Report - www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/

Report Overview

Submitted URL
www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 08:53:44
Access
public
Website Title
(1) New Message!
Final URL
www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-03	427 B	420 B	52.29.105.35
www.sex1x.com	unknown	unknown	No data	No data	26 kB	414 kB	188.114.96.1
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-03	338 B	942 B	143.204.53.97
libelradioactive.com	unknown	2024-04-29	2024-04-30	2024-05-02	7.9 kB	44 kB	172.240.108.68
pl22423769.profitablegatecpm.com	unknown	unknown	No data	No data	449 B	17 kB	192.243.59.13
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-03	490 B	7.0 kB	104.16.79.73
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-03	422 B	34 kB	188.114.97.1
rankonefoldonefold.com	unknown	2024-04-29	2024-04-30	2024-05-03	487 B	467 B	172.240.108.68
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-05-02	2.3 kB	201 kB	188.114.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.0 kB	33 kB	216.58.207.227
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-05-03	1.5 kB	846 B	192.243.59.13
cdn.barscreative1.com	25648	2021-09-08	2021-09-16	2024-05-02	486 B	1.7 kB	45.133.44.3
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-05-03	454 B	16 kB	45.133.44.10
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	416 B	6.5 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	rankonefoldonefold.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	libelradioactive.com	Sinkholed
2024-05-04	medium	unseenreport.com	Sinkholed
2024-05-04	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387	19 kB	2024-04-24	2024-05-18
Pretty URL static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:56:41 Last Seen2024-05-18 08:06:58 Times Seen2405 Hash 4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192 Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js	84 kB	2023-03-07	2024-05-18
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-18 06:53:52 Times Seen16247 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/	115 B	2024-05-04	2024-05-04
Pretty URL www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 10:53:51 Last Seen2024-05-04 10:53:51 Times Seen1 Hash 8adf3cc5b8b77671e4f066b86ad5cb45 d240213044246a7e22ea016ddd063522baffc184 815eb06606bf2a609ef3e1a6425ee689a68d8523715e64f6b9c77465a0b6901a Loading...

	pl22423769.profitablegatecpm.com/e5/6b/b0/e56bb039b99e34372488567283a6379d.js	45 kB	2024-05-04	2024-05-04
Pretty URL pl22423769.profitablegatecpm.com/e5/6b/b0/e56bb039b99e34372488567283a6379d.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 10:53:51 Last Seen2024-05-04 10:53:51 Times Seen2 Hash ef4c5c10f6acebb86a97c7c9119b0bf7 d773bfb8f090dcce3f2292fbec122d989bbb0888 50e7ca8bbb497699d0530c7f0611da7d4aef02554b77c5cad94cf2d40e2781df Loading...

	www.sex1x.com/static/js/main.min.js?v=9.0	208 kB	2023-11-05	2024-05-04
Pretty URL www.sex1x.com/static/js/main.min.js?v=9.0 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 00:12:49 Last Seen2024-05-04 10:53:51 Times Seen9 Hash 6902034bee8fe4f447869d9448001556 963b568bd6792c4f56b6a8ef2e919a98df8773cb 1ab3ac54b4f1aac0cb4698c7af949bb256559982d8547a24a5c83f49e11a8c0f Loading...

	www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/	226 B	2024-05-04	2024-05-04
Pretty URL www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 10:53:51 Last Seen2024-05-04 10:53:51 Times Seen1 Hash a8afa9413c376c8fb8821146a40db3f9 4789a2d32189f70c90fd5f98f5665013878ee962 86fef1cf42c956eba3e59f5bfc88592e0d0e0817723b2bbdf8553f114c6c1262 Loading...

	libelradioactive.com/0a/4b/90/0a4b9024f8848803b9305a7c44016e48.js	84 kB	2024-05-04	2024-05-04
Pretty URL libelradioactive.com/0a/4b/90/0a4b9024f8848803b9305a7c44016e48.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 10:53:51 Last Seen2024-05-04 10:53:51 Times Seen2 Hash bea613ddaae1dbae5fa73446b1acb40c 8e4a0dc07642c02b75c194818a0178c0699e2cd4 d112b5030beecb6bea731d0c4ffda02c25c06b0cce0223b81af99d5abec6ac9b Loading...

	unknown	1.3 kB	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 10:53:51 Last Seen2024-05-04 10:53:51 Times Seen1 Hash ddf2f749f44f82a6939f1b680bfdc3f6 378c64b9185e372ad371a78e6b5695244855aeba b8b5d8936a5a8bdd8f1343bc2cdb126df9deffd359d69e6d2e53af4f81b24238 Loading...

HTTP Transactions (54)

URL IP Response Size

www.sex1x.com/contents/qutuieyvnwog/theme/logo.png

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
www.sex1x.com/contents/qutuieyvnwog/theme/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
PNG image data, 260 x 57, 8-bit/color RGBA, non-interlaced
Size
16 kB (16209 bytes)
Hash
55dc9a30f851213f27897d0260168c7f
a33b0f4c508eaaf9e6d5c721bb41d0d8b906f16f
f336b108e8283177c33f4cb622373a7eb5c7b8583ed720a7e3eb7e95c03d9ece

HTTP Headers

GET /contents/qutuieyvnwog/theme/logo.png HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: image/png
content-length: 16209
last-modified: Thu, 11 Jan 2024 17:28:49 GMT
etag: "65a02551-3f51"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 196
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tA44fk6VcxTwwX2CWsP%2F3ARb38Oo2C%2F%2BIcM59TYEMwJtwPGopnvVhlUCapdy8b1T3LXG5t7DRb4QGq4eq4BSKlcpD4FwdWH6cEpEWjS5U9yWvefHlLhliqG2qmv%2F59sB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742720ef07127-OSL
alt-svc: h3=":443"; ma=86400

pl22423769.profitablegatecpm.com/e5/6b/b0/e56bb039b99e34372488567283a6379d.js

192.243.59.13

200 OK

16 kB

URL GET HTTP/1.1
pl22423769.profitablegatecpm.com/e5/6b/b0/e56bb039b99e34372488567283a6379d.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectprofitablegatecpm.com
Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30
ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT

File type
JavaScript source, ASCII text, with very long lines (45365), with no line terminators
Size
16 kB (16025 bytes)
Hash
ef4c5c10f6acebb86a97c7c9119b0bf7
d773bfb8f090dcce3f2292fbec122d989bbb0888
50e7ca8bbb497699d0530c7f0611da7d4aef02554b77c5cad94cf2d40e2781df

HTTP Headers

GET /e5/6b/b0/e56bb039b99e34372488567283a6379d.js HTTP/1.1
Host: pl22423769.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 08:53:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=1; expires=Tue, 07 May 2024 11:53:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 75d7a734e4940fa892a937b1a5062cfb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
353dbae1e1b45a750770ae51bef13ba7
465917a2a0bbb947e9727e7f08b584a82aa6fb81
9fa5becc3e07f31f2f08bf5f331d6bfda4f6386634ea524bc3a8c56ac1c0bc2b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 04 May 2024 08:53:18 GMT
Last-Modified: Sat, 04 May 2024 07:21:38 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zKUwCLqm523HFOQHRhCNSKzYmm3XueZHpjqzgDtPN7Z-5v7583flCQ==
Age: 5500

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6b6428e21c25d907a2fe48d0a4627c36
9a7ce54a489387ea934452bd3a26f69987cb2e3e
5823c48533219cc3ebb1d18a032db3bf3eabbd7273181019876f1eab75f8f58e

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:18 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.sex1x.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; expires=Tue, 02 May 2034 08:53:18 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387

104.16.79.73

200 OK

6.6 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
gzip compressed data, from Unix
Size
6.6 kB (6618 bytes)
Hash
065b8b612b2a930c74f2c982773add1e
aa40e7320bc02e524322efc6e5c92dbb6785571e
e495e55b18ddeb72271a48347da3de1e2716e9ca8f5ea036b6037c3600d7663b

HTTP Headers

GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742723bcb0b65-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

libelradioactive.com/0a/4b/90/0a4b9024f8848803b9305a7c44016e48.js

172.240.108.68

200 OK

30 kB

URL GET HTTP/1.1
libelradioactive.com/0a/4b/90/0a4b9024f8848803b9305a7c44016e48.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30379 bytes)
Hash
bea613ddaae1dbae5fa73446b1acb40c
8e4a0dc07642c02b75c194818a0178c0699e2cd4
d112b5030beecb6bea731d0c4ffda02c25c06b0cce0223b81af99d5abec6ac9b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0a/4b/90/0a4b9024f8848803b9305a7c44016e48.js HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 359f8c9634cc70b9428f2eab9a43d8fd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

libelradioactive.com/sbar.json?key=e56bb039b99e34372488567283a6379d&psid=CF-3448_1&uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1

172.240.108.68

200 OK

8.3 kB

URL GET HTTP/1.1
libelradioactive.com/sbar.json?key=e56bb039b99e34372488567283a6379d&psid=CF-3448_1&uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type
JSON text data
Size
8.3 kB (8337 bytes)
Hash
f95e6431c6a4c4609ca0bff27d8389fe
8db2749ec52acd9431beba7d53c6c7e42ccb4de0
2bf9c3ddb5712273ce6583c0a771cf75459709a5c5f25a8504b359aed58deebe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=e56bb039b99e34372488567283a6379d&psid=CF-3448_1&uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.sex1x.com
Access-Control-Allow-Origin: https://www.sex1x.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22323270; expires=Sun, 05 May 2024 08:53:19 GMT; secure; SameSite=None
uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; expires=Sat, 11 May 2024 08:53:19 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 08:53:19 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 08:53:19 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 05 May 2024 08:53:19 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 05 May 2024 08:53:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 292b9c109bbf19d6914efc15b4f291cc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

libelradioactive.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2skxRuuzuby4weiy15kUebgYQUz6T8zPTPuYTEbR4JxE3YjeluqumomZaq7mqru6UkuBhdkj6OfoPNMsiG6yO5VcJHJgoeAkPGUg7n4DRRW8KLMODj6Hup933qegqee9%2F38IL8kPnJ6sfqB3pNK0eV61a3c%2BNjzblbWZZL3K%2F1meD%2Bs3ayY3tutsOq%2BWXlPRDt62Xc91%2FVcr9KWRnR0f3kCQqaPW1615VZrftWr19A3%2F%2B1t7sBSB7x3Sa5C8vHic%2BcaZDRCEj9ZFXYn0%2Blb78a5opk26PHjD5OdRBcJ4nnZMQ46yfGMDW3P28%2Bgk6OpXOjeP0Qmx8T54RlYcjwTCdY7nOpkCiIB4%2F9H0RtBqBEkHSHSDyD5OQEijjsbSOJHd7Qp6O7fKJ2gY7L44jfIYkwWf76GJP5mRcl%2B5Z5WeSZ1YtHvlJD9EWR3hDQ%2FRba3AFmcIso%2Bg%2BQ%2FkuUX60jiww2rNCS%2FeIPRVoPWGVtifkcs1epNsdRkHX9JtKJ6EFAaBPVwapCUI8jOCEoMQO0V5NZBLh3kHQd56iDmF5XI87yGyyPqNltRFPCGYCF3PdroeNRzwybyaPKHAbJ0gEgNEJl9pGYfO%2FKL8%2FpVmPx72O0SljuwGUGPlygEQWEJCkpQSIIiIyh65RFX1rflI65szrxZ9mc5KIc66x7QI511RUJAzQCGlwfpJXll4qGzVbaxIy4qoh4y5gYt1mqJoBY0%2FFqzWQ8bfjOgYdBocVh5cru9FNRqzfsepF0AtQ725JiE%2F%2FsDqRyTV1%2F%2FE4yewqpTRPJl0Pw10KIE3S6xl5xY0ff61UjH4LpEmi0i23UO1CW5Pp3l2sZTiOjs1i%2FBNBCZEqkp8Yl8TtBVD4d3dUEO7%2BrCkqcbaSZjuUcnc76X0Uxc%2Bep9sVtow9dW7eDknWgCTMrHW8Jm6zThMula8vWK5FyYtjaRIN%2Bt2Y8E28zt9kpukjxd37zdXotTI6yVOhmBTlb2V4NIjslL17emK3zj201IM4LJS8T5GZkFpB4hSvdh07l%2BqwmMmnNY6qDIy6Hx2fxSSQIl5j1lJey%2Fejavh4ZOXlNZHtiH6JoF0OwBkrhEz5ToqRJUDWDzK8MsNWe3fprJYGphyJRZOGTKqC%2BnNk%2BOJ7DyotIIApeGrbrXaFDRYDW%2F2Qk9TqlfC%2F0wpAEyO%2B7Uf%2F%2F0LwAAAP%2F%2FAQAA%2F%2F%2BI86bUnAQAAA%3D%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
libelradioactive.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2skxRuuzuby4weiy15kUebgYQUz6T8zPTPuYTEbR4JxE3YjeluqumomZaq7mqru6UkuBhdkj6OfoPNMsiG6yO5VcJHJgoeAkPGUg7n4DRRW8KLMODj6Hup933qegqee9%2F38IL8kPnJ6sfqB3pNK0eV61a3c%2BNjzblbWZZL3K%2F1meD%2Bs3ayY3tutsOq%2BWXlPRDt62Xc91%2FVcr9KWRnR0f3kCQqaPW1615VZrftWr19A3%2F%2B1t7sBSB7x3Sa5C8vHic%2BcaZDRCEj9ZFXYn0%2Blb78a5opk26PHjD5OdRBcJ4nnZMQ46yfGMDW3P28%2Bgk6OpXOjeP0Qmx8T54RlYcjwTCdY7nOpkCiIB4%2F9H0RtBqBEkHSHSDyD5OQEijjsbSOJHd7Qp6O7fKJ2gY7L44jfIYkwWf76GJP5mRcl%2B5Z5WeSZ1YtHvlJD9EWR3hDQ%2FRba3AFmcIso%2Bg%2BQ%2FkuUX60jiww2rNCS%2FeIPRVoPWGVtifkcs1epNsdRkHX9JtKJ6EFAaBPVwapCUI8jOCEoMQO0V5NZBLh3kHQd56iDmF5XI87yGyyPqNltRFPCGYCF3PdroeNRzwybyaPKHAbJ0gEgNEJl9pGYfO%2FKL8%2FpVmPx72O0SljuwGUGPlygEQWEJCkpQSIIiIyh65RFX1rflI65szrxZ9mc5KIc66x7QI511RUJAzQCGlwfpJXll4qGzVbaxIy4qoh4y5gYt1mqJoBY0%2FFqzWQ8bfjOgYdBocVh5cru9FNRqzfsepF0AtQ725JiE%2F%2FsDqRyTV1%2F%2FE4yewqpTRPJl0Pw10KIE3S6xl5xY0ff61UjH4LpEmi0i23UO1CW5Pp3l2sZTiOjs1i%2FBNBCZEqkp8Yl8TtBVD4d3dUEO7%2BrCkqcbaSZjuUcnc76X0Uxc%2Bep9sVtow9dW7eDknWgCTMrHW8Jm6zThMula8vWK5FyYtjaRIN%2Bt2Y8E28zt9kpukjxd37zdXotTI6yVOhmBTlb2V4NIjslL17emK3zj201IM4LJS8T5GZkFpB4hSvdh07l%2BqwmMmnNY6qDIy6Hx2fxSSQIl5j1lJey%2Fejavh4ZOXlNZHtiH6JoF0OwBkrhEz5ToqRJUDWDzK8MsNWe3fprJYGphyJRZOGTKqC%2BnNk%2BOJ7DyotIIApeGrbrXaFDRYDW%2F2Qk9TqlfC%2F0wpAEyO%2B7Uf%2F%2F0LwAAAP%2F%2FAQAA%2F%2F%2BI86bUnAQAAA%3D%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2skxRuuzuby4weiy15kUebgYQUz6T8zPTPuYTEbR4JxE3YjeluqumomZaq7mqru6UkuBhdkj6OfoPNMsiG6yO5VcJHJgoeAkPGUg7n4DRRW8KLMODj6Hup933qegqee9%2F38IL8kPnJ6sfqB3pNK0eV61a3c%2BNjzblbWZZL3K%2F1meD%2Bs3ayY3tutsOq%2BWXlPRDt62Xc91%2FVcr9KWRnR0f3kCQqaPW1615VZrftWr19A3%2F%2B1t7sBSB7x3Sa5C8vHic%2BcaZDRCEj9ZFXYn0%2Blb78a5opk26PHjD5OdRBcJ4nnZMQ46yfGMDW3P28%2Bgk6OpXOjeP0Qmx8T54RlYcjwTCdY7nOpkCiIB4%2F9H0RtBqBEkHSHSDyD5OQEijjsbSOJHd7Qp6O7fKJ2gY7L44jfIYkwWf76GJP5mRcl%2B5Z5WeSZ1YtHvlJD9EWR3hDQ%2FRba3AFmcIso%2Bg%2BQ%2FkuUX60jiww2rNCS%2FeIPRVoPWGVtifkcs1epNsdRkHX9JtKJ6EFAaBPVwapCUI8jOCEoMQO0V5NZBLh3kHQd56iDmF5XI87yGyyPqNltRFPCGYCF3PdroeNRzwybyaPKHAbJ0gEgNEJl9pGYfO%2FKL8%2FpVmPx72O0SljuwGUGPlygEQWEJCkpQSIIiIyh65RFX1rflI65szrxZ9mc5KIc66x7QI511RUJAzQCGlwfpJXll4qGzVbaxIy4qoh4y5gYt1mqJoBY0%2FFqzWQ8bfjOgYdBocVh5cru9FNRqzfsepF0AtQ725JiE%2F%2FsDqRyTV1%2F%2FE4yewqpTRPJl0Pw10KIE3S6xl5xY0ff61UjH4LpEmi0i23UO1CW5Pp3l2sZTiOjs1i%2FBNBCZEqkp8Yl8TtBVD4d3dUEO7%2BrCkqcbaSZjuUcnc76X0Uxc%2Bep9sVtow9dW7eDknWgCTMrHW8Jm6zThMula8vWK5FyYtjaRIN%2Bt2Y8E28zt9kpukjxd37zdXotTI6yVOhmBTlb2V4NIjslL17emK3zj201IM4LJS8T5GZkFpB4hSvdh07l%2BqwmMmnNY6qDIy6Hx2fxSSQIl5j1lJey%2Fejavh4ZOXlNZHtiH6JoF0OwBkrhEz5ToqRJUDWDzK8MsNWe3fprJYGphyJRZOGTKqC%2BnNk%2BOJ7DyotIIApeGrbrXaFDRYDW%2F2Qk9TqlfC%2F0wpAEyO%2B7Uf%2F%2F0LwAAAP%2F%2FAQAA%2F%2F%2BI86bUnAQAAA%3D%3D HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 861ba51ef286606d1b92ae8331d996fa
Strict-Transport-Security: max-age=0; includeSubdomains

rankonefoldonefold.com/pixel/purst?dl=0&th=0&sc=0&rs=2050&rd=2050&fd=497&bv=24.5.6485&tmpl=136

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
rankonefoldonefold.com/pixel/purst?dl=0&th=0&sc=0&rs=2050&rd=2050&fd=497&bv=24.5.6485&tmpl=136
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectrankonefoldonefold.com
Fingerprint67:10:15:7B:C3:5D:D8:61:74:11:87:7E:20:DC:94:C4:34:E6:4F:95
ValidityMon, 29 Apr 2024 12:50:12 GMT - Sun, 28 Jul 2024 12:50:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2050&rd=2050&fd=497&bv=24.5.6485&tmpl=136 HTTP/1.1
Host: rankonefoldonefold.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=91

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=91
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=91 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png

188.114.96.1

200 OK

591 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 318935
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WiQTtjUbFPkV8iWXP%2B49eaH1Y%2FMdL4zgdGMj1DWgRw0ch00QRDy1qDSDWe7nxBBKPjACcFsqCn8BpiTG2ffuboRR3uOiRotqHHGYnF1YtF1%2BOnvTVZ2dVtsNVjsx%2Bhbji81TWSVQrV9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427ebebb56af-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css

188.114.96.1

200 OK

32 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
32 kB (32044 bytes)
Hash
039a6734d79ed9aa51cf81c52479c5fe
9cf29c4ea1a3880681d50c7228374f8073b7778b
a15bad73fc8907795285b78a4a1a1bf5e7f68b4d39988b9bb165444819cf9eb1

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 302709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f2HI6UaHfsg5Gkz8FDizUq%2FDbEDJBPdqZoF9CMwrLwx0UJgji%2Brb9XVdXjtvamSQtc%2Bbh53EipuY3SFkigqNAtUGTw8o%2F9aY2qJopfMWh9I%2FIznhdEltQ6xGR0CIp1mv%2BTFb7AeCeYQc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427e3ec21c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=97

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=97
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=97 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png

45.133.44.10

200 OK

16 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
16 kB (16093 bytes)
Hash
14cf262fabfd850855c42847d14fe775
2fafa28f167f018a0fb1f261f47380c8810803c9
972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af

HTTP Headers

GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Mon, 06 May 2024 08:53:19 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=98

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=98
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=98 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:19 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

5.8 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
5.8 kB (5829 bytes)
Hash
90f57f734b0c7e9b95f998496ff1f694
696a09a2830b9293e4e4a623faffc1e5632ced71
dfc1d4c99ffd0b60182bc4e829186a501738e0d2bb90144adc07a01c2ec3e4ff

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 08:53:19 GMT
date: Sat, 04 May 2024 08:53:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.sex1x.com/contents/videos_screenshots/2000/2190/336x189/9.jpg

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2190/336x189/9.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.0 kB (6040 bytes)
Hash
686304ce92ca13b7854bfb974cc180e1
14261e050bcdf2dbfd36984d3a61e29b81a9cb89
582d32d2bd3ce1a37ad3a8a5cc437298525563fdcd5b88f609538a6d4b99b504

HTTP Headers

GET /contents/videos_screenshots/2000/2190/336x189/9.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 6040
last-modified: Tue, 16 Apr 2024 03:06:03 GMT
etag: "661deb1b-1798"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3606
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rCj6W8VzEUt34WcTnV%2B2c22LxuCz%2FQ2nVUmhlJrxlt6ULXIYPKWYnkgBUEygCsH6egz8ydiC8L5M2AylPwK%2FsJeOP5pv7Sl%2BGdC4gM83MLR4xU3Hf9ev4wM3JJmh%2Fn0e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742801d9f7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2085/336x189/1.jpg

188.114.96.1

200 OK

7.2 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2085/336x189/1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.2 kB (7236 bytes)
Hash
64d41ae576fa10c4a688c26c224a7ae4
e212941d2cc764118e7c366f2d40018a031e23c2
f8433f025f5f75c745a63d100fcf62a2378b8b2457e402700c7d04d9c542d363

HTTP Headers

GET /contents/videos_screenshots/2000/2085/336x189/1.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 7236
last-modified: Fri, 08 Mar 2024 18:12:40 GMT
etag: "65eb5518-1c44"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3604
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZJKigK6UQniOOGBk3FUjrTI%2FzhU1v%2BtplHnjV5Li4r0fEwSAgQL3DW79oioBGeZCTMq%2B49%2FAWKMU0FvZgHv%2FlQ4z%2F0wkvn%2BwPszYKG9129Ef0PmjUCvp%2FnzE%2BNpzgwl0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742802dc17127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2084/336x189/3.jpg

188.114.96.1

200 OK

5.6 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2084/336x189/3.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.6 kB (5554 bytes)
Hash
fc8ff406145ef782f6d680f57bfb62e7
f436918b7c69eb2f495dfc6c2f97fb6eae519d2f
19d7534363197d274138f877daa1e0e0e644ebb52e67b91e0d43b82b06f4e140

HTTP Headers

GET /contents/videos_screenshots/2000/2084/336x189/3.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 5554
last-modified: Fri, 08 Mar 2024 18:08:07 GMT
etag: "65eb5407-15b2"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3603
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YD%2Fk7jxGRMJGPxBRKMRvyleJ%2FZKtt%2B0PabHCIgE%2BHceHBfU7ZoCJGjLMS8IAdePftqP7jejJZ5NHCRfGj9yKw0%2FMj5ywCQDt2Xs9W5NHOK1odLmg0KoFPnRAUxE9F53K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742803dc97127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2083/336x189/8.jpg

188.114.96.1

200 OK

4.5 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2083/336x189/8.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.5 kB (4506 bytes)
Hash
edb2c42788507f9b9948f3c262c6dc13
b5286fe8d0f7e1d4fab814880e5e4665b6675723
2b41abd451e1e87d70312487a7f8d068424f6ac5737aaa15454b57f1a45434a7

HTTP Headers

GET /contents/videos_screenshots/2000/2083/336x189/8.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 4506
last-modified: Fri, 08 Mar 2024 18:00:24 GMT
etag: "65eb5238-119a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3603
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZjPuBccTUpO4bz7vvMKwO%2BTNrmv3rTpcHI2Qd5yxtnEP%2F7DaUPTL5d21JZppusfjRHuMgrVRYXkF2lUrHyqtNrbYlP0F%2FxMR8Ef2bJOCbst0yyBTwx0qKf4r%2ByxxVqtH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742803dcc7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2081/336x189/8.jpg

188.114.96.1

200 OK

6.2 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2081/336x189/8.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.2 kB (6200 bytes)
Hash
be6f87e60c5f4078b4d9455aca2e2ffd
a4c804732b922c84049117dafc6da23fbb34a03b
588acb3a8ef9b6fbe10a252f0aaba0e1b947fc2f781b5eb5589ee9d3fd77ba29

HTTP Headers

GET /contents/videos_screenshots/2000/2081/336x189/8.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 6200
last-modified: Fri, 08 Mar 2024 17:43:04 GMT
etag: "65eb4e28-1838"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3601
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S9Yp22gtxqUdwOJaMS0Cxx1u3Oom9fcTWpij0B5UXRdI69%2FTNt7b684Ao1HSWtg1HXO15tAGxJdQgXEIkwRyxAv5gJTL616jwDy2zirnfQOyJwmyzmFXp8jQf9l%2FjRZ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742804e0b7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/favicon.ico

188.114.96.1

200 OK

3.9 kB

URL GET HTTP/3
www.sex1x.com/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
gzip compressed data, from Unix
Size
3.9 kB (3900 bytes)
Hash
5adaa311eee7b4becf86305482eea9b6
f48b7bbe8e4d1cc8233bee85b3971c0acab61612
3567ba50db2529d0637b1e4fbe91acd6dbc189dd79d43c86e7f1e4ac306b5d35

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: image/x-icon
last-modified: Wed, 25 Oct 2023 10:54:52 GMT
etag: W/"6538f3fc-c6"
content-encoding: gzip
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4560
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j9BSwuayDyXEQFvqSTY37DXKTkYUINdztfvUyCpC2IiDwmh7tK7d150x9HRPHiR%2BAMJpLp1LtG105Z9D9kfv6SOVtYIJ6%2FkVNVnYzlnGz38K3Jqu0znbKBoYLlIwf9jX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e74279cfa07127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2079/336x189/9.jpg

188.114.96.1

200 OK

8.0 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2079/336x189/9.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.0 kB (8048 bytes)
Hash
8600eb58869fcdf558df065dc95aac97
38417d16e68ce84b345cd94be1b506ee08d1116d
cf4ba38c8bba38bb6366d5e85622a63dbcb28f2f9b597d04b1f73fe85cff03a9

HTTP Headers

GET /contents/videos_screenshots/2000/2079/336x189/9.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 8048
last-modified: Fri, 08 Mar 2024 17:30:07 GMT
etag: "65eb4b1f-1f70"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2340
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9oiJJXaXO9ipwdD2cTtZ6JHSOm6OV5TJNZS8jSZ3UDRGCcXxklUmciHaqsjvzktRrtwyGReI33acgOebcV%2FQxkuQGM1uMZr8MMC%2BZZmMGUdFO3tPMe%2FY1coAb7dYbyo8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742804e117127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2253/336x189/6.jpg

188.114.96.1

200 OK

5.3 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2253/336x189/6.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.3 kB (5250 bytes)
Hash
3da47725447bf8a043946d0cf8ef8969
cb43e4c696ca7a0082d988943717d7ed41b270cc
55ca0ccc9148899ac520034ddedeecf714bf46f05ecb89a5eac9482450f691bf

HTTP Headers

GET /contents/videos_screenshots/2000/2253/336x189/6.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 5250
last-modified: Tue, 23 Apr 2024 04:22:03 GMT
etag: "6627376b-1482"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZU422yTmWv264F8hWzbnf%2B4W7hfD0lwGmgSIBH95hwkXa4mtc1Eo8Ffdo6YMIB9PrGoRwshiTruyNWy0v4fgVi7l8Xw2UoRyt861whQGQr5e%2FWE%2Bz5WsM%2BjjJbLefhND"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742801d8b7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2024/336x189/1.jpg

188.114.96.1

200 OK

4.2 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2024/336x189/1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.2 kB (4170 bytes)
Hash
1e799ffb363f5ee70bc75df11e8d1199
3769a4f61816816935cc43eccbee9c74ab5a6154
ce994c0fbca38a43b9d5ad03fbae5fbd706515b98db704e31ac6197a6962edf2

HTTP Headers

GET /contents/videos_screenshots/2000/2024/336x189/1.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 4170
last-modified: Thu, 07 Mar 2024 17:32:01 GMT
etag: "65e9fa11-104a"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jt%2Bwx7yiZIF8BrIG0snSEholyZvcbW7BIqaM%2B5YWo63UDWy4sEh3XFkm4n6%2FoMvBKLYlNeTygokWFHgrIzGFacw5m8Dolk4w1JgJCMB0WnM5q4fJ%2F2LZZzde9IDlxjzb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742806e307127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL POST HTTP/3
www.sex1x.com/cdn-cgi/rum?
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1252
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Sat, 04 May 2024 08:53:20 GMT
access-control-allow-origin: https://www.sex1x.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87e74280eeab7127-OSL
x-frame-options: DENY
x-content-type-options: nosniff

www.sex1x.com/contents/videos_screenshots/2000/2080/336x189/2.jpg

188.114.96.1

200 OK

4.5 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2080/336x189/2.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.5 kB (4504 bytes)
Hash
0454a1c0e5727115977593c9bc357450
efe60cd0bbf23b69c0d4c75a1f225e0be710ac3c
d121095b813da4a7ad4aef8252d54f2cbac780724d5930f1824d9b7c18d8d656

HTTP Headers

GET /contents/videos_screenshots/2000/2080/336x189/2.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 4504
last-modified: Fri, 08 Mar 2024 17:37:15 GMT
etag: "65eb4ccb-1198"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FheHs9Zgni9QZCR%2Bi%2BZxJnl2dzMgM8PT6ON4rtkVeyk%2BMV9%2FSXKGWDYC%2FPuurUcyif0ThpLINUC%2BikBpTTkc7Fj4gUfM8vPt%2Fw66bNqHEheg7kcDHCfujwFtFkIBaHg%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742804e107127-OSL
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

33 kB

URL GET HTTP/3
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
33 kB (33233 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 891026266d4cce2028defe54269abba3
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 08:53:18 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0J4XPmPmHs9uhDAhY3PBUv8FKlgp9GXGx68Ejt6%2F4duub3loZJN96waY4nQTkif05dShUyE4FKd%2Bn%2BL2qNoSsf0HDKPa43o7Jar1WlIsyeY3HQukVDWwnBnH2OMdMOUMkMPNYWUCc8I8JXaOzmTlmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427b2d5c568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2073/336x189/10.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2073/336x189/10.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
14 kB (13816 bytes)
Hash
b9f0c7a92e9b446637968c92d87cab13
f71b53a5f28928c21ce0faa2f1823b0412290d1d
916d14f787e2d427bd132be3311e1b198f608917bac31f3ffdbcd17fb00f80bc

HTTP Headers

GET /contents/videos_screenshots/2000/2073/336x189/10.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 13816
last-modified: Fri, 08 Mar 2024 17:05:37 GMT
etag: "65eb4561-35f8"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HLmwNPe5UXvRKGwvOGaEmW0NDOONrMuoajVCpAdngcLP4Oix%2BtP4uIi12nxhKL88E9iGl0da1cw%2BUxoHmPPjcW0Y7T%2F%2BBOeLFD1F9SHbH0UX0T5GWqUmhIdRFLz%2FXUoW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742806e2b7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2012/336x189/7.jpg

188.114.96.1

200 OK

3.3 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2012/336x189/7.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.3 kB (3340 bytes)
Hash
3a4d5d4224dc847aee0fcbcb98123171
64b8d8af05dd4a27bb8f25b8436716656b7ff190
fc7f4b8ca3a50b8742bf11191750ffc5944c1fc4d0207afc8a65e3e044275771

HTTP Headers

GET /contents/videos_screenshots/2000/2012/336x189/7.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 3340
last-modified: Thu, 07 Mar 2024 16:58:18 GMT
etag: "65e9f22a-d0c"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xoz4FB48s1jZiH3h0IdnOUFooykzRhAgIJTvLRKCu0N6QklfUj6eqGcYkHfyt%2BRb5xFHEmSkhN2jWVR1Vnwe8R3%2FCiMs%2FDMCSrydYFZ3w1utrrj%2FYY4OZz43qS2XfN4j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742808e4b7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2076/336x189/1.jpg

188.114.96.1

200 OK

6.6 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2076/336x189/1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.6 kB (6616 bytes)
Hash
c4a9c194d7cbb11712410f71aac66a5f
fe8cbe269b79b2018a6c547ecbc330863085e48a
18496f3ed85893e57c09cebb64133a0c6b30e377cd3f25aad4dccc4389239454

HTTP Headers

GET /contents/videos_screenshots/2000/2076/336x189/1.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 6616
last-modified: Fri, 08 Mar 2024 17:20:25 GMT
etag: "65eb48d9-19d8"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ob8oG%2BZzrc%2FMl4uD38HQ8CCVBG7NypPbZgDnsLZ1qfabDFXj2dJ6UUjTCvvsZCkrutCNmV6a1gUrqElcrwII%2F4d4367VTL7Gsw99jINHJE%2B3Tw6lVK22U0Q%2B393WjtYY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742806e287127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2013/336x189/6.jpg

188.114.96.1

200 OK

2.6 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2013/336x189/6.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.6 kB (2552 bytes)
Hash
36952672105effddfc5052cb6fea8fb4
e1c86ba1de5a505d0197b2c652fe5dce83431719
8fb9ba8b5dc451a81339fca0e27eb06afce2ef5c378e8aa93be53d854b5fbdde

HTTP Headers

GET /contents/videos_screenshots/2000/2013/336x189/6.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 2552
last-modified: Thu, 07 Mar 2024 17:00:21 GMT
etag: "65e9f2a5-9f8"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QEStkXAvE06y7pVvcHljLc0I6UAaJTs7hkotagszgwnT30qtvFAyF3TBr2ICNo9IN3nMULYwUkBZve%2Bzb4MxAyXyt2P8mIWwiBUkh8ayJ9bmfJn0oPmTWMqCme5rLxAN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742808e477127-OSL
alt-svc: h3=":443"; ma=86400

libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
libelradioactive.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:20 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

libelradioactive.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uzlxw9EQy4SlDl4iODOdk9Pzx9zCCZxZHHNhiSit1D%2FelJudVdT1T092YvBgOQ4%2Bgl6n9lkWQ2SXAWDzAY8LAg7nvbgXvwGChG8KDMOjr6Het%2B3nqfgqed9P98tTkkDBT25%2BoHZUVrT9aju1y58HAQXa5sqLYa1Yad1u9W8WLODt7utuv9m7T3Jt816ww98P%2FCDWk9ZGZvh%2BgyEyh53g3rXrzcb9SBqYmj%2F27vCg6MexOCUnIUS09Xn3jkoPkGaPLkq3XZusrfeTQpNc2MxEPsfptupKVMkyzK2HuJ0f8GGcce9ZzDpw7lcmME%2FRKamxPvhGVi6vxAJNtib62QaMgUT%2F0c5mEDqCRSdgJv7UOKYAFzg2hbS5NE1Y0t692%2BUztApWX3xG1Q5Jas%2Fn0OafHNZq2HtptFFrkzqMIwrqOEEqj9BVhwi31mBKg%2FB88%2BgxI9k%2FcUm0mRvy2kDJU7eYLTbphFja6wRy7Vm1JFrHRY31mSXR2FIaRhGrblBSk2g4gm0HIG6Myich0J5KGIPReYhESc1HgRB2xec%2Bp0u56FoS9YSfkDbcUADv9VBwWd%2FGCHPRuB6BG7vIbP3sK2%2BOI7Owhbfw92p4IQHlxMMRIVSEpSOoKQEpSIoc4JyUD0U2jVc9UhoV7BgkRuLHFZjk%2Fd36UOT92VKQO0IVlS72Sl5Zeahd6vqYVue1GTUYswPu6zblWEzbDeanU7Uajc6IW2F7a6AUwdXemths9m5HUC5FVDnYUdNSet%2FfyBTU%2FLq63%2BC0UM4fQiuXgYtXgMtK9A7FXbSAyeHwbDOTQJhKmT5KvK73q4%2BJefns9zYegrJjy79Es4D3FbIbIVP1HOCvn4wvmFKsnfDlI483cpylagdOpvzzZzm8sxX78u7pbFi46obHbzDZ8CsfHxLunyTpkKlfUe%2BvqyEkLZnLJfkuw33kWTXC3fncmHTItu8fqW3kWRWOqdMOgGdreyvFlxNyUvnb81X%2BMK316HsBLaokBRHZBFQZgKe3YPLlvqdIbB6yWGZh7KoxrbBlpdaEWi57Cmr4P7Vs2U9tnT2mqpq1z1A366A5veRJhUGtsJAV6B6BFecGeeZPbr000IG0ytjpu3KHtNWfzm3eXY8gVMntdAXbSZj2WayGTVjyQWLIubzmLNQdDocuZvG0e%2Bf%2FgUAAP%2F%2FAQAA%2F%2F8IJ3M8nAQAAA%3D%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
libelradioactive.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uzlxw9EQy4SlDl4iODOdk9Pzx9zCCZxZHHNhiSit1D%2FelJudVdT1T092YvBgOQ4%2Bgl6n9lkWQ2SXAWDzAY8LAg7nvbgXvwGChG8KDMOjr6Het%2B3nqfgqed9P98tTkkDBT25%2BoHZUVrT9aju1y58HAQXa5sqLYa1Yad1u9W8WLODt7utuv9m7T3Jt816ww98P%2FCDWk9ZGZvh%2BgyEyh53g3rXrzcb9SBqYmj%2F27vCg6MexOCUnIUS09Xn3jkoPkGaPLkq3XZusrfeTQpNc2MxEPsfptupKVMkyzK2HuJ0f8GGcce9ZzDpw7lcmME%2FRKamxPvhGVi6vxAJNtib62QaMgUT%2F0c5mEDqCRSdgJv7UOKYAFzg2hbS5NE1Y0t692%2BUztApWX3xG1Q5Jas%2Fn0OafHNZq2HtptFFrkzqMIwrqOEEqj9BVhwi31mBKg%2FB88%2BgxI9k%2FcUm0mRvy2kDJU7eYLTbphFja6wRy7Vm1JFrHRY31mSXR2FIaRhGrblBSk2g4gm0HIG6Myich0J5KGIPReYhESc1HgRB2xec%2Bp0u56FoS9YSfkDbcUADv9VBwWd%2FGCHPRuB6BG7vIbP3sK2%2BOI7Owhbfw92p4IQHlxMMRIVSEpSOoKQEpSIoc4JyUD0U2jVc9UhoV7BgkRuLHFZjk%2Fd36UOT92VKQO0IVlS72Sl5Zeahd6vqYVue1GTUYswPu6zblWEzbDeanU7Uajc6IW2F7a6AUwdXemths9m5HUC5FVDnYUdNSet%2FfyBTU%2FLq63%2BC0UM4fQiuXgYtXgMtK9A7FXbSAyeHwbDOTQJhKmT5KvK73q4%2BJefns9zYegrJjy79Es4D3FbIbIVP1HOCvn4wvmFKsnfDlI483cpylagdOpvzzZzm8sxX78u7pbFi46obHbzDZ8CsfHxLunyTpkKlfUe%2BvqyEkLZnLJfkuw33kWTXC3fncmHTItu8fqW3kWRWOqdMOgGdreyvFlxNyUvnb81X%2BMK316HsBLaokBRHZBFQZgKe3YPLlvqdIbB6yWGZh7KoxrbBlpdaEWi57Cmr4P7Vs2U9tnT2mqpq1z1A366A5veRJhUGtsJAV6B6BFecGeeZPbr000IG0ytjpu3KHtNWfzm3eXY8gVMntdAXbSZj2WayGTVjyQWLIubzmLNQdDocuZvG0e%2Bf%2FgUAAP%2F%2FAQAA%2F%2F8IJ3M8nAQAAA%3D%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4scxRuu3uzlxw9EQy4SlDl4iODOdk9Pzx9zCCZxZHHNhiSit1D%2FelJudVdT1T092YvBgOQ4%2Bgl6n9lkWQ2SXAWDzAY8LAg7nvbgXvwGChG8KDMOjr6Het%2B3nqfgqed9P98tTkkDBT25%2BoHZUVrT9aju1y58HAQXa5sqLYa1Yad1u9W8WLODt7utuv9m7T3Jt816ww98P%2FCDWk9ZGZvh%2BgyEyh53g3rXrzcb9SBqYmj%2F27vCg6MexOCUnIUS09Xn3jkoPkGaPLkq3XZusrfeTQpNc2MxEPsfptupKVMkyzK2HuJ0f8GGcce9ZzDpw7lcmME%2FRKamxPvhGVi6vxAJNtib62QaMgUT%2F0c5mEDqCRSdgJv7UOKYAFzg2hbS5NE1Y0t692%2BUztApWX3xG1Q5Jas%2Fn0OafHNZq2HtptFFrkzqMIwrqOEEqj9BVhwi31mBKg%2FB88%2BgxI9k%2FcUm0mRvy2kDJU7eYLTbphFja6wRy7Vm1JFrHRY31mSXR2FIaRhGrblBSk2g4gm0HIG6Myich0J5KGIPReYhESc1HgRB2xec%2Bp0u56FoS9YSfkDbcUADv9VBwWd%2FGCHPRuB6BG7vIbP3sK2%2BOI7Owhbfw92p4IQHlxMMRIVSEpSOoKQEpSIoc4JyUD0U2jVc9UhoV7BgkRuLHFZjk%2Fd36UOT92VKQO0IVlS72Sl5Zeahd6vqYVue1GTUYswPu6zblWEzbDeanU7Uajc6IW2F7a6AUwdXemths9m5HUC5FVDnYUdNSet%2FfyBTU%2FLq63%2BC0UM4fQiuXgYtXgMtK9A7FXbSAyeHwbDOTQJhKmT5KvK73q4%2BJefns9zYegrJjy79Es4D3FbIbIVP1HOCvn4wvmFKsnfDlI483cpylagdOpvzzZzm8sxX78u7pbFi46obHbzDZ8CsfHxLunyTpkKlfUe%2BvqyEkLZnLJfkuw33kWTXC3fncmHTItu8fqW3kWRWOqdMOgGdreyvFlxNyUvnb81X%2BMK316HsBLaokBRHZBFQZgKe3YPLlvqdIbB6yWGZh7KoxrbBlpdaEWi57Cmr4P7Vs2U9tnT2mqpq1z1A366A5veRJhUGtsJAV6B6BFecGeeZPbr000IG0ytjpu3KHtNWfzm3eXY8gVMntdAXbSZj2WayGTVjyQWLIubzmLNQdDocuZvG0e%2Bf%2FgUAAP%2F%2FAQAA%2F%2F8IJ3M8nAQAAA%3D%3D HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 08:53:20 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ab204993da0c955822d6ec99c5d9db68
Strict-Transport-Security: max-age=0; includeSubdomains

libelradioactive.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
libelradioactive.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectlibelradioactive.com
Fingerprint67:CA:55:0B:86:A5:5E:11:56:7F:8D:2D:DA:DF:44:8B:02:34:F3:5D
ValidityMon, 29 Apr 2024 13:04:09 GMT - Sun, 28 Jul 2024 13:04:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: libelradioactive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Cookie: u_pl=22323270; uid_id2=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 08:53:20 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 197900
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 22:40:35 GMT
expires: Fri, 02 May 2025 22:40:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 123165
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js

188.114.96.1

200 OK

813 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
813 B (813 bytes)
Hash
0013fbb3bd9e7300fa1bc9f62501dcf0
447e4a8994979e2e158b9beff79b94e7d1b29508
4cf18df81115ddab6967dc82096077ee024223dac3c6ffc9b810bffb7780a20e

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 314223
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JG0RSnDJd%2FFgF4l2j9vS3jtApD3Np4S85Y%2B5KXAzFySqT5%2F7V7zPdS%2BWtUNKIsJK4%2BODCvmN%2BWIg%2FkrPvJrp%2FaV65G07oU9nIcbjyvEsNY%2BP5GItNDXVGfLYkL6vmsUmwTBjBlkyfzfb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427f2f2356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.sex1x.com/static/styles/all-responsive-metal.css?v=9.0

188.114.96.1

200 OK

19 kB

URL GET HTTP/3
www.sex1x.com/static/styles/all-responsive-metal.css?v=9.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
gzip compressed data, from Unix
Size
19 kB (18707 bytes)
Hash
8b78b3fa47d676b05eab1f9c61edfa15
5f15ca10255f34fa68ce1aaf23f9039605f9916d
862be59b731dc7f478c6a52e88f4acd84224e48d5ed32a52566b8694242a0fc6

HTTP Headers

GET /static/styles/all-responsive-metal.css?v=9.0 HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=141389
etag: W/"66298f13-2284d"
last-modified: Wed, 24 Apr 2024 23:00:35 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1082
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTUBaIBlPqPSBzJAjHXbbj7%2BRnRsWYyST0cU%2Bsf1OXhp2G%2FDbxwMzhxXEbba%2BUJEIp5mkun%2Fy%2F64NBIBkbdv6egv9MDCk3d7X6KZUm2ft2VfDgnHQUuo1mHhgG6fNxc%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742720ee17127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

www.sex1x.com/static/styles/jquery.fancybox-metal.css?v=9.0

188.114.96.1

200 OK

1.7 kB

URL GET HTTP/3
www.sex1x.com/static/styles/jquery.fancybox-metal.css?v=9.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
gzip compressed data, from Unix
Size
1.7 kB (1734 bytes)
Hash
4800664194d7b74549a76dc498b07523
7d38efa9a166d7d1ddeaeed2943ddf361971403d
9c4ebd20b20c7be4db93c76cadeeb4db3cad32dd05506171834afac99c0cf4c1

HTTP Headers

GET /static/styles/jquery.fancybox-metal.css?v=9.0 HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=5384
etag: W/"65fee499-1508"
last-modified: Sat, 23 Mar 2024 14:18:01 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1082
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J04A53x0%2BPvl8o6C9oR3LKfD7UifiIBNwczYFgqAIFqpvYCBDmV2WYr2NiUgkTBASedTs5gCnOrf1WVBi%2BmKi75D0B34ho8zRn8%2FpClwbpmHpnSRVsnVPRzLTWeMUAPp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742720ee97127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a4b9024f8848803b9305a7c44016e48&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8

192.243.59.13

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a4b9024f8848803b9305a7c44016e48&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a4b9024f8848803b9305a7c44016e48&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 08:53:21 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e27100d9abe0ba9b02d93de78ff40a06
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e56bb039b99e34372488567283a6379d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8

192.243.59.13

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e56bb039b99e34372488567283a6379d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e56bb039b99e34372488567283a6379d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 08:53:21 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 72dbc5ea2ebef49375cad168dbbef96b
Strict-Transport-Security: max-age=0; includeSubdomains

www.sex1x.com/cdn-cgi/rum?

188.114.96.1

204 No Content

0 B

URL POST HTTP/3
www.sex1x.com/cdn-cgi/rum?
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 884
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Sat, 04 May 2024 08:53:42 GMT
access-control-allow-origin: https://www.sex1x.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87e7430a99647127-OSL
x-frame-options: DENY
x-content-type-options: nosniff

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css

188.114.96.1

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
79 kB (78689 bytes)
Hash
3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 314225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SPf05xgq2%2BvS0b%2FDLroaGtk9ftlW3N7Q0Dhs6KxdW8oqRTK81twGuGAYSzFAQWTVshDSYHDc9KrbwNRuk6oazT7zjlttepmeEkM5OWRBLIY2kxe3EQcaxrxL1qR%2FRzBI4H9u9FtZ9ssi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427e3ebd1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.sex1x.com/static/images/fonts/icomoon.ttf?nddhpi

188.114.96.1

200 OK

9.6 kB

URL GET HTTP/3
www.sex1x.com/static/images/fonts/icomoon.ttf?nddhpi
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
9.6 kB (9568 bytes)
Hash
21263355cf739547055f2da9fd6759bd
762384d3af0de2d2bd630855b3f388326038ba92
2674595ece6d29bba3197719873b35d8e2893e9eb3a0271bad0ea717e9b3d405

HTTP Headers

GET /static/images/fonts/icomoon.ttf?nddhpi HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/static/styles/all-responsive-metal.css?v=9.0
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:18 GMT
content-type: font/ttf
last-modified: Wed, 25 Oct 2023 10:54:56 GMT
etag: W/"2560-6088849250000"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zURsKMO60gKkd0riNYnyAszV2pLG8ZkQmGYtRb366TMk8OlbWHB%2Bl6OD7KUzDJNvYJFX%2F2V1VcC7k0O%2BgWtcZW4LQjFHK1Tb6ong7IxJFQKaqXvsaSiGz%2FKZdVXs8LPf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427308277127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2023/336x189/4.jpg

188.114.96.1

200 OK

5.8 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2023/336x189/4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.8 kB (5772 bytes)
Hash
361434d1d6f9ea5efa79280d6e434751
2205791248f0187aae1c8f91385ac984245a6f81
e58459cc9d1471679ba210cd6608a65b0296cb5d62b74cb925a47b2ade2b31d2

HTTP Headers

GET /contents/videos_screenshots/2000/2023/336x189/4.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 5772
last-modified: Thu, 07 Mar 2024 17:27:38 GMT
etag: "65e9f90a-168c"
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZOzPPn96Hdk%2F6v%2FX2UBz4Qx3x9MTK9R1mJhPrbz3JqG23o5T1DNotIXC6dcRWjxtHi1UoT1Yu0gpVI%2Fananc7KXHRTTGv6iw%2BGXGV%2FfD8ahnkCDJItlVFbGokUdck3m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742807e3c7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/contents/videos_screenshots/2000/2191/336x189/5.jpg

188.114.96.1

200 OK

5.1 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2191/336x189/5.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.1 kB (5112 bytes)
Hash
c7e71586be546980db8179c645572c6b
a83d9b3a24dd288312aae080f954e2cf3919f383
d1174d3d306987ed561213a81cc582da73d6e93a62136f79f856035abbc38525

HTTP Headers

GET /contents/videos_screenshots/2000/2191/336x189/5.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 5112
last-modified: Tue, 16 Apr 2024 03:18:40 GMT
etag: "661dee10-13f8"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3609
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2LtQINiknuezfPmTx6ECQewSdlGI%2BQvJ5JtRudNCRovafx6MUw9zp%2Fcs2GLf2%2FHVD3VeJb4qe%2F81Je5975NiyMGyomk9m3AyLB0uT%2FY2ln%2FmwzB9zqfF8iJtwFOpjMlL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742801d8f7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/static/js/main.min.js?v=9.0

188.114.96.1

200 OK

208 kB

URL GET HTTP/3
www.sex1x.com/static/js/main.min.js?v=9.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type

Size
208 kB (207724 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/js/main.min.js?v=9.0 HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 Oct 2023 10:54:56 GMT
etag: W/"6538f400-32b6c"
content-encoding: gzip
cache-control: max-age=31536000
cf-cache-status: HIT
age: 197
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KgDRq4Un%2B5XUAnSSs9PSjnweElyzp5b22eV2Q2GPadh9jtNi%2BiXW51zpCewH9MX4CMrha1reYrTgRfmCBGqDrfQGua7nBJnDoSp9eG1AEuzY3dtUWme35T7whXfeqUQi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742720eff7127-OSL
alt-svc: h3=":443"; ma=86400

www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/?mode=async&action=js_stats&rand=1714812798798

188.114.96.1

200 OK

43 B

URL GET HTTP/3
www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/?mode=async&action=js_stats&rand=1714812798798
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22

HTTP Headers

GET /categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/?mode=async&action=js_stats&rand=1714812798798 HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:18 GMT
content-type: image/gif
content-length: 43
x-frame-options: SAMEORIGIN
set-cookie: kt_is_visited=1; expires=Sun, 05-May-2024 08:53:18 GMT; Max-Age=86400; path=/; domain=.sex1x.com; SameSite=Lax
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzqh7a0P3qBqjz4TOkuQHX702twlE%2FbNkD0PYTXAhUE%2BtAMBXLBg45brEXhbIAjyoaEf%2FRd%2BZqy1%2BHAw7%2B5VzMPoVHF2smKzNabgwIMZBu1lkHbaA834UTtnCb89tUAo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e742787e787127-OSL
alt-svc: h3=":443"; ma=86400

cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html

45.133.44.3

200 OK

1.3 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP
45.133.44.3:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (1405), with no line terminators
Size
1.3 kB (1325 bytes)
Hash
5373f3c4843345dde67db670323b2d54
666b2db9872196e52a2bc902111de5e37aa1ae28
e398fbdac28494dec6505fb0143d4cd41cee83989517e12c13ea113fef006fda

HTTP Headers

GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sex1x.com
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 04 May 2024 09:53:19 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

www.sex1x.com/contents/videos_screenshots/2000/2082/336x189/5.jpg

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
www.sex1x.com/contents/videos_screenshots/2000/2082/336x189/5.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 336x189, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.4 kB (3388 bytes)
Hash
828e84041946d16dabaaa35af4eeae69
a89e2a07ecf0b32bd5df8744b89b6a7f7ba56516
f5ef8ea8372b72076fd9c7d49be2fcb95b53fbe2047446cab13174be3032a6c4

HTTP Headers

GET /contents/videos_screenshots/2000/2082/336x189/5.jpg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154; kt_tcookie=1; kt_is_visited=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ba97a5bb-b2fe-458e-8bf2-e9c533aa3356%3A3%3A1; sb_main_e56bb039b99e34372488567283a6379d=1; sb_count_e56bb039b99e34372488567283a6379d=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=libelradioactive.com; pp_main_0a4b9024f8848803b9305a7c44016e48=1; pp_idelay_0a4b9024f8848803b9305a7c44016e48=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:20 GMT
content-type: image/jpeg
content-length: 3388
last-modified: Fri, 08 Mar 2024 17:52:49 GMT
etag: "65eb5071-d3c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3602
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fUZbQeoQOiCDr%2FQJhC6UBd0gT2tS0e6yyReJ9VJoWGdFIdXEk15bgRZrh15gBNX%2BTudR%2FcLr6BwSMOKUmkQQmanGIvHrjOAHt1M1zGUFVr%2BKs070wfLH8198xu9JoFqC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e742804e067127-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js

188.114.96.1

200 OK

84 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JavaScript source, ASCII text, with very long lines (32025)
Size
84 kB (84380 bytes)
Hash
4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:19 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 314803
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wvgU0NbOxtt0hXx%2FoB1xcQFkLxzI8Y9ApWja0PVXrd%2Fz8T8SYbiVkVoXwV3XmP%2BEtbpQgHVny3tIPRcrbSkUX61QTs7KTI0Tmoub7cYNXrdl53OGAf95DS9jQDbtsSkJyHlkvgj4toz9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e7427ecec156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/

188.114.96.1

200 OK

42 kB

URL User Request GET HTTP/2
www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type

Size
42 kB (42518 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/ HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
set-cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; path=/; domain=.sex1x.com; secure; SameSite=None
kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; expires=Sun, 05-May-2024 08:53:17 GMT; Max-Age=86400; path=/; domain=.sex1x.com; secure; SameSite=None
kt_ips=91.90.42.154; expires=Sun, 05-May-2024 08:53:17 GMT; Max-Age=86400; path=/; domain=.sex1x.com; secure; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YGkhvOiutmEBS7Xr%2FV1S2xdb21LelPpUD%2FtLEkkQA4o5jhmpmte4SxqC8WLC8W4GwMbg8JzypJYNDKGzuQi4q0F73OGDJS9Jzh8%2FCu68W0Qyn22Rv2vna1lk9BHQ%2BUYR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e7426f4e610b49-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.sex1x.com/static/images/search.svg

188.114.96.1

200 OK

3.1 kB

URL GET HTTP/3
www.sex1x.com/static/images/search.svg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sex1x.com/categories/antonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86/
Certificate
IssuerGoogle Trust Services LLC
Subjectsex1x.com
Fingerprint37:01:67:05:FD:3A:6D:F2:01:AD:9F:2E:A7:CA:15:E2:AD:D7:C1:C8
ValidityMon, 15 Apr 2024 15:40:34 GMT - Sun, 14 Jul 2024 15:40:33 GMT

File type
SVG Scalable Vector Graphics image
Size
3.1 kB (3139 bytes)
Hash
245883cf09247af2859230e7dd7436f9
1578665972ddbee56559c1667b1690fa657c2ef6
a0a22ad7a635bb8d69f2a00ff909164bdb68ffa25c4b7a2c17aae8981159341d

HTTP Headers

GET /static/images/search.svg HTTP/1.1
Host: www.sex1x.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sex1x.com/static/styles/all-responsive-metal.css?v=9.0
Cookie: PHPSESSID=7sbnjqrein69vpk0fhcvmgs4fs; kt_qparams=category%3Dantonio-suleiman-%D8%A7%D9%86%D8%B7%D9%88%D9%86%D9%8A%D9%88-%D8%B3%D9%84%D9%8A%D9%85%D8%A7%D9%86; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 08:53:17 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Oct 2023 10:54:56 GMT
etag: W/"6538f400-c43"
content-encoding: gzip
cache-control: max-age=31536000
cf-cache-status: HIT
age: 197
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KWZD2IjRY91k8I0imBNMUFFniq1iS55Lu1NZsicfmhQbYrTM%2Fq0aMSX%2BdnIEKA4wk0iEyTzzJPYUcbLfb7fuMAAdOkxVf9sP0T2F1n7saEvsyWBGAov7iAGrQxGfBa%2FT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e74273081d7127-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML