| t.co/xxmADdIvja | 104.244.42.69 | | 219 B |
IP104.244.42.69:0
File typeHTML document, ASCII text, with very long lines (376), with no line terminators Hash8e2ecf0fda5df56ff4fd40caddbd871b 9bd73058f99fcdbd0d28c8ab50a719916226ef21 51e95c8bd37d96239c0a7b942330577649344c0bb338b3042ffc89b7a11d439c
GET /xxmADdIvja HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 13:32:29 GMT
perf: 7402827104
vary: Origin
server: tsa_f
expires: Sun, 05 May 2024 13:37:29 GMT
set-cookie: muc=e6c3a71a-4ab8-44bc-a3a1-9ae782e1f80a; Max-Age=34214400; Expires=Thu, 05 Jun 2025 13:32:29 GMT; Domain=t.co; Secure; SameSite=None
content-type: text/html; charset=utf-8
cache-control: private,max-age=300
content-length: 219
referrer-policy: unsafe-url
content-encoding: gzip
x-transaction-id: ed6d7742724052ac
x-xss-protection: 0
content-security-policy: referrer always;
strict-transport-security: max-age=0
x-response-time: 118
x-connection-hash: 1bf7c6539803bbaf9ab71c0c165149fc495ca4ffc94fdf337139293850d2e81a
X-Firefox-Spdy: h2
|
|
| t.co/favicon.ico | 104.244.42.69 | | 675 B |
IP104.244.42.69:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash864232b885e52799e6b0d1c37a4283a0 2c2500822c05b93cf169c338af2fdf7d04ea4260 2b56e0a792d9999e15f3ee39cabcba5cc3f88b4e640e71b3755c1424d8e12010
GET /favicon.ico HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.co/xxmADdIvja
DNT: 1
Connection: keep-alive
Cookie: muc=e6c3a71a-4ab8-44bc-a3a1-9ae782e1f80a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 05 May 2024 13:32:30 UTC
perf: 7402827104
server: tsa_f
content-type: image/x-icon
cache-control: no-cache, no-store, max-age=0
content-length: 675
x-transaction-id: c767a1e52da24591
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 1bf7c6539803bbaf9ab71c0c165149fc495ca4ffc94fdf337139293850d2e81a
X-Firefox-Spdy: h2
|
|
| xzxzxcxczxzfdfdgrr.blogspot.com/?cxccxfddsdfdsdsfdsffds | 216.58.207.193 | | 16 kB |
URL xzxzxcxczxzfdfdgrr.blogspot.com/?cxccxfddsdfdsdsfdsffds IP216.58.207.193:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7139) Hash6ef21d0a407a7474dbd6a824d1edcb9a 4f9dbcc2aad725e59735eaa4474d9f7385cd8391 f36a7ecf7ed5665e7e1883da4f77f14ecac5ad9f4b7944c612334714055e4ebf
GET /?cxccxfddsdfdsdsfdsffds HTTP/1.1
Host: xzxzxcxczxzfdfdgrr.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 05 May 2024 13:32:30 GMT
date: Sun, 05 May 2024 13:32:30 GMT
cache-control: private, max-age=0
last-modified: Sun, 05 May 2024 07:59:50 GMT
etag: W/"9792e59f12f81f3bf3880ad5a541ae18b166ee5b88694b5761d845244aa7cc37"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15565
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 188.225.56.13 | | 0 B |
IP188.225.56.13:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /stvK8R HTTP/1.1
Host: 188.225.56.13
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:32:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
Pragma: no-cache
Set-Cookie: _subid=376l60j14d8k;Expires=Wednesday, 05-Jun-2024 13:32:31 GMT;Max-Age=2678400;Path=/
e1aca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE5XCI6MTcxNDkxNTk1MX0sXCJjYW1wYWlnbnNcIjp7XCIxNlwiOjE3MTQ5MTU5NTF9LFwidGltZVwiOjE3MTQ5MTU5NTF9In0.7m6-5FiOqg6yfvT3Vdm-Ug-wJINTfkSfodHEX_j9kFA;Expires=Friday, 09-Sep-2078 03:05:02 GMT;Max-Age=1715002351;Path=/
_token=uuid_376l60j14d8k_376l60j14d8k66378a6f65c413.79327594;Expires=Wednesday, 05-Jun-2024 13:32:31 GMT;Max-Age=2678400;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
|
|
| code.jquery.com/jquery-3.3.1.min.js | 151.101.194.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.3.1.min.js IP151.101.194.137:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/
