| javteg.com/images/logo.png | 104.21.74.218 | 200 OK | 4.0 kB |
URL GET HTTP/3javteg.com/images/logo.png IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashebe12db6c176edde31b7d4d7bd002f6d dc682031bea972777594d4f3bdf0f3f056ae379f edddbfeb27d6a0dfb3b2b95a41171cf3e5b895700fbd2173c7db983e753d6ca9
GET /images/logo.png HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:32 GMT
content-type: image/png
content-length: 4023
last-modified: Sun, 20 Aug 2023 17:18:37 GMT
etag: "fb7-6035df3c6d540"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDosWBjEdJqrQmzPVwRG0uDaWeJ%2B%2FbaERmXHLAGQPqkpjDtY1%2FHJAGLCYy2s7168rXUQM42TQXNqnXQCNWIxajW9hM%2FzcfcNVrvcxr54CM%2Bd0QnquqPJPbBTFPi%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3993aa0569d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-JRSWQ89595 | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-JRSWQ89595 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101605 bytes) Hashadb7ecc7352307a355cf05bb9b2b420c e53a1d5f71a7792db40d6abb7dbdec3249d64cdf b381184f43d802d0c5e82678aebecaa6cc66ac2a9d158bab8812e0c1a9545668
GET /gtag/js?id=G-JRSWQ89595 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 07:48:32 GMT
expires: Sat, 04 May 2024 07:48:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js | 45.133.44.53 | 200 OK | 36 kB |
URL GET HTTP/2da7b22a400.13199960a1.com/0ae085698cad0960a86703ca969164ab.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectda7b22a400.13199960a1.com Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT
File typegzip compressed data, from Unix Hash566a4b6a52868419025a02b1c98c6e16 ee36bd142ed43de676ec421cf903451f006e21e0 bfd76d6b14895cfc8b7cae0cd737c4a31ae6a78a5b44e950642d5da668a4b0ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0ae085698cad0960a86703ca969164ab.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 23 Apr 2024 09:45:19 GMT
etag: W/"6627832f-1ab1c"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| javteg.com/js/simple-lightbox.min.js | 104.21.74.218 | 200 OK | 9.8 kB |
URL GET HTTP/3javteg.com/js/simple-lightbox.min.js IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJavaScript source, ASCII text, with very long lines (46254), with no line terminators Hash2366f1599e29055581ebb2d2501c056e 2b4293e7a845aa0c7779bf92cca3015826100932 3453a4b33bb54f8be19180d6fe13d7a15a94abfbaeba7ebe5692dffd3aed7cf9
GET /js/simple-lightbox.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Fri, 28 Jan 2022 08:47:19 GMT
etag: W/"b4ae-5d6a07b8553c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VwP6YHiRTWKLDDpTbVWh2blKO6STX6eGLYMI5yKOdashfi00qXBmGEzBuPn32JHPxhXT65AjYA469leRzB6D8BS9QtK6dQT8%2Fq2QesPUGM2WFFQbRiQXrU1Ofpup"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa8569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| da7b22a400.13199960a1.com/22802538876b351854c895125b33cfd1/117555?version_name=b | 45.133.44.53 | 200 OK | 1.4 kB |
URL GET HTTP/2da7b22a400.13199960a1.com/22802538876b351854c895125b33cfd1/117555?version_name=b IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectda7b22a400.13199960a1.com Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT
Hashc10e767416953764e69bd1cc38f0e063 39ec6931ec764d1fb5ba0f6ed0c29b2c825a3438 fe1575681cbfd1da24b588ec5428488c32df2bec6245d9c9f81058bd25609bb3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /22802538876b351854c895125b33cfd1/117555?version_name=b HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/json
content-length: 1352
server: nginx/1.18.0
cache-control: max-age=300
expires: Sat, 04 May 2024 07:53:34 GMT
x-proxy-cache: MISS
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| js.capndr.com/advertising.js | 45.133.44.53 | 200 OK | 0 B |
URL GET HTTP/2js.capndr.com/advertising.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectjs.capndr.com Fingerprint0D:30:A1:FB:7E:A0:EC:89:85:17:27:67:37:21:DA:E0:CB:E3:26:06 ValiditySun, 21 Apr 2024 03:00:41 GMT - Sat, 20 Jul 2024 03:00:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261805.jpg | 172.96.160.109 | 200 OK | 35 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261805.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3 Hash498d93c206fbe04740621000736fb9d2 a4a6ca149e6780426d1070fb9b3a93ee191779fc 628b5ec315c6f04221f1b29919e34b6e0d98d3449cd3e2d7800b097e49b6d304
GET /media/video/small_261805.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 34945
last-modified: Sun, 14 Apr 2024 06:29:06 GMT
etag: "661b77b2-8881"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fp.metricswpsh.com/fp?tag_id=117555 | 157.90.84.242 | 204 No Content | 0 B |
