GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: application/javascript
etag: W/"c365599ef880dd1ec0d8b7eb4ec"
expires: Wed, 16 Apr 2025 21:26:53 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBX63NDQH3hhsAAAwBuUwKDAH3bhwAAAwBnJIhHwG31AAAAA
x-77-nzt-ray: 2a494a156f3df05a324b04687693f91d
x-77-cache: HIT
x-77-age: 7046
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

GET /wp-content/uploads/2025/04/fgdfg-2.png HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uqHcZQdwJcrWnLy%2BZjgy9oc5ZmBjQCLmTHAMHU6RL3fgOW4rtVJcoKk3sydwl2wU5263WHE0p7ezw%2BFCe1oAYK7QDCUcyWXJ7SL6jXfxBFwAU0gTw82lgRNp8j4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 11 Apr 2025 19:26:41 GMT
vary: Accept-Encoding
etag: W/"67f96cf1-14bf43"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 42945
cf-ray: 9330ccb60dfd7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=6968&min_rtt=678&rtt_var=7212&sent=525&recv=150&lost=0&retrans=1&sent_bytes=498631&recv_bytes=13295&delivery_rate=18325899&cwnd=184200&unsent_bytes=0&cid=ce3e4885c608896d&ts=1782&x=16"

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PW04DMQy8ChdoNH4lTr/5BgnEAbabLV8tUovQIvnwJBWlFbbiKJ5xZsxg20A3VB+YtlS24KiUKpJyItN4en4JpVhPS+N0XD5DqGZGVMmCHARzdg2zUrz0Gx7ZoVDvmJr7+EQRErhmAiRziYJ4e328HBrZScDKhv4YskEeOgB2rATWPtx4t3i3MtfadlbZZdIKaTlrZmvS6bgze1UkliHBNxOxGUwhFVaNHohLezp/H+eIO+JI+/M/pv6jv0i57UiXek6H6f18+krzx6G3evQdSXXgYcS6z9g3q9g180LUMtNsxTCRyA8JSnD7mgEAAA==&cb=e2e_68044b0e16e556.00391482&scr_info=YXN5bmN8fDM%3D HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Cookie: __uvt=s%3A32%3A%22a138c95f14f3b1578e889204347cfbae%22%3B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LSmo%2BmEG1V9S%2FNPWRjzEtNKDJNdho4ir1FG0qpoHvdN%2Fyqg2y9EuGe8ZBXzcy1bnEZT2eV58WXsyeKXdpPGJtOFq0EqQm4gREPahQ7e1pl93H5UZSkGNzFInMJ8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-7918"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149738
content-encoding: br
cf-ray: 9330ccaf2dd37129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=6844&min_rtt=678&rtt_var=5091&sent=101&recv=118&lost=0&retrans=0&sent_bytes=20009&recv_bytes=7230&delivery_rate=2131&cwnd=12000&unsent_bytes=0&cid=ce3e4885c608896d&ts=689&x=16"

GET /wp-content/plugins/burst-statistics/assets/js/build/burst.min.js?ver=1.8.0.1 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZCjeZ8LIdBcSQdw9QabskJEz%2FxJ2%2Fmi2eXrC6FEgFzxuVtuND7kCRR5Cohn96PpvGuFRF1a27Zx0eq%2B0phYAJ%2F0sZNDfpa82%2FnUBRCeXBFylz9ghsOlqwsSr6kQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 23:35:10 GMT
vary: Accept-Encoding
etag: W/"67f855ae-18b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb00dd97129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=4655&min_rtt=678&rtt_var=4391&sent=132&recv=125&lost=0&retrans=0&sent_bytes=51137&recv_bytes=8316&delivery_rate=246087&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=825&x=16"

GET /smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&affiliateClickId=orddNHdLHTPHNVS4ASOqqsttppddLNXNRTW6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOdtPpvbvtPrddtpVdPbRnTdLRtXXTXPVtQ6Vyib7Txg3M6ae2VU0s9LnTVuldK6V0rpXSuldK6aymqaaa2edznSuldK6V0rpXSuldK6V0zpXSuLH_nyUiI9Q_uc5201u1G9tvFtlGk.2tPFE2mtG.1W9093Fzg.w--&sourceId=5578844&p1=6294594&p2=xred2.net&p3=5578844&noc=1&ax=0&skipOffset=00:00:05 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 20 Apr 2025 01:17:03 GMT
content-length: 0
location: https://go.xlivrdr.com/api/models/vast?action=sbSignupWithModelSoft&affiliateClickId=orddNHdLHTPHNVS4ASOqqsttppddLNXNRTW6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOdtPpvbvtPrddtpVdPbRnTdLRtXXTXPVtQ6Vyib7Txg3M6ae2VU0s9LnTVuldK6V0rpXSuldK6aymqaaa2edznSuldK6V0rpXSuldK6V0zpXSuLH_nyUiI9Q_uc5201u1G9tvFtlGk.2tPFE2mtG.1W9093Fzg.w--&ax=0&campaignId=165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=919937&masterSmartpopId=2683&noc=1&p1=6294594&p2=xred2.net&p3=5578844&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3564&sourceId=5578844&tag=girls&usePreroll=true&userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&variationId=34019&videoType=ol
access-control-allow-origin: https://xred2.net
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9330ccbecdbc569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET /wp-content/uploads/2025/04/cropped-XRED2-192x192.png HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:04 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lul1SexTcZyR8twSIVvwQdg3bgP391FwFAgH94kDmch9hF2VBYPiBPiLlSaLYrprxgEsRLOkeq5dpvpciBR5OeRXfadKSKFsr6qZ%2FBm8D%2BTSH6LHumkG3Ogp06A%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 09 Apr 2025 19:21:51 GMT
vary: Accept-Encoding
etag: W/"67f6c8cf-16d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149147
cf-ray: 9330ccc77e317129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=10714&min_rtt=678&rtt_var=6173&sent=1973&recv=162&lost=279&retrans=281&sent_bytes=2229316&recv_bytes=14578&delivery_rate=53312&cwnd=225057&unsent_bytes=0&cid=ce3e4885c608896d&ts=4567&x=16"

GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 20 Apr 2025 01:17:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip

GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

POST / HTTP/1.1
Host: ekc0okhqazs7.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:09 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

GET /xwjomgdiqgxxoraz?bQhZtpyO=BQOCAAAAAAAACZUAAqC3adsoB6dSYSgu6Gpridb5YETGuOkgjJycQwK95vD9gib4wuSsrS2Yo2g8izoeR0wcz-NahIfkFerDOqkGyyg0F8MrkEyU6dFqn0ahjS_S1qc7HS2zqot_Dzuq-vENs8TcxKbKmn62rVJhViLzLn8JASrPy3xy1sra1cdV9gQX0NBcVKVBCKgcIu9VFiUezujHzQH5mSyJWPlobEbj0v97GT_36oSXWx0JRdB3BCEqoGyHLDKRCKc8KhtKAZI5wEPDY2L6BziKAXZuoR5IJOSF4QhH4pnwZ4tUg_S0Lqpgem-Q2qub7FHbyvpNVpEF_dkC6qnGCbegblQjDR3hxyGIFFpnZ4ODXElvXcozWVO_WhiweVmJVyeWvD_Bm2GRB6fC1ZqieQK82EQwBfCCfnPxmPjtS_CSayyWzH0XIFp8_VgivKziOzxh1Cp10cDW3fNyfNiBJL0EXuEOdWi5a7GOBTfIMRC4kVTZ5i5hMDFtMXVg7ymC5mCzsHn2YLlk4Y2MR4I1v0Q7Nq_FJmkGJESYWbiX-u1me1oyWmKYUZ-kNq4Wwd5Z0-HhaavkgHCa4YRWfeqAgVgPWgB1ss9YOESZiV1LrVCbSfVRW3kVanneZOjTrlPSucQ9sR9oYXEaYN5PF2N50pGaR4s32HgY1fomS8bqiByNb_8EyyFWzcDUj11MWMUENhSaayBl4nPdtUaosyryLxnnjh1M5B_6ramp2Wm9WThB6f6rt8R8cCQARcB1HpNAWiDAtuvqyclbxobDSNBtyJUfg0OJoe8WZMdnJFYDvC1Wm4iZ1h4i5vH6kl8VKCznj7ph4ZDfBWljuwiSINOC6EGNJb-ymsVAwT_hLcBORn_N00vA28ys-kTi9mriBmxPlOJpYNG2pqVqqCqrlRiwAlHv4MRrhkN_GuGJdwdV_FPYlII5XxFVQsnebpCvky90yBWxU9J_gsbXYuJX25v5oZbRs76TgrOfhipu0kFn1HYKsH_Iv7v9VvSVJlrOr-RmiYGhwMQdTo4YrA93v-JZ8AUClkEVDAUc8l5U4_4LjnFFDXeYsmyi1ipGLgypf-XluM1kyWRb2ld4xHdml3CT0G8WpWoI_bK7R1xSMGE1uKisTHyEgZU_5ZehWpZ0XOcPwBeq7TYsRwGVdbdkW2YKFQ43m1oS8g2QosfZD56xhvxkCbhsYuZf874k&sVoyWeRA=4&owRnTpeS=5189272&eaXVCnTv=&oJPcBvqK=0,0&pmiZzUwJ=&KxQDmFLz=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xred2.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
popads-node: wb3
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sun, 20 Apr 2025 01:17:10 GMT
X-Firefox-Spdy: h2

GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.7.6.1744255709 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PP6YmTzY4sx5kEvpexXW4rguQGDs9Z%2FqJRKsXTYbqC5q6h%2FvRcBX6nSn%2Bck16ZbBoqPZcAD65wNJ4L7PoJL5H6d4BBDlntLD79gcM2%2BoRlnX5hFVUM3CXPdcub0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-996b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb0ade27129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=3220&min_rtt=678&rtt_var=3056&sent=195&recv=139&lost=0&retrans=0&sent_bytes=111532&recv_bytes=10672&delivery_rate=262000&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=924&x=16"

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PW04DMQy8ChdoNH4lTr/5BgnEAXY3K75apLZCRfLhSRZRKjxK4njG8pjBtoPuqD4w7answVEpVSTlRKbx9PwSSnE9rY3Tcb2EUM2MqJIFOQjm7BpmpXjpLzyyQ6EeRMJejD0UIYFfJFDlKIi318ft0ECXAFc29M8YGoVDB8GOK4G1tzaeV+9GllrbbJVdJq2QlrNmtiZdjjurt3lm3U3wn4XYDaWQCqtGD8RWns5fxyXiTjhgN/ej6z/7Ay5+y2m7z+kwvZ9Pn2n5OPRSj74jqQ4+Jl0y1kmazS4QXtEmIQaVufC8tG8W1VCGmAEAAA==&cb=e2e_68044b0e16d356.47999734&scr_info=YXN5bmN8fDM%3D HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Cookie: __uvt=s%3A32%3A%22a138c95f14f3b1578e889204347cfbae%22%3B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET /wp-content/themes/retrotube/style.css?ver=1.7.6.1744255709 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=upZXFQexOOqGrS3UeCAHqshiGELhUPAAqq%2BFwlrTsoSHCYLXcPRBOrYKCCpcAc05y5eYELR0cmM3kXB70YFnut9qqZRa%2F9Cab%2FdlVf666JFkpgITzHF4Df2FRts%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-125f5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149738
content-encoding: br
cf-ray: 9330ccaf4dd47129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=5515&min_rtt=678&rtt_var=5199&sent=113&recv=121&lost=0&retrans=0&sent_bytes=32471&recv_bytes=7631&delivery_rate=2649143&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=702&x=16"

GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fd6FE35zxVO3kYhqCOn28F9EbA6fXVV3VQUH5sgpD3wp1G89h7UM%2F8qh2JZ8Nw59xB7lIpdcATudb86njAyb4bjTgA9%2FqjM10fiT0WaEcIx02bEVkKgmRnkqQAA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-4fce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 42997
content-encoding: br
cf-ray: 9330ccb07dde7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=3877&min_rtt=678&rtt_var=3413&sent=183&recv=135&lost=0&retrans=0&sent_bytes=102434&recv_bytes=10004&delivery_rate=904108&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=898&x=16"

GET /cimp.php?t=api&data=H4sIAAAAAAAAA11PW07EMBC7Chdo5Hnlsd98gwTiAG1S+NpF2iJUpDk8aQVlxViZRGOP7DDYBuhA5Y7pROkE9kKhICgHMvWHxydX8vU6Nw6X+cOFSmR4kSiITrDMWd0spSz9RvaYodDsRMI5mcAVLo5fBHRWPcFfnu/3Qx3sAqxs6O/N1Cm7bgxnrATWvtp4mnMPUktpkxXOMmqBtBg1sjXpctxEPfzEdoMjgQ+bUEiFVb0XfB+Py9elut8IN9gRftv6z/4w6e+DtPclnMe35foZ6vu5j3pRp1Q33mvVSNamMSKhpJEqJ5rtlacidSrpG4B53hCXAQAA&cb=e2e_68044b0e0e56d2.08233412&scr_info=YXN5bmN8fDM%3D HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Cookie: __uvt=s%3A32%3A%22a138c95f14f3b1578e889204347cfbae%22%3B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET /library/319620/f4bcd4ee211837e0c2a2f362241bdae0ef49cd0d.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sun, 20 Apr 2025 01:17:03 GMT
content-type: video/mp4
content-length: 284592
last-modified: Tue, 08 Oct 2024 21:20:11 GMT
etag: "6705a20b-457b0"
expires: Thu, 18 Dec 2025 05:01:23 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-served-by: hap01-sec01-prg1-1
x-77-nzt: EwwBX63NDQH36g2fAAwBuUwKCQH3eAIAAAwBisclxAG3iuMCAA
x-77-nzt-ray: 2a494a15e75fe85e344b0468328b160b
x-77-cache: HIT
x-77-age: 10423786
server: CDN77-Turbo
x-77-pop: osloNO
content-range: bytes 0-284591/284592
X-Firefox-Spdy: h2

GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=14oRksYPJVO15KZgjmRemHXlgw%2BQd%2BFxomBNe8DgndS7gW1tRLt0d%2F1Qvp0N6TJzs8J9DSX0P8f0fceipJDyzKfIdUA8yn33Q%2FtZICD81KjIwn58ViobO9WFfa4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
vary: Accept-Encoding
etag: W/"64ecd5ef-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 42997
content-encoding: br
cf-ray: 9330ccb06dda7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=4215&min_rtt=678&rtt_var=4172&sent=142&recv=131&lost=0&retrans=0&sent_bytes=56446&recv_bytes=9823&delivery_rate=258856&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=887&x=16"

GET /code/native.js?h=waWQiOjExOTk4MDUsInNpZCI6MTUwMTU1Miwid2lkIjo3MDk1MjIsInNyYyI6Mn0=eyJ HTTP/1.1
Host: puabvo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.25.0
date: Sun, 20 Apr 2025 01:17:02 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-zone: eu
content-encoding: gzip
X-Firefox-Spdy: h2

GET /api/models/vast?action=sbSignupWithModelSoft&affiliateClickId=orddNHdLHTPHNVS4ASOqqsttppddLNXNRTW6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOdtPpvbvtPrddtpVdPbRnTdLRtXXTXPVtQ6Vyib7Txg3M6ae2VU0s9LnTVuldK6V0rpXSuldK6aymqaaa2edznSuldK6V0rpXSuldK6V0zpXSuLH_nyUiI9Q_uc5201u1G9tvFtlGk.2tPFE2mtG.1W9093Fzg.w--&ax=0&campaignId=165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af&campaignType=smartpop&creativeId=64aa773d65c5f686d1966f029df63edc83b8a97f98d2fb375d94354688799472&duration=00%3A00%3A30&iterationId=919937&masterSmartpopId=2683&noc=1&p1=6294594&p2=xred2.net&p3=5578844&ruleId=29&skipOffset=00%3A00%3A05&smartpopId=3564&sourceId=5578844&tag=girls&usePreroll=true&userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&variationId=34019&videoType=ol HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:04 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: https://xred2.net
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
content-encoding: gzip
vary: accept-encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 9330ccc45c0a1c0e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET /gtag/js?id=G-7LL0RB8SKX&l=dataLayer&cx=c&gtm=45He54g3h1v9210206512za200&tag_exp=102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103106314~103106316~103116025 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 20 Apr 2025 01:17:04 GMT
expires: Sun, 20 Apr 2025 01:17:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1055:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1055:0
report-to: {"group":"ascgcycc:1055:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1055:0"}],}
server: Google Tag Manager
content-length: 127075
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: application/javascript
etag: W/"c365599ef880dd1ec0d8b7eb4ec"
expires: Wed, 16 Apr 2025 21:26:53 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBX63NDQH3hhsAAAwBuUwKDAH3bhwAAAwBnJIhHwG31AAAAA
x-77-nzt-ray: 2a494a156f3df05a324b04682cef561e
x-77-cache: HIT
x-77-age: 7046
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1690
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 20 Apr 2025 01:17:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK nyc123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
etag: W/"c365599ef880dd1ec0d8b7eb4ec"
expires: Wed, 16 Apr 2025 21:26:53 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBX63NDQH3hRsAAAwBuUwKDAH3bhwAAAwBnJIhHwG31AAAAA
x-77-nzt-ray: 2a494a156f3df05a314b0468a818563a
x-77-cache: HIT
x-77-age: 7045
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: application/javascript
etag: W/"c365599ef880dd1ec0d8b7eb4ec"
expires: Wed, 16 Apr 2025 21:26:53 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBX63NDQH3hhsAAAwBuUwKDAH3bhwAAAwBnJIhHwG31AAAAA
x-77-nzt-ray: 2a494a156f3df05a324b046815bcc41d
x-77-cache: HIT
x-77-age: 7046
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

GET /wp-content/uploads/2025/04/cropped-XRED2.png HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mNIzOIUcHi4LP7gQX3JI9QVRt8Rk3%2B4vSn2PiLFovx4rxVFjmDfR6JrqzJDZCSXOKkKOVot4aiCLAHiB6AVwUIr6OxEOS3aSzqRzcvDXNG%2B6s%2FkZ9%2Bfpsdkptw4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 08 Apr 2025 18:42:15 GMT
vary: Accept-Encoding
etag: W/"67f56e07-449fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149728
cf-ray: 9330ccb5edfc7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=8030&min_rtt=678&rtt_var=9618&sent=282&recv=147&lost=0&retrans=1&sent_bytes=209582&recv_bytes=12867&delivery_rate=1742653&cwnd=48900&unsent_bytes=0&cid=ce3e4885c608896d&ts=1768&x=16"

GET /v1/sdk.js?h=waWQiOjExOTk4MDUsInNpZCI6MTUwMTU1Miwid2lkIjo3MDk1MjIsInNyYyI6Mn0=eyJ&d=xred2.net&sw=evasw.js&pbd=iOjExOTk4MDUsInNpZCI6MTUwMTU1Miwid2lkIjo3MDk1MjJ9eyJwaWQ HTTP/1.1
Host: feldot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:03 GMT
content-type: application/javascript; charset=UTF-8
server: cloudflare
vary: Accept-Encoding
cache-control: public, max-age=14400
access-control-allow-origin: https://xred2.net
etag: W/"ulJnhbHMwoC++a/FPtioxNaFavI"
x-zone: eu
content-encoding: gzip
cf-cache-status: HIT
cf-ray: 9330ccc24cf656c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 20 Apr 2025 01:17:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip

GET /wp-content/plugins/burst-statistics/helpers/timeme/timeme.min.js?ver=1.8.0.1 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qq4hf%2BiRxTqepr3JG%2FgIGzRuW1xk1VYJxOKy3wrthhMz3xrKZMnw78UEMBKD0Y%2FPXX7xFTCrdLt%2BjEAx9KGem%2Fm5mtq3Wzyc83dzfNfqBCIVz83oxPxFuRNwyCs%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 23:35:10 GMT
vary: Accept-Encoding
etag: W/"67f855ae-1930"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 42996
content-encoding: br
cf-ray: 9330ccaf9dd77129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=5007&min_rtt=678&rtt_var=4915&sent=128&recv=123&lost=0&retrans=0&sent_bytes=48396&recv_bytes=7974&delivery_rate=7866251&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=751&x=16"

GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.18.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GTRzpxjGdyD3F57a5Nn4Ho%2BuyGf3%2FCpj6DFcaDsE%2FrL5J2pNq%2BfKENwI90BBsFFW4DapPCSSRBpPruO4693r5vGZKg%2FzmK43as%2BSB20p7WSPqqSFKjU%2FSbsOVeA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 08 Apr 2025 18:58:13 GMT
vary: Accept-Encoding
etag: W/"67f571c5-2016"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb0dde57129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=3275&min_rtt=678&rtt_var=2401&sent=206&recv=141&lost=0&retrans=0&sent_bytes=122882&recv_bytes=11274&delivery_rate=968542&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=950&x=16"

POST / HTTP/1.1
Host: ekc0okhqazs7.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:08 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

GET /wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1MzMVct9TdS6KeR6hPFe8EYZEZu3mgGr58gaJ%2BM4PB0XSVkgDaJMXSc6CJ%2Fu93eZuGRihFY6RaYkikYttx6dhNW6gqLp9QGIqO4v8jyB4ouTwkyaHyxoh85b9CM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-167b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb09de07129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=3524&min_rtt=678&rtt_var=3266&sent=191&recv=138&lost=0&retrans=0&sent_bytes=108616&recv_bytes=10627&delivery_rate=3745485&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=915&x=16"

GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zgxqnkb7FY9EBk5%2BhYaL7pdv4qY5t8kAHuwQfPqvJVjRU4DzKMzNUnD9YAlAI3UL68XkMafYtEkxQXvyB6aea%2FjtSJlPQS1XCJlDGaT0Yn3kb1igPi9Uo%2FS27Yg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-2ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb0dde47129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=3275&min_rtt=678&rtt_var=2401&sent=210&recv=141&lost=0&retrans=0&sent_bytes=127501&recv_bytes=11274&delivery_rate=968542&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=954&x=16"

POST /wp-content/plugins/burst-statistics/endpoint.php HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
Content-Type: application/json
Content-Length: 321
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:02 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U53nMfEcZcO7kk%2FoJZGiwGPq090En7pQsUjoT9XEzZ%2BAD0ZZhWDtBxoFplQE7uGH5Pe8Dn%2FLTO4NxkSzkcCNYSIbINyave6LX5PxUkc9et2rQo7I4WoejeBGhfA%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 9330ccb34de97129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=10413&min_rtt=678&rtt_var=7427&sent=1970&recv=160&lost=279&retrans=281&sent_bytes=2228582&recv_bytes=13860&delivery_rate=2711933&cwnd=225057&unsent_bytes=0&cid=ce3e4885c608896d&ts=2191&x=16"

GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://xred2.net/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: application/octet-stream
content-length: 77160
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4tsYQW8o8ad44k2Je147voU%2Bb57aWoQeJVzaP6l0vEUqwYUqzZUtSPc08CtNp7maTltPS6K62v3U9mvosPU6krH%2BrBcJRZBwa%2F%2FVFBpBrYioGWT9zxb4PE1s1r4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: "67f73add-12d68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 148952
accept-ranges: bytes
cf-ray: 9330ccb48df07129-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=2975&min_rtt=678&rtt_var=2401&sent=213&recv=144&lost=0&retrans=0&sent_bytes=128597&recv_bytes=12434&delivery_rate=378123&cwnd=39000&unsent_bytes=0&cid=ce3e4885c608896d&ts=1539&x=16"

GET /library/319620/db94e0fb4b309c53bb7b2a3adcbe97fb83e62bb1.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sun, 20 Apr 2025 01:17:03 GMT
content-type: video/mp4
content-length: 176654
last-modified: Wed, 14 Aug 2024 19:10:24 GMT
etag: "66bd0120-2b20e"
expires: Fri, 22 Aug 2025 09:06:05 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-77-nzt: EwwBX63NDQH3swyfAAwBuUwKDAH3XgMAAAwBnJIhJwG3gTueAA
x-77-nzt-ray: 2a494a15e75fe85e344b04686daf7a0a
x-77-cache: HIT
x-77-age: 10423475
server: CDN77-Turbo
x-77-pop: osloNO
content-range: bytes 0-176653/176654
X-Firefox-Spdy: h2

POST / HTTP/1.1
Host: ekc0okhqazs7.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:09 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gsqe3iZlh1TOOoQ5EwWTeTfQgKkHfqDkIXnzYqhL6zZm7iCraPslSiNAv%2BDT44lrKx4zb63iqA6h4%2BXF9bqQBgrM%2BG%2F7JxgR0QisEWZ4Bg7gmv5mKHhbQwhVios%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-1194"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149737
content-encoding: br
cf-ray: 9330ccb07ddc7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=4215&min_rtt=678&rtt_var=4172&sent=139&recv=130&lost=0&retrans=0&sent_bytes=54224&recv_bytes=9526&delivery_rate=258856&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=885&x=16"

GET /wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vjwbrJw4anmhxGqVrBH6Ta%2Fi%2BMQjLkeVjOdcv17Al7hXWMDK3mahaeIGVnyeXYvxAkuJC%2BIq64GIQpknWrW8Qqvud5FT0zanqbO%2BbqgPMKi%2BmFzhkbwKPFbmaMA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 10 Apr 2025 03:28:29 GMT
vary: Accept-Encoding
etag: W/"67f73add-5ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149736
content-encoding: br
cf-ray: 9330ccb07ddd7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=4215&min_rtt=678&rtt_var=4172&sent=161&recv=131&lost=0&retrans=0&sent_bytes=78250&recv_bytes=9823&delivery_rate=258856&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=887&x=16"

POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 506
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Set-Cookie: __uvt=s%3A32%3A%223ee040cc15a5bbb69cc6226aa7bb44cc%22%3B; expires=Tue, 20 Apr 2027 01:17:02 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:08 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Wed, 21 May 2025 01:17:08 GMT
etag: W/"8Oceux4skLMHwXEFLKUX0A=="
content-encoding: gzip
cf-cache-status: HIT
age: 773386
priority: u=4,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 9330cce1c90e0afa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.8 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fu%2BG8VMZP1mRZfuIuZF3WwqDhgccvw%2BM%2F8o1xPtrVFs5B0oB5mBoAQ3Pecm2ALPARE0ulDnqGp6CVKvLsjVm74a%2BOKlbiP641gtL%2BI4CfZUSSVcga84bo8GIFq0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 05:08:19 GMT
vary: Accept-Encoding
etag: W/"67ff3b43-1c68b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149738
content-encoding: br
cf-ray: 9330ccaf2dd27129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=6844&min_rtt=678&rtt_var=5091&sent=91&recv=118&lost=0&retrans=0&sent_bytes=8009&recv_bytes=7230&delivery_rate=2131&cwnd=12000&unsent_bytes=0&cid=ce3e4885c608896d&ts=689&x=16"

GET /vwb/jhr.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:17:01 GMT
content-type: application/x-javascript
popads-node: wb9
expires: Sat, 26 Apr 2025 23:18:26 GMT
access-control-allow-origin: https://xred2.net
link: <https://blockadsnot.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBX63NDQFBDAG5TAoTAffMCgAADAHDta8CAbf/EAAA
x-77-nzt-ray: 2a494a155160195c324b0468ea678a28
x-77-cache: HIT
x-77-age: 2764
vary: Accept-Encoding, Origin
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: osloNO
X-Firefox-Spdy: h2

GET /wp-content/uploads/2025/04/cropped-XRED2-32x32.png HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Cookie: burst_uid=5e5e685f21901732ae35d250791bf2ff
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:04 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mqG5VfQjDeumPVOyqCwfNkpN0BkYFSEDI2j0AoUwS6mafDzt7RbYWePhFHvMNBljDFq9cMCS3DCekH%2BpHd5BRvAWF4J7%2FvYmg99qSng0x%2FLCQPqHVWR1BJ2wvW4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 09 Apr 2025 19:21:46 GMT
vary: Accept-Encoding
etag: W/"67f6c8ca-1ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 148952
cf-ray: 9330ccc77e307129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=10714&min_rtt=678&rtt_var=6173&sent=1979&recv=162&lost=279&retrans=281&sent_bytes=2235970&recv_bytes=14578&delivery_rate=53312&cwnd=225057&unsent_bytes=0&cid=ce3e4885c608896d&ts=4568&x=16"

POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 415
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Set-Cookie: __uvt=s%3A32%3A%222f3af23b27a06d5a7d6558ce9c456838%22%3B; expires=Tue, 20 Apr 2027 01:17:02 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET /library/319620/db94e0fb4b309c53bb7b2a3adcbe97fb83e62bb1.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sun, 20 Apr 2025 01:17:03 GMT
content-type: video/mp4
content-length: 176654
last-modified: Wed, 14 Aug 2024 19:10:24 GMT
etag: "66bd0120-2b20e"
expires: Fri, 22 Aug 2025 09:06:05 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-77-nzt: EwwBX63NDQH3swyfAAwBuUwKDAH3XgMAAAwBnJIhJwG3gTueAA
x-77-nzt-ray: 2a494a15e75fe85e344b046846ff800a
x-77-cache: HIT
x-77-age: 10423475
server: CDN77-Turbo
x-77-pop: osloNO
content-range: bytes 0-176653/176654
X-Firefox-Spdy: h2

POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 416
Origin: https://xred2.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 20 Apr 2025 01:17:02 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://xred2.net
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Set-Cookie: __uvt=s%3A32%3A%22a138c95f14f3b1578e889204347cfbae%22%3B; expires=Tue, 20 Apr 2027 01:17:02 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

GET /gtm.js?id=GTM-PZSXKZSB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 20 Apr 2025 01:17:03 GMT
expires: Sun, 20 Apr 2025 01:17:03 GMT
cache-control: private, max-age=900
last-modified: Sun, 20 Apr 2025 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1297:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1297:0
report-to: {"group":"ascgcycc:1297:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1297:0"}],}
server: Google Tag Manager
content-length: 88833
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET /actor/sarah-sofhia/ HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 01:16:59 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 9330cc9ad8b3b4f9-OSL
X-Firefox-Spdy: h2

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: xred2.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xred2.net/actor/sarah-sofhia/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 01:17:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tjjl8YMR%2B51h1DaFFad8ErHkfhBqAW2okzeppZ5AjCxUYeGvS%2FGnY8RN2VZoW72FI7rEVxfCLpxbxSgRdWlfqHmSMetuCAXV4iwzkEQAZZkVFTszcBs%2F8vbdcMA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149738
content-encoding: br
cf-ray: 9330ccb06ddb7129-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=4215&min_rtt=678&rtt_var=4172&sent=142&recv=131&lost=0&retrans=0&sent_bytes=56446&recv_bytes=9823&delivery_rate=258856&cwnd=24000&unsent_bytes=0&cid=ce3e4885c608896d&ts=887&x=16"