Origin: https://juicywomenxq.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1538f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 05 May 2024 13:32:31 GMT
age: 20115348
x-served-by: cache-lga13622-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 606502
x-timer: S1714915952.865955,VS0,VE0
vary: Accept-Encoding
content-length: 30288
X-Firefox-Spdy: h2
|
|
| juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k | 188.114.96.1 | 200 OK | 13 kB |
URL User Request GET HTTP/2juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeJavaScript source, ASCII text, with very long lines (11329) Hash2fa9df96e4f2d673e567c2f17cc8c874 d11d4de8d68138bea1d626d12405a6de9b26574d bd890e0f6805ac3485e388ecfb9ab76345182823db6d1832f8c8e2a494d06f74
GET /?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 13:32:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0, private, must-revalidate
referrer-policy: strict-origin-when-cross-origin
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAwzNzZsNjBqMTRkOGttAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMTVdoUXJKb3JvR2lk.lUNM8CKs9kO7ZUweK0KO5Z2Z7FTw5cqpAbiFVW1UXRc; path=/; expires=Mon, 05 May 2025 13:32:31 GMT; max-age=31536000
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P5ywBnuU8VR4c1vlEwVDJT9pDDtW0%2B8yh0DvotZMt7UxSXUqinkC99RmYjg%2FEfsjb2kNsp4zb8pEXewwpVlVmu0OKQTNoDEXJG2PUDfiSuzGI01jfSkHVZOFEpexO8Q3FPkL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f118d8dc5d1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| juicywomenxq.com/lstatic/uuidv4.min.js | 188.114.96.1 | 200 OK | 11 kB |
URL GET HTTP/3juicywomenxq.com/lstatic/uuidv4.min.js IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1105), with no line terminators Hashe64fbbb49c9b48c9fb15e778de8d86ad 9cfd1af4b694cc64b04026ce3f44a2eadce49065 4148ecf01076ad662618d0bd0551b7a24bfd0e77087a70d613f2ce4c2cef71c7
GET /lstatic/uuidv4.min.js HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
DNT: 1
Connection: keep-alive
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAwzNzZsNjBqMTRkOGttAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMTVdoUXJKb3JvR2lk.lUNM8CKs9kO7ZUweK0KO5Z2Z7FTw5cqpAbiFVW1UXRc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 13:32:31 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 20 Feb 2024 13:29:03 GMT
etag: W/"65d4a91f-451"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=1800
cf-cache-status: HIT
age: 576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TA%2B22pSs%2BKFmw3p9VO8tF%2F%2FFXXGu9d23EwzPt4QVx5zDPA51aJ0PwXcsLtCnp9zLV27Z8zR%2FUywa0qJWpxvETu2oRzOxb1wgQK%2FhS0MbuOjU%2FsK3wdINyjm5VQKZyMaPwhqq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f118da7a5d56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| juicywomenxq.com/lstatic/info.min.js | 188.114.96.1 | 200 OK | 57 kB |
URL GET HTTP/3juicywomenxq.com/lstatic/info.min.js IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeJavaScript source, ASCII text, with very long lines (37352) Hash38ea2c394a4abb159172f8d7b77f495e 8efd580a25c3d1be8533ed74de7bc5607cbc278d a6510d097802bc66cc5aae4485af48dd9d77053766be8dd671d974d21d363031
GET /lstatic/info.min.js HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
DNT: 1
Connection: keep-alive
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAwzNzZsNjBqMTRkOGttAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMTVdoUXJKb3JvR2lk.lUNM8CKs9kO7ZUweK0KO5Z2Z7FTw5cqpAbiFVW1UXRc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 13:32:31 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 20 Feb 2024 13:29:01 GMT
etag: W/"65d4a91d-280e9"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=1800
cf-cache-status: HIT
age: 576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yaqEKe8hjqHJk69O7%2BEo%2BMWsTrrOhzGQleAuQG6LcxgjDd8OdFD%2FNMFhGyQRjim8%2FXOWEyYXJvQQ02NAJvNwpT%2FHHO%2BTdcPMlTTG%2F%2FCQHuUA26i8LkWrERNo1rAx5z6g01yx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f118da7a5b56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| juicywomenxq.com/lstatic/93bfa6fbad9488afdb1f39a9bc237dfc/images/m1.jpg | 188.114.96.1 | 200 OK | 78 kB |
URL GET HTTP/3juicywomenxq.com/lstatic/93bfa6fbad9488afdb1f39a9bc237dfc/images/m1.jpg IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 853x1220, components 3 Hashd9f238f8f5d04712257d9952f1fd9547 05806b930da7d858b0ce8414cd17d65d53ba0960 241983e214ad3baec0e406fc8bb7d3527d7d6eb74cc5c5a9ab8dea6139da1553
GET /lstatic/93bfa6fbad9488afdb1f39a9bc237dfc/images/m1.jpg HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
DNT: 1
Connection: keep-alive
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAADDM3Nmw2MGoxNGQ4a20AAAAHdHJhY2tlcm0AAAAHbm90cmFja20AAAADdW5xbQAAAAxNV2hRckpvcm9HaWQ.tC_UgWFCS08MJip-isWVxKzZp4-kjRq5zvRjou5DJCY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 13:32:32 GMT
content-type: image/jpeg
content-length: 77908
last-modified: Tue, 20 Feb 2024 13:29:01 GMT
etag: "65d4a91d-13054"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=1800
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SNYiS4kVxZ66jMthHULx07dy2va%2BbaCDtn0JrJgbY8Lih%2BxVYj5MsIHajWfmg9aAOoyiwbYNyDgkGZUSGOeYJ4mDS5ulDvCGlkylIPfDmNjdELItUlXJjHFDclV9urBx4zNH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f118dc3c7456ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 IP216.58.207.227:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14940, version 1.0 Hasha46fb7aae99225fdfd9d64b2b8b1063f 1ee50bf5985c1956dde1c06d9b1cec4645ddb92b 4b5816bbfc52587979139951355fe4048da02ce60e40cef8e4a1efb6cd396281
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://juicywomenxq.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:59 GMT
expires: Fri, 02 May 2025 01:57:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:46:07 GMT
content-type: font/woff2
age: 300873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat&subset=latin-ext | 142.250.74.106 | 200 OK | 531 B |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat&subset=latin-ext IP142.250.74.106:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash041a47896c77c2040dc1fd157d7d9946 6ed6b6b2f5a21e0bd9a061f3db267689c953a029 11f0f33f9711ca7551b10cdff821a5c9b8ab7d74055c1d84adf61708991774a4
GET /css?family=Montserrat&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 13:32:31 GMT
date: Sun, 05 May 2024 13:32:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| juicywomenxq.com/info-ws/ | 188.114.96.1 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1juicywomenxq.com/info-ws/ IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /info-ws/ HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://juicywomenxq.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aNOk7Mn8FMe/HRYxErmuRg==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAADDM3Nmw2MGoxNGQ4a20AAAAHdHJhY2tlcm0AAAAHbm90cmFja20AAAADdW5xbQAAAAxNV2hRckpvcm9HaWQ.tC_UgWFCS08MJip-isWVxKzZp4-kjRq5zvRjou5DJCY
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 05 May 2024 13:32:32 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 66FI3dEazMdKSy9v3guuh82BDC0=
Sec-WebSocket-Extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pOs20ykA1FLsB6T1hjaznX5M7VsmSfcEWXMTUIPEq984SNCi5br39lhRepzjOk69bkKXC2mlqCNqyR2YtKDB2Pami0bhVjNN5cRqhhzo28%2BZEniTJwf%2B7NSyyFSrs%2Bg3QKYJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87f118dcc9781c02-OSL
alt-svc: h3=":443"; ma=86400
|
|
| juicywomenxq.com/favicon.ico | 188.114.96.1 | 200 OK | 68 kB |
URL GET HTTP/3juicywomenxq.com/favicon.ico IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeMS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel Hash947b02001608338b64bde348321cd148 1e877b3e4c4c01af4e2cdef1fdfa5805b4f861ff b9383fba3da87f4efd7c641e39252581114bebd1c066cdefc231cec1c0f65cad
GET /favicon.ico HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
DNT: 1
Connection: keep-alive
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAADDM3Nmw2MGoxNGQ4a20AAAAHdHJhY2tlcm0AAAAHbm90cmFja20AAAADdW5xbQAAAAxNV2hRckpvcm9HaWQ.tC_UgWFCS08MJip-isWVxKzZp4-kjRq5zvRjou5DJCY
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 13:32:32 GMT
content-type: image/x-icon
cache-control: max-age=1800
cf-cache-status: HIT
age: 577
last-modified: Sun, 05 May 2024 13:22:55 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vhkLSC9qWCU53Ge5zCEv6nINNFjbhuiaCD8ipfzCyJT3zw5RBb%2FirrFWh1DjX%2Bg1qvEnUQ%2FhH47R271WdzUiVw%2FuYMrP8gXu79hxCP0q0AgraJRQU9QImXr6WpmTfG9vcnWO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f118dd5d7056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| juicywomenxq.com/p.js?a=1069737&cr=66497&lid=17943&mh=T1BVa3NtbVFwaE5Nck51ZFBkSWdwZ3BCZVFCZ01LWkZxYnhpTFEtMzU4NzU%3D&mmid=2504&p=0&rf=uua&rn=zc4ZoteUys4WmdeVEhG&s2=376l60j14d8k&t=notrack | 188.114.96.1 | 200 OK | 390 B |
URL GET HTTP/3juicywomenxq.com/p.js?a=1069737&cr=66497&lid=17943&mh=T1BVa3NtbVFwaE5Nck51ZFBkSWdwZ3BCZVFCZ01LWkZxYnhpTFEtMzU4NzU%3D&mmid=2504&p=0&rf=uua&rn=zc4ZoteUys4WmdeVEhG&s2=376l60j14d8k&t=notrack IP188.114.96.1:443
Requested byhttps://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k CertificateIssuerGoogle Trust Services LLC Subjectjuicywomenxq.com FingerprintDE:08:B2:F7:EF:16:E2:87:1F:7D:AC:90:E0:01:47:D0:22:60:46:83 ValidityMon, 01 Apr 2024 12:04:50 GMT - Sun, 30 Jun 2024 12:04:49 GMT
File typeJavaScript source, ASCII text, with very long lines (405), with no line terminators Hash49c3bce42e22d484db8ec55c825acd7f 477a7a15d3bd7acaa9a676b1d07fa503d46f7054 f30ef5d8482c11d1b4d67dbc664bfe3cf33d5cd063609ac3e36f6fcc382621e5
GET /p.js?a=1069737&cr=66497&lid=17943&mh=T1BVa3NtbVFwaE5Nck51ZFBkSWdwZ3BCZVFCZ01LWkZxYnhpTFEtMzU4NzU%3D&mmid=2504&p=0&rf=uua&rn=zc4ZoteUys4WmdeVEhG&s2=376l60j14d8k&t=notrack HTTP/1.1
Host: juicywomenxq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://juicywomenxq.com/?utm_source=OWCjnDs3p5h9&utm_content=376l60j14d8k
DNT: 1
Connection: keep-alive
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAwzNzZsNjBqMTRkOGttAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMTVdoUXJKb3JvR2lk.lUNM8CKs9kO7ZUweK0KO5Z2Z7FTw5cqpAbiFVW1UXRc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 13:32:31 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=0, private, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
cf-cache-status: BYPASS
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApwZUVadm1abURwbQAAAANoaWRtAAAAJk9QVWtzbW1RcGhOTXJOdWRQZElncGdwQmVRQmdNS1pGcWJ4aUxRbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAADDM3Nmw2MGoxNGQ4a20AAAAHdHJhY2tlcm0AAAAHbm90cmFja20AAAADdW5xbQAAAAxNV2hRckpvcm9HaWQ.tC_UgWFCS08MJip-isWVxKzZp4-kjRq5zvRjou5DJCY; path=/; expires=Mon, 05 May 2025 13:32:31 GMT; max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ozRbVXOvWKtg1scZ0QmU4Jd%2Bx44iuasL%2Bv%2BZQJRBGHx9%2BuCL0JJuXUnWiHPTZVRsdOCrSrq0oi1mjQGvWUWuiZhsDbXb80fygW85zNefS%2Ft8f2JU54g7Dx%2F4XDQ6gUzEGASN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f118da7a5e56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|