URL OPTIONS HTTP/1.1fp.metricswpsh.com/fp?tag_id=117555 IP157.90.84.242:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20 ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=117555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://javteg.com/
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 04 May 2024 07:48:34 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://javteg.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
|
|
| 3fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ== | 45.133.44.52 | 200 OK | 0 B |
URL GET HTTP/23fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ== IP45.133.44.52:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subject3fb4026cec.ffbd26c481.com Fingerprint27:04:EE:66:BA:5B:49:EF:14:C8:8F:A8:F2:D9:35:3D:F6:0F:40:6A ValidityWed, 01 May 2024 02:50:26 GMT - Tue, 30 Jul 2024 02:50:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMTA3MTEzNzQyOTUxNzA2ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjEyMS4wIiwidGFnX2lkIjoxMTc1NTUsInNjcmVlbl9yZXNvbHV0aW9uIjoiMTI4MHgxMDI0IiwiYWRibG9jayI6MCwidGltZXpvbmVfb2xzb24iOiJVVEMiLCJ1dG1fc291cmNlIjoiIiwidXRtX21lZGl1bSI6IiIsInV0bV9jYW1wYWlnbiI6IiIsInV0bV9jb250ZW50IjoiIiwibW0iOjAsImluaXRfc3RhcnRfbGF0ZW5jeSI6MC4zMSwiaXNfdjIiOjAsImlzX3YyX2VtcHR5IjowfQ== HTTP/1.1
Host: 3fb4026cec.ffbd26c481.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| fp.metricswpsh.com/fp?tag_id=117555 | 157.90.84.242 | 204 No Content | 58 B |
URL OPTIONS HTTP/1.1fp.metricswpsh.com/fp?tag_id=117555 IP157.90.84.242:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20 ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT
Hash87385fcd2a67fc74d2fa67366ba68ea2 a604cdbb1d31ce257e8643eee9219c9c724c200c 9307cbb21345500294eae459b18a8ffb2bd2fcccd928a09efbc1e324fa9c9995
POST /fp?tag_id=117555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1836
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 04 May 2024 07:48:34 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://javteg.com
Set-Cookie: id=17485558922210463149; Expires=Sun, 04 May 2025 07:48:34 GMT; Secure; SameSite=None
Vary: Origin
|
|
| cdn-1.ggjav.com/media/video/small_261736.jpg | 172.96.160.109 | 200 OK | 33 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261736.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hash8fd98f9fc398e7ca9e9611a69d5bfecf 2396092b840c7d64c91d3ae7b66ef7c86f279cc8 ee7aed650e8bba5bf7827662819906830fd7faabdb23edd47928bbb341a06b67
GET /media/video/small_261736.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 32831
last-modified: Sun, 14 Apr 2024 05:45:41 GMT
etag: "661b6d85-803f"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261756.jpg | 172.96.160.109 | 200 OK | 30 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261756.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hash16053b6e01e4d59bcf98d2a59dd1ce9e 565b80f1e63b06c6afa7f98d044d3ed314f74d4c 633c5c5fe2f6949434915442c867935c7c4fe52fb65916a2a2c9e4a69a7319f9
GET /media/video/small_261756.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30024
last-modified: Sun, 14 Apr 2024 05:58:01 GMT
etag: "661b7069-7548"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261723.jpg | 172.96.160.109 | 200 OK | 35 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261723.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3 Hashe23028935daecc812a5e4e4ee0c7f788 d8bb95d72e5bbfabc832ee321d3c0710222400a3 05a3d187d2f3161e8fccd20f34200e62977c01069a35660c1d74b22f875e9714
GET /media/video/small_261723.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 35064
last-modified: Sun, 14 Apr 2024 05:37:40 GMT
etag: "661b6ba4-88f8"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| javteg.com/js/video.js | 104.21.74.218 | 200 OK | 1.1 kB |
IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJavaScript source, ASCII text Hash3c34f067ee76b9ec6f99bfee135932f7 ac7b0b41fe0e08d791e783f3613fbd7945f42cc9 4ed0b4fc66b06c86705d9eb2628925f3f3d0d2be282a383665bceac7768c4400
GET /js/video.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Mon, 09 Oct 2023 08:12:49 GMT
etag: W/"8ad-6074427e8c240-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8vJWhw%2BLSKgjtOHG6TouybU7srIvs8vdj1YJ3LvQdJ%2BLJSMyoBKsdxgsP9DXiL7Z%2BYyfzPkAh1wCcRN5CNIbzKB%2BdvKRoooRH5GMf6ob4hEhS1Jsz2dT7NkB9JJC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3994aae569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 5d39fe7c75.2ac4fce9b8.com/in/multy | 167.235.163.216 | 204 No Content | 0 B |
URL OPTIONS HTTP/25d39fe7c75.2ac4fce9b8.com/in/multy IP167.235.163.216:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subject2ac4fce9b8.com Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1 ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /in/multy HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://javteg.com/
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261705.jpg | 172.96.160.109 | 200 OK | 35 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261705.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hash66b0cbc696cb05f95f542e468e719c4d ce38d98e804663779a663f1727a67efc865ef56e 6b005a20f353f6c9befb422f1963b659c94a6d4948cbccc5143207958e8b2214
GET /media/video/small_261705.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 35259
last-modified: Sun, 14 Apr 2024 05:25:31 GMT
etag: "661b68cb-89bb"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261675.jpg | 172.96.160.109 | 200 OK | 31 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261675.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3 Hash177b1fd5e23ea54db21266346c332d5b 19f5a09e02aefe46e9f44e80f1eaf864fdaf1b85 e1274ce9ffaffd54ad49aa86b2bae61f8767e05231f18c29e3e954343bb5f18b
GET /media/video/small_261675.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 31057
last-modified: Sun, 14 Apr 2024 05:06:24 GMT
etag: "661b6450-7951"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261666.jpg | 172.96.160.109 | 200 OK | 34 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261666.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hashf48a7bd61018f6f37a4b6547459436c2 b808a27f52aba624ec483e9aa41d1bc346108058 b726945c53d8e33ed0c05913ba5e16babd5448125038bf088ee8bcfa52b57e2d
GET /media/video/small_261666.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 33761
last-modified: Sun, 14 Apr 2024 05:00:49 GMT
etag: "661b6301-83e1"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261798.jpg | 172.96.160.109 | 200 OK | 33 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261798.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3 Hash8b61d410081dc4810c808b757104d1c4 1932cbfdfd9be25b6d032fa0e6980ae85684c880 821dcfb505d45678429c5c82b31c5e57f732e88fc2c8cd1d67f342f56bb5f45d
GET /media/video/small_261798.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 33150
last-modified: Sun, 14 Apr 2024 06:24:44 GMT
etag: "661b76ac-817e"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261816.jpg | 172.96.160.109 | 200 OK | 28 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261816.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hash3de2e5d96847f7e925e2346306442b48 846d26d77a04915804ce523f9135c58235a0e821 00072eb7e19ffd0c291040161f7bc1e5ff862421d65d8974a269c54b23d7b04d
GET /media/video/small_261816.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 28225
last-modified: Sun, 14 Apr 2024 06:38:36 GMT
etag: "661b79ec-6e41"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261796.jpg | 172.96.160.109 | 200 OK | 31 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261796.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hashd69a09cc4656c100b309a7e7a4e7cdcc f6f2356c64e17347d2d71a26f2ce04e085116f38 27f473eb549ccc9d5f4b673684041e245a0ebb585728bc0354cc171ac48d2e3c
GET /media/video/small_261796.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30904
last-modified: Sun, 14 Apr 2024 06:23:28 GMT
etag: "661b7660-78b8"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| javteg.com/images/templatemo-wave-banner.jpg | 104.21.74.218 | 200 OK | 102 kB |
URL GET HTTP/3javteg.com/images/templatemo-wave-banner.jpg IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1864x906, components 3 Size102 kB (101658 bytes) Hash1dc3e9e8917f3d54b16a28511a5ad76e d8a2f498e7bc158790640f48355e147224d5cca1 e81aaa3d0329775e7cf57fe5c0abba1c557ddb5eeb92026b3f055cfdf13be418
GET /images/templatemo-wave-banner.jpg HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/templatemo-pod-talk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/jpeg
content-length: 101658
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "18d1a-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q2nEEzr5D9OLgr%2FJAk5M1Qdx%2BS%2Fdxgh%2B6CsEiaJhxpFkdlHHyifDUd7h%2BUQXXY9Rw9irmWUeiauqZcS%2FnocdJmiek3dXAjjTuZJcIlzJD97Xry7zPN7yYGvpgQSY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a06a51569d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/images/templatemo-wave-footer.jpg | 104.21.74.218 | 200 OK | 79 kB |
URL GET HTTP/3javteg.com/images/templatemo-wave-footer.jpg IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1864x756, components 3 Hashd8e8b9b2851597fe106f7e18b2050f92 0196a3913adc6347176b4baa755ef38e876e0db9 d94886274caf36d4fc5183b402bc775527661caabc45de4d2173bd0052816998
GET /images/templatemo-wave-footer.jpg HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/templatemo-pod-talk.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/jpeg
content-length: 78957
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "1346d-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yegd%2FzLLERvDLCyHT9d9MLI5dx84XObedHlPpTw3FOXWodyuTm9X9oH2jSFLmQS2EWakX9seSM6kz1EDvzYJNPNE3VvHWc1PLhf7P4CIzcl%2F2RlhWE4DzO9HGi7L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a07a63569d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nereserv.com/in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1 | 94.130.198.6 | 200 OK | 0 B |
URL GET HTTP/2nereserv.com/in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1 IP94.130.198.6:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectnotification.tubecup.net Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20 ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=1&event_id=0a965262-9b5a-4e5a-9d4f-d19dba7e7312&subid=1932576701&sid=872965725&spot_id=425202&created_at=2024-05-04&timezone=0&ver=8.159.0&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| javteg.com/js/jquery.min.js | 104.21.74.218 | 200 OK | 62 kB |
URL GET HTTP/3javteg.com/js/jquery.min.js IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash48abd2372de119dfd7ffb96c8f307bfe da49460a365d995ef121403cece389dafe496505 04685bdefed2099cae5f544505b8319ee7ae4d0a7f90a93b2e764bde5cad1de6
GET /js/jquery.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"14e9a-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nZ8nMqpCNjcdVm%2BTHVn8n7Aj2ncNSnH1eaWkfgnzxFCIdHTqkxkvMcqY%2FhF92J0CYGyx708CIAizUBbPPWogGGFoky8Xf%2FyQWv1pai2hoj%2BSiu5Ql6Ok%2B7vTxKQF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa2569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/js/custom.1.1.js | 104.21.74.218 | 200 OK | 37 kB |
URL GET HTTP/3javteg.com/js/custom.1.1.js IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJavaScript source, ASCII text Hashc6685d4bb77ebb655fef23ff41c29e26 015d4556f9530802173277c32aac3ed592b77347 add09ea69b4371d512b68c0739b93edf5cda3c1ee46ed6f4eae2110cf6dcc48e
GET /js/custom.1.1.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: application/javascript
last-modified: Thu, 16 Feb 2023 17:24:36 GMT
etag: W/"498-5f4d478885d00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mdRUL6TRDLWotjaTsar59KZ6fuyA%2FNbPLH10gkWxdsTcua9uC%2BLfJJ5iV%2FMe%2BR3O4kNBWN%2B6qz7uinl5LvFrUbdy7Ar1MQ5D7H0adQFpiBj%2FwEMfngnvJVAsGSqc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3994aaa569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf | 104.21.74.218 | 200 OK | 112 kB |
URL GET HTTP/3javteg.com/fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 112440, version 1.0 Size112 kB (112440 bytes) Hash31e1300d419245fd27614630601dc74d 3a284b0618771f29da8eb6be900e99439253dce0 c69bf1ccae5f13b5aa4345dcfeb209a8148ad0bfa1e0678b93792aae0429c764
GET /fonts/bootstrap-icons.woff2?8d200481aa7f02a2d63a331fc782cfaf HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/css/bootstrap-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: font/woff2
content-length: 112440
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: "1b738-5f28754df9980"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KqjlwvUHt4RJDWGCWFWszooAVtZHzRM31h6YaYB2n0u2EYX805Djn1RCneWnVo%2F%2B5oqzb56Os7qPs0Me%2FlcY5zG4OiCiGMWNGhdb%2FyqlKPTzkEk9s26fG%2BQVY3IO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3a0dab8569d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js | 45.133.44.53 | 200 OK | 115 kB |
URL GET HTTP/2da7b22a400.13199960a1.com/ff6ddfd6b5896d5fdafafcb5019ea553.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectda7b22a400.13199960a1.com Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size115 kB (114758 bytes) Hash8591290b20cf8e9a9826861cfcb25ac6 a651c51bee4cc4d55e5e83c9fed06af754ada55d 06f73c2c3c18fab180b9a09c08704d03ec168bf55f245e488acade570b943836
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ff6ddfd6b5896d5fdafafcb5019ea553.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 16 Apr 2024 12:49:54 GMT
etag: W/"661e73f2-72c69"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:35 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| 5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831 | 167.235.163.216 | 200 OK | 0 B |
URL GET HTTP/25d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831 IP167.235.163.216:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subject2ac4fce9b8.com Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1 ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=GAtEa3MyQa2Dse_ZT9zM_Wr3iIxKWYPO0C5mb_QaVKTiIixwRkmYklfBM5jBbstdrSi8-rcXvz23zuw1Y7a-5mOLfkQGRctMtz29jkJwscj_dpTZeLFJHARNX27Edi8YtYCahnE4QBGwmE0JPpmwStdBLu5EmS0M7GXtbZiFpY9bLm-FyA&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=1&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=83,27,20,108,0,89,4&need_redirect_show=0&applied_features=stage-skins-settings,test_skins&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=ac62e144-d298-4ea8-b06d-0e16806909c0&prev_step_diff=831 HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| 5d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831 | 167.235.163.216 | 200 OK | 0 B |
URL GET HTTP/25d39fe7c75.2ac4fce9b8.com/in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831 IP167.235.163.216:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subject2ac4fce9b8.com Fingerprint98:AB:7F:A9:60:1A:91:AC:3C:20:E1:6B:57:8E:E0:AA:25:8F:4F:E1 ValidityTue, 30 Apr 2024 14:01:58 GMT - Mon, 29 Jul 2024 14:01:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?tag_ab=b&site_id=31425202&adblock=0&testab=0&auction_host=&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=dch_ip,tz_offset&ssp=3964&page=https%3A%2F%2Fjavteg.com%2F&refdom=javteg.com&auction_time=1714808915&subid=1932576701&sid=872965725&tcid=0&ver=8.159.0&ver_c=&spot_id=425202&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=japanese,adult&user_fp=14185762356588688897&score=0&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D1932576701%26spot_id%3D425202%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fjavteg.com%252F%26idzone%3D0%26sid%3D1886&is_cpm=0&resp_type=&crid=54175&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Ftrack-us.byte-builders.net%2Fpop%2Fimp%3Fauth%3Dn25uq8%26c%3DblPF7fNnbUZkJz2URpPSo9MDDnX8pnjKbDWx8SRDmUT4xD-uZmNYIqt3KbOzx2fiDJKcV-4W4MlBxrEdameFdoTBm1b22gW8-VeKysH9Q40doI3vwQhAqIjJPwFlzEG5wU9bn2b4-l396vA8W-wb-WqoC3zyhAW13mAIfymXjGG2q4yNo3WzStkDVyg_AUj72SC9vZZ6M2z4tz2_qgg0dxmEdGLdOTQ_UydjnOnfrDa3JghxMOcOjwowb-f5eTDvPWHEtg8pxr9dILK0xvgBkUgQtV2e74-QOTNICBlur4uHymnUndAHjp6eYa2wx4gx0ueFomONDuZl9bAZxuWpYAcd5v-961kKw4dcjVD9Mp9SnMWy9gFATZxqj_3WjRKXSaG13NjVB3MN9JkCJI830Hp911p9v8HjKG0Vf_ItySq7B0Pv_DyJjJyt55l04SlahNFUaxWlBqUQNhRmUX8G19zLhx_sgcmDdCyiRDd4w51aW1mcoaOIuKKmpHQkwO_RK7kRPFDcebQURLuT3wRBEHdTf7h-RPR1SoAgnxujM6cPSk1tM9Q0C9bf1-R1t4QE6VMQvywYDUkTg8assnbAD2o3tvcemxmEShrY2tSL5yzXuxDqj_wsovdlUiC_Wq8GwVZSRESQxBF86glE6Sei_ASNBUhctOz0BI1PP619ETxwlBcmIHSwiR2fW3I&icons=yKViLM2qucTEOCU5BmhHNL5MKVpV3IN3S7s3_GDKIhz_NEhVCStVxpD9EU1x4XSETnhOQjkhawGRoNfX_1ZeTlJsZptNaISL6UYLc_Bao3W-dn2ZjtDu9ep78cnPt26JSqr1bl-m0EhNF_3nSF3hWk6XzYzK0DtR_vncgWF7nj--prwKzQ&ext_cid=175&px_id=53425202&min_cpm=0.1020582815124941&out_id=0&campaign_type=lq-pop&aid=3780&cid=16324&uniq=&mid=3785380817962927745&skin_id=2&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.12175732054561537&cpm=0&verify_hash=04c3e118606a89af755fec7adcf57812&is_native=2&real_bid=0.0031140000820160003&original_bid_usd=0.004&original_bid=0.004&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=27,108,0,4,83,89,20&need_redirect_show=0&applied_features=test_skins,stage-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.004&hostname=auc-inpage-hz-12-c&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000004000000000000001&ext_campaign_id_str=175&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=3fe70434-9d6b-417b-8aba-59be1a8299d8&prev_step_diff=831 HTTP/1.1
Host: 5d39fe7c75.2ac4fce9b8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 07:48:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
|
|
| static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831 | 45.133.44.24 | 200 OK | 486 B |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831 IP45.133.44.24:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76 ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hashceeb4e8840c24621c0e0352b42b38a5b 03cbceb0134a39267014595938705e2916580644 50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3
GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&mlc=1&st=0.02&cpa=1eb9eeaf-8962-4a67-a452-69bca5877f62&prev_step_diff=831 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp | 45.133.44.24 | 200 OK | 1.1 kB |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp IP45.133.44.24:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76 ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp Hash2a11e13b2bd67bb9a6cb347d7c73df13 b85460a33f9b229f42c08a6a94ae433a4d5c32ab 1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56
GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831 | 45.133.44.24 | 200 OK | 486 B |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831 IP45.133.44.24:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76 ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp Hashceeb4e8840c24621c0e0352b42b38a5b 03cbceb0134a39267014595938705e2916580644 50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3
GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=default-view-b_r-body&mlf=1&st=0.02&cpa=c42025a4-1e30-4a69-b9a8-9947ebd858eb&prev_step_diff=831 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp | 45.133.44.24 | 200 OK | 1.1 kB |
URL GET HTTP/2static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp IP45.133.44.24:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectstatic.bookmsg.com FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76 ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp Hash2a11e13b2bd67bb9a6cb347d7c73df13 b85460a33f9b229f42c08a6a94ae433a4d5c32ab 1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56
GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:35 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 07:48:35 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube | 64.233.161.84 | 302 Found | 0 B |
URL GET HTTP/2accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube IP64.233.161.84:443
CertificateIssuerGoogle Trust Services LLC Subjectaccounts.google.com Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67 ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:hY2PE3KSTo1FoMXQr12dGs-UFzH_rg:FlQwG3yDiEn3G_JX; Expires=Mon, 04-May-2026 07:48:36 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-S-XHkbTFJbBn_IVdmuP68g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ | 64.233.161.84 | 302 Found | 426 B |
URL GET HTTP/2accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ IP64.233.161.84:443
CertificateIssuerGoogle Trust Services LLC Subjectaccounts.google.com Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67 ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT
File typeHTML document, ASCII text, with very long lines (404) Hash5da7ac0b919e3c6a88c14494cdca7439 337c3d0af39ac4c84300236d4d5e9798090fb2eb 663c674993ef37d798652f031ac99724132d07e4844812a5cc43a85f522b5415
GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQz-XIMEWawbHiS-x_VMtC27FePh3BUotEgPGbJw2TBsi0wM-8mqQL0ZfVVFlbMfBkRr3MQ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:zuHPQxqQY5GItFXBHkgh5Sfzt8PKow:sn88A6nq8U3E0klO;Path=/;Expires=Mon, 04-May-2026 07:48:36 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Y1pgZtEgjpWEnTVd8EX-HA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 426
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| javteg.com/get_link.php | 104.21.74.218 | 302 Found | 1.3 kB |
IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashaa6ca4af0b96f3288afb3e3641374f05 66b66f17c666cb2551d29833fb07374f79e85040 0a70f7b0e8212cd236941f9fd53306b573cf4bdb96288c4a383934f251934b02
POST /get_link.php HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 8
Origin: https://javteg.com
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 07:48:35 GMT
content-type: text/html; charset=UTF-8
location: BASE_URI
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nfp8gFhVkqLsGpRR32rhmLNr39wdiFnh3eXgfSCqRsLu0zFLYmKFV%2FdVgBdm239S74a4sKxsn1mQNWIeFS6qLiVeLEPZbCR5ZRQfX00D4dAOaBMZXQtYS1gTfkPN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3a1bbb5569d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/BASE_URI | 104.21.74.218 | 404 Not Found | 15 kB |
IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /BASE_URI HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Referer: https://javteg.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_JRSWQ89595=GS1.1.1714808914.1.0.1714808914.0.0.0; _ga=GA1.1.1137253899.1714808914
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sat, 04 May 2024 07:48:35 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=siXKOi6m%2BR2oB%2BgyeQ3XeQA8YdGpBnBTxrGjGQqTzLCqApMMV8ss%2FpLgCHDhs7EPB4egiX5tUAyv1Za9kWgh%2FYTpyE%2BeZTRFG111acwvIx1TkygqK889qGv9g4vF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3aa5d61569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/css/templatemo-pod-talk.css | 104.21.74.218 | 200 OK | 24 kB |
URL GET HTTP/3javteg.com/css/templatemo-pod-talk.css IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
Hash432adb82e262985a8b78c0765d6055a7 57a128acd0060da9837c111da1639be2e21a743d 50a089afcca9c7c955ffb02f6c7ab76fc2cbf6086842a9272f2c74ace57f97a7
GET /css/templatemo-pod-talk.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Mon, 07 Aug 2023 15:16:43 GMT
etag: W/"5f5a-60256bbe42cc0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QBvCTFUrUC3u9IIkzwE0O6gQ7f3mkFuF8fApVZiGls3DYbsApcMQJ2vLlJuKsCVwnP7rIXcSiN5fVysiKoYpL6pWe8UP2QLDCcYzjYYRUztf4Xid%2Fg%2BqrLX013IP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a9a569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/css/bootstrap.min.css | 104.21.74.218 | 200 OK | 195 kB |
URL GET HTTP/3javteg.com/css/bootstrap.min.css IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
Size195 kB (194901 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/bootstrap.min.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"2f955-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6s25r3LWsnMcmW9V4oHWJLaT%2BvG0I66WxOyJEN3hy%2FrTj7vnhujfK3on%2FBWXyDmfxfK6RC8PkSXjRf4oevfr5bpFM%2F3Va9oYlzKsyd5y6mmxC9G9x327BdUaXv7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3992a93569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/css/bootstrap-icons.css | 104.21.74.218 | 200 OK | 89 kB |
URL GET HTTP/3javteg.com/css/bootstrap-icons.css IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
Hash00220fe2fa340d5502e177032cf423c2 1ce683e78b48dfd6a85e2b4314d85c9a52388f25 4fa72a297d7c91658cf15d00ef0a9e4e83d9a62bf29d34e5f6092e531256567c
GET /css/bootstrap-icons.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"15a0b-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1KxSCylULhzmup6k3%2FEPyzA6hJN8lrs90yUf8G2g3rkmASgO6grJd%2BZKMwgZBoeVSa%2FuCSuDhaxRBV67sAgZ2c5XAeN%2Fpy7jmfjTzK0ylz7fRfqYFl8MT3HZiysO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a96569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| javteg.com/js/bootstrap.bundle.min.js | 104.21.74.218 | 200 OK | 80 kB |
URL GET HTTP/3javteg.com/js/bootstrap.bundle.min.js IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hashd2b0d31f74e62440ea1a557f126d0c64 5c8f6cb983397deb65673b961a8657cfd6113ad9 c4b2394a30fa0e4a23c6b308541353e20872a6fd765ed8fb70e6b402029deb00
GET /js/bootstrap.bundle.min.js HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript
last-modified: Wed, 18 Jan 2023 10:32:22 GMT
etag: W/"13a70-5f28754df9980-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcEKcEd2zVbChXE8qhlEBnGokwyOvLM%2BzkApbC8UAypJk85nTMV3k0UHBpVN47WHvewH3JYMaFuyhTaRsx5NcgVAFlIdBJMHTUTizH%2BvYfZUNdEwZQj2zj6%2B%2Fq8p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993aa6569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 104.21.74.218 | 200 OK | 86 kB |
URL User Request GET HTTP/2IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJGycZE6MU1XVl3w945yh5Wt8Za13%2FD73ld2x1DKib7q7Rfy1GMeMwd640%2BVZJq9XU4ycXXyzk%2F%2FeVBALmaZyqz49VZHLq9FNa9doWjOkmqK6AXTT2iecCK7%2BpY1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3936bd856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn-1.ggjav.com/media/video/small_261760.jpg | 172.96.160.109 | 200 OK | 36 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261760.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x269, components 3 Hashae072c7f69ecb78f811d93eed480b988 d145a3fa77def61497a4e45164f56a74406f99c0 72efd001e27989eeffbd98ca0053ba785bf6749d4d7beb4081462255b7c53c3f
GET /media/video/small_261760.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 36196
last-modified: Sun, 14 Apr 2024 06:00:28 GMT
etag: "661b70fc-8d64"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js | 45.133.44.53 | 200 OK | 169 kB |
URL GET HTTP/2da7b22a400.13199960a1.com/b736a0aa40f2bd510763079b8249450f.js IP45.133.44.53:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectda7b22a400.13199960a1.com Fingerprint07:F4:C8:88:64:13:2A:27:21:B9:21:22:4E:39:31:C9:B4:0B:24:CD ValidityWed, 01 May 2024 02:20:21 GMT - Tue, 30 Jul 2024 02:20:20 GMT
Size169 kB (168568 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /b736a0aa40f2bd510763079b8249450f.js HTTP/1.1
Host: da7b22a400.13199960a1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 25 Apr 2024 13:18:02 GMT
etag: W/"662a580a-29278"
content-encoding: gzip
expires: Sat, 04 May 2024 07:53:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| storage.multstorage.com/log/count.html | 172.67.174.51 | 200 OK | 882 B |
URL GET HTTP/2storage.multstorage.com/log/count.html IP172.67.174.51:443
CertificateIssuerGoogle Trust Services LLC Subjectmultstorage.com Fingerprint63:F0:24:29:21:22:E5:42:33:61:B5:20:05:1B:EF:36:81:F5:7B:0A ValiditySun, 17 Mar 2024 08:38:54 GMT - Sat, 15 Jun 2024 08:38:53 GMT
File typeHTML document, ASCII text, with very long lines (919), with no line terminators Hash053b1fe641da8057571d40ebaf1624ab 09b2648b7d08c84621298f0b939cea5170a65022 6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4
GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 07:48:34 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 263012c0b0721c8371a7154f0f0ca2fb
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o%2BInB69Q1R9l01V1ySBBEgGt92i5fHMY%2FZGy5FZXU2DS1UjLEjZfJDr6KHBCrrttFV%2BSQS6QxdhdXS%2FGsDjvoW6Bz%2F%2B4tNau%2Bi8jxMKWDPNYDWwN8S4%2Bc5clGN5YezwvxU%2B9PpAD09my1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3a59bc65685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| javteg.com/css/custom1.0.css | 104.21.74.218 | 200 OK | 3.1 kB |
URL GET HTTP/3javteg.com/css/custom1.0.css IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeASCII text, with very long lines (3376), with no line terminators Hash888f88acfb3e9ec5788f137f0bba6972 6e0dcfeada163150985d3cf15cfc5dcf82e580ab 662b542538dc7a8ee0a667bcec9e98dc47909347d808fd5cbc6935c4629e93ff
GET /css/custom1.0.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Wed, 09 Aug 2023 00:16:42 GMT
etag: W/"c3d-6027264dd0e80-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwbqzsMjmyxmw85swHLkR248cdUVV6MDrwaZPIREecjt5tGcIbabaBhX93lY3ESHaG23iWmZGqAWd9KuO%2FvfVeT7VJ2Od046yA%2Fydhh2WdiMN7hAr96JLdt1XlQy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a9f569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0 | 64.233.161.84 | 403 Forbidden | 0 B |
URL GET HTTP/3accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0 IP64.233.161.84:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQxaVmEoUS2_QMpxbo5Kg60PtdGKuVYvkHMMMbA5TWY57f49CPQ9aabkgE9kmsmSZ7-xLBuG&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1912190290%3A1714808916150110&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 07:48:36 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-uNBdqXpfBtYGcsK4e8vG6A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| javteg.com/css/simple-lightbox.min.css | 104.21.74.218 | 200 OK | 3.8 kB |
URL GET HTTP/3javteg.com/css/simple-lightbox.min.css IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typeUnicode text, UTF-8 text, with very long lines (3857), with no line terminators Hashb23f5794879688ad711487bf90e014aa 903d8701ff38ba08fe917654b13d98572f0f2b0b 9c338de7d4722d1310bb328c18a7c626e51fc02d7e884943bc5507fc84c1d469
GET /css/simple-lightbox.min.css HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:33 GMT
content-type: text/css
last-modified: Fri, 28 Jan 2022 08:47:19 GMT
etag: W/"f02-5d6a07b8553c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=22X1TbgNVtXOygRR0ZAsMniR9V9oB3fD6MaGFX8QD4SntFq9fVZoY3Lzda8MHXYWaEgZdl8IOTsx7AuCLohq3dzah01z6t2skZmeLZaMrjFBGZs3ykNo2ewrFqu7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e6e3993a97569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn-1.ggjav.com/media/video/small_261788.jpg | 172.96.160.109 | 200 OK | 31 kB |
URL GET HTTP/2cdn-1.ggjav.com/media/video/small_261788.jpg IP172.96.160.109:443
CertificateIssuerLet's Encrypt Subjectcdn-1.ggjav.com Fingerprint32:53:CE:73:10:F3:A7:F4:56:1D:8C:F3:6F:C1:C0:45:F0:82:50:66 ValidityWed, 03 Apr 2024 21:38:26 GMT - Tue, 02 Jul 2024 21:38:25 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x268, components 3 Hash3960a1dca66e1337e3a53293f07049f9 489d7ab4b68a472de2635d0c747d7c6c65778e80 3756fda0779fe5e059cd6a1fbcc9cf65c2cb9f68d15338c81d19c8aac4b15ebf
GET /media/video/small_261788.jpg HTTP/1.1
Host: cdn-1.ggjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 04 May 2024 07:48:34 GMT
content-type: image/jpeg
content-length: 30617
last-modified: Sun, 14 Apr 2024 06:18:17 GMT
etag: "661b7529-7799"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| javteg.com/images/favicon.png | 104.21.74.218 | 200 OK | 1.3 kB |
URL GET HTTP/3javteg.com/images/favicon.png IP104.21.74.218:443
CertificateIssuerLet's Encrypt Subjectjavteg.com Fingerprint17:87:D1:E7:D4:DC:F1:BF:CE:7F:F3:A6:E3:DC:7B:D5:20:48:7E:72 ValiditySun, 14 Apr 2024 02:46:21 GMT - Sat, 13 Jul 2024 02:46:20 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashaa6ca4af0b96f3288afb3e3641374f05 66b66f17c666cb2551d29833fb07374f79e85040 0a70f7b0e8212cd236941f9fd53306b573cf4bdb96288c4a383934f251934b02
GET /images/favicon.png HTTP/1.1
Host: javteg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javteg.com/
Cookie: _ga_JRSWQ89595=GS1.1.1714808914.1.0.1714808914.0.0.0; _ga=GA1.1.1137253899.1714808914
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 07:48:36 GMT
content-type: image/png
content-length: 1298
last-modified: Sun, 20 Aug 2023 17:17:00 GMT
etag: "512-6035dedfebb00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=80ey0kYEs6tNc0gPGfstWyNUDCLfg%2B1STa0r3ZJBOYjLZSrNCXpTcFIa8i1AKBP0yqopXrEEL%2FR384bItKKt0Ya%2Ft5Xn3KvW9XOMl4tlVIi3ip6pJu7mfsVfC01H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87e6e3ac1f0a569d-OSL
alt-svc: h3=":443"; ma=86400
|
|