Report - javteg.com/

Report Overview

Submitted URL
javteg.com/
IP
104.21.74.218
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 07:49:00
Access
public
Website Title
JAVTEG 全網最齊全的線上AV,無碼a片,日本高清av影片,手機色情AV
Final URL
javteg.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
3fb4026cec.ffbd26c481.com	unknown	unknown	No data	No data	821 B	320 B	45.133.44.52
nereserv.com	40015	2020-12-21	2020-12-21	2024-05-03	583 B	320 B	94.130.198.6
static.bookmsg.com	47495	2020-09-15	2020-11-24	2024-05-03	2.2 kB	4.4 kB	45.133.44.24
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	417 B	102 kB	142.250.74.168
da7b22a400.13199960a1.com	unknown	unknown	No data	No data	1.8 kB	322 kB	45.133.44.53
js.capndr.com	316718	2021-08-30	2021-08-30	2024-05-02	397 B	374 B	45.133.44.53
cdn-1.ggjav.com	865495	2019-04-27	2019-05-24	2023-11-22	5.3 kB	395 kB	172.96.160.109
fp.metricswpsh.com	unknown	2021-10-29	2022-04-22	2024-05-03	1.0 kB	807 B	157.90.84.242
5d39fe7c75.2ac4fce9b8.com	unknown	unknown	No data	No data	7.1 kB	949 B	167.235.163.216
accounts.google.com	81	1997-09-15	2016-03-20	2024-05-02	1.7 kB	5.3 kB	64.233.161.84
storage.multstorage.com	unknown	2023-09-22	2023-09-22	2024-05-03	522 B	1.6 kB	172.67.174.51
javteg.com	unknown	unknown	No data	No data	8.1 kB	916 kB	104.21.74.218

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	13199960a1.com	Sinkholed
2024-05-04	medium	13199960a1.com	Sinkholed
2024-05-04	medium	ffbd26c481.com	Sinkholed
2024-05-04	medium	13199960a1.com	Sinkholed
2024-05-04	medium	13199960a1.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-JRSWQ89595	306 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-JRSWQ89595 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen2 Hash adb7ecc7352307a355cf05bb9b2b420c e53a1d5f71a7792db40d6abb7dbdec3249d64cdf b381184f43d802d0c5e82678aebecaa6cc66ac2a9d158bab8812e0c1a9545668 Loading...

	javteg.com/	106 B	2023-03-08	2024-05-04
Pretty URL javteg.com/ IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 07:23:26 Last Seen2024-05-04 09:49:07 Times Seen2 Hash 9858dcd91fe51aa2b7f83c1ebadadc67 909207e4a98d0dde20e137eda439129ccac58a58 89f6b8b3eb54e6ea25ec54253f1b2848930d94d003c501946a051dcd372994a1 Loading...

	javteg.com/js/custom.1.1.js	1.2 kB	2024-05-04	2024-05-04
Pretty URL javteg.com/js/custom.1.1.js IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen2 Hash c6685d4bb77ebb655fef23ff41c29e26 015d4556f9530802173277c32aac3ed592b77347 add09ea69b4371d512b68c0739b93edf5cda3c1ee46ed6f4eae2110cf6dcc48e Loading...

	javteg.com/js/video.js	2.2 kB	2024-05-04	2024-05-04
Pretty URL javteg.com/js/video.js IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen2 Hash 3c34f067ee76b9ec6f99bfee135932f7 ac7b0b41fe0e08d791e783f3613fbd7945f42cc9 4ed0b4fc66b06c86705d9eb2628925f3f3d0d2be282a383665bceac7768c4400 Loading...

	javteg.com/	43 B	2024-05-04	2024-05-04
Pretty URL javteg.com/ IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen1 Hash 9a7a4f8378993da1be4bbd2257504691 a658b7ea4ae10cbabbc15d614bff4be6383be827 e0fcfeec05bc9851440ecc924fb811485cd83018311db5c9e2cce4e28927a0e3 Loading...

	da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js	109 kB	2024-04-24	2024-05-07
Pretty URL da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js IP 45.133.44.53 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:00:34 Last Seen2024-05-07 11:41:50 Times Seen663 Hash 41230c1446cb19310867b6c3e10f8bec f600745dccd0143bbd1d83d44bd776c74f69866b 713bc0015ac5ef37f48ad9f49aa4521912b705cf01bf19409f98235b28d41dfe Loading...

	javteg.com/js/bootstrap.bundle.min.js	80 kB	2023-03-08	2024-05-18
Pretty URL javteg.com/js/bootstrap.bundle.min.js IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:58:09 Last Seen2024-05-18 02:33:39 Times Seen1508 Hash d2b0d31f74e62440ea1a557f126d0c64 5c8f6cb983397deb65673b961a8657cfd6113ad9 c4b2394a30fa0e4a23c6b308541353e20872a6fd765ed8fb70e6b402029deb00 Loading...

	javteg.com/js/simple-lightbox.min.js	46 kB	2023-03-08	2024-05-04
Pretty URL javteg.com/js/simple-lightbox.min.js IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:06:52 Last Seen2024-05-04 09:49:07 Times Seen15 Hash 2366f1599e29055581ebb2d2501c056e 2b4293e7a845aa0c7779bf92cca3015826100932 3453a4b33bb54f8be19180d6fe13d7a15a94abfbaeba7ebe5692dffd3aed7cf9 Loading...

	da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js	169 kB	2024-04-25	2024-05-16
Pretty URL da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js IP 45.133.44.53 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 17:48:27 Last Seen2024-05-16 08:49:21 Times Seen1042 Hash e164f0fc509991890121aa763019689d 16f901a89a57f87c90d6cea80cff9f8bd32756dc fdd439b2c8d28676c5e03847afc19252a3d6d88a670ba48db4ac020866c6b6ec Loading...

	storage.multstorage.com/log/count.html	718 B	2023-09-18	2024-05-18
Pretty URL storage.multstorage.com/log/count.html IP 172.67.174.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-18 17:19:52 Last Seen2024-05-18 07:01:27 Times Seen5400 Hash 1f697a0f2411e463adbc1211493fe5a6 93c154152bda427938543b8efbd8d3b594abbac7 08a5735f5232b651af89f552e8d0fb7b21d6605fba48f335318699d80d12703e Loading...

	da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js	470 kB	2024-04-16	2024-05-18
Pretty URL da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js IP 45.133.44.53 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 15:37:10 Last Seen2024-05-18 00:06:50 Times Seen1362 Hash 2902e331e5e735ad63e7510dfc434c5b 8f276d26159f74561fb370144b8cafba8bcc8bd3 26106440376cfc59241a9ef152d26483d436f1c155744bda92a41d3906e60ba2 Loading...

	javteg.com/	153 B	2024-05-04	2024-05-04
Pretty URL javteg.com/ IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen1 Hash eb5900c254cf09ff466aeaf655bdd855 afc019e2206739a1be7796017da7f67ed7389cc6 38629dcd26d9f3dfea0c32edcd8d17280b9624fc5888c3600cf78317934ae12b Loading...

	javteg.com/	6.4 kB	2024-05-04	2024-05-04
Pretty URL javteg.com/ IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 09:49:07 Last Seen2024-05-04 09:49:07 Times Seen1 Hash 3cee0eb3a9f28d26ef2e553d159cbcfb 0af2e43fa3dff05f3d95bd8dfa83c9596c2fd1b7 5c91560bba60857a8e163a0ca04148172b46bb675bb06ceb2595754bb61e362e Loading...

	javteg.com/js/jquery.min.js	86 kB	2023-03-07	2024-05-18
Pretty URL javteg.com/js/jquery.min.js IP 104.21.74.218 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:02:14 Last Seen2024-05-18 02:33:39 Times Seen1225 Hash 48abd2372de119dfd7ffb96c8f307bfe da49460a365d995ef121403cece389dafe496505 04685bdefed2099cae5f544505b8319ee7ae4d0a7f90a93b2e764bde5cad1de6 Loading...

	js.capndr.com/advertising.js	0 B	2023-03-07	2024-05-18
Pretty URL js.capndr.com/advertising.js IP 45.133.44.53 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 07:04:25 Times Seen37774580 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (51)

URL IP Response Size

javteg.com/images/logo.png

104.21.74.218

200 OK

4.0 kB

URL GET HTTP/3
javteg.com/images/logo.png
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
4.0 kB (4023 bytes)
Hash
ebe12db6c176edde31b7d4d7bd002f6d
dc682031bea972777594d4f3bdf0f3f056ae379f
edddbfeb27d6a0dfb3b2b95a41171cf3e5b895700fbd2173c7db983e753d6ca9

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:32 GMT
content-type: image/png
content-length: 4023
last-modified: Sun, 20 Aug 2023 17:18:37 GMT
etag: "fb7-6035df3c6d540"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDosWBjEdJqrQmzPVwRG0uDaWeJ%2B%2FbaERmXHLAGQPqkpjDtY1%2FHJAGLCYy2s7168rXUQM42TQXNqnXQCNWIxajW9hM%2FzcfcNVrvcxr54CM%2Bd0QnquqPJPbBTFPi%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3993aa0569d-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-JRSWQ89595

142.250.74.168

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-JRSWQ89595
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://javteg.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101605 bytes)
Hash
adb7ecc7352307a355cf05bb9b2b420c
e53a1d5f71a7792db40d6abb7dbdec3249d64cdf
b381184f43d802d0c5e82678aebecaa6cc66ac2a9d158bab8812e0c1a9545668

HTTP Headers

GET /gtag/js?id=G-JRSWQ89595 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 07:48:32 GMT
expires: Sat, 04 May 2024 07:48:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js

45.133.44.53

200 OK

36 kB

URL GET HTTP/2
da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectda7b22a400.13199960a1.com
Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD
ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT

File type
gzip compressed data, from Unix
Size
36 kB (36166 bytes)
Hash
566a4b6a52868419025a02b1c98c6e16
ee36bd142ed43de676ec421cf903451f006e21e0
bfd76d6b14895cfc8b7cae0cd737c4a31ae6a78a5b44e950642d5da668a4b0ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0ae085698cad0960a86703ca969164ab.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 23 Apr 2024 09:45:19 GMT
etag: W/"6627832f-1ab1c"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

javteg.com/js/simple-lightbox.min.js

104.21.74.218

200 OK

9.8 kB

URL GET HTTP/3
javteg.com/js/simple-lightbox.min.js
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (46254), with no line terminators
Size
9.8 kB (9778 bytes)
Hash
2366f1599e29055581ebb2d2501c056e
2b4293e7a845aa0c7779bf92cca3015826100932
3453a4b33bb54f8be19180d6fe13d7a15a94abfbaeba7ebe5692dffd3aed7cf9

HTTP Headers

GET /js/simple-lightbox.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Fri, 28 Jan 2022 08:47:19 GMT
etag: W/"b4ae-5d6a07b8553c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VwP6YHiRTWKLDDpTbVWh2blKO6STX6eGLYMI5yKOdashfi00qXBmGEzBuPn32JHPxhXT65AjYA469leRzB6D8BS9QtK6dQT8%2Fq2QesPUGM2WFFQbRiQXrU1Ofpup"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa8569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

da7b22a400.13199960a1.com/22802538876b351854c895125b33cfd1/117555?version_name=b

45.133.44.53

200 OK

1.4 kB

URL GET HTTP/2
da7b22a400.13199960a1.com/22802538876b351854c895125b33cfd1/117555?version_name=b
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectda7b22a400.13199960a1.com
Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD
ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT

File type
JSON text data
Size
1.4 kB (1352 bytes)
Hash
c10e767416953764e69bd1cc38f0e063
39ec6931ec764d1fb5ba0f6ed0c29b2c825a3438
fe1575681cbfd1da24b588ec5428488c32df2bec6245d9c9f81058bd25609bb3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /22802538876b351854c895125b33cfd1/117555?version_name=b HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/json
content-length: 1352
server: nginx/1.18.0
cache-control: max-age=300
expires: Sat, 04 May 2024 07:53:34 GMT
x-proxy-cache: MISS
access-control-allow-origin: *
X-Firefox-Spdy: h2

js.capndr.com/advertising.js

45.133.44.53

200 OK

0 B

URL GET HTTP/2
js.capndr.com/advertising.js
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjs.capndr.com
Fingerprint0D:30:A1:FB:7E:A0:EC:89:85:17:27:67:37:21:DA:E0:CB:E3:26:06
ValiditySun, 21 Apr 2024 03:00:41 GMT - Sat, 20 Jul 2024 03:00:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261805.jpg

172.96.160.109

200 OK

35 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261805.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3
Size
35 kB (34945 bytes)
Hash
498d93c206fbe04740621000736fb9d2
a4a6ca149e6780426d1070fb9b3a93ee191779fc
628b5ec315c6f04221f1b29919e34b6e0d98d3449cd3e2d7800b097e49b6d304

HTTP Headers

GET /media/video/small_261805.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 34945
last-modified: Sun, 14 Apr 2024 06:29:06 GMT
etag: "661b77b2-8881"
accept-ranges: bytes
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=117555

157.90.84.242

204 No Content

0 B

URL OPTIONS HTTP/1.1
fp.metricswpsh.com/fp?tag_id=117555
IP
157.90.84.242:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /fp?tag_id=117555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://javteg.com/
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 04 May 2024 07:48:34 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://javteg.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

3fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ==

45.133.44.52

200 OK

0 B

URL GET HTTP/2
3fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ==
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subject3fb4026cec.ffbd26c481.com
Fingerprint27:04:EE:66:BA:5B:49:EF:14:C8:8F:A8:F2:D9:35:3D:F6:0F:40:6A
ValidityWed, 01 May 2024 02:50:26 GMT - Tue, 30 Jul 2024 02:50:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ== HTTP/1.1
Host: 3fb4026cec.ffbd26c481.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=117555

157.90.84.242

204 No Content

58 B

URL OPTIONS HTTP/1.1
fp.metricswpsh.com/fp?tag_id=117555
IP
157.90.84.242:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type
JSON text data
Size
58 B (58 bytes)
Hash
87385fcd2a67fc74d2fa67366ba68ea2
a604cdbb1d31ce257e8643eee9219c9c724c200c
9307cbb21345500294eae459b18a8ffb2bd2fcccd928a09efbc1e324fa9c9995

HTTP Headers

POST /fp?tag_id=117555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1836
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 04 May 2024 07:48:34 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://javteg.com
Set-Cookie: id=17485558922210463149; Expires=Sun, 04 May 2025 07:48:34 GMT; Secure; SameSite=None
Vary: Origin

cdn-1.ggjav.com/media/video/small_261736.jpg

172.96.160.109

200 OK

33 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261736.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
33 kB (32831 bytes)
Hash
8fd98f9fc398e7ca9e9611a69d5bfecf
2396092b840c7d64c91d3ae7b66ef7c86f279cc8
ee7aed650e8bba5bf7827662819906830fd7faabdb23edd47928bbb341a06b67

HTTP Headers

GET /media/video/small_261736.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 32831
last-modified: Sun, 14 Apr 2024 05:45:41 GMT
etag: "661b6d85-803f"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261756.jpg

172.96.160.109

200 OK

30 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261756.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
30 kB (30024 bytes)
Hash
16053b6e01e4d59bcf98d2a59dd1ce9e
565b80f1e63b06c6afa7f98d044d3ed314f74d4c
633c5c5fe2f6949434915442c867935c7c4fe52fb65916a2a2c9e4a69a7319f9

HTTP Headers

GET /media/video/small_261756.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30024
last-modified: Sun, 14 Apr 2024 05:58:01 GMT
etag: "661b7069-7548"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261723.jpg

172.96.160.109

200 OK

35 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261723.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3
Size
35 kB (35064 bytes)
Hash
e23028935daecc812a5e4e4ee0c7f788
d8bb95d72e5bbfabc832ee321d3c0710222400a3
05a3d187d2f3161e8fccd20f34200e62977c01069a35660c1d74b22f875e9714

HTTP Headers

GET /media/video/small_261723.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 35064
last-modified: Sun, 14 Apr 2024 05:37:40 GMT
etag: "661b6ba4-88f8"
accept-ranges: bytes
X-Firefox-Spdy: h2

javteg.com/js/video.js

104.21.74.218

200 OK

1.1 kB

URL GET HTTP/3
javteg.com/js/video.js
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JavaScript source, ASCII text
Size
1.1 kB (1119 bytes)
Hash
3c34f067ee76b9ec6f99bfee135932f7
ac7b0b41fe0e08d791e783f3613fbd7945f42cc9
4ed0b4fc66b06c86705d9eb2628925f3f3d0d2be282a383665bceac7768c4400

HTTP Headers

GET /js/video.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Mon, 09 Oct 2023 08:12:49 GMT
etag: W/"8ad-6074427e8c240-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8vJWhw%2BLSKgjtOHG6TouybU7srIvs8vdj1YJ3LvQdJ%2BLJSMyoBKsdxgsP9DXiL7Z%2BYyfzPkAh1wCcRN5CNIbzKB%2BdvKRoooRH5GMf6ob4hEhS1Jsz2dT7NkB9JJC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3994aae569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

5d39fe7c75.2ac4fce9b8.com/in/multy

167.235.163.216

204 No Content

0 B

URL OPTIONS HTTP/2
5d39fe7c75.2ac4fce9b8.com/in/multy
IP
167.235.163.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subject2ac4fce9b8.com
Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1
ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /in/multy HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://javteg.com/
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261705.jpg

172.96.160.109

200 OK

35 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261705.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
35 kB (35259 bytes)
Hash
66b0cbc696cb05f95f542e468e719c4d
ce38d98e804663779a663f1727a67efc865ef56e
6b005a20f353f6c9befb422f1963b659c94a6d4948cbccc5143207958e8b2214

HTTP Headers

GET /media/video/small_261705.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 35259
last-modified: Sun, 14 Apr 2024 05:25:31 GMT
etag: "661b68cb-89bb"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261675.jpg

172.96.160.109

200 OK

31 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261675.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3
Size
31 kB (31057 bytes)
Hash
177b1fd5e23ea54db21266346c332d5b
19f5a09e02aefe46e9f44e80f1eaf864fdaf1b85
e1274ce9ffaffd54ad49aa86b2bae61f8767e05231f18c29e3e954343bb5f18b

HTTP Headers

GET /media/video/small_261675.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 31057
last-modified: Sun, 14 Apr 2024 05:06:24 GMT
etag: "661b6450-7951"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261666.jpg

172.96.160.109

200 OK

34 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261666.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
34 kB (33761 bytes)
Hash
f48a7bd61018f6f37a4b6547459436c2
b808a27f52aba624ec483e9aa41d1bc346108058
b726945c53d8e33ed0c05913ba5e16babd5448125038bf088ee8bcfa52b57e2d

HTTP Headers

GET /media/video/small_261666.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 33761
last-modified: Sun, 14 Apr 2024 05:00:49 GMT
etag: "661b6301-83e1"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261798.jpg

172.96.160.109

200 OK

33 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261798.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3
Size
33 kB (33150 bytes)
Hash
8b61d410081dc4810c808b757104d1c4
1932cbfdfd9be25b6d032fa0e6980ae85684c880
821dcfb505d45678429c5c82b31c5e57f732e88fc2c8cd1d67f342f56bb5f45d

HTTP Headers

GET /media/video/small_261798.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 33150
last-modified: Sun, 14 Apr 2024 06:24:44 GMT
etag: "661b76ac-817e"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261816.jpg

172.96.160.109

200 OK

28 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261816.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
28 kB (28225 bytes)
Hash
3de2e5d96847f7e925e2346306442b48
846d26d77a04915804ce523f9135c58235a0e821
00072eb7e19ffd0c291040161f7bc1e5ff862421d65d8974a269c54b23d7b04d

HTTP Headers

GET /media/video/small_261816.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 28225
last-modified: Sun, 14 Apr 2024 06:38:36 GMT
etag: "661b79ec-6e41"
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261796.jpg

172.96.160.109

200 OK

31 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261796.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
31 kB (30904 bytes)
Hash
d69a09cc4656c100b309a7e7a4e7cdcc
f6f2356c64e17347d2d71a26f2ce04e085116f38
27f473eb549ccc9d5f4b673684041e245a0ebb585728bc0354cc171ac48d2e3c

HTTP Headers

GET /media/video/small_261796.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30904
last-modified: Sun, 14 Apr 2024 06:23:28 GMT
etag: "661b7660-78b8"
accept-ranges: bytes
X-Firefox-Spdy: h2

javteg.com/images/templatemo-wave-banner.jpg

104.21.74.218

200 OK

102 kB

URL GET HTTP/3
javteg.com/images/templatemo-wave-banner.jpg
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1864x906, components 3
Size
102 kB (101658 bytes)
Hash
1dc3e9e8917f3d54b16a28511a5ad76e
d8a2f498e7bc158790640f48355e147224d5cca1
e81aaa3d0329775e7cf57fe5c0abba1c557ddb5eeb92026b3f055cfdf13be418

HTTP Headers

GET /images/templatemo-wave-banner.jpg HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/templatemo-pod-talk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/jpeg
content-length: 101658
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "18d1a-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q2nEEzr5D9OLgr%2FJAk5M1Qdx%2BS%2Fdxgh%2B6CsEiaJhxpFkdlHHyifDUd7h%2BUQXXY9Rw9irmWUeiauqZcS%2FnocdJmiek3dXAjjTuZJcIlzJD97Xry7zPN7yYGvpgQSY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a06a51569d-OSL
alt-svc: h3=":443"; ma=86400

javteg.com/images/templatemo-wave-footer.jpg

104.21.74.218

200 OK

79 kB

URL GET HTTP/3
javteg.com/images/templatemo-wave-footer.jpg
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1864x756, components 3
Size
79 kB (78957 bytes)
Hash
d8e8b9b2851597fe106f7e18b2050f92
0196a3913adc6347176b4baa755ef38e876e0db9
d94886274caf36d4fc5183b402bc775527661caabc45de4d2173bd0052816998

HTTP Headers

GET /images/templatemo-wave-footer.jpg HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/templatemo-pod-talk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/jpeg
content-length: 78957
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "1346d-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yegd%2FzLLERvDLCyHT9d9MLI5dx84XObedHlPpTw3FOXWodyuTm9X9oH2jSFLmQS2EWakX9seSM6kz1EDvzYJNPNE3VvHWc1PLhf7P4CIzcl%2F2RlhWE4DzO9HGi7L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a07a63569d-OSL
alt-svc: h3=":443"; ma=86400

nereserv.com/in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1

94.130.198.6

200 OK

0 B

URL GET HTTP/2
nereserv.com/in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1
IP
94.130.198.6:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

javteg.com/js/jquery.min.js

104.21.74.218

200 OK

62 kB

URL GET HTTP/3
javteg.com/js/jquery.min.js
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
62 kB (61645 bytes)
Hash
48abd2372de119dfd7ffb96c8f307bfe
da49460a365d995ef121403cece389dafe496505
04685bdefed2099cae5f544505b8319ee7ae4d0a7f90a93b2e764bde5cad1de6

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"14e9a-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nZ8nMqpCNjcdVm%2BTHVn8n7Aj2ncNSnH1eaWkfgnzxFCIdHTqkxkvMcqY%2FhF92J0CYGyx708CIAizUBbPPWogGGFoky8Xf%2FyQWv1pai2hoj%2BSiu5Ql6Ok%2B7vTxKQF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa2569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/js/custom.1.1.js

104.21.74.218

200 OK

37 kB

URL GET HTTP/3
javteg.com/js/custom.1.1.js
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JavaScript source, ASCII text
Size
37 kB (36693 bytes)
Hash
c6685d4bb77ebb655fef23ff41c29e26
015d4556f9530802173277c32aac3ed592b77347
add09ea69b4371d512b68c0739b93edf5cda3c1ee46ed6f4eae2110cf6dcc48e

HTTP Headers

GET /js/custom.1.1.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: application/javascript
last-modified: Thu, 16 Feb 2023 17:24:36 GMT
etag: W/"498-5f4d478885d00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mdRUL6TRDLWotjaTsar59KZ6fuyA%2FNbPLH10gkWxdsTcua9uC%2BLfJJ5iV%2FMe%2BR3O4kNBWN%2B6qz7uinl5LvFrUbdy7Ar1MQ5D7H0adQFpiBj%2FwEMfngnvJVAsGSqc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3994aaa569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf

104.21.74.218

200 OK

112 kB

URL GET HTTP/3
javteg.com/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 112440, version 1.0
Size
112 kB (112440 bytes)
Hash
31e1300d419245fd27614630601dc74d
3a284b0618771f29da8eb6be900e99439253dce0
c69bf1ccae5f13b5aa4345dcfeb209a8148ad0bfa1e0678b93792aae0429c764

HTTP Headers

GET /fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/bootstrap-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: font/woff2
content-length: 112440
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "1b738-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KqjlwvUHt4RJDWGCWFWszooAVtZHzRM31h6YaYB2n0u2EYX805Djn1RCneWnVo%2F%2B5oqzb56Os7qPs0Me%2FlcY5zG4OiCiGMWNGhdb%2FyqlKPTzkEk9s26fG%2BQVY3IO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a0dab8569d-OSL
alt-svc: h3=":443"; ma=86400

da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js

45.133.44.53

200 OK

115 kB

URL GET HTTP/2
da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectda7b22a400.13199960a1.com
Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD
ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
115 kB (114758 bytes)
Hash
8591290b20cf8e9a9826861cfcb25ac6
a651c51bee4cc4d55e5e83c9fed06af754ada55d
06f73c2c3c18fab180b9a09c08704d03ec168bf55f245e488acade570b943836

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ff6ddfd6b5896d5fdafafcb5019ea553.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 16 Apr 2024 12:49:54 GMT
etag: W/"661e73f2-72c69"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:35 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831

167.235.163.216

200 OK

0 B

URL GET HTTP/2
5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831
IP
167.235.163.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subject2ac4fce9b8.com
Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1
ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831 HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831

167.235.163.216

200 OK

0 B

URL GET HTTP/2
5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831
IP
167.235.163.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subject2ac4fce9b8.com
Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1
ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831 HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831

45.133.44.24

200 OK

486 B

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831
IP
45.133.44.24:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp
Size
486 B (486 bytes)
Hash
ceeb4e8840c24621c0e0352b42b38a5b
03cbceb0134a39267014595938705e2916580644
50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp

45.133.44.24

200 OK

1.1 kB

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp
IP
45.133.44.24:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1066 bytes)
Hash
2a11e13b2bd67bb9a6cb347d7c73df13
b85460a33f9b229f42c08a6a94ae433a4d5c32ab
1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831

45.133.44.24

200 OK

486 B

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831
IP
45.133.44.24:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp
Size
486 B (486 bytes)
Hash
ceeb4e8840c24621c0e0352b42b38a5b
03cbceb0134a39267014595938705e2916580644
50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp

45.133.44.24

200 OK

1.1 kB

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp
IP
45.133.44.24:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1066 bytes)
Hash
2a11e13b2bd67bb9a6cb347d7c73df13
b85460a33f9b229f42c08a6a94ae433a4d5c32ab
1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

64.233.161.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://javteg.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:hY2PE3KSTo1FoMXQr12dGs-UFzH_rg:FlQwG3yDiEn3G_JX; Expires=Mon, 04-May-2026 07:48:36 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-S-XHkbTFJbBn_IVdmuP68g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ

64.233.161.84

302 Found

426 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://javteg.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type
HTML document, ASCII text, with very long lines (404)
Size
426 B (426 bytes)
Hash
5da7ac0b919e3c6a88c14494cdca7439
337c3d0af39ac4c84300236d4d5e9798090fb2eb
663c674993ef37d798652f031ac99724132d07e4844812a5cc43a85f522b5415

HTTP Headers

GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:zuHPQxqQY5GItFXBHkgh5Sfzt8PKow:sn88A6nq8U3E0klO;Path=/;Expires=Mon, 04-May-2026 07:48:36 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Y1pgZtEgjpWEnTVd8EX-HA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 426
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

javteg.com/get_link.php

104.21.74.218

302 Found

1.3 kB

URL POST HTTP/3
javteg.com/get_link.php
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1298 bytes)
Hash
aa6ca4af0b96f3288afb3e3641374f05
66b66f17c666cb2551d29833fb07374f79e85040
0a70f7b0e8212cd236941f9fd53306b573cf4bdb96288c4a383934f251934b02

HTTP Headers

POST /get_link.php HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 8
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sat, 04 May 2024 07:48:35 GMT
content-type: text/html; charset=UTF-8
location: BASE_URI
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nfp8gFhVkqLsGpRR32rhmLNr39wdiFnh3eXgfSCqRsLu0zFLYmKFV%2FdVgBdm239S74a4sKxsn1mQNWIeFS6qLiVeLEPZbCR5ZRQfX00D4dAOaBMZXQtYS1gTfkPN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3a1bbb5569d-OSL
alt-svc: h3=":443"; ma=86400

javteg.com/BASE_URI

104.21.74.218

404 Not Found

15 kB

URL GET HTTP/3
javteg.com/BASE_URI
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type

Size
15 kB (14789 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /BASE_URI HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://javteg.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_JRSWQ89595=GS1.1.1714808914.1.0.1714808914.0.0.0; _ga=GA1.1.1137253899.1714808914
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 04 May 2024 07:48:35 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=siXKOi6m%2BR2oB%2BgyeQ3XeQA8YdGpBnBTxrGjGQqTzLCqApMMV8ss%2FpLgCHDhs7EPB4egiX5tUAyv1Za9kWgh%2FYTpyE%2BeZTRFG111acwvIx1TkygqK889qGv9g4vF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3aa5d61569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/css/templatemo-pod-talk.css

