 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://googleads.g.doubleclick.net/pagead/adview?ai=Cg12RBOuqZOP8BrSAmwebvoDYCuyn1ZtugsWM1s8RwI23ARABIOeloQVgoQKgAZz_v58oyAEBqQJ7gUqe4DM-PqgDAcgDwwSqBPIBT9CEJPQTClWFw62091C50tZhQnoxMfSiqqqbFWDXa8om3Ex86jRiuMp1wZHrrghEjgV0214OCte_f5KpKcWlryBA3rYlfOeEqV8DJVf7PoQWgsqvtZolunkLDToNrcmPEf5U_bbmv4NATEOYxvfafSvGjPjBsB02MPuC2dBkr3YdWmRTF9fvEZfY1uQcJq2wUOhpK2iPKdPuNrqD3b0jIuy2Yavk2qK-A_sikWUQk-BS4d6vikoLCt-VDy1Z-LRryPe1HeEOfbFAAHyCNX6qvwRlfoa1EAHl2cZmuQLjli8UwDJhydbX0vJBkq-cpXwdS8PABKXA8dWoBJIFBAgEGAGSBQQIBRgEoAZmgAect5D_AqgHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcB8gcDEJA10ggUCIBhEAEYHzICigI6AoBASL39wTqACgHICwGiDAgqBgoEw7CxAtgTCtAVAZgWAYAXAbIXHAoaCAASFHB1Yi03NjUyMTEwNjIxNzMwNDA5GAA&sigh=j0I-ZJYZeUc&uach_m=[UACH]&cid=CAQSGwBpAlJWXaeGy9yvdYqI4C7DE4ejQ7RrGoizGhgB&cbvp=2&vis=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

content-security-policy
script-src 'none'; object-src 'none'
date
Sun, 09 Jul 2023 17:14:44 GMT
x-content-type-options
nosniff
server
cafe
content-type
text/html; charset=UTF-8
access-control-allow-origin
*
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
private
access-control-allow-credentials
true
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Sun, 09 Jul 2023 17:14:44 GMT
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 360F 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=4041291795&adk=2968863340&adf=1232942571&pi=t.ma~as.4041291795&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883878&bpp=1&bdt=349&idt=196&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&prev_fmts=1082x280&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=1469&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=2&uci=a!2&btvi=1&fsb=1&xpc=oJyVlCjHDq&p=https%3A//iphonetsu.com&dtd=198
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66963
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
reactive_library_fy2021.js
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/ 		154 KB
52 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/reactive_library_fy2021.js?bust=31075831
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
2218ff17aa66057aa7f45be8fb293dfcff57693748c9067fba8461e0e8fcb9c1
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
53430
x-xss-protection
0
server
cafe
etag
12333328086698716907
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=1209600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
integrator.js
adservice.google.com/adsid/ 		107 B
166 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=iphonetsu.com
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:808::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
content-type
application/javascript; charset=UTF-8
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
100
x-xss-protection
0
ads
googleads.g.doubleclick.net/pagead/ Frame DD35 		436 B
233 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=90&adk=1365415531&adf=2807653287&pi=t.aa~a.4196110798~rp.1&w=1142&fwrn=4&fwrnh=100&lmt=1688922885&rafmt=1&to=qs&pwprc=8806849545&format=1142x90&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922885068&bpp=1&bdt=1538&idt=0&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D76674d54942c3a99-228576f724de0019%3AT%3D1688922884%3ART%3D1688922884%3AS%3DALNI_MbA4jZcg-hZUlF62KYNFmOIpHIkig&gpic=UID%3D00000c38d972b1a2%3AT%3D1688922884%3ART%3D1688922884%3AS%3DALNI_MaGq1Jz4m1va_Z8Nazu4dmVpMyDHA&prev_fmts=1082x280%2C1082x280%2C0x0&nras=2&correlator=7069174047757&frm=20&pv=1&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=229&ady=1779&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&psts=ABnkTfARNtd2f2d0Yexz1vBoYf8D6NGp5cYl6V-48z4luAOvOTCutgKyzoMnik2TlVjuUANniypG_7Tk9hDxK1F8QXy14bu9&pvsid=1636824093891941&tmod=706701340&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&ifi=4&uci=a!4&btvi=2&fsb=1&xpc=VS9qknnvE8&p=https%3A//iphonetsu.com&dtd=5
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
7c1b6a42b6e816eecf28b902e35dd63b1585ffbcd86e9565de50961faf351cf7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-encoding
br
content-length
212
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:45 GMT
observe-browsing-topics
?1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
sodar
pagead2.googlesyndication.com/pagead/ 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230705&jk=1636824093891941&bg=!1tWl1YHNAAb90kgr3dI7ADkAdvg8Wp9DB-uNgCX3ebJESW78Az6k0tKMyZktpe12TQ214dQCxfbdbBUC5eMvT5wXIhr63bCm6PcCAAAAgFIAAAASaAEHmQK3IVM3zEDA-HAnIdbvSiwK_0UlBFT3hrE_w31YsusSn5rmGM0vIHEBxYWiE1vyLTyLeZUdfX6KGWCxQwS42tUyV_eDs2LVEiSpmMfEKaO3ua4Z_NQG3C3yksCZUjtc14FvL2waOUxBxSR2JL5c7w4Ltw1j9eIK2Fkbr3wPHC8eSdD1tyiisPwg_nHSGQgB5pr0G0tc6Jau_kRROud1dUq1qWHFw-h_w9MLX9QAxTqI4J8W2LjVsyYgj_gfZ0cRmVogqnqGz_yh2zZBjQuvzEN9fN2h67i08tONXTbcqfXM0-ArK-_aNBAcwyCkl7JbdiKeClZbSu1Q8fQCF-Dol6GoJsMHJz7Zyjj04mlrsu8pmyuc-0K6a5X7cEPw8rQlQ_Rox8ufZJQ-73dkvTFiQYzeSyjRUvmq9pe7iHomU7z8lQR-RIUxJDnIE98x2vK5-nQop4YQQpE3EHzNTRs8aqhf1Vd3v7xCAwfBAsGma26pLBMt8PCLU4d24zVIDaBGjgUoWkda2e73cyucJU5gJznsljo826j64ZQbhN0oZqCLOtp8hqpAe91M927_PLvIDWOzJuBgNJ9IAWRd71hG1PcpNZHtPyKscA_BDLJbrGu_UklzMzwOAceqpkoxX4l48Zyhj-h7lJv5UniqbeeTXcvS7O4UyWo3gsVcqh7oQiY58i9z59VZhVIRPEAeCexhjrnJiBcZKPOc4QRdSlGSWhW23hmYnREhI7ViLxrFGF7ZCib8iXspvbJ1c_lXDNuqWTj-WjrHsfSLP6lqjBYDV-_sBafKlSqtZtSBE1BaGc5Wd2Bo1wjbfvd3LLHNoGdLzZxtH2u9G6sDPrdvBjzredU8lkJb7RpvsRrIGmlur2ONj2nqfqV2YzWxPm9iEyal-YGA-SVDmUMUQjSbzjgXsVhDj7JC8Hron_8
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers
integrator.js
adservice.google.com/adsid/ 		107 B
122 B 		Script
General
Check archive.org
Download Go to
Full URL
https://adservice.google.com/adsid/integrator.js?domain=iphonetsu.com
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:808::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://iphonetsu.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
server
cafe
content-type
application/javascript; charset=UTF-8
p3p
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
cache-control
private, no-cache, no-store
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
100
x-xss-protection
0
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/ Frame DCD8 		10 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
38651
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 06:30:34 GMT
etag
12368291122986407432
expires
Sun, 23 Jul 2023 06:30:34 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/ Frame DB17 		10 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
38651
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 06:30:34 GMT
etag
12368291122986407432
expires
Sun, 23 Jul 2023 06:30:34 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/ Frame 1575 		10 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
38651
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 06:30:34 GMT
etag
12368291122986407432
expires
Sun, 23 Jul 2023 06:30:34 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
zrt_lookup.html
googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/ Frame 6EA9 		10 KB
4 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202306290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7652110621730409&plah=iphonetsu.com&bust=31075831
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
18e7a53e3b3abd7ac0242719f7f62cb56b8efe7065091585b8ad22cbc2b8c41c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://iphonetsu.com/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

age
38651
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=1209600
content-encoding
br
content-length
4544
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 06:30:34 GMT
etag
12368291122986407432
expires
Sun, 23 Jul 2023 06:30:34 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
css2
fonts.googleapis.com/ Frame DCD8 		4 KB
770 B 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:829::200a Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
2d0922bd18f06df3c7413fcd6a3f1c5ec9545b4b07b131e362f30df7275fc058
Security Headers
Name Value
Strict-Transport-Security max-age=31536000
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

strict-transport-security
max-age=31536000
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection
0
last-modified
Sun, 09 Jul 2023 16:18:44 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
text/css; charset=utf-8
access-control-allow-origin
*
cache-control
private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin
*
link
<https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires
Sun, 09 Jul 2023 17:14:45 GMT
feedback_grey600_24dp.png
www.gstatic.com/images/icons/material/system/2x/ Frame DCD8 		205 B
229 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://www.gstatic.com/images/icons/material/system/2x/feedback_grey600_24dp.png
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
4d45982f2dc34f36c9045ee46a75a1943666bb7fd64e103cac8c7429e7012840
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:13:42 GMT
x-content-type-options
nosniff
age
14463
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
205
x-xss-protection
0
last-modified
Wed, 28 Jun 2023 17:48:00 GMT
server
sffe
vary
Origin
report-to
{"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-type
image/png
cache-control
public, max-age=31536000
accept-ranges
bytes
cross-origin-opener-policy-report-only
same-origin; report-to="static-on-bigtable"
expires
Mon, 08 Jul 2024 13:13:42 GMT
settings_grey600_24dp.png
www.gstatic.com/images/icons/material/system/2x/ Frame DCD8 		604 B
628 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://www.gstatic.com/images/icons/material/system/2x/settings_grey600_24dp.png
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
5c4a713ee4250851232be9f9f68d41586be39b299528cfc7266e0b0e7e582e1b
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 12:13:24 GMT
x-content-type-options
nosniff
age
104481
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
604
x-xss-protection
0
last-modified
Wed, 28 Jun 2023 17:48:00 GMT
server
sffe
vary
Origin
report-to
{"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-type
image/png
cache-control
public, max-age=31536000
accept-ranges
bytes
cross-origin-opener-policy-report-only
same-origin; report-to="static-on-bigtable"
expires
Sun, 07 Jul 2024 12:13:24 GMT
interstitial_ad_frame_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/ Frame DCD8 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/interstitial_ad_frame_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
407e5f7555fe203a6245ac0209874437d50b9daf51a7102e6fd90a99a3df1717
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:31:19 GMT
content-encoding
br
x-content-type-options
nosniff
age
85406
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8599
x-xss-protection
0
server
cafe
etag
12796843930313450165
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:31:19 GMT
pixel
googleads.g.doubleclick.net/xbbe/ Frame 8D29 		624 B
245 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
9ff367082be1d94abc86ad1e75ff921cc5d53846e860267372fade66305f9120
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
222
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:45 GMT
expires
Sun, 09 Jul 2023 17:14:45 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
dv3.js
pagead2.googlesyndication.com/pagead/js/ Frame 54A5 		78 KB
27 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/dv3.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
332d8e2d6964e41c92a430d24b1b469bfdcc30ad072f980b2e7adf241590886a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
28042
x-xss-protection
0
server
cafe
etag
3261498652431352696
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 54A5 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12426
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 54A5 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86135
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame 54A5 		179 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 54A5 		42 B
63 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=xbid&dbm_b=AKAmf-DM46HthTNBUBMCWckQck1Iq3lHbCA0fFkj0qoYXOR81tn-8JUslHdE7RlnhNSoL0pHoO1hyaXWdeRFISkl9cCyHimLAj1f2YPKy-Tn_Ma-8anOG4U
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 54A5 		0
20 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=fetch&cor=3509537014692318899&x=1&ct=76
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
pixel
googleads.g.doubleclick.net/xbbe/ Frame 7A15 		640 B
265 B 		Document
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
d0e8821e889280c3b745b859e6b3971924723a4562bac65ba8aa0fe44bfc83b2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
private
content-encoding
br
content-length
242
content-type
text/html; charset=UTF-8
cross-origin-resource-policy
cross-origin
date
Sun, 09 Jul 2023 17:14:45 GMT
expires
Sun, 09 Jul 2023 17:14:45 GMT
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server
cafe
timing-allow-origin
*
x-content-type-options
nosniff
x-xss-protection
0
dv3.js
pagead2.googlesyndication.com/pagead/js/ Frame EEF1 		78 KB
27 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/dv3.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
332d8e2d6964e41c92a430d24b1b469bfdcc30ad072f980b2e7adf241590886a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
br
x-content-type-options
nosniff
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
28042
x-xss-protection
0
server
cafe
etag
3261498652431352696
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
cache-control
private, max-age=600
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame EEF1 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12426
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame EEF1 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86135
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame EEF1 		179 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame EEF1 		42 B
63 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=xbid&dbm_b=AKAmf-DknRW0KcE855pOfj-lHddi3_FD0wr2XQynNNSOXovhQcJTNikJZzM-4miBb53TplnlGTnvfeDUfo9c9lmzuN3Qg2Yz1IVCSR3tRbBCNluDZJ24b5g
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame EEF1 		0
20 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=fetch&cor=8042742414839227540&x=1&ct=76
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
load_preloaded_resource_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 6EA9 		2 KB
892 B 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/load_preloaded_resource_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3ab7853ddfc8ef3468082187bff5636436df85cd9d1e54653530c018cf9d9280
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:01 GMT
content-encoding
br
x-content-type-options
nosniff
age
86144
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
865
x-xss-protection
0
server
cafe
etag
5051423035144352294
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:01 GMT
abg_lite_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame 6EA9 		23 KB
9 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
02193fbcb11d960448e0fa887ff68d5ce73f01076893523fc3037e00a7149bc2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:18:57 GMT
content-encoding
br
x-content-type-options
nosniff
age
86148
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
9104
x-xss-protection
0
server
cafe
etag
12939045362079141464
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:18:57 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 6EA9 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12426
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 6EA9 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86135
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame 6EA9 		179 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
5f03bef6f00b7a8cf9d43233a2aa7e67.js
www.gstatic.com/mysidia/ Frame 6EA9 		33 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/5f03bef6f00b7a8cf9d43233a2aa7e67.js?tag=mysidia_one_click_handler_one_afma_2019
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
3a5fa3073b94aa8259d04802566504c897fd640610ea9f36654cfacc615f325e
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 19:38:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
250595
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14183
x-xss-protection
0
last-modified
Thu, 29 Jun 2023 19:09:06 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Wed, 04 Oct 2023 19:38:10 GMT
3811222243823173531
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		46 KB
46 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/3811222243823173531
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
a5528c3bc369ce846e72ac4e64eb590f2b180b9e078e0e172cad0199af04373a
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Fri, 07 Jul 2023 10:50:05 GMT
x-content-type-options
nosniff
age
195880
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
46851
x-xss-protection
0
last-modified
Fri, 12 May 2023 02:16:24 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Sat, 06 Jul 2024 10:50:05 GMT
17176662974102578138
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		38 KB
38 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/17176662974102578138
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
743842b4cf4ab90f696d0edfc40a0a758d495778b049ca4b6624c7af20840583
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Mon, 03 Jul 2023 16:41:19 GMT
x-content-type-options
nosniff
age
520406
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
38597
x-xss-protection
0
last-modified
Fri, 12 May 2023 01:52:40 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Tue, 02 Jul 2024 16:41:19 GMT
8577411388476362003
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		104 KB
104 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/8577411388476362003
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
69e5e1ada95e84563ecd5960111c7b7f9fdcaa276c50d554102d7d43d94eb99b
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 18:04:14 GMT
x-content-type-options
nosniff
age
429031
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
106912
x-xss-protection
0
last-modified
Fri, 12 May 2023 01:53:07 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Wed, 03 Jul 2024 18:04:14 GMT
2199795341548794181
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		167 KB
167 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/2199795341548794181
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
9946cb046f09de84d33a6ccf7013a04065ac25c6f938c56e78b13f620ad6230f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Fri, 07 Jul 2023 06:05:34 GMT
x-content-type-options
nosniff
age
212951
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
171275
x-xss-protection
0
last-modified
Sun, 21 May 2023 23:46:11 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Sat, 06 Jul 2024 06:05:34 GMT
9531563636072674216
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		13 KB
14 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/9531563636072674216
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
06e586dd3bf6f43d0d0cd3f90154098d41d455b863f1f5b6a7ba1ea2ed13cceb
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 09:42:05 GMT
x-content-type-options
nosniff
age
113560
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
13817
x-xss-protection
0
last-modified
Fri, 12 May 2023 02:07:42 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Sun, 07 Jul 2024 09:42:05 GMT
12636973735932013631
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		56 KB
56 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/12636973735932013631
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
484c0313745f69e4adce2141566c45c3bd94bc7cae6d6c351f4ed19e2a468e25
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 18:08:15 GMT
x-content-type-options
nosniff
age
255990
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
56848
x-xss-protection
0
last-modified
Fri, 12 May 2023 02:49:19 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Fri, 05 Jul 2024 18:08:15 GMT
6090076912653516983
tpc.googlesyndication.com/gpa_images/simgad/ Frame 6EA9 		132 KB
132 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/gpa_images/simgad/6090076912653516983
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
e74e80c8be3124912140a426b0b3c98b7e96cf58cd346c9199d4248a9a1650d2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 17:56:12 GMT
x-content-type-options
nosniff
age
256713
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
135476
x-xss-protection
0
last-modified
Fri, 12 May 2023 01:56:17 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Fri, 05 Jul 2024 17:56:12 GMT
17316840736927838592
tpc.googlesyndication.com/simgad/ Frame 6EA9
Redirect Chain
  • https://tpc.googlesyndication.com/pageadimg/imgad?id=CICAgKDnzZ6-SBCAAhiAAjIIl_CwzP3A9-Y
  • https://tpc.googlesyndication.com/simgad/17316840736927838592
55 KB
55 KB 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tpc.googlesyndication.com/simgad/17316840736927838592
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
41c9dc06c216a2d0df362189dcaeb32d885cb50704e2fa2447aca676e9356710
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Fri, 07 Jul 2023 09:51:29 GMT
x-content-type-options
nosniff
age
199396
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
55935
x-xss-protection
0
last-modified
Sat, 13 Jul 2019 14:46:21 GMT
server
sffe
report-to
{"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
content-type
image/jpeg
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="content-ads-owners"
expires
Sat, 06 Jul 2024 09:51:29 GMT

Redirect headers

date
Sun, 09 Jul 2023 14:29:19 GMT
x-content-type-options
nosniff
server
cafe
age
9926
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
location
https://tpc.googlesyndication.com/simgad/17316840736927838592
content-type
text/html; charset=UTF-8
cache-control
public, max-age=2592000
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Tue, 08 Aug 2023 14:29:19 GMT
css
fonts.googleapis.com/ Frame 980F 		462 B
263 B 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://fonts.googleapis.com/css?family=Noto%20Sans%20JP%3A400%2C500&text=%E3%82%8B%E9%96%89%E3%81%98
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:829::200a Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
d68792895f86c25ba4927823a2bbc062460c49c85d30003fd4795c26becdc51b
Security Headers
Name Value
Strict-Transport-Security max-age=31536000
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

strict-transport-security
max-age=31536000
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection
0
last-modified
Sun, 09 Jul 2023 17:14:45 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
text/css; charset=utf-8
access-control-allow-origin
*
cache-control
private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin
*
link
<https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires
Sun, 09 Jul 2023 17:14:45 GMT
load_preloaded_resource_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 980F 		2 KB
892 B 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/load_preloaded_resource_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3ab7853ddfc8ef3468082187bff5636436df85cd9d1e54653530c018cf9d9280
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:01 GMT
content-encoding
br
x-content-type-options
nosniff
age
86144
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
865
x-xss-protection
0
server
cafe
etag
5051423035144352294
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:01 GMT
abg_lite_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame 980F 		23 KB
9 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
02193fbcb11d960448e0fa887ff68d5ce73f01076893523fc3037e00a7149bc2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:18:57 GMT
content-encoding
br
x-content-type-options
nosniff
age
86148
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
9104
x-xss-protection
0
server
cafe
etag
12939045362079141464
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:18:57 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 980F 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12426
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 980F 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86135
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame 980F 		179 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
5f03bef6f00b7a8cf9d43233a2aa7e67.js
www.gstatic.com/mysidia/ Frame 980F 		33 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/5f03bef6f00b7a8cf9d43233a2aa7e67.js?tag=mysidia_one_click_handler_one_afma_2019
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
3a5fa3073b94aa8259d04802566504c897fd640610ea9f36654cfacc615f325e
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 19:38:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
250595
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14183
x-xss-protection
0
last-modified
Thu, 29 Jun 2023 19:09:06 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Wed, 04 Oct 2023 19:38:10 GMT
rum
dsum-sec.casalemedia.com/ Frame 8D29
Redirect Chain
  • https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm
  • https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1
43 B
766 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Protocol
HTTP/1.1
Server
185.80.39.216 , Canada, ASN27381 (CASALE-MEDIA, CA),
Reverse DNS
Software
Apache /
Resource Hash
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Pragma
no-cache
Date
Sun, 09 Jul 2023 17:14:45 GMT
Server
Apache
P3p
policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type
image/gif
Cache-Control
no-cache
Connection
Keep-Alive
Keep-Alive
timeout=1, max=499
Content-Length
43
Expires
0

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
text/html; charset=UTF-8
location
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
313
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
rum
dsum-sec.casalemedia.com/ Frame 8D29
Redirect Chain
  • https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D
  • https://dsum-sec.casalemedia.com/rrum?cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D&cm_dsp_id=85&ixi=0&C=1
  • https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_hm=ZKrrBTcvhud3wy9Pi.5Q4wAA
  • https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1&google_hm=2
43 B
766 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1&google_hm=2
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Protocol
HTTP/1.1
Server
185.80.39.216 , Canada, ASN27381 (CASALE-MEDIA, CA),
Reverse DNS
Software
Apache /
Resource Hash
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Pragma
no-cache
Date
Sun, 09 Jul 2023 17:14:45 GMT
Server
Apache
P3p
policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Content-Type
image/gif
Cache-Control
no-cache
Connection
Keep-Alive
Keep-Alive
timeout=1, max=497
Content-Length
43
Expires
0

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
text/html; charset=UTF-8
location
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEOjbb4xY3Gt6JKma_Zf9N48&google_cver=1&google_hm=2
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
329
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
setuid
ib.adnxs.com/ Frame 8D29
Redirect Chain
  • https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm
  • https://ib.adnxs.com/setuid?entity=101&code=CAESEFZC56Di_X0svQI4sxaASYk&google_cver=1
43 B
840 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://ib.adnxs.com/setuid?entity=101&code=CAESEFZC56Di_X0svQI4sxaASYk&google_cver=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Protocol
H2
Server
37.252.171.53 Frankfurt am Main, Germany, ASN29990 (ASN-APPNEX, US),
Reverse DNS
1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net
Software
nginx/1.21.3 /
Resource Hash
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
Security Headers
Name Value
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
an-x-request-uuid
16601395-dd6a-47b4-8873-5a23611483b2
server
nginx/1.21.3
accept-ch
Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
p3p
policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type
image/gif
cache-control
no-store, no-cache, private
x-proxy-origin
37.48.94.41; 37.48.94.41; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
content-length
43
x-xss-protection
0
expires
Sat, 15 Nov 2008 16:00:00 GMT

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
text/html; charset=UTF-8
location
https://ib.adnxs.com/setuid?entity=101&code=CAESEFZC56Di_X0svQI4sxaASYk&google_cver=1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
290
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
pixel
cm.g.doubleclick.net/ Frame 8D29
Redirect Chain
  • https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC}
  • https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus%26google_hm%3D%24%7BBASE64_UID_ENC%7D
  • https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=Njg2OTI1NTI4Mjk3NzE4MzgxMw%3D%3D
170 B
244 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=Njg2OTI1NTI4Mjk3NzE4MzgxMw%3D%3D
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNXPHX8QX6n12Yh9OhgsjqaO5lvT3pPAkQ40tULkz16qd43V2WDNNqoE-SXiGUK5VYiAkVSKL5x04SX1jOlkcNQMYVUFx6qep-bBK8YT43TO8D26OtelmItBB_LCSgTZ-CL9f7a1BGQwcbsd8i4S7MJf8vLhKpjKUCjNOT5voH7kTPgJsO8
Protocol
H2
Server
142.250.185.194 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s52-in-f2.1e100.net
Software
HTTP server (unknown) /
Resource Hash
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
Security Headers
Name Value
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
image/png
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
170
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
an-x-request-uuid
e2e9bc23-d9ec-4f56-9176-33e5e35bc5de
server
nginx/1.21.3
accept-ch
Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
p3p
policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
content-type
text/html; charset=utf-8
access-control-allow-origin
*
cache-control
no-store, no-cache, private
access-control-allow-credentials
true
location
https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=Njg2OTI1NTI4Mjk3NzE4MzgxMw%3D%3D
x-proxy-origin
37.48.94.41; 37.48.94.41; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
content-length
0
x-xss-protection
0
expires
Sat, 15 Nov 2008 16:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 54A5 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=running&ord=5818287365309&version=m202301230201
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 54A5 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=tlbr&ord=5818287365309&version=m202301230201&ct=76&x=1&cor=3509537014692318700
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
ad
googleads.g.doubleclick.net/dbm/ Frame 54A5 		87 KB
37 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-CZdICBlSTaNiGTfAqP5yGes1EkX9cnAxbZE9ba1a6g-th7AmM5RitgY_ZwhKlQ6n9NPiqZ_uF2FZIWeVme6yFBq9vy2g&cry=1&dbm_d=AKAmf-BM29w0Vt_nWbh7vIVSBBMwaW54cYx1ZTWgQa-kU3NQ2TxGxb9Y2JPj8_XtHZgSB6LYgawW7mwggUNy1mkdaPzGT7DBM8C3ZNjdJpkfmqB0sLwbk8sLqVtwdLFfUo2Wuk29XwWOATeEzDwoScrXZaWt-ePq-hXETUaaAcHBiEW5IQWHBg_Ha4OHWWGN3gGDYBbC9lH9rtUSAWqE5wUfw3UKDE3nI6Pd9-G1BSyf-QIDt9hq91BoeLJhaeDQFY_Lzx74FW0MyscG6RPDgGasDZrKlPCmmgl5by1c2xP9Ux9TEvlOsz-OW9S-i8qi-b_Hz_3w8f9lkJ0yAunTIbOYoHpJmjq4SYhSksPb4OpehsJYWojDdliLDCSovaLahrJt5UlmBQn-LmX2kengocf5GiahWQIhwVdFZ4FWgKfKF3kG9Vz4MOgcFcRzKgZZC2b2EyeycFw8oEU3YVQt9JgJIDljYAIQsqUCZ8_BH7p5r8p8WXUveEAfWagekrK0zilzqQ-o73a3zOxAjte8abq9sf7yOYQpI3PpSn_PD8z2OAfizzCPAo5_Fhr14-T_YrExbO-oKmKGvGIeMYiplGGKC6o-VQUaL-KMMVi-XcnwSgC0aMVxbFPZtWUldVVRmVQjMyi_IXdn4n5g0QfuKrDBs7P2Z7LXbtA5i_k6c75x0qKXMAIMEjrvniPINP4l0cOANSDi2p3q3htAUeEzWVbz5_oIo45_DSub98cRnpXZLp82Qbk3bcMvnbvw0XknNe65b3n5NS2r5soikb2-i-Yp16C3NNwfq3elacTdFLDF7z9h3CJOLQeDi2QZSzp0DWVrey87ItKNfD6sN7HETyCwcVwpHsL9G_Jbt3NHnPWLjqULgTFoY_E6EHAMvH7NdSk08ytSJtZ2Zx6ZnrxaGMyY8qWc_Vy_4w8H9BSydAMTTbnW9pzMZ0JoHfRG6GiWN7w1QrBKM9oMmGCG_suRXzQg4KJy4fGwH3truocuj3IXphbDVuxj6kWRixyvD_XLGI2Q-HkuMGl9t1-DOBG87PnuPqIRyRb5Z-OxOX3EFgGm-_F6OVl0kel_L5cbaSIonDbNKbGh5XegqbUCdwQZJ42lZsYll66pDR5Oj8pQyaW3wKYVvuYv84HzaluNyDPtzcwuilS7geZ6y7QRFRuyik5iQMOvknnAsIbOFT6xX4Nr-E9UNQhH5viS5XWi-lKeZwBob0TIBUVpPAKhPJkC_798EbLg0vfMcI5Az_364NLABvJwVCyDTWVxDWDu1VjYVPQofaan1VNC5TPpbiSNctVgDKQ4c7HpQFJVqztPUo9KdAOnBMpOO92A7ySw2rPMZ052WwJDjny-MQSnSESdJDepzCwILTm_8v2j72IhsHtce8hNytyF54y4W7BwRrfYdQOvTVXv1kw_9icSvp1ypgtE2m_TizWc0opO8XoW4fstHJIJIDDLI5CByG14npikl67Y5FVpBNuzEfGqVrv7lJ0sfRRTa2CYX8jIJiINPAHb4YYBiUlVYd8jJLh7J3eMYIb9xqLDtvBwF6X63q8V4vLjtqSSpO_JApDIevi0c2H1N9Swn1Vxeu-RmoO07rdhrxSMv680oD-FN0RpSD6WIF3INnNSAsQMB2VnXrEDyUK2tLwQjnhrUhECx0mQT5Z0NQfuKr0B4qk3bmAjRZ-cvn0r892jBYfsGlE3HDQTk5AaOqcHR_uEd6wYcxsqNMbKf5y7CQjTLRpl6GIP70IWVa-K0uMRLfEx-XeV0Vgio-INH29fMYoiqH9XGU2UXE5MKhvIZKQsg-naLIzdZ6tItXAmi6siFlgfmy7C9A_GwL84rScNp0zqNQUi6mot9sbC8hrcHcIAx6ktMYcRvdE7TeGlZLfZ_9mmbeKzTA9MqtR2VLNUlVShKARi7JgpnWgWsYJYGpEMPr-z4ulvGcDcAPX2e_jfsDw7Pt9R_8ze7_634-gaP4R4xiFydzDKEDB_qzy1CNzdjZnrryKNRpbwZ69A9kTMIm9gFJM1OK4iA4N-7tKz091IybK9HSXy7mgCuml4RqoNx3cnYDojRbcO32mSh-2LQjOFLsuPl3YU5-nNQBxl0CwDxE0qxzwu5ex_mArYs96N6R46K5Yqyr8y4MQLbeczA3upBj_m11j1mxPHJyMKwgAfJ0AWe_DGW9kmb8jUqQbKO_yGmJpT0Z0X2PKgd9Vc_yXdJdPkdNmZXi2EH7OpLBNtn6R-7-dG_7nOcN4WurVCl1qdNvG1AiEwBt487xknE4LaBQFbTk9KmFA5_Jx4dPNo_4FdAZrjsZNzY2ArA-NG6vSH1s8R4gMwrHb03l---hroFe44L6sb95PiscHzt5SJJZ9uUGp38ADL75Uio-7g8QH1DXH8-mi9z0RQaVKq74QISU9Dgaf_kdW0J4ecRWOa86aHOS0XUrWRtZONCgLSFvgaTH4XcyU4u043OtXJXsipEfrhpXMzI9aU9DyD43IjtMLmO5Q4Y4Hz-OimR39Eb54NCgKOkX7Lg8oB0emXmLmtJ_66c-aJmo_XWbH43Y1Y3LX29JlO8cEDWqFa-bZVO4LDwQ1DIj380NX0IPmhb8hq39DYRrI5fAcJKkFxFzAc4I4V2JwPcB9BkjtHidKpHxBk9JDCgMgzyLG8kcsYgOxfuwkGwcZCTECOwOI4oq3AoB1Jvq0petpDucmGSo5PPHbeYUzwh3aHzz6NZe5LeZCwmwsbvhH-lbkkwXV0AMCaFd3zOxnXEw8igZEIFTwaZVdTfCpeuSTmMJRYabhhPQP_9liG39JGAezayIl12u-nNG9lz0FePgrilxyDIKQU3UfSfImj9kOGv421PHr_sncbc6U4JbXKO8ML0nDmzK8betPoJEYIBBytD7Ntty8iOD3NvCK1eo4YBaBeqsK0LPTplWWcehGnY8KyoYPecqs-rKYNzWksh4VEiTeTruKV73Lw3BKM0sl66IWz6U7znGIm3fBToCfE_NRXDHQK0iRHZps4peqrJwR27W5VEfd87OvHCNVeKLqXgBvJHDnsGW1Yb9-2ny-I5QmvV53_8hbYiE7FOTiWCUG5dKro6D5dyrfHb7GG7pUYewoYEyptZc2O-nBwyDei3VDfAPcy0uoYWOeUW5HOuCkmx5LTD2Px8b16ytyRm61VxPDXy3zbWOEDG-nHMaju6LXdkbD1P472kKLuyANdUGOzCP8TLAMWubRpECBYeA4u9VY-22bDmG-C3moLAXnhAlPhaAQYMc_EPRC8L9CEK5SxV1E2-3M75UKLM2iWXT_rVfCgYclLKh35LJkcoTlWKuEe14MSBGkf0CROzug-_ZevyngqfRYk81Ld8voHl-sYkFJND5C5hxQC3muxm4UKK7V98GohIVuCHzsCSrhi7v3DnvU_pEB2_4HVsDzAs-yHXHETmHMIGsdjMTJAk8RG0_1192ysmy_V5KsahV6xwjnZQ6vhABQ5LuMtj2hZl5UCcWL4bkyWX3ipCw36Gx3rNGU1cKZRMcSMPxk&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=3509537014692318700&adk=1877897943&idt=84&cac=0&dtd=6
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
9cd862025ec7b9354cc0ce3c0399590981967c494e207769b7acf449c6d3c70c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
br
x-content-type-options
nosniff
server
cafe
content-type
text/javascript; charset=UTF-8
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
37487
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
truncated
/ Frame 6EA9 		212 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
9dee45ec3bd288d8460f7a78a5a365ee8a371baa5b93aea6ff5cd738af6da683

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
sd
us-u.openx.net/w/1.0/ Frame 7A15
Redirect Chain
  • https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_dbm
  • https://us-u.openx.net/w/1.0/sd?id=537072991&val=CAESEES5cQAJqJAxv89z2gU8ufI&google_cver=1
43 B
115 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://us-u.openx.net/w/1.0/sd?id=537072991&val=CAESEES5cQAJqJAxv89z2gU8ufI&google_cver=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Protocol
H2
Server
34.98.64.218 Kansas City, United States, ASN396982 (GOOGLE-CLOUD-PLATFORM, US),
Reverse DNS
218.64.98.34.bc.googleusercontent.com
Software
OXGW/0.0.0 /
Resource Hash
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
via
1.1 google
server
OXGW/0.0.0
vary
Accept
content-type
image/gif
p3p
CP="CUR ADM OUR NOR STA NID"
cache-control
private, max-age=0, no-cache
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
43
expires
Mon, 26 Jul 1997 05:00:00 GMT

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
text/html; charset=UTF-8
location
https://us-u.openx.net/w/1.0/sd?id=537072991&val=CAESEES5cQAJqJAxv89z2gU8ufI&google_cver=1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
295
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
cm
us-u.openx.net/w/1.0/ Frame 7A15 		43 B
305 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://us-u.openx.net/w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
34.98.64.218 Kansas City, United States, ASN396982 (GOOGLE-CLOUD-PLATFORM, US),
Reverse DNS
218.64.98.34.bc.googleusercontent.com
Software
OXGW/0.0.0 /
Resource Hash
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
via
1.1 google
server
OXGW/0.0.0
vary
Accept, Accept-Encoding
content-type
image/gif
p3p
CP="CUR ADM OUR NOR STA NID"
cache-control
private, max-age=0, no-cache
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
56
expires
Mon, 26 Jul 1997 05:00:00 GMT
um
sync.teads.tv/ Frame 7A15
Redirect Chain
  • https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm
  • https://sync.teads.tv/um?eid=3&uid=CAESED8171g3RFO3gyltmRHlVEM&google_cver=1
23 B
165 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://sync.teads.tv/um?eid=3&uid=CAESED8171g3RFO3gyltmRHlVEM&google_cver=1
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Protocol
H2
Server
104.102.35.84 Frankfurt am Main, Germany, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a104-102-35-84.deploy.static.akamaitechnologies.com
Software
akka-http/10.2.10 /
Resource Hash
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

expires
Sun, 09 Jul 2023 17:14:45 GMT
pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
cache-control
max-age=0, no-cache, no-store
server
akka-http/10.2.10
content-length
23
content-type
image/gif

Redirect headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
server
HTTP server (unknown)
content-type
text/html; charset=UTF-8
location
https://sync.teads.tv/um?eid=3&uid=CAESED8171g3RFO3gyltmRHlVEM&google_cver=1
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
281
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
um
sync.teads.tv/ Frame 7A15 		23 B
165 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://sync.teads.tv/um?eid=3&uid=&fb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dteadstv_dbm%26google_hm%3D%5BVID_B64%5D
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/xbbe/pixel?d=CMGuFBCz0J0CGP32s-cBMAE&v=APEucNWXoX0KPdqEr8IUlVHVfV9FJF_UomatMMwjYCWOSZ9Vnz8Ip1n07wSmI-8iNiadHrqEvz8yxExTLEN_71BlaXc8cd0Y28AiPx-dwn2PAetGnB2BxXlDk8OxoD1VctCzLuD1hkjqGK743xi-AqWRuHaAF5ai8R8Iy9zWzDZR7pXXG6E0rY0
Protocol
H2
Security
TLS 1.3, , AES_256_GCM
Server
104.102.35.84 Frankfurt am Main, Germany, ASN16625 (AKAMAI-AS, US),
Reverse DNS
a104-102-35-84.deploy.static.akamaitechnologies.com
Software
akka-http/10.2.10 /
Resource Hash
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

expires
Sun, 09 Jul 2023 17:14:45 GMT
pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
cache-control
max-age=0, no-cache, no-store
server
akka-http/10.2.10
content-length
23
content-type
image/gif
css
fonts.googleapis.com/ Frame 49BE 		14 KB
1 KB 		Stylesheet
General
Check archive.org
Download Go to
Full URL
https://fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:829::200a Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
ESF /
Resource Hash
aade7746342f608807b7eb107059c842fe200e1ff09e146db822250055cecaed
Security Headers
Name Value
Strict-Transport-Security max-age=31536000
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

strict-transport-security
max-age=31536000
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection
0
last-modified
Sun, 09 Jul 2023 16:06:22 GMT
server
ESF
cross-origin-opener-policy
same-origin-allow-popups
x-frame-options
SAMEORIGIN
content-type
text/css; charset=utf-8
access-control-allow-origin
*
cache-control
private, max-age=86400, stale-while-revalidate=604800
timing-allow-origin
*
link
<https://fonts.gstatic.com>; rel=preconnect; crossorigin
expires
Sun, 09 Jul 2023 17:14:45 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame EEF1 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=running&ord=7249947715038&version=m202301230201
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame EEF1 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=tlbr&ord=7249947715038&version=m202301230201&ct=76&x=1&cor=8042742414839227000
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
ad
googleads.g.doubleclick.net/dbm/ Frame EEF1 		87 KB
37 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BIoyTskNdocbat-rbngwu9UArM1Dqkio5wMbJlO7RX9ikboyKL3-aHicAUeT2faKBSxtyAVckWokWQi0aRS99KdtWldQ&cry=1&dbm_d=AKAmf-C5OF8AxBd44qbI_VOreGssvaQvPRqh5xNZ1LhpEr3yVMSzPCmjTdfmAL1ML1ArNjOW00kWtQY9mHFjhH0cVsjOGhQTDddbEEWsn4ePrGaTva8ePIkjogJZqna2jK_jzeZG_upKFCRQBYyKnvkOStgxQO8U4_RNxnyF-bLRb1KiWJqE5zMVvfwpii76OoAqGfQOtt-gG0hA03Z-p7Okk_2WBa7PMZm-XIBTN89elDYkWOMdTL4Dc9yNP4DdS5VOf5LlrsKQPP-by-hoUhMhNIevpWL3M5DieJhgopyWb0xbHwknVA4--Sq2qxwejkq_iScLLsJO8GdxGwTNqvfyiM1KIuUVxe3gRrEYzTzhnnDfqMXn4Fm1HsekVin6H_PuaMy5cKjy7v_OFEnDFF8y-QyLF2dt-6fTMFgqikZ-IyRFVJincere8JNOaCeDg_SUNEQgLeJZzrGV4RcKaTLF4Xqhe7rAvPJQ814PFqZLx0h_nbZxA2IQbfF4lz9g4YXH8R_Z7-TEHNrMZJPbHUm33Y0rwQtqoo_qRrkWBhTkUkZluWAgxUEjUaySDNYXviriwO052wR1MEUJ0hzHC6pk77XDbJx1seGEWr46TSUH6-wUcEtpBKGD2KbGpx__NVOi18tuhNr56JE1E8FZoSiU-Fwb9U79H5krdR0FEvWtnABzJlro_y1pV4lKlID52cgYPsA2AJjLvGyoJseqqgsVUTKRI87rJCWA5qb9_DmmZ9npRML1KxMQ_hrcHk0I8mBy0CCUh-rLIuuBJWfSW3NsdkuicZs8P52QrQCBSlWjA2Fz0Z-U15qNCLHtnKpZEXRTNeCwHqyEXIPOh6sXoDBblR7euW3xARCuM3vedIhg2jdFfy0ypvdhAWuRs9DfOzPPpESNrQHIDOqNS6YXY45lyzCXRpxJZ_qSzdjiXZJqd5XS73wfV_oxPj0-y_lG1RF3PtMLqnkTVtiqEXtbxMb3BuabOi3HfHohd796Jsw7zI-_eu2_LQ6t-AQctr1UfI_60XNgX0QI4u49x7AkOfu7FqGEbUHcRxNA8ZYPax9RkYKNeOXGxZa5pwgqX77-Hhk7jWvNXgB6Us2khWPkpCmTwwrsQ6HIxch7S5YP2r0ueluMvhIWWo1dGieR7jm5A4ltkn5aAQzTwlG7WHk5tu_41OhNef-TG3TA9rVPsQDjH_oVJBfJiL38yjBLw_cBxTqAPgy2uK45D3q0kRdgXfEGNkB4eYxXU680Z-8TFUFZaIHcFbDoI5D6apPCTZSirK2uqvZ3zgwIP0S1EDQiy6_FcBvcUyeQQEqw-DJN-X0muoxcFEjOtrEWZHQBMYCuR54Gv2J8hbNpZN1AxsxVLfKDRr7k3Hp-0Iu7SOv6q0R90MyvMIQJiSW0oagg_4R6YGdemzoR-HPS6ORkcs8qemtc_Ot124QGEPdiPdymVUxvzj0YFXjIgTFpV6NaC57QmtEovfD-30fxJ0s4drMrpVVL5OuT8VomxuPvcuUcT1guQwguJlDvqEJK87bOy7X86AhAh9pVxQCdQPrddyao4v-EgdldTElNBHEjID8REkoJExd7lOxMcB9_bYpDo5xor9IIMoWB__U6NKbmrYV4_JtLOcHccGW5Uq_gmxSCXllY7u1IegnRWk5BKZ5aC-WB04w9jqmkoVgDtbCLVZ4mBHgDhHaEVSFj5EBbietNQDCQHkcNZ694x5quKyOt3AphsVf-oIPIYjAJAglR2vVczdG4mYck3t5td7muhRpXb8l7zMUpS60nPhc04rguGGA67iKxhLsE9zeRuzjQk3unBgHiZet2sU38N5fwaKde1tECQAb9piXdiUQPSkUjARG8vxVHdLWcIlUt0HEBPsFY6swBxhcQTJeiz9y84RzX31s8u__Ek9-TQn-RLqd0MB8drWrJVI4XBRivr_7z7sWjiK4jVePaT3ZfCKVVF8fbQP91RUQGrBA3TghmeyHNNVSDCV71FR1HnGTyU25mA8AAT1bSkqFpGMmAwK2AX0U7hkTQQzl6Q2WS5TVJVUvT1-qb_4accSc181XOVmA7jmY6D0CtHZY-LjtCi0pOef7HYogDnk3uIFkAPldHBAd4dP2tZgEfQz1gCC-UmBHWUCM1G851dXvWsNuPfknIDmqsiM_KQaQP9TPKl0CumJTTxVHYZeL8fZJBNK37P9Ooj_iUFjNrMGcOXytjP_epCcmQSEleK6DGcylQuIVmb_ffATnL-Gj0RtsxQnbXEp5pb879jBxKxc3CE6IhtyUX8hPZ6h3SIabFBOpB7ZRYZTlYfjrLGW7ZqhYJ3sxCyXN_jfSrKn9Zg3c85vWOKvedrhg_1UL1GrmL4Ib2scNyXp-W0lHc8SSbJ-19wfXTLvywGi0tpKAtp467q2QBi-MhRXaOjsrE8pf2F8guphhrcky6hg3rzxLhChwWL1Eq5AUAsgJONOWOkwc6bjjmnOwy41hFL3cdqrZhgjANoK8knaAcGikmMKd0sVcCkh45PnsxachEeIfHiJlzWcPu_XsyR3UgVLsAePeVs7c1ORak25qLN3qRm6w_2OXQYsIvZsgdQ-op20iYY2Na3D6LbzDphOYIm1O9nT4DgBUEVrd8f35MV9LdrgU755vOao8awbdowQv3ApE5o9O5zXyf03eCYivbnC2UPQaGNub7Y_17qQzIjMSYpWWaYlskCZRVZKLbigfmmrdIeZPCL8fH69RsXVFpUJa7fVZN-S4QhBgna3Q0Qx7_taB5n0-vvDM9ZCFFBdwru6qAj0qa03HerUGn5HK02EpJ4BPpjRWoregBkrE9cjv91TdmdPHs8YrDzC18kJxcjOikrvlI8G5jIoUTp-d6-ybghOzyaKDReSlNLPyLh6nlK3oJ9nNzgjYKPRuDV0NFeugXBzL4QlOlmmiKjuju4MZmiEUwQDy1yFaDis7Rak8e3LMrdwecnzcJDiYrlHj19JdPlKxEOWTuCvxhObvnYZQpAd6ME6pXgmQ3sF-9XLcC_FllE6OS5THwG7PuIjw3mR0vRvMWooDaXxa_3JXbLBGzRPJILi1FZEaIupCePo5L0AwQ4bxJRf735eljJejGhnAK7ie1r1sQIUdqfH2JLxjT6zvjbIWsFiqK7KV_XBn6PIVCm0JdG_cdJLhFW6E8vdQ0XWyo4uWkP841HSAxQVlHJshQ-VpIRzNHoRLQw81U9dEQ-C4CdrEGj0Ngfqz-m-ctr86I-QVzGihFEt7jq57mTbKCzjBP5Dq_0hG8FHcnFZZ0fiLTn1GGX712EVbXsnpijdmLKz-ZkezR75LH7qvkYviRhPvbueeZwUp8MtLiVsBY7SkUDmDUTI8SzHJKqju_EGIFZ080FsX5MwXqDE14A3e9Y2MllTgNZPqspg8vaiIhb1-iBu90iIz-AwErE-bP0GXIj-orfTFUilerRdSdeAnlbvTLH0TO3aKWUL-lqnDNG0K3tUkE1HWaKDfLOPJkzV5j32MrKbYJmFjcNxmDiDPWlat9Pmo&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=8042742414839227000&adk=929882891&idt=129&cac=0&dtd=3
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
39f38575c14cbd49463bc9c01ca6fdae7e27d117cc3f6ddda40bd884a07571f3
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
br
x-content-type-options
nosniff
server
cafe
content-type
text/javascript; charset=UTF-8
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
37460
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
express_html_inpage_rendering_lib_200_278.js
s0.2mdn.net/879366/ Frame 54A5 		111 KB
39 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_278.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
1642dd5dc126df4feff2255cba0988528507973d842d0a73331a5873f6b9d4e5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Origin
https://googleads.g.doubleclick.net
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:52:54 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
12111
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
39806
x-xss-protection
0
last-modified
Tue, 14 Mar 2023 18:44:05 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
text/javascript
access-control-allow-origin
*
cache-control
public, max-age=86400
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Mon, 10 Jul 2023 13:52:54 GMT
omrhp.js
pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/ Frame 54A5 		11 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/omrhp.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-CZdICBlSTaNiGTfAqP5yGes1EkX9cnAxbZE9ba1a6g-th7AmM5RitgY_ZwhKlQ6n9NPiqZ_uF2FZIWeVme6yFBq9vy2g&cry=1&dbm_d=AKAmf-BM29w0Vt_nWbh7vIVSBBMwaW54cYx1ZTWgQa-kU3NQ2TxGxb9Y2JPj8_XtHZgSB6LYgawW7mwggUNy1mkdaPzGT7DBM8C3ZNjdJpkfmqB0sLwbk8sLqVtwdLFfUo2Wuk29XwWOATeEzDwoScrXZaWt-ePq-hXETUaaAcHBiEW5IQWHBg_Ha4OHWWGN3gGDYBbC9lH9rtUSAWqE5wUfw3UKDE3nI6Pd9-G1BSyf-QIDt9hq91BoeLJhaeDQFY_Lzx74FW0MyscG6RPDgGasDZrKlPCmmgl5by1c2xP9Ux9TEvlOsz-OW9S-i8qi-b_Hz_3w8f9lkJ0yAunTIbOYoHpJmjq4SYhSksPb4OpehsJYWojDdliLDCSovaLahrJt5UlmBQn-LmX2kengocf5GiahWQIhwVdFZ4FWgKfKF3kG9Vz4MOgcFcRzKgZZC2b2EyeycFw8oEU3YVQt9JgJIDljYAIQsqUCZ8_BH7p5r8p8WXUveEAfWagekrK0zilzqQ-o73a3zOxAjte8abq9sf7yOYQpI3PpSn_PD8z2OAfizzCPAo5_Fhr14-T_YrExbO-oKmKGvGIeMYiplGGKC6o-VQUaL-KMMVi-XcnwSgC0aMVxbFPZtWUldVVRmVQjMyi_IXdn4n5g0QfuKrDBs7P2Z7LXbtA5i_k6c75x0qKXMAIMEjrvniPINP4l0cOANSDi2p3q3htAUeEzWVbz5_oIo45_DSub98cRnpXZLp82Qbk3bcMvnbvw0XknNe65b3n5NS2r5soikb2-i-Yp16C3NNwfq3elacTdFLDF7z9h3CJOLQeDi2QZSzp0DWVrey87ItKNfD6sN7HETyCwcVwpHsL9G_Jbt3NHnPWLjqULgTFoY_E6EHAMvH7NdSk08ytSJtZ2Zx6ZnrxaGMyY8qWc_Vy_4w8H9BSydAMTTbnW9pzMZ0JoHfRG6GiWN7w1QrBKM9oMmGCG_suRXzQg4KJy4fGwH3truocuj3IXphbDVuxj6kWRixyvD_XLGI2Q-HkuMGl9t1-DOBG87PnuPqIRyRb5Z-OxOX3EFgGm-_F6OVl0kel_L5cbaSIonDbNKbGh5XegqbUCdwQZJ42lZsYll66pDR5Oj8pQyaW3wKYVvuYv84HzaluNyDPtzcwuilS7geZ6y7QRFRuyik5iQMOvknnAsIbOFT6xX4Nr-E9UNQhH5viS5XWi-lKeZwBob0TIBUVpPAKhPJkC_798EbLg0vfMcI5Az_364NLABvJwVCyDTWVxDWDu1VjYVPQofaan1VNC5TPpbiSNctVgDKQ4c7HpQFJVqztPUo9KdAOnBMpOO92A7ySw2rPMZ052WwJDjny-MQSnSESdJDepzCwILTm_8v2j72IhsHtce8hNytyF54y4W7BwRrfYdQOvTVXv1kw_9icSvp1ypgtE2m_TizWc0opO8XoW4fstHJIJIDDLI5CByG14npikl67Y5FVpBNuzEfGqVrv7lJ0sfRRTa2CYX8jIJiINPAHb4YYBiUlVYd8jJLh7J3eMYIb9xqLDtvBwF6X63q8V4vLjtqSSpO_JApDIevi0c2H1N9Swn1Vxeu-RmoO07rdhrxSMv680oD-FN0RpSD6WIF3INnNSAsQMB2VnXrEDyUK2tLwQjnhrUhECx0mQT5Z0NQfuKr0B4qk3bmAjRZ-cvn0r892jBYfsGlE3HDQTk5AaOqcHR_uEd6wYcxsqNMbKf5y7CQjTLRpl6GIP70IWVa-K0uMRLfEx-XeV0Vgio-INH29fMYoiqH9XGU2UXE5MKhvIZKQsg-naLIzdZ6tItXAmi6siFlgfmy7C9A_GwL84rScNp0zqNQUi6mot9sbC8hrcHcIAx6ktMYcRvdE7TeGlZLfZ_9mmbeKzTA9MqtR2VLNUlVShKARi7JgpnWgWsYJYGpEMPr-z4ulvGcDcAPX2e_jfsDw7Pt9R_8ze7_634-gaP4R4xiFydzDKEDB_qzy1CNzdjZnrryKNRpbwZ69A9kTMIm9gFJM1OK4iA4N-7tKz091IybK9HSXy7mgCuml4RqoNx3cnYDojRbcO32mSh-2LQjOFLsuPl3YU5-nNQBxl0CwDxE0qxzwu5ex_mArYs96N6R46K5Yqyr8y4MQLbeczA3upBj_m11j1mxPHJyMKwgAfJ0AWe_DGW9kmb8jUqQbKO_yGmJpT0Z0X2PKgd9Vc_yXdJdPkdNmZXi2EH7OpLBNtn6R-7-dG_7nOcN4WurVCl1qdNvG1AiEwBt487xknE4LaBQFbTk9KmFA5_Jx4dPNo_4FdAZrjsZNzY2ArA-NG6vSH1s8R4gMwrHb03l---hroFe44L6sb95PiscHzt5SJJZ9uUGp38ADL75Uio-7g8QH1DXH8-mi9z0RQaVKq74QISU9Dgaf_kdW0J4ecRWOa86aHOS0XUrWRtZONCgLSFvgaTH4XcyU4u043OtXJXsipEfrhpXMzI9aU9DyD43IjtMLmO5Q4Y4Hz-OimR39Eb54NCgKOkX7Lg8oB0emXmLmtJ_66c-aJmo_XWbH43Y1Y3LX29JlO8cEDWqFa-bZVO4LDwQ1DIj380NX0IPmhb8hq39DYRrI5fAcJKkFxFzAc4I4V2JwPcB9BkjtHidKpHxBk9JDCgMgzyLG8kcsYgOxfuwkGwcZCTECOwOI4oq3AoB1Jvq0petpDucmGSo5PPHbeYUzwh3aHzz6NZe5LeZCwmwsbvhH-lbkkwXV0AMCaFd3zOxnXEw8igZEIFTwaZVdTfCpeuSTmMJRYabhhPQP_9liG39JGAezayIl12u-nNG9lz0FePgrilxyDIKQU3UfSfImj9kOGv421PHr_sncbc6U4JbXKO8ML0nDmzK8betPoJEYIBBytD7Ntty8iOD3NvCK1eo4YBaBeqsK0LPTplWWcehGnY8KyoYPecqs-rKYNzWksh4VEiTeTruKV73Lw3BKM0sl66IWz6U7znGIm3fBToCfE_NRXDHQK0iRHZps4peqrJwR27W5VEfd87OvHCNVeKLqXgBvJHDnsGW1Yb9-2ny-I5QmvV53_8hbYiE7FOTiWCUG5dKro6D5dyrfHb7GG7pUYewoYEyptZc2O-nBwyDei3VDfAPcy0uoYWOeUW5HOuCkmx5LTD2Px8b16ytyRm61VxPDXy3zbWOEDG-nHMaju6LXdkbD1P472kKLuyANdUGOzCP8TLAMWubRpECBYeA4u9VY-22bDmG-C3moLAXnhAlPhaAQYMc_EPRC8L9CEK5SxV1E2-3M75UKLM2iWXT_rVfCgYclLKh35LJkcoTlWKuEe14MSBGkf0CROzug-_ZevyngqfRYk81Ld8voHl-sYkFJND5C5hxQC3muxm4UKK7V98GohIVuCHzsCSrhi7v3DnvU_pEB2_4HVsDzAs-yHXHETmHMIGsdjMTJAk8RG0_1192ysmy_V5KsahV6xwjnZQ6vhABQ5LuMtj2hZl5UCcWL4bkyWX3ipCw36Gx3rNGU1cKZRMcSMPxk&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=3509537014692318700&adk=1877897943&idt=84&cac=0&dtd=6
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
597e4ec7ca2b12f9150e02e04096849d6b06061b09c2d131f1d2225871eedfdf
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:15:59 GMT
content-encoding
br
x-content-type-options
nosniff
age
86326
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
4172
x-xss-protection
0
server
cafe
etag
16731591232229431525
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:15:59 GMT
abg_lite.js
pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame 54A5 		30 KB
11 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-CZdICBlSTaNiGTfAqP5yGes1EkX9cnAxbZE9ba1a6g-th7AmM5RitgY_ZwhKlQ6n9NPiqZ_uF2FZIWeVme6yFBq9vy2g&cry=1&dbm_d=AKAmf-BM29w0Vt_nWbh7vIVSBBMwaW54cYx1ZTWgQa-kU3NQ2TxGxb9Y2JPj8_XtHZgSB6LYgawW7mwggUNy1mkdaPzGT7DBM8C3ZNjdJpkfmqB0sLwbk8sLqVtwdLFfUo2Wuk29XwWOATeEzDwoScrXZaWt-ePq-hXETUaaAcHBiEW5IQWHBg_Ha4OHWWGN3gGDYBbC9lH9rtUSAWqE5wUfw3UKDE3nI6Pd9-G1BSyf-QIDt9hq91BoeLJhaeDQFY_Lzx74FW0MyscG6RPDgGasDZrKlPCmmgl5by1c2xP9Ux9TEvlOsz-OW9S-i8qi-b_Hz_3w8f9lkJ0yAunTIbOYoHpJmjq4SYhSksPb4OpehsJYWojDdliLDCSovaLahrJt5UlmBQn-LmX2kengocf5GiahWQIhwVdFZ4FWgKfKF3kG9Vz4MOgcFcRzKgZZC2b2EyeycFw8oEU3YVQt9JgJIDljYAIQsqUCZ8_BH7p5r8p8WXUveEAfWagekrK0zilzqQ-o73a3zOxAjte8abq9sf7yOYQpI3PpSn_PD8z2OAfizzCPAo5_Fhr14-T_YrExbO-oKmKGvGIeMYiplGGKC6o-VQUaL-KMMVi-XcnwSgC0aMVxbFPZtWUldVVRmVQjMyi_IXdn4n5g0QfuKrDBs7P2Z7LXbtA5i_k6c75x0qKXMAIMEjrvniPINP4l0cOANSDi2p3q3htAUeEzWVbz5_oIo45_DSub98cRnpXZLp82Qbk3bcMvnbvw0XknNe65b3n5NS2r5soikb2-i-Yp16C3NNwfq3elacTdFLDF7z9h3CJOLQeDi2QZSzp0DWVrey87ItKNfD6sN7HETyCwcVwpHsL9G_Jbt3NHnPWLjqULgTFoY_E6EHAMvH7NdSk08ytSJtZ2Zx6ZnrxaGMyY8qWc_Vy_4w8H9BSydAMTTbnW9pzMZ0JoHfRG6GiWN7w1QrBKM9oMmGCG_suRXzQg4KJy4fGwH3truocuj3IXphbDVuxj6kWRixyvD_XLGI2Q-HkuMGl9t1-DOBG87PnuPqIRyRb5Z-OxOX3EFgGm-_F6OVl0kel_L5cbaSIonDbNKbGh5XegqbUCdwQZJ42lZsYll66pDR5Oj8pQyaW3wKYVvuYv84HzaluNyDPtzcwuilS7geZ6y7QRFRuyik5iQMOvknnAsIbOFT6xX4Nr-E9UNQhH5viS5XWi-lKeZwBob0TIBUVpPAKhPJkC_798EbLg0vfMcI5Az_364NLABvJwVCyDTWVxDWDu1VjYVPQofaan1VNC5TPpbiSNctVgDKQ4c7HpQFJVqztPUo9KdAOnBMpOO92A7ySw2rPMZ052WwJDjny-MQSnSESdJDepzCwILTm_8v2j72IhsHtce8hNytyF54y4W7BwRrfYdQOvTVXv1kw_9icSvp1ypgtE2m_TizWc0opO8XoW4fstHJIJIDDLI5CByG14npikl67Y5FVpBNuzEfGqVrv7lJ0sfRRTa2CYX8jIJiINPAHb4YYBiUlVYd8jJLh7J3eMYIb9xqLDtvBwF6X63q8V4vLjtqSSpO_JApDIevi0c2H1N9Swn1Vxeu-RmoO07rdhrxSMv680oD-FN0RpSD6WIF3INnNSAsQMB2VnXrEDyUK2tLwQjnhrUhECx0mQT5Z0NQfuKr0B4qk3bmAjRZ-cvn0r892jBYfsGlE3HDQTk5AaOqcHR_uEd6wYcxsqNMbKf5y7CQjTLRpl6GIP70IWVa-K0uMRLfEx-XeV0Vgio-INH29fMYoiqH9XGU2UXE5MKhvIZKQsg-naLIzdZ6tItXAmi6siFlgfmy7C9A_GwL84rScNp0zqNQUi6mot9sbC8hrcHcIAx6ktMYcRvdE7TeGlZLfZ_9mmbeKzTA9MqtR2VLNUlVShKARi7JgpnWgWsYJYGpEMPr-z4ulvGcDcAPX2e_jfsDw7Pt9R_8ze7_634-gaP4R4xiFydzDKEDB_qzy1CNzdjZnrryKNRpbwZ69A9kTMIm9gFJM1OK4iA4N-7tKz091IybK9HSXy7mgCuml4RqoNx3cnYDojRbcO32mSh-2LQjOFLsuPl3YU5-nNQBxl0CwDxE0qxzwu5ex_mArYs96N6R46K5Yqyr8y4MQLbeczA3upBj_m11j1mxPHJyMKwgAfJ0AWe_DGW9kmb8jUqQbKO_yGmJpT0Z0X2PKgd9Vc_yXdJdPkdNmZXi2EH7OpLBNtn6R-7-dG_7nOcN4WurVCl1qdNvG1AiEwBt487xknE4LaBQFbTk9KmFA5_Jx4dPNo_4FdAZrjsZNzY2ArA-NG6vSH1s8R4gMwrHb03l---hroFe44L6sb95PiscHzt5SJJZ9uUGp38ADL75Uio-7g8QH1DXH8-mi9z0RQaVKq74QISU9Dgaf_kdW0J4ecRWOa86aHOS0XUrWRtZONCgLSFvgaTH4XcyU4u043OtXJXsipEfrhpXMzI9aU9DyD43IjtMLmO5Q4Y4Hz-OimR39Eb54NCgKOkX7Lg8oB0emXmLmtJ_66c-aJmo_XWbH43Y1Y3LX29JlO8cEDWqFa-bZVO4LDwQ1DIj380NX0IPmhb8hq39DYRrI5fAcJKkFxFzAc4I4V2JwPcB9BkjtHidKpHxBk9JDCgMgzyLG8kcsYgOxfuwkGwcZCTECOwOI4oq3AoB1Jvq0petpDucmGSo5PPHbeYUzwh3aHzz6NZe5LeZCwmwsbvhH-lbkkwXV0AMCaFd3zOxnXEw8igZEIFTwaZVdTfCpeuSTmMJRYabhhPQP_9liG39JGAezayIl12u-nNG9lz0FePgrilxyDIKQU3UfSfImj9kOGv421PHr_sncbc6U4JbXKO8ML0nDmzK8betPoJEYIBBytD7Ntty8iOD3NvCK1eo4YBaBeqsK0LPTplWWcehGnY8KyoYPecqs-rKYNzWksh4VEiTeTruKV73Lw3BKM0sl66IWz6U7znGIm3fBToCfE_NRXDHQK0iRHZps4peqrJwR27W5VEfd87OvHCNVeKLqXgBvJHDnsGW1Yb9-2ny-I5QmvV53_8hbYiE7FOTiWCUG5dKro6D5dyrfHb7GG7pUYewoYEyptZc2O-nBwyDei3VDfAPcy0uoYWOeUW5HOuCkmx5LTD2Px8b16ytyRm61VxPDXy3zbWOEDG-nHMaju6LXdkbD1P472kKLuyANdUGOzCP8TLAMWubRpECBYeA4u9VY-22bDmG-C3moLAXnhAlPhaAQYMc_EPRC8L9CEK5SxV1E2-3M75UKLM2iWXT_rVfCgYclLKh35LJkcoTlWKuEe14MSBGkf0CROzug-_ZevyngqfRYk81Ld8voHl-sYkFJND5C5hxQC3muxm4UKK7V98GohIVuCHzsCSrhi7v3DnvU_pEB2_4HVsDzAs-yHXHETmHMIGsdjMTJAk8RG0_1192ysmy_V5KsahV6xwjnZQ6vhABQ5LuMtj2hZl5UCcWL4bkyWX3ipCw36Gx3rNGU1cKZRMcSMPxk&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=3509537014692318700&adk=1877897943&idt=84&cac=0&dtd=6
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
484eef6459e8a58c19115f287339366d82a7c2beeb7a35c7e16789b592515aec
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:16:06 GMT
content-encoding
br
x-content-type-options
nosniff
age
86319
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
11545
x-xss-protection
0
server
cafe
etag
12064860844701496540
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:16:06 GMT
UFYwWwmt.js
tpc.googlesyndication.com/sodar/ Frame 54A5 		41 KB
13 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/UFYwWwmt.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
5056305b09ad6474ea540f796c79be51d6b8e96043cb3d7bc4ef774e56765f4f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 13:52:35 GMT
content-encoding
br
x-content-type-options
nosniff
age
444130
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
13692
x-xss-protection
0
last-modified
Sun, 25 Jun 2023 02:58:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
vary
Accept-Encoding
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
expires
Wed, 03 Jul 2024 13:52:35 GMT
adview
googleads.g.doubleclick.net/pagead/ Frame 6EA9 		0
19 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://googleads.g.doubleclick.net/pagead/adview?ai=CAk-nBOuqZLjLCIa41fAP6PWa-AvplJjUac6jp7iaDJKOpqeWGxABIOeloQVgkYSAgIwYoAG68ZShA8gBCakCU5nyf6UlgT6oAwHIA8sEqgTjAU_Q-egoAeC6shjrYGaT-Caf_TH-4e9xvxlGoCW59jI7JiEruAhMEpvls5cmEbwNMT-yL-nWS30pr2zSZXbVcz5IQpt3pujNCwTFnVouCoZWlvrUN_zJZxyJ7f0VAMxMFrSy4c5s7cSdTKh9BbQqXbfUkTTZ8mkvlTgvv3H2cb-L_1fekGZs2oqJ6P4fCKUuqrrq0VZSj4ebAtAus2uvu_bw9P-MCZDL0zixwsBn6l9BTEOWp7OLQh5zIx7Bx4p1a8de3V29J40JQSOCNLlCPuxe9sVq57KfqD4bB1K7hfyyecnfwATQuLjIlAOSBQQIBBgBkgUECAUYBKAGLoAHro7rXqgHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB6a-G9gHAPIHBBDP2QHSCBYIgOGAEBABGB8yAqoCOgKAQEi9_cE6gAoByAsBogwIKgYKBMOwsQLYEwqIFAPQFQGYFgGAFwGyFxwKGggAEhRwdWItNzY1MjExMDYyMTczMDQwORgA&sigh=lh7gPSMGIqE&uach_m=[UACH]&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&template_id=494&cbvp=2&vis=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

content-security-policy
script-src 'none'; object-src 'none'
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
server
cafe
content-type
text/html; charset=UTF-8
access-control-allow-origin
*
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-credentials
true
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 2F51 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66964
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
express_html_inpage_rendering_lib_200_278.js
s0.2mdn.net/879366/ Frame EEF1 		111 KB
39 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_278.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
1642dd5dc126df4feff2255cba0988528507973d842d0a73331a5873f6b9d4e5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Origin
https://googleads.g.doubleclick.net
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:52:54 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
12111
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
39806
x-xss-protection
0
last-modified
Tue, 14 Mar 2023 18:44:05 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
text/javascript
access-control-allow-origin
*
cache-control
public, max-age=86400
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Mon, 10 Jul 2023 13:52:54 GMT
omrhp.js
pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/ Frame EEF1 		11 KB
4 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/elements/html/omrhp.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BIoyTskNdocbat-rbngwu9UArM1Dqkio5wMbJlO7RX9ikboyKL3-aHicAUeT2faKBSxtyAVckWokWQi0aRS99KdtWldQ&cry=1&dbm_d=AKAmf-C5OF8AxBd44qbI_VOreGssvaQvPRqh5xNZ1LhpEr3yVMSzPCmjTdfmAL1ML1ArNjOW00kWtQY9mHFjhH0cVsjOGhQTDddbEEWsn4ePrGaTva8ePIkjogJZqna2jK_jzeZG_upKFCRQBYyKnvkOStgxQO8U4_RNxnyF-bLRb1KiWJqE5zMVvfwpii76OoAqGfQOtt-gG0hA03Z-p7Okk_2WBa7PMZm-XIBTN89elDYkWOMdTL4Dc9yNP4DdS5VOf5LlrsKQPP-by-hoUhMhNIevpWL3M5DieJhgopyWb0xbHwknVA4--Sq2qxwejkq_iScLLsJO8GdxGwTNqvfyiM1KIuUVxe3gRrEYzTzhnnDfqMXn4Fm1HsekVin6H_PuaMy5cKjy7v_OFEnDFF8y-QyLF2dt-6fTMFgqikZ-IyRFVJincere8JNOaCeDg_SUNEQgLeJZzrGV4RcKaTLF4Xqhe7rAvPJQ814PFqZLx0h_nbZxA2IQbfF4lz9g4YXH8R_Z7-TEHNrMZJPbHUm33Y0rwQtqoo_qRrkWBhTkUkZluWAgxUEjUaySDNYXviriwO052wR1MEUJ0hzHC6pk77XDbJx1seGEWr46TSUH6-wUcEtpBKGD2KbGpx__NVOi18tuhNr56JE1E8FZoSiU-Fwb9U79H5krdR0FEvWtnABzJlro_y1pV4lKlID52cgYPsA2AJjLvGyoJseqqgsVUTKRI87rJCWA5qb9_DmmZ9npRML1KxMQ_hrcHk0I8mBy0CCUh-rLIuuBJWfSW3NsdkuicZs8P52QrQCBSlWjA2Fz0Z-U15qNCLHtnKpZEXRTNeCwHqyEXIPOh6sXoDBblR7euW3xARCuM3vedIhg2jdFfy0ypvdhAWuRs9DfOzPPpESNrQHIDOqNS6YXY45lyzCXRpxJZ_qSzdjiXZJqd5XS73wfV_oxPj0-y_lG1RF3PtMLqnkTVtiqEXtbxMb3BuabOi3HfHohd796Jsw7zI-_eu2_LQ6t-AQctr1UfI_60XNgX0QI4u49x7AkOfu7FqGEbUHcRxNA8ZYPax9RkYKNeOXGxZa5pwgqX77-Hhk7jWvNXgB6Us2khWPkpCmTwwrsQ6HIxch7S5YP2r0ueluMvhIWWo1dGieR7jm5A4ltkn5aAQzTwlG7WHk5tu_41OhNef-TG3TA9rVPsQDjH_oVJBfJiL38yjBLw_cBxTqAPgy2uK45D3q0kRdgXfEGNkB4eYxXU680Z-8TFUFZaIHcFbDoI5D6apPCTZSirK2uqvZ3zgwIP0S1EDQiy6_FcBvcUyeQQEqw-DJN-X0muoxcFEjOtrEWZHQBMYCuR54Gv2J8hbNpZN1AxsxVLfKDRr7k3Hp-0Iu7SOv6q0R90MyvMIQJiSW0oagg_4R6YGdemzoR-HPS6ORkcs8qemtc_Ot124QGEPdiPdymVUxvzj0YFXjIgTFpV6NaC57QmtEovfD-30fxJ0s4drMrpVVL5OuT8VomxuPvcuUcT1guQwguJlDvqEJK87bOy7X86AhAh9pVxQCdQPrddyao4v-EgdldTElNBHEjID8REkoJExd7lOxMcB9_bYpDo5xor9IIMoWB__U6NKbmrYV4_JtLOcHccGW5Uq_gmxSCXllY7u1IegnRWk5BKZ5aC-WB04w9jqmkoVgDtbCLVZ4mBHgDhHaEVSFj5EBbietNQDCQHkcNZ694x5quKyOt3AphsVf-oIPIYjAJAglR2vVczdG4mYck3t5td7muhRpXb8l7zMUpS60nPhc04rguGGA67iKxhLsE9zeRuzjQk3unBgHiZet2sU38N5fwaKde1tECQAb9piXdiUQPSkUjARG8vxVHdLWcIlUt0HEBPsFY6swBxhcQTJeiz9y84RzX31s8u__Ek9-TQn-RLqd0MB8drWrJVI4XBRivr_7z7sWjiK4jVePaT3ZfCKVVF8fbQP91RUQGrBA3TghmeyHNNVSDCV71FR1HnGTyU25mA8AAT1bSkqFpGMmAwK2AX0U7hkTQQzl6Q2WS5TVJVUvT1-qb_4accSc181XOVmA7jmY6D0CtHZY-LjtCi0pOef7HYogDnk3uIFkAPldHBAd4dP2tZgEfQz1gCC-UmBHWUCM1G851dXvWsNuPfknIDmqsiM_KQaQP9TPKl0CumJTTxVHYZeL8fZJBNK37P9Ooj_iUFjNrMGcOXytjP_epCcmQSEleK6DGcylQuIVmb_ffATnL-Gj0RtsxQnbXEp5pb879jBxKxc3CE6IhtyUX8hPZ6h3SIabFBOpB7ZRYZTlYfjrLGW7ZqhYJ3sxCyXN_jfSrKn9Zg3c85vWOKvedrhg_1UL1GrmL4Ib2scNyXp-W0lHc8SSbJ-19wfXTLvywGi0tpKAtp467q2QBi-MhRXaOjsrE8pf2F8guphhrcky6hg3rzxLhChwWL1Eq5AUAsgJONOWOkwc6bjjmnOwy41hFL3cdqrZhgjANoK8knaAcGikmMKd0sVcCkh45PnsxachEeIfHiJlzWcPu_XsyR3UgVLsAePeVs7c1ORak25qLN3qRm6w_2OXQYsIvZsgdQ-op20iYY2Na3D6LbzDphOYIm1O9nT4DgBUEVrd8f35MV9LdrgU755vOao8awbdowQv3ApE5o9O5zXyf03eCYivbnC2UPQaGNub7Y_17qQzIjMSYpWWaYlskCZRVZKLbigfmmrdIeZPCL8fH69RsXVFpUJa7fVZN-S4QhBgna3Q0Qx7_taB5n0-vvDM9ZCFFBdwru6qAj0qa03HerUGn5HK02EpJ4BPpjRWoregBkrE9cjv91TdmdPHs8YrDzC18kJxcjOikrvlI8G5jIoUTp-d6-ybghOzyaKDReSlNLPyLh6nlK3oJ9nNzgjYKPRuDV0NFeugXBzL4QlOlmmiKjuju4MZmiEUwQDy1yFaDis7Rak8e3LMrdwecnzcJDiYrlHj19JdPlKxEOWTuCvxhObvnYZQpAd6ME6pXgmQ3sF-9XLcC_FllE6OS5THwG7PuIjw3mR0vRvMWooDaXxa_3JXbLBGzRPJILi1FZEaIupCePo5L0AwQ4bxJRf735eljJejGhnAK7ie1r1sQIUdqfH2JLxjT6zvjbIWsFiqK7KV_XBn6PIVCm0JdG_cdJLhFW6E8vdQ0XWyo4uWkP841HSAxQVlHJshQ-VpIRzNHoRLQw81U9dEQ-C4CdrEGj0Ngfqz-m-ctr86I-QVzGihFEt7jq57mTbKCzjBP5Dq_0hG8FHcnFZZ0fiLTn1GGX712EVbXsnpijdmLKz-ZkezR75LH7qvkYviRhPvbueeZwUp8MtLiVsBY7SkUDmDUTI8SzHJKqju_EGIFZ080FsX5MwXqDE14A3e9Y2MllTgNZPqspg8vaiIhb1-iBu90iIz-AwErE-bP0GXIj-orfTFUilerRdSdeAnlbvTLH0TO3aKWUL-lqnDNG0K3tUkE1HWaKDfLOPJkzV5j32MrKbYJmFjcNxmDiDPWlat9Pmo&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=8042742414839227000&adk=929882891&idt=129&cac=0&dtd=3
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
597e4ec7ca2b12f9150e02e04096849d6b06061b09c2d131f1d2225871eedfdf
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:15:59 GMT
content-encoding
br
x-content-type-options
nosniff
age
86326
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
4172
x-xss-protection
0
server
cafe
etag
16731591232229431525
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:15:59 GMT
abg_lite.js
pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame EEF1 		30 KB
11 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BIoyTskNdocbat-rbngwu9UArM1Dqkio5wMbJlO7RX9ikboyKL3-aHicAUeT2faKBSxtyAVckWokWQi0aRS99KdtWldQ&cry=1&dbm_d=AKAmf-C5OF8AxBd44qbI_VOreGssvaQvPRqh5xNZ1LhpEr3yVMSzPCmjTdfmAL1ML1ArNjOW00kWtQY9mHFjhH0cVsjOGhQTDddbEEWsn4ePrGaTva8ePIkjogJZqna2jK_jzeZG_upKFCRQBYyKnvkOStgxQO8U4_RNxnyF-bLRb1KiWJqE5zMVvfwpii76OoAqGfQOtt-gG0hA03Z-p7Okk_2WBa7PMZm-XIBTN89elDYkWOMdTL4Dc9yNP4DdS5VOf5LlrsKQPP-by-hoUhMhNIevpWL3M5DieJhgopyWb0xbHwknVA4--Sq2qxwejkq_iScLLsJO8GdxGwTNqvfyiM1KIuUVxe3gRrEYzTzhnnDfqMXn4Fm1HsekVin6H_PuaMy5cKjy7v_OFEnDFF8y-QyLF2dt-6fTMFgqikZ-IyRFVJincere8JNOaCeDg_SUNEQgLeJZzrGV4RcKaTLF4Xqhe7rAvPJQ814PFqZLx0h_nbZxA2IQbfF4lz9g4YXH8R_Z7-TEHNrMZJPbHUm33Y0rwQtqoo_qRrkWBhTkUkZluWAgxUEjUaySDNYXviriwO052wR1MEUJ0hzHC6pk77XDbJx1seGEWr46TSUH6-wUcEtpBKGD2KbGpx__NVOi18tuhNr56JE1E8FZoSiU-Fwb9U79H5krdR0FEvWtnABzJlro_y1pV4lKlID52cgYPsA2AJjLvGyoJseqqgsVUTKRI87rJCWA5qb9_DmmZ9npRML1KxMQ_hrcHk0I8mBy0CCUh-rLIuuBJWfSW3NsdkuicZs8P52QrQCBSlWjA2Fz0Z-U15qNCLHtnKpZEXRTNeCwHqyEXIPOh6sXoDBblR7euW3xARCuM3vedIhg2jdFfy0ypvdhAWuRs9DfOzPPpESNrQHIDOqNS6YXY45lyzCXRpxJZ_qSzdjiXZJqd5XS73wfV_oxPj0-y_lG1RF3PtMLqnkTVtiqEXtbxMb3BuabOi3HfHohd796Jsw7zI-_eu2_LQ6t-AQctr1UfI_60XNgX0QI4u49x7AkOfu7FqGEbUHcRxNA8ZYPax9RkYKNeOXGxZa5pwgqX77-Hhk7jWvNXgB6Us2khWPkpCmTwwrsQ6HIxch7S5YP2r0ueluMvhIWWo1dGieR7jm5A4ltkn5aAQzTwlG7WHk5tu_41OhNef-TG3TA9rVPsQDjH_oVJBfJiL38yjBLw_cBxTqAPgy2uK45D3q0kRdgXfEGNkB4eYxXU680Z-8TFUFZaIHcFbDoI5D6apPCTZSirK2uqvZ3zgwIP0S1EDQiy6_FcBvcUyeQQEqw-DJN-X0muoxcFEjOtrEWZHQBMYCuR54Gv2J8hbNpZN1AxsxVLfKDRr7k3Hp-0Iu7SOv6q0R90MyvMIQJiSW0oagg_4R6YGdemzoR-HPS6ORkcs8qemtc_Ot124QGEPdiPdymVUxvzj0YFXjIgTFpV6NaC57QmtEovfD-30fxJ0s4drMrpVVL5OuT8VomxuPvcuUcT1guQwguJlDvqEJK87bOy7X86AhAh9pVxQCdQPrddyao4v-EgdldTElNBHEjID8REkoJExd7lOxMcB9_bYpDo5xor9IIMoWB__U6NKbmrYV4_JtLOcHccGW5Uq_gmxSCXllY7u1IegnRWk5BKZ5aC-WB04w9jqmkoVgDtbCLVZ4mBHgDhHaEVSFj5EBbietNQDCQHkcNZ694x5quKyOt3AphsVf-oIPIYjAJAglR2vVczdG4mYck3t5td7muhRpXb8l7zMUpS60nPhc04rguGGA67iKxhLsE9zeRuzjQk3unBgHiZet2sU38N5fwaKde1tECQAb9piXdiUQPSkUjARG8vxVHdLWcIlUt0HEBPsFY6swBxhcQTJeiz9y84RzX31s8u__Ek9-TQn-RLqd0MB8drWrJVI4XBRivr_7z7sWjiK4jVePaT3ZfCKVVF8fbQP91RUQGrBA3TghmeyHNNVSDCV71FR1HnGTyU25mA8AAT1bSkqFpGMmAwK2AX0U7hkTQQzl6Q2WS5TVJVUvT1-qb_4accSc181XOVmA7jmY6D0CtHZY-LjtCi0pOef7HYogDnk3uIFkAPldHBAd4dP2tZgEfQz1gCC-UmBHWUCM1G851dXvWsNuPfknIDmqsiM_KQaQP9TPKl0CumJTTxVHYZeL8fZJBNK37P9Ooj_iUFjNrMGcOXytjP_epCcmQSEleK6DGcylQuIVmb_ffATnL-Gj0RtsxQnbXEp5pb879jBxKxc3CE6IhtyUX8hPZ6h3SIabFBOpB7ZRYZTlYfjrLGW7ZqhYJ3sxCyXN_jfSrKn9Zg3c85vWOKvedrhg_1UL1GrmL4Ib2scNyXp-W0lHc8SSbJ-19wfXTLvywGi0tpKAtp467q2QBi-MhRXaOjsrE8pf2F8guphhrcky6hg3rzxLhChwWL1Eq5AUAsgJONOWOkwc6bjjmnOwy41hFL3cdqrZhgjANoK8knaAcGikmMKd0sVcCkh45PnsxachEeIfHiJlzWcPu_XsyR3UgVLsAePeVs7c1ORak25qLN3qRm6w_2OXQYsIvZsgdQ-op20iYY2Na3D6LbzDphOYIm1O9nT4DgBUEVrd8f35MV9LdrgU755vOao8awbdowQv3ApE5o9O5zXyf03eCYivbnC2UPQaGNub7Y_17qQzIjMSYpWWaYlskCZRVZKLbigfmmrdIeZPCL8fH69RsXVFpUJa7fVZN-S4QhBgna3Q0Qx7_taB5n0-vvDM9ZCFFBdwru6qAj0qa03HerUGn5HK02EpJ4BPpjRWoregBkrE9cjv91TdmdPHs8YrDzC18kJxcjOikrvlI8G5jIoUTp-d6-ybghOzyaKDReSlNLPyLh6nlK3oJ9nNzgjYKPRuDV0NFeugXBzL4QlOlmmiKjuju4MZmiEUwQDy1yFaDis7Rak8e3LMrdwecnzcJDiYrlHj19JdPlKxEOWTuCvxhObvnYZQpAd6ME6pXgmQ3sF-9XLcC_FllE6OS5THwG7PuIjw3mR0vRvMWooDaXxa_3JXbLBGzRPJILi1FZEaIupCePo5L0AwQ4bxJRf735eljJejGhnAK7ie1r1sQIUdqfH2JLxjT6zvjbIWsFiqK7KV_XBn6PIVCm0JdG_cdJLhFW6E8vdQ0XWyo4uWkP841HSAxQVlHJshQ-VpIRzNHoRLQw81U9dEQ-C4CdrEGj0Ngfqz-m-ctr86I-QVzGihFEt7jq57mTbKCzjBP5Dq_0hG8FHcnFZZ0fiLTn1GGX712EVbXsnpijdmLKz-ZkezR75LH7qvkYviRhPvbueeZwUp8MtLiVsBY7SkUDmDUTI8SzHJKqju_EGIFZ080FsX5MwXqDE14A3e9Y2MllTgNZPqspg8vaiIhb1-iBu90iIz-AwErE-bP0GXIj-orfTFUilerRdSdeAnlbvTLH0TO3aKWUL-lqnDNG0K3tUkE1HWaKDfLOPJkzV5j32MrKbYJmFjcNxmDiDPWlat9Pmo&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&dv3_ver=m202301230201&rfl=https%3A%2F%2Fiphonetsu.com%2F&ds=l&xdt=1&iif=1&cor=8042742414839227000&adk=929882891&idt=129&cac=0&dtd=3
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
484eef6459e8a58c19115f287339366d82a7c2beeb7a35c7e16789b592515aec
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:16:06 GMT
content-encoding
br
x-content-type-options
nosniff
age
86319
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
11545
x-xss-protection
0
server
cafe
etag
12064860844701496540
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:16:06 GMT
UFYwWwmt.js
tpc.googlesyndication.com/sodar/ Frame EEF1 		41 KB
13 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/UFYwWwmt.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
5056305b09ad6474ea540f796c79be51d6b8e96043cb3d7bc4ef774e56765f4f
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 13:52:35 GMT
content-encoding
br
x-content-type-options
nosniff
age
444130
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
13692
x-xss-protection
0
last-modified
Sun, 25 Jun 2023 02:58:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
vary
Accept-Encoding
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
expires
Wed, 03 Jul 2024 13:52:35 GMT
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 52F8 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66964
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
Enqz_20U.html
tpc.googlesyndication.com/sodar/ Frame 96A7 		22 KB
8 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/UFYwWwmt.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
127ab3ff6d14112ae6aa40b68d9d3144748eda08efbc60a48a5be0555cf8622b
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

accept-ranges
bytes
age
265315
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
8395
content-type
text/html
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 15:32:50 GMT
expires
Fri, 05 Jul 2024 15:32:50 GMT
last-modified
Tue, 03 Mar 2020 20:15:00 GMT
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server
sffe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
load_preloaded_resource_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 49BE 		2 KB
892 B 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/load_preloaded_resource_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3ab7853ddfc8ef3468082187bff5636436df85cd9d1e54653530c018cf9d9280
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:01 GMT
content-encoding
br
x-content-type-options
nosniff
age
86144
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
865
x-xss-protection
0
server
cafe
etag
5051423035144352294
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:01 GMT
abg_lite_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/ Frame 49BE 		23 KB
9 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/abg_lite_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
02193fbcb11d960448e0fa887ff68d5ce73f01076893523fc3037e00a7149bc2
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:18:57 GMT
content-encoding
br
x-content-type-options
nosniff
age
86148
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
9104
x-xss-protection
0
server
cafe
etag
12939045362079141464
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:18:57 GMT
window_focus_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 49BE 		3 KB
1 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/window_focus_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
3164db7ef9efc7121ce85192340a653c6cb87e34caa05849c8fd47b7872f9fc5
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 13:47:39 GMT
content-encoding
br
x-content-type-options
nosniff
age
12426
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
1236
x-xss-protection
0
server
cafe
etag
15004572836499977866
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sun, 23 Jul 2023 13:47:39 GMT
qs_click_protection_fy2021.js
tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/ Frame 49BE 		20 KB
8 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/pagead/js/r20230705/r20110914/client/qs_click_protection_fy2021.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
5dff1c5185bfe98d10fd4b80ad1e2a04d57365a09e631840dce7fd3c79d19971
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 17:19:10 GMT
content-encoding
br
x-content-type-options
nosniff
age
86135
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy
cross-origin
content-disposition
attachment; filename="f.txt"
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
8314
x-xss-protection
0
server
cafe
etag
15120507268597061312
vary
Accept-Encoding
content-type
text/javascript; charset=UTF-8
access-control-allow-origin
*
cache-control
public, max-age=1209600
timing-allow-origin
*
expires
Sat, 22 Jul 2023 17:19:10 GMT
rx_lidar.js
www.googletagservices.com/activeview/js/current/ Frame 49BE 		179 KB
56 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:810::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
2bf958c032ce083c26ae980ed92d0360c971e87c183d6bd988e770fc172786c7
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
57266
x-xss-protection
0
server
sffe
cross-origin-opener-policy
same-origin; report-to="active-view-scs-read-write-acl"
etag
"1688579601580341"
vary
Accept-Encoding
report-to
{"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-type
text/javascript
cache-control
private, max-age=3000
accept-ranges
bytes
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
5f03bef6f00b7a8cf9d43233a2aa7e67.js
www.gstatic.com/mysidia/ Frame 49BE 		33 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://www.gstatic.com/mysidia/5f03bef6f00b7a8cf9d43233a2aa7e67.js?tag=mysidia_one_click_handler_one_afma_2019
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:80e::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
3a5fa3073b94aa8259d04802566504c897fd640610ea9f36654cfacc615f325e
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Thu, 06 Jul 2023 19:38:10 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
250595
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14183
x-xss-protection
0
last-modified
Thu, 29 Jun 2023 19:09:06 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="mysidia"
vary
Accept-Encoding
report-to
{"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-type
text/javascript
cache-control
public, max-age=7776000
accept-ranges
bytes
expires
Wed, 04 Oct 2023 19:38:10 GMT
data=FRRA2ncz_vnlMgQQ1p-nIbhqMu-e-oTGziLklPDZp3pcLPfVLlKLmVVM-xx_kR6FY_VB3nxiFFV4GK_zeaAgKw
mts0.google.com/vt/ Frame 49BE 		0
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://mts0.google.com/vt/data=FRRA2ncz_vnlMgQQ1p-nIbhqMu-e-oTGziLklPDZp3pcLPfVLlKLmVVM-xx_kR6FY_VB3nxiFFV4GK_zeaAgKw
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:80f::200e Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
/
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers
truncated
/ Frame 49BE 		297 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
65f22d8aa0690bd9cf8ffe5d68e5f6866b05ed8fc6f6c9083b996c1b3c4c75f4

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/svg+xml
truncated
/ Frame 49BE 		465 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
41b7f4ef86f2344e72da822fe79265700ff1bf3361450a02ab4397ff1a5eb040

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/svg+xml
truncated
/ Frame 49BE 		333 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
8b1ccf2d92e5e6235fcb23becebc6b98f5eba33abad7902763aa8b830be20bd7

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/svg+xml
truncated
/ Frame 49BE 		336 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
be3b15b1e68cf3e9278293d3b50491fe16c985e0ee5968852cac4fc062a7134e

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/svg+xml
Enqz_20U.html
tpc.googlesyndication.com/sodar/ Frame 078F 		22 KB
8 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/UFYwWwmt.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:827::2001 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
127ab3ff6d14112ae6aa40b68d9d3144748eda08efbc60a48a5be0555cf8622b
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

accept-ranges
bytes
age
265315
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
8395
content-type
text/html
cross-origin-opener-policy
same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 15:32:50 GMT
expires
Fri, 05 Jul 2024 15:32:50 GMT
last-modified
Tue, 03 Mar 2020 20:15:00 GMT
report-to
{"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server
sffe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-xss-protection
0
index.html
s0.2mdn.net/sadbundle/11174084048378699112/ Frame C750 		5 KB
2 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_278.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
bdc27878b5f32de72d2d1eaa37b542d323bbb748add968172df762bc0192d90c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

accept-ranges
bytes
access-control-allow-origin
*
age
256179
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
2141
content-type
text/html
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 18:05:06 GMT
expires
Fri, 05 Jul 2024 18:05:06 GMT
last-modified
Wed, 19 Apr 2023 20:15:54 GMT
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
server
sffe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-dns-prefetch-control
off
x-xss-protection
0
view
googleads4.g.doubleclick.net/pcs/ Frame 54A5 		0
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsscfZcKk3JZuxaVPfmUD8zbi2O1MkSza8GWy9fODbO16VJ-u05cp9nLp3-PujUiQdcpokG4R2TWZvIWddlbrDIII_jtRJRkA2jx7Fe6MipEsPslpJVRtoQcRcaIVtJCqQez8PZTAyCH5CuBwkzPi2gAi8epFslZrO1GElowLbXjlP9gUSttBdA8-doFsFs53QLWhFot2qqhIjtSfAS19knoz616a7QsL0g64XeZSF47M_94VVnQ3Wnz7YoDH-dnJPGNk1F0BZjx4iHPzDXFM8x0MUiCEi2kPg_O7-VZzZXawZPb1pxZuxiy48IUb1MaHPYWRGIpIiFsLzF42lpLkCHXpEEpl7wRIW1c-AMKENmmiT6QWSud9aoRTGzh2AvvIzwrPiUSBOcKEfet8MP0g9NwIE5g527nuyNfEV4Vm68zIFroxP5uhrWLWk0ULG-GcYC7ToIcjxSvtnKeZl_tHHQWoqtvfXZJSPTNLOTJbAmWmtPbwEkOvBTyR6VyYWaGZc8iRc9iHC_nlcLeS0JKuDL16ed0q_Dy54lqlncHQPAsVoEbS4MYo32lMnbO3jLOfMXnRgL5jP56f54y4f6gzz6w-h5jeQM3XHh2tMuFZTKgWfp_SBxaeySQuPGr2Y-YQTVw2sFnLupBBeLIUzhgGXqS6KBuXxqai-dMVXmvUu7abMcn56_kSVEBw6v-ucRGzXrc-OkSNr-_gVoyC7z1zNuPhg7cfAy16K_3m7ZxeBhuEct-p9365Hh_-5FX6k9XwjfG4mQSDhz0sFKp3ISw80D1KoBEk8fGH5zRoIFtTvZfm3TlqPXCkEfLKRaa5W2NouJshwph63kqa2QmcwZALIeEWN8QSTXpQoOHJX3jYaC5gG0BLlW3jSp3C7VXFBv3GmPASXZgNI1LteTehBXo6xqpmyE3gQz2ccVxjIjdIxBUYX4eDOF8be8YazJ_xf3wKQK5yQNga--HaWG6XJYVAX5rXMHftNTPxAmHtpmAUmjuZZJWrYPSqTGJlyhch2Cgu4soR_eEIdabwa57b6jTAcciBPF2ZKp98kLY4mESXpaypyB3HNs2GO8yIvo1tXpoqp1sstulsMb31iDuFAN9V0kcZv0Bc2uwgDqHQRDkp-rUenv_eAJpxGytOcy5D6nPjJcLst9K7q0E9UDc2kbIeaaFe2ebJMK5a9_3H67zfhKLXjTCHuwFQkMborj5gwOkkXnjLhaDmakBcbWRt1um30Shujh7DMYJ&sai=AMfl-YRhLpD4UgpMCPhaT_Rr36t3MoeNiqndSK85p9B7XJh9Ja02SF2Are_aHLkFCHo9RqJPaB-Eo2uO07FtTyC-5pAo9TyIX2sc21-cP0AuSebkPi5VqvvbHGdrxc3hMIGRlwfDxn9gVzbYOL2CMFohhHgOWwUSIqA0yUNnwEpwGO8QLyHN6XF5LOC8R75u0Q6xL1-PJsChamww&sig=Cg0ArKJSzB6FY6WLO2TkEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=294&cbvp=1&cstd=292&cisv=r20230705.68307&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&arae=0&ftch=1&adurl=
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.66 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s48-in-f2.1e100.net
Software
cafe /
Resource Hash
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

content-security-policy
script-src 'none'; object-src 'none'
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
accept-ch
Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
server
cafe
content-type
image/gif
access-control-allow-origin
*
cache-control
private
access-control-allow-credentials
true
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
beacon
tag.researchnow.com/t/ Frame 54A5 		42 B
443 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tag.researchnow.com/t/beacon?pr=288231&adn=3&ca=29702965&si=3554638&pl=364988171&cr=190952532&did=ADID&ord=1534742692&gdpr=&gdpr_consent=&us_privacy=${US_PRIVACY}
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
18.66.147.40 , United States, ASN16509 (AMAZON-02, US),
Reverse DNS
server-18-66-147-40.fra60.r.cloudfront.net
Software
Apache/2.4.57 () / PHP/7.2.34
Resource Hash
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 16:23:18 GMT
via
1.1 b1c64361268fcbad3c03abbe37eb5cfa.cloudfront.net (CloudFront)
server
Apache/2.4.57 ()
x-amz-cf-pop
FRA60-P4
age
3087
x-powered-by
PHP/7.2.34
x-cache
Hit from cloudfront
content-type
image/gif
p3p
CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM'
access-control-allow-origin
*
cache-control
no-cache, no-store, must-revalidate
content-length
42
x-amz-cf-id
FeeNgUbkda9QZJr00FYu0eA6fSeqB_-Osba6q0Ql1DWaHNeFWwyNsw==
expires
0
index.html
s0.2mdn.net/sadbundle/11174084048378699112/ Frame F14A 		5 KB
2 KB 		Document
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_278.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
bdc27878b5f32de72d2d1eaa37b542d323bbb748add968172df762bc0192d90c
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests
1
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36
accept-language
nl-NL,nl;q=0.9

Response headers

accept-ranges
bytes
access-control-allow-origin
*
age
256179
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control
public, max-age=31536000
content-encoding
gzip
content-length
2141
content-type
text/html
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
cross-origin-resource-policy
cross-origin
date
Thu, 06 Jul 2023 18:05:06 GMT
expires
Fri, 05 Jul 2024 18:05:06 GMT
last-modified
Wed, 19 Apr 2023 20:15:54 GMT
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
server
sffe
timing-allow-origin
*
vary
Accept-Encoding
x-content-type-options
nosniff
x-dns-prefetch-control
off
x-xss-protection
0
view
googleads4.g.doubleclick.net/pcs/ Frame EEF1 		0
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvWbDoTM3LeXK7b1a1AhL5iQcus6-3rrvjanYOsqX3OBvebXKEKeJ8btjEV0QOZQDV3kJaDAZjy2qbt5lDimTba4RNB0BD0XXL81INIFQXce41gwXH5FURtEWxA8mDiAc0xUuXxsSRvtSBJcQJSD_Ccpdz0bmzBMbY6wZYvpmhe_-3MqNPJDZedefWluMTYHpB5W4jIqQ2lh9IWtZ34zszybdY5Hv1B_YM1bhxKlfY5OjDJeFFSx3_vo7R7xGuuJTC9TB-tOd18ieGPZkhs6SXaVCcsJUAxM2Nz19FczXpixjLL1AUDGGzso6CTw8AqI_NOuagQOStEwZb4o1Qb-o3TFqirO6-W_KyNkU1NlayH6Rc0-uehggr274OU185Qaomu1fkWfcoOf8yvaOWCO0R9MBKeuiQisBtGnfdMrw1JdrrSvDf-379Dwfz2VgWAX3puTRR01AQTUbMPY5twWgCgyB2po20Z9qnfX16GFnEAF_3BHJ5d0G2ZwzZC-RpyX85rfipD4JbzTc6CdVJn4PiQaO0cBVVJawAY98EaoMwmHtcDmOtZNlTlBbUpd2yNKN6D9RcOdg-hZhBqlmCVhDyaOdq0GErsK9mbTo04VYCAK5oZPHiAEDTTZtlgTCXWkaqV89a7gPLImwWlXBQY-QFCbt3vd5H0S7oC0fW5-LiKYLUmoc8tEJrAqWyRf6X7oBkwzqHUs6jAlYKqtjtQoYKQsNpmPsOR47bpW7vc1i3l2JawBzmJ5-MzwcSp7U08KvBF_auxfOrnc0SJRV-FzJHB1itYNgyZM5zGz-OAN9e3jaky1apBabZBCdQRA7rM1-HI16IyvDuJhzly_Y7A0J3qWEOdr1R6VfNVg2XhLG2CXqfjeEStRVvo5ahHuZ0gCv5bWlT4f2hH9KXUYsW3yzTBySFJA4cME7yHFUJxXvHt6h6Gh75FtUbtYTENyOOG0Xn1hVc99LT-ELM8O2UG0cztkG3PbEGyYmuTl7RkkcV6AOqQpRwA_8tcT47i8BO9crkWo7p9jTil9J36iAsqBoH_KG4lxMAdVfncXbj1G69IWYyopJsTjojfbql-gP23_q6esZyMGlIQ94DIByDrrDq28hHgRG7Rjf5287EWww6Jqfo0kvva_KuzNkM9jPdmSKfGcIKMUlWyeECLaM8fJ55zISiSLJtRqyRFj9oat5q-nRkFitFt8HpO_fckafyxRpgxo5wmkR4ALCqXxnJxYQ7xxqLU6vAo&sai=AMfl-YSeRXHvGYtGQDS1dP3lukOykHFNZFZLzxSrtDoy5nq0eqlTiurIQj4Tj1dYQbeb1RCG7YX3uuYuKNcTcniob9YmcKENws-QPs5uNBp6ejkBKKUpDHgPkPWGam9Ugu75tHR5QUzMUsuRxlI1jIE-tIVBI1mi3Ghg6Pk2-yhEXvCnMGuklXKre1rLT_bS4oSyPsuZKCDvOiGw&sig=Cg0ArKJSzERRCE7kHVlOEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=252&cbvp=1&cstd=251&cisv=r20230705.85873&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&arae=0&ftch=1&adurl=
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.66 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s48-in-f2.1e100.net
Software
cafe /
Resource Hash
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

content-security-policy
script-src 'none'; object-src 'none'
date
Sun, 09 Jul 2023 17:14:45 GMT
x-content-type-options
nosniff
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
accept-ch
Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
server
cafe
content-type
image/gif
access-control-allow-origin
*
cache-control
private
access-control-allow-credentials
true
timing-allow-origin
*
expires
Sun, 09 Jul 2023 17:14:45 GMT
beacon
tag.researchnow.com/t/ Frame EEF1 		42 B
444 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://tag.researchnow.com/t/beacon?pr=288231&adn=3&ca=29702965&si=3554638&pl=364988171&cr=190952532&did=ADID&ord=3468973031&gdpr=&gdpr_consent=&us_privacy=${US_PRIVACY}
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/html/r20230705/r20110914/zrt_lookup.html?fsb=1
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
18.66.147.40 , United States, ASN16509 (AMAZON-02, US),
Reverse DNS
server-18-66-147-40.fra60.r.cloudfront.net
Software
Apache/2.4.57 () / PHP/7.2.34
Resource Hash
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 16:23:18 GMT
via
1.1 b1c64361268fcbad3c03abbe37eb5cfa.cloudfront.net (CloudFront)
server
Apache/2.4.57 ()
x-amz-cf-pop
FRA60-P4
age
3087
x-powered-by
PHP/7.2.34
x-cache
Hit from cloudfront
content-type
image/gif
p3p
CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM'
access-control-allow-origin
*
cache-control
no-cache, no-store, must-revalidate
content-length
42
x-amz-cf-id
6Lxw6Z3k6gEdRh25Zgn8UPqo1fxQ6nIvS9wCDNjXhDxfvwuk-STALA==
expires
0
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 96A7 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66964
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
truncated
/ Frame 49BE 		215 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
6d968b493732ce6a38dafea731763c03de12c5819086e1442e8289f89492294b

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
createjs_2019.11.15_min.js
s0.2mdn.net/ads/studio/cached_libs/ Frame C750 		236 KB
63 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/ads/studio/cached_libs/createjs_2019.11.15_min.js
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
bc12347103da4da2ac30f8b4defd567679284e0bad691a54fad78ad804fc9c27
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:45 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
0
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
64275
x-xss-protection
0
last-modified
Fri, 15 Nov 2019 19:16:20 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
text/javascript
access-control-allow-origin
*
cache-control
public, max-age=0
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Sun, 09 Jul 2023 17:14:45 GMT
index.js
s0.2mdn.net/sadbundle/11174084048378699112/ Frame C750 		136 KB
23 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/sadbundle/11174084048378699112/index.js
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
9a566f33162f119afaa7095784f40f210c98e3715e429d21a4af38cfa26bc7c1
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 05:57:53 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
472612
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
23973
x-xss-protection
0
last-modified
Wed, 19 Apr 2023 20:15:54 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
application/x-javascript
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Wed, 03 Jul 2024 05:57:53 GMT
createjs_2019.11.15_min.js
s0.2mdn.net/ads/studio/cached_libs/ Frame F14A 		236 KB
63 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/ads/studio/cached_libs/createjs_2019.11.15_min.js
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
bc12347103da4da2ac30f8b4defd567679284e0bad691a54fad78ad804fc9c27
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:46 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
0
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
64275
x-xss-protection
0
last-modified
Fri, 15 Nov 2019 19:16:20 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
text/javascript
access-control-allow-origin
*
cache-control
public, max-age=0
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Sun, 09 Jul 2023 17:14:46 GMT
index.js
s0.2mdn.net/sadbundle/11174084048378699112/ Frame F14A 		136 KB
23 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://s0.2mdn.net/sadbundle/11174084048378699112/index.js
Requested by
Host: s0.2mdn.net
URL: https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:82b::2006 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
9a566f33162f119afaa7095784f40f210c98e3715e429d21a4af38cfa26bc7c1
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://s0.2mdn.net/sadbundle/11174084048378699112/index.html?ev=01_250
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 05:57:53 GMT
content-encoding
gzip
x-content-type-options
nosniff
age
472612
x-dns-prefetch-control
off
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
23973
x-xss-protection
0
last-modified
Wed, 19 Apr 2023 20:15:54 GMT
server
sffe
vary
Accept-Encoding
report-to
{"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-type
application/x-javascript
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
cross-origin-opener-policy-report-only
same-origin; report-to="ads-doubleclick-media"
expires
Wed, 03 Jul 2024 05:57:53 GMT
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 078F 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/Enqz_20U.html
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66964
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
fonts.gstatic.com/s/googlesans/v58/ Frame 49BE 		33 KB
33 KB 		Font
General
Check archive.org
Download Go to
Full URL
https://fonts.gstatic.com/s/googlesans/v58/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
Requested by
Host: fonts.googleapis.com
URL: https://fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
2a00:1450:4001:809::2003 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
65c99d3b9f1a1b905046e30d00a97f2d4d605e565c32917e7a89a35926e04b98
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

Referer
https://fonts.googleapis.com/
Origin
https://googleads.g.doubleclick.net
accept-language
nl-NL,nl;q=0.9
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Tue, 04 Jul 2023 19:09:17 GMT
x-content-type-options
nosniff
age
425128
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
34108
x-xss-protection
0
last-modified
Tue, 23 May 2023 16:35:55 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="apps-themes"
report-to
{"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-type
font/woff2
access-control-allow-origin
*
cache-control
public, max-age=31536000
accept-ranges
bytes
timing-allow-origin
*
expires
Wed, 03 Jul 2024 19:09:17 GMT
adview
googleads.g.doubleclick.net/pagead/ Frame 49BE 		0
19 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://googleads.g.doubleclick.net/pagead/adview?ai=CUFzxBOuqZKTrBvLA1fAP9Z6fmAiqt5LEb_GM95CvEbDT27uMAhABIOeloQVgkYSAgIwYoAG4yNzkAsgBCakCtmvPTG1msj6oAwHIA8sEqgT3AU_QPrXvEKpn6JvI2t4-XIZ6qMx1DBT1Tmndj_AQNnVT8WgMg0336-KIRhuBBQJAZlAan_qbnXHIsDYfHvtMTPP3ERqQMRRiZ8vyT1lQWtLCQmqyZS6YRmuUMI7-_CMwpPyCofFsm-EvDiGAnira6H_PbhUATSGaMUWw612Yuu5CWbjFPwkaJpmk6QgJxt3EVV4BRZOJShggjWW-SwRVMSNVsBb2QVTNynqPNHKNdviK5hsXS0BHiCCdb_C2y1Jv9aAsYNqSpRcKSaXavfoN_n0qLrEXPlDEmLct7Zu_U3oa0E2q535QGVihQRAVt8VpWYODAbLm5sHABNHq5tyzApIFBAgEGAGSBQQIBRgEoAYugAewt6ObAagHjs4bqAeT2BuoB-6WsQKoB_6esQKoB6SjsQKoB9XJG6gHpr4b2AcA8gcEENGLB9IIFgiA4YAQEAEYHzICqgI6AoBASL39wTqACgHICwGiDAgqBgoEw7CxArgTiATYEwrQFQGAFwGyFxwKGggAEhRwdWItNzY1MjExMDYyMTczMDQwORgA&sigh=8fi1QmzYOX0&uach_m=[UACH]&cid=CAQSGwBpAlJWPgY06ln-tcEn6yRo4GwBK5FjRzt1KRgB&template_id=520&cbvp=2&vis=1
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:828::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
Content-Security-Policy script-src 'none'; object-src 'none'
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

content-security-policy
script-src 'none'; object-src 'none'
date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
server
cafe
content-type
text/html; charset=UTF-8
access-control-allow-origin
*
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-credentials
true
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
pagead2.googlesyndication.com/bg/ Frame 69BB 		37 KB
14 KB 		Script
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/bg/zBQz3-TNDKCcnEtYIoHgFkOKi9KToA93A8ow_70HNHU.js
Requested by
Host: googleads.g.doubleclick.net
URL: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7652110621730409&output=html&h=280&slotname=5412770130&adk=4177812052&adf=1960716143&pi=t.ma~as.5412770130&w=1082&fwrn=4&fwrnh=100&lmt=1688922884&rafmt=1&format=1082x280&url=https%3A%2F%2Fiphonetsu.com%2Fanime%2Fyuyu-hakusho-anime-wallpaper&fwr=0&rpe=1&resp_fmts=3&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&dt=1688922883874&bpp=4&bdt=344&idt=175&shv=r20230705&mjsv=m202306290101&ptt=9&saldr=aa&abxe=1&correlator=7069174047757&frm=20&pv=2&ga_vid=1076016080.1688922884&ga_sid=1688922884&ga_hid=903361985&ga_fc=1&u_tz=0&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=259&ady=358&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759927%2C44759837%2C44759876%2C31075757%2C31075816%2C31075831%2C44788441&oid=2&pvsid=1636824093891941&tmod=1752496939&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&ifi=1&uci=a!1&fsb=1&xpc=iCAtTSfRUA&p=https%3A//iphonetsu.com&dtd=192
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
sffe /
Resource Hash
cc1433dfe4cd0ca09c9c4b582281e016438a8bd293a00f7703ca30ffbd073475
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sat, 08 Jul 2023 22:38:41 GMT
content-encoding
br
x-content-type-options
nosniff
age
66965
content-security-policy-report-only
require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy
cross-origin
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
14692
x-xss-protection
0
last-modified
Mon, 26 Jun 2023 15:28:00 GMT
server
sffe
cross-origin-opener-policy
same-origin; report-to="botguard-scs"
vary
Accept-Encoding
report-to
{"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type
text/javascript
cache-control
public, max-age=31536000
accept-ranges
bytes
expires
Sun, 07 Jul 2024 22:38:41 GMT
view
googleads4.g.doubleclick.net/pcs/ Frame 54A5 		0
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsscfZcKk3JZuxaVPfmUD8zbi2O1MkSza8GWy9fODbO16VJ-u05cp9nLp3-PujUiQdcpokG4R2TWZvIWddlbrDIII_jtRJRkA2jx7Fe6MipEsPslpJVRtoQcRcaIVtJCqQez8PZTAyCH5CuBwkzPi2gAi8epFslZrO1GElowLbXjlP9gUSttBdA8-doFsFs53QLWhFot2qqhIjtSfAS19knoz616a7QsL0g64XeZSF47M_94VVnQ3Wnz7YoDH-dnJPGNk1F0BZjx4iHPzDXFM8x0MUiCEi2kPg_O7-VZzZXawZPb1pxZuxiy48IUb1MaHPYWRGIpIiFsLzF42lpLkCHXpEEpl7wRIW1c-AMKENmmiT6QWSud9aoRTGzh2AvvIzwrPiUSBOcKEfet8MP0g9NwIE5g527nuyNfEV4Vm68zIFroxP5uhrWLWk0ULG-GcYC7ToIcjxSvtnKeZl_tHHQWoqtvfXZJSPTNLOTJbAmWmtPbwEkOvBTyR6VyYWaGZc8iRc9iHC_nlcLeS0JKuDL16ed0q_Dy54lqlncHQPAsVoEbS4MYo32lMnbO3jLOfMXnRgL5jP56f54y4f6gzz6w-h5jeQM3XHh2tMuFZTKgWfp_SBxaeySQuPGr2Y-YQTVw2sFnLupBBeLIUzhgGXqS6KBuXxqai-dMVXmvUu7abMcn56_kSVEBw6v-ucRGzXrc-OkSNr-_gVoyC7z1zNuPhg7cfAy16K_3m7ZxeBhuEct-p9365Hh_-5FX6k9XwjfG4mQSDhz0sFKp3ISw80D1KoBEk8fGH5zRoIFtTvZfm3TlqPXCkEfLKRaa5W2NouJshwph63kqa2QmcwZALIeEWN8QSTXpQoOHJX3jYaC5gG0BLlW3jSp3C7VXFBv3GmPASXZgNI1LteTehBXo6xqpmyE3gQz2ccVxjIjdIxBUYX4eDOF8be8YazJ_xf3wKQK5yQNga--HaWG6XJYVAX5rXMHftNTPxAmHtpmAUmjuZZJWrYPSqTGJlyhch2Cgu4soR_eEIdabwa57b6jTAcciBPF2ZKp98kLY4mESXpaypyB3HNs2GO8yIvo1tXpoqp1sstulsMb31iDuFAN9V0kcZv0Bc2uwgDqHQRDkp-rUenv_eAJpxGytOcy5D6nPjJcLst9K7q0E9UDc2kbIeaaFe2ebJMK5a9_3H67zfhKLXjTCHuwFQkMborj5gwOkkXnjLhaDmakBcbWRt1um30Shujh7DMYJ&sai=AMfl-YRhLpD4UgpMCPhaT_Rr36t3MoeNiqndSK85p9B7XJh9Ja02SF2Are_aHLkFCHo9RqJPaB-Eo2uO07FtTyC-5pAo9TyIX2sc21-cP0AuSebkPi5VqvvbHGdrxc3hMIGRlwfDxn9gVzbYOL2CMFohhHgOWwUSIqA0yUNnwEpwGO8QLyHN6XF5LOC8R75u0Q6xL1-PJsChamww&sig=Cg0ArKJSzB6FY6WLO2TkEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=529&vt=11&dtpt=235&dett=3&cstd=292&cisv=r20230705.68307&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&arae=0&ftch=1&adurl=
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.66 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s48-in-f2.1e100.net
Software
cafe /
Resource Hash
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
accept-ch
Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
private
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Sun, 09 Jul 2023 17:14:46 GMT
truncated
/ Frame 54A5 		213 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
446feab06377dc2db6d7eafdba6b06a4266c84b5821bbbb1de4f9e4e32b13830

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
view
googleads4.g.doubleclick.net/pcs/ Frame EEF1 		0
0 		Fetch
General
Check archive.org
Download Go to
Full URL
https://googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsvWbDoTM3LeXK7b1a1AhL5iQcus6-3rrvjanYOsqX3OBvebXKEKeJ8btjEV0QOZQDV3kJaDAZjy2qbt5lDimTba4RNB0BD0XXL81INIFQXce41gwXH5FURtEWxA8mDiAc0xUuXxsSRvtSBJcQJSD_Ccpdz0bmzBMbY6wZYvpmhe_-3MqNPJDZedefWluMTYHpB5W4jIqQ2lh9IWtZ34zszybdY5Hv1B_YM1bhxKlfY5OjDJeFFSx3_vo7R7xGuuJTC9TB-tOd18ieGPZkhs6SXaVCcsJUAxM2Nz19FczXpixjLL1AUDGGzso6CTw8AqI_NOuagQOStEwZb4o1Qb-o3TFqirO6-W_KyNkU1NlayH6Rc0-uehggr274OU185Qaomu1fkWfcoOf8yvaOWCO0R9MBKeuiQisBtGnfdMrw1JdrrSvDf-379Dwfz2VgWAX3puTRR01AQTUbMPY5twWgCgyB2po20Z9qnfX16GFnEAF_3BHJ5d0G2ZwzZC-RpyX85rfipD4JbzTc6CdVJn4PiQaO0cBVVJawAY98EaoMwmHtcDmOtZNlTlBbUpd2yNKN6D9RcOdg-hZhBqlmCVhDyaOdq0GErsK9mbTo04VYCAK5oZPHiAEDTTZtlgTCXWkaqV89a7gPLImwWlXBQY-QFCbt3vd5H0S7oC0fW5-LiKYLUmoc8tEJrAqWyRf6X7oBkwzqHUs6jAlYKqtjtQoYKQsNpmPsOR47bpW7vc1i3l2JawBzmJ5-MzwcSp7U08KvBF_auxfOrnc0SJRV-FzJHB1itYNgyZM5zGz-OAN9e3jaky1apBabZBCdQRA7rM1-HI16IyvDuJhzly_Y7A0J3qWEOdr1R6VfNVg2XhLG2CXqfjeEStRVvo5ahHuZ0gCv5bWlT4f2hH9KXUYsW3yzTBySFJA4cME7yHFUJxXvHt6h6Gh75FtUbtYTENyOOG0Xn1hVc99LT-ELM8O2UG0cztkG3PbEGyYmuTl7RkkcV6AOqQpRwA_8tcT47i8BO9crkWo7p9jTil9J36iAsqBoH_KG4lxMAdVfncXbj1G69IWYyopJsTjojfbql-gP23_q6esZyMGlIQ94DIByDrrDq28hHgRG7Rjf5287EWww6Jqfo0kvva_KuzNkM9jPdmSKfGcIKMUlWyeECLaM8fJ55zISiSLJtRqyRFj9oat5q-nRkFitFt8HpO_fckafyxRpgxo5wmkR4ALCqXxnJxYQ7xxqLU6vAo&sai=AMfl-YSeRXHvGYtGQDS1dP3lukOykHFNZFZLzxSrtDoy5nq0eqlTiurIQj4Tj1dYQbeb1RCG7YX3uuYuKNcTcniob9YmcKENws-QPs5uNBp6ejkBKKUpDHgPkPWGam9Ugu75tHR5QUzMUsuRxlI1jIE-tIVBI1mi3Ghg6Pk2-yhEXvCnMGuklXKre1rLT_bS4oSyPsuZKCDvOiGw&sig=Cg0ArKJSzERRCE7kHVlOEAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=493&vt=11&dtpt=241&dett=3&cstd=251&cisv=r20230705.85873&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ..&arae=0&ftch=1&adurl=
Requested by
Host: iphonetsu.com
URL: https://iphonetsu.com/anime/yuyu-hakusho-anime-wallpaper
Protocol
H2
Security
TLS 1.3, , AES_128_GCM
Server
142.250.185.66 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
fra16s48-in-f2.1e100.net
Software
cafe /
Resource Hash
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
accept-ch
Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
cache-control
private
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Sun, 09 Jul 2023 17:14:46 GMT
truncated
/ Frame EEF1 		210 B
0 		Image
General
Check archive.org
Download Go to Show image
Full URL
data:truncated
Protocol
DATA
Server
-, , ASN (),
Reverse DNS
Software
/
Resource Hash
c2b00e951d42fa58959b708457a153a40bce3808bd5e6470879b06692a17a777

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

Content-Type
image/png
gen_204
pagead2.googlesyndication.com/pagead/ Frame 96A7 		0
20 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar&v=30&t=2&bgai=B_WLCBeuqZNvwHoHrx_APgcCS4AEAAAAAOAHgBAI&bg=!f3ylfCjNAAb90kgr3dI7ADkAdvg8Wja0x06r8sZTUkFVgjaTaJ73f8PlFsTb0CHjN5bCjF3bNk3D_gA-Ydl4tdJLLo7rUM__ZKoCAAABZ1IAAAAKaAEHmQLtU1_v05VtiZlCchWTEQFM0avjuIX269v1YfMGpxCp8UDw8GaUCigX8Kw1WVJsqHOKxAndAEN1eNn_ZShq5NVhukVMtN_XOEuR0aKC1HkQHa46Nl0ByWgVmoyPQmKJXQQWVtEd55aytC2sCdEbSITMq0DSuSyFaOurKZU-GkwdRUyKeXPHs4s-LorZV3HKPuMcmOFG5ZQr4l8gjR4Wtvq9RuCIsxdLm1IcOW7aRENwxuEe2YFJPAxxEnSSrqmi6NslOo-zL-Wzax8R4iHECimhKrp4If8uFCm3KXTs0ykjupiAjff3_sB5WsTnzCUAxQS4uzcuFOf9qu4Fg31KtW-1kZKI_xKBopC994aH6ioAN3NbF5BkaYE6eJDzhIrmH437j29hLJg9Ou9AHIGeJbEBcW0A7tUoKLUoiF5pnNLbN321kcnsaHjuwDvFj_TF-EdBxJp1o7hEazpzZqCbtwb5c98TrVprwqmmV-oIsY90h-A6Uppdu9wsnj6VKTrUANVXyjJJEY7icwDYi9EGNuLSg9DFvad7s_waOS_eIVJhcd40I4wDJAymNRq4oFJA7THOhJIlLoxTj14l8cvaGohPw0kvUNTgqOET2KFrNH7XSLvbfIPikgGRccPqwi_XKyU2336NO_F-B0abMeGX7a_mRmYtdjEFVeriDWeAutR4QT7sRWtY-0ssYNvea7CA5oqTvvRkCV9NXXu2yCWQbUF9ldBGOpdQBa-GZNDUzF6G4yy_LxIwrJ0CjgcBnYDygP2L4OmRD5Knjc-9kE6od2hmJNm1Ud3Ge9kWCdGrxfLBpLi2orOg41LtasW-YVVcwKzpe3gIn9eXEpgBO8FhyMT9nWl1G-yuLKmh6IlAzKamRcc-lCGrHTgd_EZMsvqhd1iZcZxangAkyK-PG9jf2GXZ-ytZ-a90Czpx6tlXEWibjLF8RHHmC120MoxHBb3FJJweIgTaYGwbsffL1ZO-7M0HHAkAFbnwy3U8irDoIDM
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 078F 		0
20 B 		Image
General
Check archive.org
Download Go to Show image
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar&v=30&t=2&bgai=BxmwCBeuqZIvSIsST4gHkzYLwAQAAAAA4AeAEAg&bg=!SkmlSR3NAAb90kgr3dI7ADkAdvg8Wh8-YBZOsWrAuDYbrI0tpmNS8JOp-YNodAWc0UIcc4qiekLmpuTwIFZp_9fn-0YRkxakrmQCAAABiVIAAAAGaAEHmQMB2filbCuNF0WxkWTciptYMLzbJsms-e-BjVeZqJV8wpkQeHiRRKvfzpA_T1RiMy99Pv-LuPAaW2zYaVOs916aZcuCrBjoOm8tA6QWsX4mk_yZF5IMBGfxMI4KKChpCTV3Y-_-AC934GfvElnMwH4rx_4xkX0DBkMCrDvuq_E_VGE-F6Un_PVLO6_NKrEv7RUqacGEUjpV7-6CJq4W8nolx2L-LaymrpI0f7cIjuJxDrzx4Tshb-xN9DKHkkTBHVeujhFfNndPhT7MmIvdLtM5jazREAYhArIyKO7SXJ0_EBu8aYUdb9pTb7q3EeOGRFPeLvOf3bVtDIp9-wtclVzIKG75Ac0MQCazXRPraT8KJQpuc_J3zaFkJv5XuL2lnmqa3-mCayGtNyApJovUFPDLyvdyUsVcen5WTpslbD_h1iMsoHHtirR0PKylhh1nfkfiM5c2hyijfjc8UmYMr4EaEyZBE5WL12h2laLqm6Qbvax3l3xqlACHM2Aan2c2M8R7H4W8EovAOr-ihIT2WAVsqBFgIU_ydfjluZhcsp7PcIKLmRFcQxt6NBrjaRZA7U4Cc9t_L8T7k7LGQGt9Qg5XpDn275s4_r9tEkAGs9xi56eRchv5Qr0lKRnDpEQXAKE0ha1Cmog2VG6Wa202kPtpRBQyXI_jO7v4Rt-WosUvAf7cciQ0oMJ4SPqkgUvj-bi-Mz0e8UxTGcGkDYstqUVafnoDLQQRSzgTBxv3C2Grf_0uAC1k6zptAWNCrhpDG1KplXS9d6kUBDDp4AjSCyYf6jneOlvosa9hzRcV0r7knY_IkFyJnfSCzYSlsQZXrXnejF49L1-uc7Hx01mo2nO5rD5ZnXzsDNwVLoHEqVhv9KwIyuAE-jtr4CJCpl3kbUw3F5Gl6mKx-nHgVQEOb5roWBLp2qJN7ll7EZlbx47JG6qFot6vGaQd3-VfISG3va0JFz8DyC1AjBWjO8jHFY7ouAt04gFNc0SdkZ3Zhay8TXfmguDTvQ1_IXkRZNp2adn3rQ
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://tpc.googlesyndication.com/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
activeview
pagead2.googlesyndication.com/pcs/ Frame 6EA9 		42 B
64 B 		Fetch
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjss7SbUtysAc-rmCSq8nia_A7pubE-PBadqnHuHKmcuf8k3_hpWm703NkP4szi0X4LH6T6NjJJpD2i9re3yEB5rOB7X9hTxH8ya5owrs7u04f-JuuaDiN0qol2thAAkU58Pn35CK3UvnbqgI&sai=AMfl-YT4FX7qXLFf-xggZz0jJUHIxy0S7r7Al_bk9W_abvwSHbknoJwhNZxcljjmqHNZSwk0X9XwePCAidn2&sig=Cg0ArKJSzMAEn9cEyUbLEAE&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&id=lidar2&mcvt=1000&p=0,0,124,1005&mtos=142,718,1000,1000,1000&tos=142,576,282,0,0&v=20230705&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ%3D%3D&vs=4&r=v&rst=1688922885205&rpt=417&met=mue&wmsd=0&pbe=0&vae=0&spb=0&ffslot=0&reach=0&io2=0
Requested by
Host: www.googletagservices.com
URL: https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:46 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
activeview
pagead2.googlesyndication.com/pcs/ Frame 49BE 		42 B
64 B 		Fetch
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssmGbYSNKKYbhpoP4xyS6l-9oZKWj6TIfHMrVeLXVRjRuJ49YMsIZriDL56MNqcRT_QqpQHB7gnHMFr9WqMbUqJHcJLjSjboHvN_h7npgiFGR55dLx-QDJUNWGdeCqgeZVNKu1vkh3Vico2&sai=AMfl-YQv_u400FQzQYreBAQbfiDW9ukvy_PUex1TXRQb7X-6Rs9TAKGpFNK8LnDTm_m44oRt52ySZkV2qKMC&sig=Cg0ArKJSzB5A054LLbWEEAE&cid=CAQSGwBpAlJWPgY06ln-tcEn6yRo4GwBK5FjRzt1KRgB&id=lidar2&mcvt=1000&p=0,0,280,1082&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230705&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=4177812052&rs=2&la=1&cr=0&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ%3D%3D&vs=4&r=v&rst=1688922884068&rpt=1943&met=mue&wmsd=0&pbe=0&vae=0&spb=0&ffslot=0&reach=0&io2=0
Requested by
Host: www.googletagservices.com
URL: https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:47 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame 54A5 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=tler&ord=5818287365309&version=m202301230201&ct=76&x=1&cor=3509537014692318700
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:47 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
gen_204
pagead2.googlesyndication.com/pagead/ Frame EEF1 		0
20 B 		Ping
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pagead/gen_204?id=dv3-render&msg=tler&ord=7249947715038&version=m202301230201&ct=76&x=1&cor=8042742414839227000
Requested by
Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/dv3.js
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:47 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
0
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
activeview
pagead2.googlesyndication.com/pcs/ Frame 54A5 		42 B
64 B 		Fetch
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvgvu5QTKPER6jICvj-p-873YxGekEAZp3dNP5NK1eP4_-U8k_jWN0ozc1c7tTud5p99HdFO6wfV_aCFdqH03AiVksnciN3d_wU0AtM_n7Xwv0hk6DrGnQgmYCUexWAEQfGeGRZZ9U_8PVL&sai=AMfl-YQfQlAxtxkZTu6HL4gSg4RjpISwKe3H1kfAha1K9A242OKCpsXPohb5gUwLnY1EV-AOg25NT5AGtVWF&sig=Cg0ArKJSzCCULOwoHzndEAE&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&id=lidar2&mcvt=1000&p=0,0,600,160&mtos=1000,1000,1000,1000,1000&tos=1000,0,0,0,0&v=20230705&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1812271803&rs=2&la=0&cr=0&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ%3D%3D&vs=4&r=v&rst=1688922885351&rpt=564&met=ie&wmsd=0&pbe=0&vae=0&spb=0&ffslot=0&reach=0&io2=0
Requested by
Host: www.googletagservices.com
URL: https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:47 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT
activeview
pagead2.googlesyndication.com/pcs/ Frame EEF1 		42 B
64 B 		Fetch
General
Check archive.org
Download Go to
Full URL
https://pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssZOkhbGgfoBXiyUFXQ0N2AAvOGzNTxRRjg3Ql5JPev1ftLjFpocE3GVIoKr5RXtJ3_SCV8JvxQsDwCN2wmQ2wM_MKev0EVfKR9TkIfynrNjl6jlMCZGO2M4kVWTKjxYdKPij1eZchNXh25&sai=AMfl-YQkWAhz9bGxLVVUEjgL6qfuMyki8396cviP22LARyhxKuxjI0nQfwRn7pNFufgAXyeD2aV9FNgwfudk&sig=Cg0ArKJSzG649AcLIFUGEAE&cid=CAQSGwBpAlJWiMS0b8zTdrZuGXQqiwEVkiU1MOsQ6xgB&id=lidar2&mcvt=1002&p=0,0,600,160&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20230705&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1812271804&rs=2&la=0&cr=0&uach=WyIiLCIiLCIiLCIiLCIiLFtdLDAsbnVsbCwiIixbXSwwXQ%3D%3D&vs=4&r=v&rst=1688922885378&rpt=566&met=ie&wmsd=0&pbe=0&vae=0&spb=0&ffslot=0&reach=0&io2=0
Requested by
Host: www.googletagservices.com
URL: https://www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
Protocol
H3
Security
QUIC, , AES_128_GCM
Server
2a00:1450:4001:813::2002 Frankfurt am Main, Germany, ASN15169 (GOOGLE, US),
Reverse DNS
Software
cafe /
Resource Hash
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
Security Headers
Name Value
X-Content-Type-Options nosniff
X-Xss-Protection 0

Request headers

accept-language
nl-NL,nl;q=0.9
Referer
https://googleads.g.doubleclick.net/
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.198 Safari/537.36

Response headers

pragma
no-cache
date
Sun, 09 Jul 2023 17:14:47 GMT
x-content-type-options
nosniff
server
cafe
content-type
image/gif
access-control-allow-origin
*
p3p
policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control
no-cache, must-revalidate
cross-origin-resource-policy
cross-origin
timing-allow-origin
*
alt-svc
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length
42
x-xss-protection
0
expires
Fri, 01 Jan 1990 00:00:00 GMT

Verdicts & Comments Add Verdict or Comment

70 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

object| 0 object| 1 object| 2 object| 3 object| 4 object| 5 object| 6 object| 7 object| 8 object| 9 boolean| credentialless object| onbeforetoggle object| onscrollend object| __cfQR undefined| $ function| jQuery object| adsbygoogle function| gtag object| dataLayer object| google_js_reporting_queue number| google_srt object| google_logging_queue number| tmod object| google_ad_modifications object| ggeac object| google_persistent_state_async boolean| google_measure_js_timing object| google_tag_data object| google_reactive_ads_global_state object| google_sa_queue function| google_process_slots boolean| google_apltlad function| google_spfd number| google_lpabyc number| google_unique_id object| google_sv_map object| google_tag_manager object| eventie function| EventEmitter function| getStyleProperty function| getSize function| docReady function| matchesSelector object| fizzyUIUtils function| Outlayer function| Isotope function| Masonry string| google_user_agent_client_hint function| onYouTubeIframeAPIReady object| gaGlobal function| EvEmitter function| imagesLoaded object| AdminAjaxURL boolean| __cfRLUnblockHandlers object| jQuery1124046052011539491966 object| google_ama_state number| google_rum_task_id_counter function| google_sa_impl boolean| _gfp_p_ function| processGoogleToken object| googleToken object| googleIMState number| google_global_correlator object| google_prev_clients object| ampInaboxIframes object| ampInaboxPendingMessages object| GoogleGcLKhOms object| googletag object| google_llp object| google_image_requests

13 Cookies

Domain/Path Name / Value
.iphonetsu.com/ Name: _ga_VVQVH7EX8Z
Value: GS1.1.1688922883.1.0.1688922883.0.0.0
.iphonetsu.com/ Name: _ga
Value: GA1.1.1076016080.1688922884
.iphonetsu.com/ Name: __gads
Value: ID=76674d54942c3a99-228576f724de0019:T=1688922884:RT=1688922884:S=ALNI_MbA4jZcg-hZUlF62KYNFmOIpHIkig
.iphonetsu.com/ Name: __gpi
Value: UID=00000c38d972b1a2:T=1688922884:RT=1688922884:S=ALNI_MaGq1Jz4m1va_Z8Nazu4dmVpMyDHA
.doubleclick.net/ Name: DSID
Value: NO_DATA
.doubleclick.net/ Name: IDE
Value: AHWqTUkFyZRiQNhqzh6bbEXXkK5gphkOq26NgeyUvjPD_06bQy77P7aaofj0e_FWRWA
.doubleclick.net/ Name: test_cookie
Value: CheckForPermission
.adnxs.com/ Name: uuid2
Value: 6869255282977183813
.casalemedia.com/ Name: CMID
Value: ZKrrBTcvhud3wy9Pi.5Q4wAA
.casalemedia.com/ Name: CMPS
Value: 1144
.casalemedia.com/ Name: CMPRO
Value: 1144
.doubleclick.net/ Name: APC
Value: Aa3gxNoy0zO7FMqJVQK95ydlLH1FM58LaJM3glZ8jyNFd_RWs_M3vg
.adnxs.com/ Name: anj
Value: dTM7k!M41.D>6NRF']wIg2Hb<p8%QN!@wnfH8K6pQK`!5=E<*L5?%K5g4^>l/w:f'X]_U#j#oNyi7rY=BK4_GqH<?3%nugO%v4VB%nm__)xrwD

1 Console Messages

Source Level URL
Text
network error URL: https://mts0.google.com/vt/data=FRRA2ncz_vnlMgQQ1p-nIbhqMu-e-oTGziLklPDZp3pcLPfVLlKLmVVM-xx_kR6FY_VB3nxiFFV4GK_zeaAgKw
Message:
Failed to load resource: the server responded with a status of 400 ()

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

adservice.google.com
cm.g.doubleclick.net
dsum-sec.casalemedia.com
fonts.googleapis.com
fonts.gstatic.com
googleads.g.doubleclick.net
googleads4.g.doubleclick.net
ib.adnxs.com
iphonetsu.com
mts0.google.com
pagead2.googlesyndication.com
partner.googleadservices.com
region1.google-analytics.com
s0.2mdn.net
sync.teads.tv
tag.researchnow.com
tpc.googlesyndication.com
us-u.openx.net
www.google.com
www.googletagmanager.com
www.googletagservices.com
www.gstatic.com
104.102.35.84
142.250.185.194
142.250.185.66
18.66.147.40
185.80.39.216
2001:4860:4802:34::36
2a00:1450:4001:808::2002
2a00:1450:4001:808::2008
2a00:1450:4001:809::2003
2a00:1450:4001:80e::2003
2a00:1450:4001:80f::200e
2a00:1450:4001:810::2002
2a00:1450:4001:813::2002
2a00:1450:4001:827::2001
2a00:1450:4001:828::2002
2a00:1450:4001:829::200a
2a00:1450:4001:82b::2006
2a00:1450:4001:830::2004
2a00:1450:4001:831::2002
2a06:98c1:3120::3
34.98.64.218
37.252.171.53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