104.21.74.218

200 OK

24 kB

URL GET HTTP/3
javteg.com/css/templatemo-pod-talk.css
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
ASCII text
Size
24 kB (24410 bytes)
Hash
432adb82e262985a8b78c0765d6055a7
57a128acd0060da9837c111da1639be2e21a743d
50a089afcca9c7c955ffb02f6c7ab76fc2cbf6086842a9272f2c74ace57f97a7

HTTP Headers

GET /css/templatemo-pod-talk.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Mon, 07 Aug 2023 15:16:43 GMT
etag: W/"5f5a-60256bbe42cc0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QBvCTFUrUC3u9IIkzwE0O6gQ7f3mkFuF8fApVZiGls3DYbsApcMQJ2vLlJuKsCVwnP7rIXcSiN5fVysiKoYpL6pWe8UP2QLDCcYzjYYRUztf4Xid%2Fg%2BqrLX013IP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a9a569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/css/bootstrap.min.css

104.21.74.218

200 OK

195 kB

URL GET HTTP/3
javteg.com/css/bootstrap.min.css
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type

Size
195 kB (194901 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"2f955-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6s25r3LWsnMcmW9V4oHWJLaT%2BvG0I66WxOyJEN3hy%2FrTj7vnhujfK3on%2FBWXyDmfxfK6RC8PkSXjRf4oevfr5bpFM%2F3Va9oYlzKsyd5y6mmxC9G9x327BdUaXv7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3992a93569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/css/bootstrap-icons.css

104.21.74.218

200 OK

89 kB

URL GET HTTP/3
javteg.com/css/bootstrap-icons.css
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
ASCII text
Size
89 kB (88587 bytes)
Hash
00220fe2fa340d5502e177032cf423c2
1ce683e78b48dfd6a85e2b4314d85c9a52388f25
4fa72a297d7c91658cf15d00ef0a9e4e83d9a62bf29d34e5f6092e531256567c

HTTP Headers

GET /css/bootstrap-icons.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"15a0b-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1KxSCylULhzmup6k3%2FEPyzA6hJN8lrs90yUf8G2g3rkmASgO6grJd%2BZKMwgZBoeVSa%2FuCSuDhaxRBV67sAgZ2c5XAeN%2Fpy7jmfjTzK0ylz7fRfqYFl8MT3HZiysO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a96569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/js/bootstrap.bundle.min.js

104.21.74.218

200 OK

80 kB

URL GET HTTP/3
javteg.com/js/bootstrap.bundle.min.js
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
80 kB (80496 bytes)
Hash
d2b0d31f74e62440ea1a557f126d0c64
5c8f6cb983397deb65673b961a8657cfd6113ad9
c4b2394a30fa0e4a23c6b308541353e20872a6fd765ed8fb70e6b402029deb00

HTTP Headers

GET /js/bootstrap.bundle.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"13a70-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcEKcEd2zVbChXE8qhlEBnGokwyOvLM%2BzkApbC8UAypJk85nTMV3k0UHBpVN47WHvewH3JYMaFuyhTaRsx5NcgVAFlIdBJMHTUTizH%2BvYfZUNdEwZQj2zj6%2B%2Fq8p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa6569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

javteg.com/

104.21.74.218

200 OK

86 kB

URL User Request GET HTTP/2
javteg.com/
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type

Size
86 kB (85735 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJGycZE6MU1XVl3w945yh5Wt8Za13%2FD73ld2x1DKib7q7Rfy1GMeMwd640%2BVZJq9XU4ycXXyzk%2F%2FeVBALmaZyqz49VZHLq9FNa9doWjOkmqK6AXTT2iecCK7%2BpY1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3936bd856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn-1.ggjav.com/media/video/small_261760.jpg

172.96.160.109

200 OK

36 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261760.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3
Size
36 kB (36196 bytes)
Hash
ae072c7f69ecb78f811d93eed480b988
d145a3fa77def61497a4e45164f56a74406f99c0
72efd001e27989eeffbd98ca0053ba785bf6749d4d7beb4081462255b7c53c3f

HTTP Headers

GET /media/video/small_261760.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 36196
last-modified: Sun, 14 Apr 2024 06:00:28 GMT
etag: "661b70fc-8d64"
accept-ranges: bytes
X-Firefox-Spdy: h2

da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js

45.133.44.53

200 OK

169 kB

URL GET HTTP/2
da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectda7b22a400.13199960a1.com
Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD
ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT

File type

Size
169 kB (168568 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b736a0aa40f2bd510763079b8249450f.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 25 Apr 2024 13:18:02 GMT
etag: W/"662a580a-29278"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

storage.multstorage.com/log/count.html

172.67.174.51

200 OK

882 B

URL GET HTTP/2
storage.multstorage.com/log/count.html
IP
172.67.174.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint63:F0:24:29:21:22:E5:42:33:61:B5:20:05:1B:EF:36:81:F5:7B:0A
ValiditySun, 17 Mar 2024 08:38:54 GMT - Sat, 15 Jun 2024 08:38:53 GMT

File type
HTML document, ASCII text, with very long lines (919), with no line terminators
Size
882 B (882 bytes)
Hash
053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4

HTTP Headers

GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 263012c0b0721c8371a7154f0f0ca2fb
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o%2BInB69Q1R9l01V1ySBBEgGt92i5fHMY%2FZGy5FZXU2DS1UjLEjZfJDr6KHBCrrttFV%2BSQS6QxdhdXS%2FGsDjvoW6Bz%2F%2B4tNau%2Bi8jxMKWDPNYDWwN8S4%2Bc5clGN5YezwvxU%2B9PpAD09my1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3a59bc65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

javteg.com/css/custom1.0.css

104.21.74.218

200 OK

3.1 kB

URL GET HTTP/3
javteg.com/css/custom1.0.css
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
ASCII text, with very long lines (3376), with no line terminators
Size
3.1 kB (3133 bytes)
Hash
888f88acfb3e9ec5788f137f0bba6972
6e0dcfeada163150985d3cf15cfc5dcf82e580ab
662b542538dc7a8ee0a667bcec9e98dc47909347d808fd5cbc6935c4629e93ff

HTTP Headers

GET /css/custom1.0.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 09 Aug 2023 00:16:42 GMT
etag: W/"c3d-6027264dd0e80-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwbqzsMjmyxmw85swHLkR248cdUVV6MDrwaZPIREecjt5tGcIbabaBhX93lY3ESHaG23iWmZGqAWd9KuO%2FvfVeT7VJ2Od046yA%2Fydhh2WdiMN7hAr96JLdt1XlQy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a9f569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0

64.233.161.84

403 Forbidden

0 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0
IP
64.233.161.84:443
ASN
#15169 GOOGLE

Requested by
https://javteg.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-uNBdqXpfBtYGcsK4e8vG6A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

javteg.com/css/simple-lightbox.min.css

104.21.74.218

200 OK

3.8 kB

URL GET HTTP/3
javteg.com/css/simple-lightbox.min.css
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
Unicode text, UTF-8 text, with very long lines (3857), with no line terminators
Size
3.8 kB (3842 bytes)
Hash
b23f5794879688ad711487bf90e014aa
903d8701ff38ba08fe917654b13d98572f0f2b0b
9c338de7d4722d1310bb328c18a7c626e51fc02d7e884943bc5507fc84c1d469

HTTP Headers

GET /css/simple-lightbox.min.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Fri, 28 Jan 2022 08:47:19 GMT
etag: W/"f02-5d6a07b8553c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=22X1TbgNVtXOygRR0ZAsMniR9V9oB3fD6MaGFX8QD4SntFq9fVZoY3Lzda8MHXYWaEgZdl8IOTsx7AuCLohq3dzah01z6t2skZmeLZaMrjFBGZs3ykNo2ewrFqu7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a97569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn-1.ggjav.com/media/video/small_261788.jpg

172.96.160.109

200 OK

31 kB

URL GET HTTP/2
cdn-1.ggjav.com/media/video/small_261788.jpg
IP
172.96.160.109:443
ASN
#23470 RELIABLESITE

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectcdn-1.ggjav.com
Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66
ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3
Size
31 kB (30617 bytes)
Hash
3960a1dca66e1337e3a53293f07049f9
489d7ab4b68a472de2635d0c747d7c6c65778e80
3756fda0779fe5e059cd6a1fbcc9cf65c2cb9f68d15338c81d19c8aac4b15ebf

HTTP Headers

GET /media/video/small_261788.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30617
last-modified: Sun, 14 Apr 2024 06:18:17 GMT
etag: "661b7529-7799"
accept-ranges: bytes
X-Firefox-Spdy: h2

javteg.com/images/favicon.png

104.21.74.218

200 OK

1.3 kB

URL GET HTTP/3
javteg.com/images/favicon.png
IP
104.21.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javteg.com/
Certificate
IssuerLet's Encrypt
Subjectjavteg.com
Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72
ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1298 bytes)
Hash
aa6ca4af0b96f3288afb3e3641374f05
66b66f17c666cb2551d29833fb07374f79e85040
0a70f7b0e8212cd236941f9fd53306b573cf4bdb96288c4a383934f251934b02

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Cookie: _ga_JRSWQ89595=GS1.1.1714808914.1.0.1714808914.0.0.0; _ga=GA1.1.1137253899.1714808914
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:36 GMT
content-type: image/png
content-length: 1298
last-modified: Sun, 20 Aug 2023 17:17:00 GMT
etag: "512-6035dedfebb00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=80ey0kYEs6tNc0gPGfstWyNUDCLfg%2B1STa0r3ZJBOYjLZSrNCXpTcFIa8i1AKBP0yqopXrEEL%2FR384bItKKt0Ya%2Ft5Xn3KvW9XOMl4tlVIi3ip6pJu7mfsVfC01H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3ac1f0a569d-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML