news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
149.7.16.233200 OK 36 kB URL HTTP/1.1 news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4414)
Hash 6a5d32d3653372dc4b550fb40ec6d8e8
712b23e83ebcb3d4583b42506fbe1c4b625e680e
664f156abc6a0d37480bd896e1916fcd2e2d12f337e4df0e1ea74e562f3fdef3
GET /lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D; expires=Fri, 24-Mar-2023 12:51:39 GMT; Max-Age=3600; path=/
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3432
Expires: Fri, 24 Mar 2023 12:48:52 GMT
Date: Fri, 24 Mar 2023 11:51:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 210a2a42cfc4f4aced144f5de9babcc6
ece6ecfb2db8d036c3bfc7f02f8ea387e3f965db
59553a312d3fb34f1f0aea469f7e7cc810ff9993481ddbd73ea5d461cf97ed51
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59553A312D3FB34F1F0AEA469F7E7CC810FF9993481DDBD73EA5D461CF97ED51"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2669
Expires: Fri, 24 Mar 2023 12:36:09 GMT
Date: Fri, 24 Mar 2023 11:51:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 11:15:15 GMT
content-type: application/json
age: 2185
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12443
Expires: Fri, 24 Mar 2023 15:19:03 GMT
Date: Fri, 24 Mar 2023 11:51:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tPXUNslRB2/YSSKoXmhSn9WOmSFN74SU1svSkh+p+0aZMIiL5XfZmi5TgAUmFmysKQHDBsVX7rU=
x-amz-request-id: 9FTF1DSYS6J4Q3M1
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 10:54:27 GMT
age: 3433
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 11:51:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
news-gakemi.com/lands/38/lp.js
149.7.16.233200 OK 1.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/lp.js
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
Hash 8441b469fa0c093bd106a66a4068d944
c3698e755cd1ef7b5d29e233ef615219559a96f3
befe8e9f55c6e3fe10fd398534acb713129764b05d852089ac34bfa535a53902
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/lp.js HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/javascript
Content-Length: 1418
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Connection: keep-alive
ETag: "5d7a0ef0-58a"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
149.7.16.233200 OK 9.2 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (65536), with no line terminators
Hash d532b701961fb593be2b69d9df9c8155
8e4eedf94834ab945eb6dbcc95b939cc9986503f
a777713d9e2fe15ccc27ae4f22fa778e7a87110fe2ced724881a5a9c8b3a9235
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-10b2b"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css
149.7.16.233200 OK 4.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (4028), with no line terminators
Hash 64f6d7d923f18e5d25a4506b45fcd51d
0e636e489bba7af08cb17f8a72c5dc5685774057
18818b4b5458636324d294a8dee67dbde4808ae542e6cefa18ca6d90c1fc4479
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Content-Length: 4028
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Connection: keep-alive
ETag: "61deb724-fbc"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css
149.7.16.233200 OK 5.3 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (27296), with no line terminators
Hash 6e671698be708464896d6727e33f58da
81dc49256bd9dc80453f9477534290a381d59439
c2a5fb4ab887178390ae41fcd3eed629b363b08875cdca4bdef982fc933b7083
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-6aa0"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css
149.7.16.233200 OK 6.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (5955), with no line terminators
Hash 0fe9d8c60b2c31a97fa966d14be642ef
eb4f94b637c54906ae38eb350b6310d552c75e6d
191ae0d72198f51609589e26c7d837d2978382861f60b360148e0af13c8583e1
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Content-Length: 5955
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1743"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
149.7.16.233200 OK 8.3 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (8327), with no line terminators
Hash 8cd6ca47d55ffed774fde852523940e0
49e1e837355b3de08055c650488d0a3382bff9c0
17528d5914a702bb12ac6b36c8e3bbbfbcd3d52b54dd613acbacf8f4bb17ae33
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Content-Length: 8327
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Connection: keep-alive
ETag: "61deb724-2087"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css
149.7.16.233200 OK 1.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (1391), with no line terminators
Hash 677a255a4a9dc3411b8013e8afb09c42
ec9f1a722b028da2eceb06cdc8c26fc6490a4e70
cc4494353809adb8bdfbbdea2ad72a1a0fc9c84816dc23c7ee1f9466e620eb5e
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Content-Length: 1391
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-56f"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
149.7.16.233200 OK 11 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1c0b9b0bde95895d5227ee024d49ea1
1f5fa52cca3f8e486b72dba4fc7be71736e06879
ad7a8113ff7db3543778cf5bac4eba7f2a277d686a3520769cc325dfa5eed60e
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-1327c"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
149.7.16.233200 OK 32 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (65536), with no line terminators
Hash 355a9ffdba760ac2df9158033c0bd274
7f169d3ac3f815a7f9f3e716ce3a9e8304de5d6a
cb3efcb52b7e3e7d192df63afbede510311f67a230774dc9b29c55b29bdfe1f2
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-2f3dd"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css
149.7.16.233200 OK 3.1 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (14679), with no line terminators
Hash 82465f176ad8755a3da8217fbb5d38a9
1689f2cb3b9fc47a005cbe828ada78594de9ad5c
75e7582e998815d415b278e536f725f98ef8c7654ad11fe8a5e1725199442940
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-3957"
Content-Encoding: gzip
news-gakemi.com/revopush.js?v=4
149.7.16.233200 OK 10 kB URL HTTP/1.1 news-gakemi.com/revopush.js?v=4
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (9954), with no line terminators
Hash fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0
Analyzer Verdict Alert fortinet Phishing
GET /revopush.js?v=4 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/javascript
Content-Length: 9954
Last-Modified: Thu, 15 Dec 2022 09:31:18 GMT
Connection: keep-alive
ETag: "639ae966-26e2"
Accept-Ranges: bytes
news-gakemi.com/lands/38/jquery-3.2.1.min.js
149.7.16.233200 OK 30 kB URL HTTP/1.1 news-gakemi.com/lands/38/jquery-3.2.1.min.js
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (32058)
Hash e95432d97d0ea36fb79ec7a9463ce0ec
685e5ade79a59587076c397e7677adbc9e4661ce
732435215c507df3203bce1b72a8d7d0e50cca54c667f05dccd1aa4fcf6d7c71
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/jquery-3.2.1.min.js HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Sep 2019 09:33:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d7a10d2-15283"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js
149.7.16.233200 OK 15 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type Unicode text, UTF-8 text, with very long lines (36281)
Hash b284ff471f79724f39a43b82790f570a
9c512728aa68e8dce35e7a1d36a1b88f3127b230
b8f5663695838bd680a0f58f1147b66dd563ba0426ee42cec794e2140147c128
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d7a0ef0-f889"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg
149.7.16.233200 OK 10 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1d6d8e5e", progressive, precision 8, 258x145, components 3\012- data
Hash 1541881a313c963dc754657aefd89ef0
fb41198c81ac17da4f9a34e4b4bf21c8c7fe6001
75e1629d9fad2e22b9d9983c65874a19a3f639db43c11db713a7f972b8f72117
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 10352
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2870"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg
149.7.16.233200 OK 9.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x50dba82c", progressive, precision 8, 258x145, components 3\012- data
Hash eed80bba1e2813e70d57a5f3a6bbdf09
3965668a7340d071731a89abf73cc4b3efe4dac3
9ef4f06c23420fae9b1fd163d0719be1b2b258d74d27f7933c810ad64c93ac93
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 9914
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-26ba"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg
149.7.16.233200 OK 9.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 258x145, components 3\012- data
Hash 6c17c634ebd856cc85bedd931ac01680
d1e1b9358749b9fd4ff851bb4cbdce54a6223ce8
c1ced3a91bde391f64c6cef03b164cd89ffd499fa5d75a3f797bc57b1fc3c191
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 9032
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2348"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg
149.7.16.233200 OK 8.3 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", progressive, precision 8, 258x145, components 3\012- data
Hash bc1cdeea817d887b981f26bc84236b93
4528ed7010e2e0c774890d6041a60cbeb3c69c92
d737ffd9379d8f2734c1dc6304e4ff75f1c946de29371a1ec9ddc01f423076dd
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 8266
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-204a"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg
149.7.16.233200 OK 9.3 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x7cd1fc83", progressive, precision 8, 258x145, components 3\012- data
Hash 5ec2461279f77afe0c6fbb935bd0b94a
95c6e9171db79ea69ce718b02484e36816d1a1cd
ac60e5738d3cf6d32004e1ddfcf4368e256f1928ea923f9369869b8e9af665ba
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 9338
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-247a"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg
149.7.16.233200 OK 8.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", progressive, precision 8, 258x145, components 3\012- data
Hash 77df6b7e2677b46a053508a92026cb8a
decad70c5281062495250250fdf985b6073a8a91
6143cd3687b480264dad4e3d3a237c30c26c859ef7fe1c2a7b32472fb65710c0
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 8885
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-22b5"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg
149.7.16.233200 OK 12 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 258x145, components 3\012- data
Hash 081a01df58865529d3edcbc765c4dcb5
a7fe3ca35fe5e244926a80addda994218806f613
edebf400c8f60c306491e7b2f8a695b7dde10cf49eed66125423571a1cd60d05
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 12127
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2f5f"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/button.png
149.7.16.233200 OK 20 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/button.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 107 x 93, 8-bit/color RGBA, non-interlaced\012- data
Hash e2aadceedde9aef1bf42c176b31c585c
76c14eae7537160a304aa458bf11a985d5a57375
2b1ff8c49202306d33deac4cf49841f59c1a49d15c80a77c1e001369578cef3f
GET /lands/38/landings/Ihyam_7H2-fd/button.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/png
Content-Length: 19948
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-4dec"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/load.gif
149.7.16.233200 OK 15 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/load.gif
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type GIF image data, version 89a, 64 x 64\012- data
Hash 571dfe045d66b88d2d5c82151a1bf579
8966eb7cd27754263bd2861737b695386273f423
7c7cd7a7155d3d38bb49fc82c83aa14ed24d56f6886623299b13b6a81486a871
GET /lands/38/landings/Ihyam_7H2-fd/load.gif HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/gif
Content-Length: 14574
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-38ee"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/flash.jpg
149.7.16.233200 OK 3.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/flash.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash d660b4b574161fdee86ae57edc8ed0ab
0b947dc39c7ba7415dd78683e06366ff3848b2d5
7483a49fc67a21c7a295b03880aa6c37425f3e96d60dff1ac36eff743ecf6078
GET /lands/38/landings/Ihyam_7H2-fd/flash.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 3829
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-ef5"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/panel.jpg
149.7.16.233200 OK 24 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/panel.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2016:05:13 17:11:55], baseline, precision 8, 990x36, components 3\012- data
Hash ab6b76c0cc6683324bd7fe5923b24d17
559b8b1e50f80b7a218e25ce443e523401882577
a923ea85ee73e53db73038b2ea8712e7e40b067cde25b05ffa999608b17a304d
GET /lands/38/landings/Ihyam_7H2-fd/panel.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 23598
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Connection: keep-alive
ETag: "5d7a0ef0-5c2e"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg
149.7.16.233200 OK 1.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xb7d2e3cb", progressive, precision 8, 60x60, components 3\012- data
Hash 47e765dc1abef2d79edafb5fce1c64b5
93d3e7f1e11dd2d98ca3ffb3b49a0211ed76f273
185540f06acc82b2dc4bdfa6d2deb4ce7454bb1e28783acdde67f8a9a90597b1
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1441
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-5a1"
Accept-Ranges: bytes
news-gakemi.com/traffback-reject.php?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4&land=38
149.7.16.233200 OK 49 B URL HTTP/1.1 news-gakemi.com/traffback-reject.php?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4&land=38
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with no line terminators
Hash 35aaf25b002e8596673d94a7008b839a
22eb752c85beefa13e75e4729689a69e4d4926ec
a4c16b2c5c89cc56d0f5fe370ed313f4bf2319fd5c693abefa1bd3d71a2807e4
GET /traffback-reject.php?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4&land=38 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Connection: keep-alive
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg
149.7.16.233200 OK 1.7 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 3db490cc8f824e29d6fb07ba75a97a20
84c2c26447f7b49c76999f31c0ed526bde13c6c4
5c13ca439c63d5f3e5d638ba055f399058117d3b554ae3fb751d4a39043a14fd
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1729
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-6c1"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(7).jpg
149.7.16.233200 OK 1.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(7).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 16b2fab44ddad0b620d0eaec2fc1e425
24fa279de6ceb2c0434ff4e750639e15eb22ed29
58076ed17c6377d23375ec949c6cb2eade75010dcf82ba0e64dbdcbd67583912
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(7).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1902
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-76e"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg
149.7.16.233200 OK 2.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe705e0c1", progressive, precision 8, 60x60, components 3\012- data
Hash 677577d8c6ffb0107ee5c9fbabaa4af7
0bfcbbafee19eeeae113103080c41cd95b4083e5
3a215afa0d15ae2985cfb88e51e90b727f0ba03fe10f8e0b0980ef55af91bdb0
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 2646
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-a56"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg
149.7.16.233200 OK 1.2 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 1226a24c469c0fba3970548aab13650f
a6d371e4acc2a9181d1d6bf13b5d51f82c49a943
6a1513dacd3fcffe47245068fe9fa6a49cdc9c352b8d9cbf8f72005c4cf5cafc
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1191
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-4a7"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(6).jpg
149.7.16.233200 OK 1.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(6).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.2 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash f042aa7a438ca85be0afeba44a3ac116
183c8b20394fdaf6ba757ff76d3f25e33092369e
05b76ed86b70990f4307223391e1c9abfff59ec545d75d94683c0f69713eed79
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(6).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1809
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-711"
Accept-Ranges: bytes
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=10327
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds212.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=77664
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds003.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=84730
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds001.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=32568
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds247.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=8994
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds219.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=6015
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds251.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: max-age=73160
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds205.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg
205.185.208.60200 OK 13 kB URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg
IP 205.185.208.60:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 258x145, components 3\012- data
Hash dce82d44b4b11da45323c7fb3d48f2e8
1f89ba9a7c5f9bb914f4d9a8546119f68f7ddcfc
71035bfb92d2af8dd1b035d0b27b853e08adfc90b0c248d1ce3a131cf7631601
GET /m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:40 GMT
etag: "1576646962"
content-length: 13332
content-type: image/jpeg
last-modified: Wed, 18 Dec 2019 05:29:22 GMT
accept-ranges: bytes
cache-control: max-age=10377942
x-hw: 1679658700.dop069.sk1.t,1679658700.cds245.sk1.hn,1679658700.cds240.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg
149.7.16.233200 OK 7.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 233x131, components 3\012- data
Hash 5df975e7a8c0b2610069610c54c5ce6c
ab6390fbb7be1be9a0f4477b4439e34d5175b6fc
bbfb6830dabc55fd598cc0948049f2367d17c80f286e0821e660ba7f5a6b360c
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 7904
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1ee0"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/7(2).jpg
149.7.16.233200 OK 4.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/7(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6359dcbc", progressive, precision 8, 150x84, components 3\012- data
Hash 447470b34b66b570c8fc0dbc11c06609
863180b376242e256189888eb99282e597d894c9
dd57f5a80517b8109279b57d702278f31a9878295045c6766931a0453244d749
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/7(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 4417
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1141"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg
149.7.16.233200 OK 14 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 9903db279cf9714141daac34523f39b6
ac412f9ce9b8c50155e9adb9f5095d82519ccd24
f562892c60fef407c954fd73d6908003c42f832c4ae86f8264438a576ce2c1cd
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 13505
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-34c1"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif
149.7.16.233200 OK 1.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type GIF image data, version 89a, 88 x 31\012- data
Hash 2bcf55138cde4a65770426a67ea247fc
13d8c808a4276dc88937817d7df7720182c093f6
348fd1e58aec8d99001aca1dd12b72eafef534c2d11725b2280a173d03b5fa6b
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/gif
Content-Length: 1882
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-75a"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg
149.7.16.233200 OK 12 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 118x88, components 3\012- data
Hash ea52ae32ae4319fb03da1672b0c20ed3
4efd8189179b260a4b51fd4b28d729b6143ef00a
43a4ca83560d5720ffeccf17478d6a1741f86639f35744fb61fcb139dc3020a6
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 12525
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-30ed"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg
149.7.16.233200 OK 11 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 2f03fbd61721fdf46883333595050c77
8361f15c906a9457340fc21febd22b5ede56ac61
9f6c76cf695bc0785f4e4f8bb3abe93255af3ea1597307d567dc0fc93fa70560
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 11238
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2be6"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg
149.7.16.233200 OK 9.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x70755b56", progressive, precision 8, 258x145, components 3\012- data
Hash 8fcd27f0bcc790f75f46d275a19a6300
556d3ca4dec168c77ae4a73c0c6e8291ef1291c0
78410be719ee73e00845d44e100e280d3989fc3d0fa4d3dcfcd888f13ded1843
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 9565
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-255d"
Accept-Ranges: bytes
news-gakemi.com/lands/38/index.php_files/pu.swf
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/index.php_files/pu.swf
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 6d40122b8a5b7fd31b5aef2749f519fd
518d585dd26c947344ddea5403324850d1b2f7cd
1da7814acd0d6913438bf701d8a2d2cf29814174b5eff0e6ff129ee74f68a7cf
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/index.php_files/pu.swf HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/x-shockwave-flash
Content-Length: 1953
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7a1"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css
149.7.16.233200 OK 6.2 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type ASCII text, with very long lines (33619), with no line terminators
Hash b1dd3a7dd402daf41f9af2cb860e4bd6
bdf89dc545fbd50cc2100fe43d20f3b4be14a3ed
120d9dfe52260935bce7ec818c56b2cbbc5f1bee2bd79a9b51514cd8a0bf176a
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-8353"
Content-Encoding: gzip
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg
149.7.16.233200 OK 16 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 5a34545daf4bc481bcbc3573062aa426
132d09d36ede8f32c3168ecaaa631e5959ce38ef
c044a81b14812c50f3142ad20d0ca862923daba2483eb164b0348ba98d3b7855
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 15481
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-3c79"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg
149.7.16.233200 OK 15 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", progressive, precision 8, 258x145, components 3\012- data
Hash bb05342bd1f87ae7624aba323af77dca
4b7c875644d0b6a424abf06cda89ad135bd53d81
828e2c12259274e1eb1c212f3498fb31503462023c4b2642da4f795209b755de
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 14653
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-393d"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg
149.7.16.233200 OK 18 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 10e8794e65f20d32932985bf814b8965
0627b8648373340d2ba949fd7fe50611d11b033b
43b9f39f94acb50efb3b6981a6c931dcf25eefcc7b7734a927036255263eee39
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 17978
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-463a"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg
149.7.16.233200 OK 1.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x2a0818fe", progressive, precision 8, 60x60, components 3\012- data
Hash 609e06417314a6476bc6d0f3c1900e20
0e2b0d425bd9e5cc0ebb386b093adf64d464ac1e
9450244a77e354c177c18a691c0e5f0c2fc5d0ddf921f40178cbb8bfe4a076ac
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1394
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-572"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg
149.7.16.233200 OK 1.9 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.2 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash ddf58dd1f8745a81264b21bcf1f9cc77
73a35df521dc648af06e2e490cac929bc681a06c
a2315bfaefeae19a449f38fe4131531c7603f5c7e75e956c240074da66123134
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1889
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-761"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg
149.7.16.233200 OK 887 B URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 7754ce192cf45ea10de0706da442d2ff
b5b7d0fcf5e84b04b34629d5a5a9c0bb69ca5238
0bfd7fc5264b6cede1f78a26a96cee917f96989822aa2aa20ac854e13ad46b2b
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 887
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-377"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg
149.7.16.233200 OK 9.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xae3bf698", progressive, precision 8, 258x145, components 3\012- data
Hash 58357cada0f0171d2a84540391219649
57123e69e055b4d818faedec09884135c5d4a31e
742c68ecf3dcc1096143a0a5d00f4a15a3edb13fd497ea2931e67e66826addd0
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 9007
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-232f"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(9).jpg
149.7.16.233200 OK 2.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(9).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xd191bb02", progressive, precision 8, 60x60, components 3\012- data
Hash ec2823c426475d6766008dabf85a4bc2
f0681ce27ba96a1b4f6547a42495ebb5b0ca514a
2316f8554d54e907f9992475ced3bf03fc95412e98b2bc29aa6e5407260bcddd
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(9).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 2350
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-92e"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(10).jpg
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(10).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe0e89376", progressive, precision 8, 60x60, components 3\012- data
Hash 3f809b94b5e5607da5b5c6506a8729c1
26f4376095902a56db86ea2c76689f15ba3cf9c2
7b84461772bad27e431676a53efae81d8584a102f3f6f407ae0a54469a938ff6
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(10).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-7bb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(8).jpg
149.7.16.233200 OK 1.1 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(8).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x0bb5b909", progressive, precision 8, 60x60, components 3\012- data
Hash 01ed303509acb0c822fa3c55976d4b96
7ed250f181498962ebafd21f1bde4ca15e6953c6
fba198ced4795895d1f6d0bc2247d315eb8cc6dda60ad119c99846d68d0ce445
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(8).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1085
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-43d"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png
149.7.16.233200 OK 22 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 19b197d779dd9ee78737a456dbd5c1a6
a3f0b1d0659e5a76bdfaa52bb8f68096d1ab1359
806a8a4abe09c02f4e4b3ed4d6514bfcf1a93a941e838aadf56afaef858d8e37
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/png
Content-Length: 21724
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-54dc"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/wink.png
149.7.16.233200 OK 1.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/wink.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash c840b43a0575b0a1742c50f186a67c22
d1ac0da47b4394a9dbea90eee26a260b5268c4d9
6a8ef9be89e89c23d6d96c50e2fa62bd25473e9cc7a79e2cd1ef64e2647cb38a
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/wink.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/png
Content-Length: 1045
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-415"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(11).jpg
149.7.16.233200 OK 3.1 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(11).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xd191bb02", progressive, precision 8, 60x60, components 3\012- data
Hash cbff1c490bcdcad2989c2549f278eae5
56e1b4489cfc0d54f9f72e15777788beba396c95
6d96d3de01207ab505c62b2da624ba787cabe4fee767c181b175186e50c23af4
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(11).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 3063
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-bf7"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(12).jpg
149.7.16.233200 OK 1.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(12).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 52eba434e5411806cd92add275d164ea
0cc9df3c52de111a307dc3d8d22254cf51b0c77f
a4c2a01f64274d0ede23e233e2be19225c68e5e5a6206b338fb8bc6410f7005f
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(12).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1758
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-6de"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/tongue.png
149.7.16.233200 OK 1.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/tongue.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 96f46fad8cda5895b895f6ec3f95cda4
3bd79ef305bfa4b7c1a3f328828c63f89a818878
8e48576faf920cae224c669d61831d0ad5fc23f6220e83955275a3115bb568fc
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/tongue.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/png
Content-Length: 1046
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-416"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg
149.7.16.233200 OK 7.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x7ab4f024", progressive, precision 8, 233x131, components 3\012- data
Hash 2a4d527ed65de8e2e0a69dc9d50442d2
8ec4547a38c9e3d37469acfe21ea755531776f09
275876bbb5190da100ae4f9aca976ec15cea0de20d42e167f522a0a50ba8ca02
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 6972
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1b3c"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg
149.7.16.233200 OK 8.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 233x131, components 3\012- data
Hash 55778c73ba99a9477464e5c90cdd7e02
bc49e8058f1dafe10e817441de952ba6aa3b7b58
c362fc3a2aafd1b0d8069fb1fae83b5f0abb06443d3e00b21b37be13aeb75bfa
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 8615
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-21a7"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg
149.7.16.233200 OK 4.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 150x84, components 3\012- data
Hash 0fa4a903a2adc9da58b52661ebc8d38c
061c6359c2951da7509f6ae4039c2f0bc1ce6b62
79d6da7e0398c3f607c4bbc93562cf6ab96bb800cdab4ef6df82718cf0a0d3e5
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 4644
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1224"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg
149.7.16.233200 OK 4.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x550d5e4d", progressive, precision 8, 150x84, components 3\012- data
Hash 58477c52a9d639b91b16f022d4676bcf
51a85ef703617e996c50cd76b38f2507517a9f25
a0653cc819b252702f55439d6f8763d212fca2f9f604d67224a2a9891e8eadbe
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 4397
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-112d"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg
149.7.16.233200 OK 4.3 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", progressive, precision 8, 150x84, components 3\012- data
Hash 365e215442256548316a73bc7c79edf1
13078402132cb89939a39edf11181fb88ebe390f
f8c35c02ff055694af23c83b1e3019a8c29965ab57ed7db8173a23a38494ff58
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 4315
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-10db"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 1b6ee6a5fdcf3c781a0b768964797646
f0bf83f6368d7c31471ad258ce8cfb4848109192
511ad4ad0f3db18490c9b7876d44c887f60d78dd8d06a585367c0ab4ddbbe92f
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1995
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7cb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 787dca6a9c809e6dcc3d3018f3f639bb
cf5838982dcd16a1cca3e810716270434413ea80
6fe734b116afdc3782aef601ddee34dfa45e93c69ff372143f3ae187c47627d3
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1995
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7cb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/profile/sprite-icons.png@cache=2016051250
149.7.16.233200 OK 2.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/images/profile/sprite-icons.png@cache=2016051250
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 787dca6a9c809e6dcc3d3018f3f639bb
cf5838982dcd16a1cca3e810716270434413ea80
6fe734b116afdc3782aef601ddee34dfa45e93c69ff372143f3ae187c47627d3
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/profile/sprite-icons.png@cache=2016051250 HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: application/octet-stream
Content-Length: 1995
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7cb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg
149.7.16.233200 OK 4.0 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", progressive, precision 8, 150x84, components 3\012- data
Hash 416ec3af020687541765d48acb81fc08
48b80345ffb951535d4d6ca811d19bd9dd726998
75c30d77f900b2f4c91f502f45f00606b57a47bb84e6b700fb18482389d88f3c
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 4035
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-fc3"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg
149.7.16.233200 OK 5.1 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", progressive, precision 8, 150x84, components 3\012- data
Hash 72e270f7041c2fe2f326d11e162fb249
3f918a2023f10a01a2ed74713d292df415d14e05
b17ce663fab4421f728ea0dd218d2a8a6a10a4314759fdf139b9388fa26e37f6
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 5080
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-13d8"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/male(1).jpg
149.7.16.233200 OK 887 B URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/male(1).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 7754ce192cf45ea10de0706da442d2ff
b5b7d0fcf5e84b04b34629d5a5a9c0bb69ca5238
0bfd7fc5264b6cede1f78a26a96cee917f96989822aa2aa20ac854e13ad46b2b
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/male(1).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 887
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-377"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(13).jpg
149.7.16.233200 OK 1.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(13).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.2 0x2a0818fe", progressive, precision 8, 60x60, components 3\012- data
Hash a08c2c5266f9701e422f042b4a3809c5
9884cf987f84b282f920634b2ab811077dfef7a3
054df6bf8ee2bcb904269745cd2c0830918d9e1a6ff1f965673af5f2946a3c37
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(13).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1373
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-55d"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(14).jpg
149.7.16.233200 OK 1.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(14).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe0e89376", progressive, precision 8, 60x60, components 3\012- data
Hash bfa11442f9457a03384ecf8128a586a2
a30e6f6a18be085197605b6463f840cb249d0510
941411042624c554a5828ee596c1e3ade4a787ae2fad6e5b6d585ab6a6e1e3c6
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(14).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 1563
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-61b"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg
149.7.16.233200 OK 841 B URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 9cf522c306866742c2806e0c14c8bca7
7a3ff28af2c6f7cfd036ec4fc162651eaf634f7e
fa09bef7875241c06a9e2505bc698a189d3b3ce012af29c65817fd476627ec87
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 841
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-349"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg
149.7.16.233200 OK 2.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe705e0c1", progressive, precision 8, 60x60, components 3\012- data
Hash 950ff8ae916df997fea302859ca2ccb4
42232e28878f65aaf4120d9435784ad46c2be71c
c0b01da5a48a7ddd619a2dee26bec77300b68bb1b028716320719f9c1a5f769e
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 2553
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-9f9"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
149.7.16.233200 OK 234 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2016:06:21 11:55:20], baseline, precision 8, 990x513, components 3\012- data
Size 234 kB (234218 bytes)
Hash 60f67e63f85561c6f95fd573252d2311
6fc6d41b27131074786778522b86077f477dbd51
0e80e9257f1dd0149894bf37342cb082ef2410263de490e851111fa9531e15c6
GET /lands/38/landings/Ihyam_7H2-fd/fon2.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 234218
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-392ea"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg
149.7.16.233200 OK 3.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", progressive, precision 8, 150x84, components 3\012- data
Hash 6ed4eca1ed776930746531005fcf22aa
11e8643932e35a8ef65be8ef585afee241c8eddc
28849006b773d85fb8fb2295a86bcee5d2cdabb9a23d854ffebbd8dfd203588c
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:40 GMT
Content-Type: image/jpeg
Content-Length: 3835
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-efb"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
194.58.108.80/KjNRwGbQ
194.58.108.80302 Found 0 B IP 194.58.108.80:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /KjNRwGbQ HTTP/1.1
Host: 194.58.108.80
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Fri, 24 Mar 2023 11:51:41 GMT
Location: https://yyuhb543.lookinews.com/girl-tube/index.html?var={your_source_subid}&ymid={your_clickid}&rc=0&mrc=2&fsc=0&zoneid=1851770&tbz=1851772
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1030g34;Expires=Monday, 24-Apr-2023 11:51:41 GMT;Max-Age=2678400;Path=/
_token=uuid_s8hnpa1030g34_s8hnpa1030g34641d8ecd0e8005.24373523;Expires=Monday, 24-Apr-2023 11:51:41 GMT;Max-Age=2678400;Path=/
330d8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI1NVwiOjE2Nzk2NTg3MDF9LFwiY2FtcGFpZ25zXCI6e1wiNDBcIjoxNjc5NjU4NzAxfSxcInRpbWVcIjoxNjc5NjU4NzAxfSJ9.iJOJtJpJjV5Z-O-UO-0rUfaeBt5A6WPZmRwKS1YrJgE;Expires=Sunday, 14-Jun-2076 23:43:22 GMT;Max-Age=1679745101;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 11:14:33 GMT
age: 2228
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 172877d6a738dcc89249ed98a9ed2be5
3f926d518866825c466745e7e23260a1671f0509
fa68f2e5092a680aa56b6669495be73bedc7311e919e062ec36822fae463f035
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 09:47:08 GMT
Expires: Tue, 28 Mar 2023 09:47:07 GMT
Etag: "3f926d518866825c466745e7e23260a1671f0509"
Cache-Control: max-age=337525,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb4229b51b50b-OSL
yyuhb543.lookinews.com/girl-tube/index.html?var={your_source_subid}&ymid={your_clickid}&rc=0&mrc=2&fsc=0&zoneid=1851770&tbz=1851772
45.133.44.20200 OK 13 kB URL HTTP/2 yyuhb543.lookinews.com/girl-tube/index.html?var={your_source_subid}&ymid={your_clickid}&rc=0&mrc=2&fsc=0&zoneid=1851770&tbz=1851772
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6469)
Hash dbbb18727a1063a08e4c29ee9b2d7c32
6b78abf28c41cfcf37a2a5957f4b191c70b96d4b
f9b8fc089cc6cb3d46ab3234e54664aabd2d332821a33b0fe5f6527d6da4263c
GET /girl-tube/index.html?var={your_source_subid}&ymid={your_clickid}&rc=0&mrc=2&fsc=0&zoneid=1851770&tbz=1851772 HTTP/1.1
Host: yyuhb543.lookinews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://news-gakemi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: text/html; charset=utf-8
content-length: 12872
server: nginx/1.22.0
cache-control: max-age=172800
etag: dbbb18727a1063a08e4c29ee9b2d7c32
last-modified: Wed, 22 Dec 2021 16:46:22 GMT
x-timestamp: 1640191581.47070
x-trans-id: tx3d454dc18c644c82ad796-0063a457d4
x-openstack-request-id: tx3d454dc18c644c82ad796-0063a457d4
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18b877ebbad1529e4bd91e12220d91c4
a3d64fb3d9cc1fe3a29b261c4ec9acfe134dfedc
7001d3ef847c7002ac15155f0dfcc0a369f19860e85c8e90530f1e7b2dd88f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5845
Expires: Fri, 24 Mar 2023 13:29:06 GMT
Date: Fri, 24 Mar 2023 11:51:41 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 85398769bf999db6c68fbd6ec9191566
5c75f6be322054abc950942eab7e74c1c3102cdb
384ba82b3c30d7f48d097134d4f0865bcd919832e2037eb717bf874d6011ac77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 06:28:11 GMT
Expires: Wed, 29 Mar 2023 06:28:10 GMT
Etag: "5c75f6be322054abc950942eab7e74c1c3102cdb"
Cache-Control: max-age=411988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb4249e49b50b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 85398769bf999db6c68fbd6ec9191566
5c75f6be322054abc950942eab7e74c1c3102cdb
384ba82b3c30d7f48d097134d4f0865bcd919832e2037eb717bf874d6011ac77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 06:28:11 GMT
Expires: Wed, 29 Mar 2023 06:28:10 GMT
Etag: "5c75f6be322054abc950942eab7e74c1c3102cdb"
Cache-Control: max-age=411988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb424ad46b505-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 85398769bf999db6c68fbd6ec9191566
5c75f6be322054abc950942eab7e74c1c3102cdb
384ba82b3c30d7f48d097134d4f0865bcd919832e2037eb717bf874d6011ac77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 06:28:11 GMT
Expires: Wed, 29 Mar 2023 06:28:10 GMT
Etag: "5c75f6be322054abc950942eab7e74c1c3102cdb"
Cache-Control: max-age=411988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb424aaf0b529-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 85398769bf999db6c68fbd6ec9191566
5c75f6be322054abc950942eab7e74c1c3102cdb
384ba82b3c30d7f48d097134d4f0865bcd919832e2037eb717bf874d6011ac77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 06:28:11 GMT
Expires: Wed, 29 Mar 2023 06:28:10 GMT
Etag: "5c75f6be322054abc950942eab7e74c1c3102cdb"
Cache-Control: max-age=411988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb424a8cb0b45-OSL
123.dorimnews.com/girl-tube/style.css
45.133.44.20200 OK 12 kB URL HTTP/2 123.dorimnews.com/girl-tube/style.css
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (11550), with no line terminators
Hash 0d37626ab85377cf8a3390424a9daea8
62a078a76c61b06753aa3e6c6d2604259e53da23
ac495c8790cd96103cab38520eb2d0f83e6a303a6e9106d72afd62e7af04a6d6
GET /girl-tube/style.css HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: text/css
content-length: 11550
server: nginx/1.22.0
etag: 0d37626ab85377cf8a3390424a9daea8
last-modified: Thu, 25 Mar 2021 12:54:58 GMT
x-timestamp: 1616676897.70460
x-trans-id: tx6c7922a8051f470a97748-0063a457ea
x-openstack-request-id: tx6c7922a8051f470a97748-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-3.jpg
45.133.44.20200 OK 2.4 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-3.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 56e17efec31169d487b85cfb3e885b2d
e9c8c4798eef4498f2fba5d796d36119359d270b
c9a608533c9562845c8b9124df079123adf63bbf932305b9c8b73d00c28a4d1d
GET /girl-tube/img/pics-3.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2363
server: nginx/1.22.0
etag: 56e17efec31169d487b85cfb3e885b2d
last-modified: Thu, 25 Mar 2021 12:54:45 GMT
x-timestamp: 1616676884.71072
x-trans-id: txe598d314bcbf4911bebfa-0063a457ea
x-openstack-request-id: txe598d314bcbf4911bebfa-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-4.jpg
45.133.44.20200 OK 3.1 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-4.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 32590efa3252c2b01846adedf9d83f28
458938d51a4c75f4a9bd1472c97ba8c2ed2bd5ea
9ce41c8970f6b4871431b6ef5b542a713dfb716d2c5c61a79ceba967262795cf
GET /girl-tube/img/pics-4.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3131
server: nginx/1.22.0
etag: 32590efa3252c2b01846adedf9d83f28
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.22991
x-trans-id: tx9451e19668fb4f82a0f52-0063a457ea
x-openstack-request-id: tx9451e19668fb4f82a0f52-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-5.jpg
45.133.44.20200 OK 2.9 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-5.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash b970ccf70fed3ea24b1ac517616cdb73
144e741789a07f46b4c771c9f89214f96a2bd622
34aa6c5e84d1e810d25e35e5a11c47699c2b7382473279608abf0dee4208fddc
GET /girl-tube/img/pics-5.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2851
server: nginx/1.22.0
etag: b970ccf70fed3ea24b1ac517616cdb73
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.22017
x-trans-id: tx61f5d4bb066f4dd29541f-0063a457ea
x-openstack-request-id: tx61f5d4bb066f4dd29541f-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-6.jpg
45.133.44.20200 OK 2.6 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-6.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash bd70e0cbc4ad9577a9c9d3651e65781f
c8602403af8e020eec9826a8b7288e7b5f59964e
346f55a09196f4183c20fec21471f67b43251c1cf1b0022ca08a8bc5ddad7158
GET /girl-tube/img/pics-6.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2579
server: nginx/1.22.0
etag: bd70e0cbc4ad9577a9c9d3651e65781f
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.24369
x-trans-id: tx546c20bf741747348b8e5-0063a457ea
x-openstack-request-id: tx546c20bf741747348b8e5-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-7.jpg
45.133.44.20200 OK 2.7 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-7.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 7b6c23d9c7b609a43fdaa8a64eff774e
364c5c8b8e36517431e2c76410431f3460b851ec
4faad3fabfb9f89f2b933601fcca26a7e412ca2dc2232814728fe98ccf843632
GET /girl-tube/img/pics-7.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2659
server: nginx/1.22.0
etag: 7b6c23d9c7b609a43fdaa8a64eff774e
last-modified: Thu, 25 Mar 2021 12:54:49 GMT
x-timestamp: 1616676888.92403
x-trans-id: tx642233d0dbb94afba3add-0063a457ea
x-openstack-request-id: tx642233d0dbb94afba3add-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-8.jpg
45.133.44.20200 OK 2.5 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-8.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 3760f18dfcaa796bebf8d7402584baa2
3f5276d98a7e0e43c8cee834ff6914bfeff6cc42
790cb3c4acf4056b979b3dcba09f18b7d985fdb1e15e4e7c7bd8f48ef103d8bf
GET /girl-tube/img/pics-8.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2498
server: nginx/1.22.0
etag: 3760f18dfcaa796bebf8d7402584baa2
last-modified: Thu, 25 Mar 2021 12:54:49 GMT
x-timestamp: 1616676888.99876
x-trans-id: tx2e8c93f5b5f94a229696d-0063a457ea
x-openstack-request-id: tx2e8c93f5b5f94a229696d-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-9.jpg
45.133.44.20200 OK 2.6 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-9.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 6085d91276091b3fd8ade1556c9890fe
e9f275754bd20e51f1efd284cfb69d6767998ba2
365a370ed5d736acad21924d21ffc0e46a649be0622cdd86b49c29f93303fa86
GET /girl-tube/img/pics-9.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2627
server: nginx/1.22.0
etag: 6085d91276091b3fd8ade1556c9890fe
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.25254
x-trans-id: txca7804057c484ce095274-0063a457ea
x-openstack-request-id: txca7804057c484ce095274-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-10.jpg
45.133.44.20200 OK 2.9 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-10.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 9b9389f16b028724a750e31f8b5b51d7
819445729fdec4724c55da0b96733253f8757ad8
48070a9a4882d1821874ce44f1ff309598540ed5af7251c448014573b0a324a8
GET /girl-tube/img/pics-10.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2941
server: nginx/1.22.0
etag: 9b9389f16b028724a750e31f8b5b51d7
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.79351
x-trans-id: tx4a2b01df25594970aff9d-0063a457ea
x-openstack-request-id: tx4a2b01df25594970aff9d-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-11.jpg
45.133.44.20200 OK 2.8 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-11.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash bb8fd33e97c0ad4f27772cb5db78028c
f2789cfcdc1e36eb68360f2f9c863619a770959a
494e5f89f58057e9c9fe9b46d134eb7c0c75243c3f6a319efbfacc751ae7dd41
GET /girl-tube/img/pics-11.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2792
server: nginx/1.22.0
etag: bb8fd33e97c0ad4f27772cb5db78028c
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.72906
x-trans-id: tx8887f6f32b89464f8c3ed-0063a457ea
x-openstack-request-id: tx8887f6f32b89464f8c3ed-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-12.jpg
45.133.44.20200 OK 3.2 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-12.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash af68ed61ae943b1e3d8c681bba9d3e64
2decd671d3db30ad3ff9a4f2ee54e5f778eb667a
6393ad1dd8b768a95efa9bba72245b31b1ae15bf26785592043632c8ff919448
GET /girl-tube/img/pics-12.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3165
server: nginx/1.22.0
etag: af68ed61ae943b1e3d8c681bba9d3e64
last-modified: Thu, 25 Mar 2021 12:54:50 GMT
x-timestamp: 1616676889.54809
x-trans-id: tx5e360de3fa284774ab57f-0063a457ea
x-openstack-request-id: tx5e360de3fa284774ab57f-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-13.jpg
45.133.44.20200 OK 2.7 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-13.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash ad252c9fd087d705dee824005749d362
8386331c74be97093e8476f0b9b039f1c3549b35
21fc340808e664fad0210da14b5c2c80566fcb0e0bc0e7e0bd105e469341ac13
GET /girl-tube/img/pics-13.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2675
server: nginx/1.22.0
etag: ad252c9fd087d705dee824005749d362
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.90558
x-trans-id: tx90c08c22879c4323911bf-0063a457ea
x-openstack-request-id: tx90c08c22879c4323911bf-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-14.jpg
45.133.44.20200 OK 3.6 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-14.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 676d0d84f278e3ee24597be6eeb4e8fb
c43dbb09cac737b18663452486c0e44ac955fc54
72ca060763a393229d78638756729d0527531cb400439bb78b63b73c1f3024af
GET /girl-tube/img/pics-14.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3552
server: nginx/1.22.0
etag: 676d0d84f278e3ee24597be6eeb4e8fb
last-modified: Thu, 25 Mar 2021 12:54:50 GMT
x-timestamp: 1616676889.65641
x-trans-id: txf5c7a20641ed4def922b9-0063a457ea
x-openstack-request-id: txf5c7a20641ed4def922b9-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-15.jpg
45.133.44.20200 OK 2.7 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-15.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash e4cb410e879cc6fa18eab65a519f14c3
b4d94966db39e5df20a25f78c83ee42e62a6215b
dd6221c07c2097ca7c131f8f5a30d0a02036745fd167d88d5b2557f0e95b0511
GET /girl-tube/img/pics-15.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2683
server: nginx/1.22.0
etag: e4cb410e879cc6fa18eab65a519f14c3
last-modified: Thu, 25 Mar 2021 12:54:46 GMT
x-timestamp: 1616676885.98814
x-trans-id: tx0d60fbb82c634818acbec-0063a457ea
x-openstack-request-id: tx0d60fbb82c634818acbec-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-16.jpg
45.133.44.20200 OK 3.1 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-16.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 50bc42931ba5c2ab6a436ea66d5ee2b5
74896a26a921159f7ecc57847b2855dbe0fb8647
be725b5680b4a300ad57d6f9eada340b7aabc46c5cbc1bed0cd7c9380c41cafe
GET /girl-tube/img/pics-16.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3107
server: nginx/1.22.0
etag: 50bc42931ba5c2ab6a436ea66d5ee2b5
last-modified: Thu, 25 Mar 2021 12:54:47 GMT
x-timestamp: 1616676886.43134
x-trans-id: txbdd94cf41175407792dcd-0063a457ea
x-openstack-request-id: txbdd94cf41175407792dcd-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-17.jpg
45.133.44.20200 OK 3.7 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-17.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 95fb5c98d8422b5004493202539e88e6
cc6313a254e2c986f62284a0fffa0ab81adc76a3
aec89c6964631234c5786356cc53e025f32089629738ac037bb8c37e5ca8e772
GET /girl-tube/img/pics-17.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3673
server: nginx/1.22.0
etag: 95fb5c98d8422b5004493202539e88e6
last-modified: Thu, 25 Mar 2021 12:54:47 GMT
x-timestamp: 1616676886.45934
x-trans-id: txdf3179b044194b46a36d9-0063a457ea
x-openstack-request-id: txdf3179b044194b46a36d9-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-18.jpg
45.133.44.20200 OK 2.7 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-18.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash afe41681a1a0a0a2a0c286a5f67e2d98
292d16890a1693fdffd20815f625327892f1a571
91a789dfe66e42c29688a659ca185b9e1def891f970ec25b46dda116727afecb
GET /girl-tube/img/pics-18.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2698
server: nginx/1.22.0
etag: afe41681a1a0a0a2a0c286a5f67e2d98
last-modified: Thu, 25 Mar 2021 12:54:47 GMT
x-timestamp: 1616676886.46568
x-trans-id: tx9c0b1f3cc15d406786609-0063a457ea
x-openstack-request-id: tx9c0b1f3cc15d406786609-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/logo.png
45.133.44.20200 OK 7.4 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/logo.png
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193
GET /girl-tube/img/logo.png HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/png
content-length: 7398
server: nginx/1.22.0
etag: 6cd3a78b39a704ee1c84f31c8c4e5808
last-modified: Thu, 25 Mar 2021 12:54:49 GMT
x-timestamp: 1616676888.38547
x-trans-id: txc8884e85b3504dba8ab3f-0063a457ea
x-openstack-request-id: txc8884e85b3504dba8ab3f-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/search-icon.png
45.133.44.20200 OK 461 B URL HTTP/2 123.dorimnews.com/girl-tube/img/search-icon.png
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2
GET /girl-tube/img/search-icon.png HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/png
content-length: 461
server: nginx/1.22.0
etag: 71a97f63eeafce6cc8dd4e7b92e77303
last-modified: Thu, 25 Mar 2021 12:54:47 GMT
x-timestamp: 1616676886.67946
x-trans-id: tx57c868e77404419bbb62a-0063a457ea
x-openstack-request-id: tx57c868e77404419bbb62a-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/Spin-1s-80px.gif
45.133.44.20200 OK 27 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/Spin-1s-80px.gif
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 80 x 80\012- data
Hash c0766ace8576a99fd244a90548633765
d477b4f553d54cf798627aa9aaa339ae5041fb15
437334e3ec1193c32995f27d03b3e1b473b89057d424107c5f4eb9adce3a603e
GET /girl-tube/img/Spin-1s-80px.gif HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/gif
content-length: 26816
server: nginx/1.22.0
etag: c0766ace8576a99fd244a90548633765
last-modified: Thu, 25 Mar 2021 12:54:48 GMT
x-timestamp: 1616676887.09955
x-trans-id: tx546f2a6e7c4447d0804cc-0063a457ea
x-openstack-request-id: tx546f2a6e7c4447d0804cc-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/player-controls-l.png
45.133.44.20200 OK 945 B URL HTTP/2 123.dorimnews.com/girl-tube/img/player-controls-l.png
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324
GET /girl-tube/img/player-controls-l.png HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/png
content-length: 945
server: nginx/1.22.0
etag: 6865c8700b582e4c7848472bb23dd65a
last-modified: Thu, 25 Mar 2021 12:54:51 GMT
x-timestamp: 1616676890.31833
x-trans-id: tx6e7f28bc10a3425781572-0063a457ea
x-openstack-request-id: tx6e7f28bc10a3425781572-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/player-controls-r.png
45.133.44.20200 OK 408 B URL HTTP/2 123.dorimnews.com/girl-tube/img/player-controls-r.png
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be
GET /girl-tube/img/player-controls-r.png HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/png
content-length: 408
server: nginx/1.22.0
etag: f0e42db89f7d0994b3723b35eb05a49f
last-modified: Thu, 25 Mar 2021 12:54:48 GMT
x-timestamp: 1616676887.05460
x-trans-id: txb47b10f8110b47e989d6d-0063a457ea
x-openstack-request-id: txb47b10f8110b47e989d6d-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/player-bg.jpg
45.133.44.20200 OK 3.0 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/player-bg.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3\012- data
Hash bab1fbc25b144342a6df20a99ff6c302
23daaf0041de9c962728395d874eaabee2136c90
7b09b1d119ca33f898a26f0c4762bafde868e6193062bfc9ccccf5fd64f7110f
GET /girl-tube/img/player-bg.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3005
server: nginx/1.22.0
etag: bab1fbc25b144342a6df20a99ff6c302
last-modified: Thu, 25 Mar 2021 12:54:51 GMT
x-timestamp: 1616676890.26387
x-trans-id: txe001ce77546e495e957f9-0063a457ea
x-openstack-request-id: txe001ce77546e495e957f9-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-1.jpg
45.133.44.20200 OK 2.4 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-1.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash d276b3f4daa8989d44278efebd58b093
b64bb9bd66cb4f6ed95f265556bba0f425a5ad94
5dddc2c1dcd70a67787946934560d0b8c74ecf2e7800ee58e52e20ca8a074ba3
GET /girl-tube/img/pics-1.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 2368
server: nginx/1.22.0
etag: d276b3f4daa8989d44278efebd58b093
last-modified: Thu, 25 Mar 2021 12:54:45 GMT
x-timestamp: 1616676884.67115
x-trans-id: txb00860ec261c49c090d3a-0063a457ea
x-openstack-request-id: txb00860ec261c49c090d3a-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
123.dorimnews.com/girl-tube/img/pics-2.jpg
45.133.44.20200 OK 3.0 kB URL HTTP/2 123.dorimnews.com/girl-tube/img/pics-2.jpg
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x135, components 3\012- data
Hash 311d1d001bffbcacef26eaca97c9047a
4976562fe26ebd148500def19e9f31917358b43e
370e9e3684425cf3384f1bb52fe1be940ca479280d6e330077bcb631bde9c1bb
GET /girl-tube/img/pics-2.jpg HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: image/jpeg
content-length: 3002
server: nginx/1.22.0
etag: 311d1d001bffbcacef26eaca97c9047a
last-modified: Thu, 25 Mar 2021 12:54:45 GMT
x-timestamp: 1616676884.66086
x-trans-id: tx541089c5aba94b2d997aa-0063a457ea
x-openstack-request-id: tx541089c5aba94b2d997aa-0063a457ea
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 85398769bf999db6c68fbd6ec9191566
5c75f6be322054abc950942eab7e74c1c3102cdb
384ba82b3c30d7f48d097134d4f0865bcd919832e2037eb717bf874d6011ac77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 06:28:11 GMT
Expires: Wed, 29 Mar 2023 06:28:10 GMT
Etag: "5c75f6be322054abc950942eab7e74c1c3102cdb"
Cache-Control: max-age=411988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aceb424aa6cfab8-OSL
push.services.mozilla.com/
54.148.82.216101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.82.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OsSG/v/YKgHOG8JbJXo1AA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sPKfINdSYqI3uKDnSY+JokRF+ik=
123.dorimnews.com/script.js?slug=girl-tube
45.133.44.20200 OK 6.4 kB URL HTTP/2 123.dorimnews.com/script.js?slug=girl-tube
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type C source, ASCII text, with very long lines (349)
Hash 94341a26b7658bc9bb2318c0eb54b2cb
a2f8f235b7ef64ab98208704d39a40271408554b
eed1c5c6ad5dbcdf1d1ceccaeba5cc9efb3ae46bda60e3e14d7bc3f2e79aea5f
GET /script.js?slug=girl-tube HTTP/1.1
Host: 123.dorimnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yyuhb543.lookinews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:51:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 6420
server: nginx/1.22.1
cache-control: max-age=172800
etag: 94341a26b7658bc9bb2318c0eb54b2cb
last-modified: Tue, 21 Mar 2023 08:16:29 GMT
x-timestamp: 1679386588.75991
x-trans-id: tx17b40d62ac1f42948b219-00641967f8
x-openstack-request-id: tx17b40d62ac1f42948b219-00641967f8
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 26 Mar 2023 11:51:41 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/18.png
149.7.16.233200 OK 12 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/18.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 833a12d372440b20017502d3c72e0b20
5fb9301142e3c53f65cd16502b35d7d1d5f82b98
1531ac56322b89715a35b1cdb5ca1f79f453614f368455b2cc8ef650a992f8cd
GET /lands/38/landings/Ihyam_7H2-fd/18.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/png
Content-Length: 12136
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2f68"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg
149.7.16.233200 OK 13 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 118x88, components 3\012- data
Hash 99a404d25bcdd47a141dafdbe046d0cf
04de642c5cbc865c29ab3599c1c4fa19f2a6ba8e
fbe779bcef340ba0b148f84b50a8323a2bbb493674e130bf877d87c6d163ed36
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 13106
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-3332"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif
149.7.16.233200 OK 2.4 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type GIF image data, version 89a, 116 x 86\012- data
Hash ec706a0634f1e5e06ad775b2b2ebdcf2
5a18c424f7b84b40709a6b78b2d632639bb3ff2b
9613f59211bd2194336c666d11a0d2e1daa4dd96d543e661f5835e0a621c2f5d
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/gif
Content-Length: 2350
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-92e"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg
149.7.16.233200 OK 841 B URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 9cf522c306866742c2806e0c14c8bca7
7a3ff28af2c6f7cfd036ec4fc162651eaf634f7e
fa09bef7875241c06a9e2505bc698a189d3b3ce012af29c65817fd476627ec87
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(15).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 841
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-349"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg
149.7.16.233200 OK 2.6 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe705e0c1", progressive, precision 8, 60x60, components 3\012- data
Hash 950ff8ae916df997fea302859ca2ccb4
42232e28878f65aaf4120d9435784ad46c2be71c
c0b01da5a48a7ddd619a2dee26bec77300b68bb1b028716320719f9c1a5f769e
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(16).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 2553
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-9f9"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg
149.7.16.233200 OK 28 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2016:03:16 09:26:15], baseline, precision 8, 118x88, components 3\012- data
Hash c1a5819d50b9125f0c46ded86fd5b4b6
3926c15be79cb7522cefdbf5066d39623e36a283
374f0cede3c1f91ad174b97554017b74cbd29424d7467d039beab541f6deb873
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 27900
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-6cfc"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg
149.7.16.233200 OK 17 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 118x88, components 3\012- data
Hash 215029a9775d1e9a56c93912ab03f4c6
6a3dbd676e2ea61850d2a20086b9ec84127da0ae
e071c52839ef37679439165349ffdd98cf19aa7e35d0293a1bec69743db70b16
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 17350
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-43c6"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg
149.7.16.233200 OK 3.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", progressive, precision 8, 150x84, components 3\012- data
Hash 6ed4eca1ed776930746531005fcf22aa
11e8643932e35a8ef65be8ef585afee241c8eddc
28849006b773d85fb8fb2295a86bcee5d2cdabb9a23d854ffebbd8dfd203588c
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(5).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 3835
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-efb"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg
149.7.16.233200 OK 4.7 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x550d5e4d", progressive, precision 8, 150x84, components 3\012- data
Hash 12f0c14e5943fd57577ce11155107bdb
a484cb296770fe6cb55d25cba19f831cf1aaf7d1
9eb468f7688a901a3626fdde8d0b07dc490a830718c2938d32f70f0ec122a344
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 4664
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1238"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg
149.7.16.233200 OK 6.8 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", progressive, precision 8, 233x131, components 3\012- data
Hash 2ad4260dc1204ad8f3c0c29bd919830a
fd2ddfca32f55ba5d180af812a787e61ce136480
acc8f76a570c0833d34835f5694409e082b4af09783366596c2e151e0b0ed128
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:41 GMT
Content-Type: image/jpeg
Content-Length: 6827
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1aab"
Accept-Ranges: bytes
news-gakemi.com/lands/38/favicon.png
149.7.16.233200 OK 1.2 kB URL HTTP/1.1 news-gakemi.com/lands/38/favicon.png
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50
GET /lands/38/favicon.png HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:42 GMT
Content-Type: image/png
Content-Length: 1233
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Connection: keep-alive
ETag: "5d7a0ef0-4d1"
Accept-Ranges: bytes
news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
149.7.16.233206 Partial Content 87 kB URL HTTP/1.1 news-gakemi.com/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
Hash 1543da605e4d3edd9f1350b6cd1c97f5
482bdacde169b24242de75b2bd4b2ec09c6bbc52
f0ba6d5fafb7ed15346c63be2741b1c0ac94c7196ffd666c9cfd8cb081b0d75c
GET /lands/38/landings/Ihyam_7H2-fd/fon2.jpg HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
Range: bytes=147459-
If-Range: "5d7a0eee-392ea"
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 24 Mar 2023 11:51:42 GMT
Content-Type: image/jpeg
Content-Length: 86759
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-392ea"
Content-Range: bytes 147459-234217/234218
194.58.108.80/KjNRwGbQ
194.58.108.80302 Found 0 B IP 194.58.108.80:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /KjNRwGbQ HTTP/1.1
Host: 194.58.108.80
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/
Cookie: _subid=s8hnpa1030g34; _token=uuid_s8hnpa1030g34_s8hnpa1030g34641d8ecd0e8005.24373523; 330d8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI1NVwiOjE2Nzk2NTg3MDF9LFwiY2FtcGFpZ25zXCI6e1wiNDBcIjoxNjc5NjU4NzAxfSxcInRpbWVcIjoxNjc5NjU4NzAxfSJ9.iJOJtJpJjV5Z-O-UO-0rUfaeBt5A6WPZmRwKS1YrJgE
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 24 Mar 2023 11:51:42 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Fri, 24 Mar 2023 11:51:42 GMT
Location: https://yyuhb543.lookinews.com/girl-tube/index.html?var={your_source_subid}&ymid={your_clickid}&rc=0&mrc=2&fsc=0&zoneid=1851770&tbz=1851772
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1030g3a;Expires=Monday, 24-Apr-2023 11:51:42 GMT;Max-Age=2678400;Path=/
_token=uuid_s8hnpa1030g3a_s8hnpa1030g3a641d8ece21a243.96332661;Expires=Monday, 24-Apr-2023 11:51:42 GMT;Max-Age=2678400;Path=/
330d8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjI1NVwiOjE2Nzk2NTg3MDF9LFwiY2FtcGFpZ25zXCI6e1wiNDBcIjoxNjc5NjU4NzAxfSxcInRpbWVcIjoxNjc5NjU4NzAxfSJ9.iJOJtJpJjV5Z-O-UO-0rUfaeBt5A6WPZmRwKS1YrJgE;Expires=Sunday, 14-Jun-2076 23:43:24 GMT;Max-Age=1679745102;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
news-gakemi.com/favicon.ico
149.7.16.233200 OK 1.2 kB URL HTTP/1.1 news-gakemi.com/favicon.ico
IP 149.7.16.233:0
ASN #63023 AS-GLOBALTELEHOST
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 183cab2f5d4582ef71ae37efc8d458dd
7c230eba9c1ce7900ea9bbf53dde00ea068dc995
c96fb13d89231c5a743ca1826064cd884ed4ec629fd66f15c0dbcf173dfbbf3e
GET /favicon.ico HTTP/1.1
Host: news-gakemi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-gakemi.com/lands/38/?site=8019817&sub1=2kqmn8osihbju&sub2&sub3&sub4
Cookie: clickdata=ODAxOTgxN3w6fDM4fDp8MmtxbW44b3NpaGJqdXw6fHw6fHw6fA%3D%3D
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Mar 2023 11:51:42 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Sat, 20 Jul 2019 16:00:28 GMT
Connection: keep-alive
ETag: "5d333a9c-47e"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8584
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:51:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8584
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:51:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8584
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:51:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8584
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:51:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vOBDFA2LzOIp_0dMXApotrithfiToWtpM2xMRyx1pWAE86olKT6EpQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 02:36:43 GMT
age: 33299
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68798f0963b37143bcbec5c6e08f2efe
00bb4ca04f3e52c8d9eacec7449a9cf49f6c312a
7c54bbd23a76d8b4c15e352b92e33c7164916899a5af71ba34a7af884b8a0944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6403
x-amzn-requestid: aab6628c-f612-4b57-9ae1-0017714e19c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHyEIkIAMF4JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-2110e0d35561ab794e44e966;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: V4F_j_MuQgkRSKgCVI8OaJH2ZUbo6FcSk6Qv-BB4uAfm84jsQ2qklg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:43:19 GMT
age: 50903
etag: "00bb4ca04f3e52c8d9eacec7449a9cf49f6c312a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f46d765cbcbbcd9707a21eec12d80002
d9bab36f53de76263a67bc34364e33bed28d35cd
772e85ac55db0fc3ca75329e0197c7caeff466e90b5cf85df7ccb44a85a253f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4438
x-amzn-requestid: ce3cbb97-2a19-4499-8ab7-18cf5f99b5ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK85SG3_oAMFQcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa83b-2750db5d028ac4ac54a865f8;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: s3be2clZAQ4R0f442UhQKzqwRKV4cO9mRaWArwIGHl42yU7N2JG36Q==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 13:45:06 GMT
age: 79596
etag: "d9bab36f53de76263a67bc34364e33bed28d35cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58c58176f0c5825828c8ca12e6471fe1
fe0f05aaa351cfcf5d00c6e96fcefefcdeb51480
c3a5d4595188ee57312b636e4c605b368088eeb8be2c86ae5f77e379f51b79f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7696
x-amzn-requestid: c4e2712e-c6f7-499a-980d-98120ede7b9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPt1Hv3oAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc658-6b5fc3f005b6d210710a267a;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:36:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: o9mJZed_h1-gITgHyFrt2GJ_N1jCIadpgm4dhEIKT4axJZwhKT8c0w==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:43:19 GMT
age: 50903
etag: "fe0f05aaa351cfcf5d00c6e96fcefefcdeb51480"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 04db6085e8ec938c1385fb33b32ae036
0f173b8971723ec380a9610b3dda8f64890f6f37
873d5942c34057339f7a9c53a9d4cdc3a0b82f01223f851898da0ebbe0a628bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7482
x-amzn-requestid: 843e4bba-1550-44c4-be10-dd333148f83d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHxFuuIAMFvmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-03f5d2675850409e70748490;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i3f56KYdhzWqiBtE9-vSMBC17mWa0qZfxQb3AmHcNvApYKse8O3DdQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:56:06 GMT
age: 50136
etag: "0f173b8971723ec380a9610b3dda8f64890f6f37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89cd024b8021bb2873b0b8972c77cb47
9aea167a3ebf62d91e705433f13b9fb0194daad4
454e0b9e6e12f7a8a1a87913fb7f539358bbfdb1371e30abd472c897082c2a38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8490
x-amzn-requestid: 7444a745-87e0-4424-92fd-630bf7cacc0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQP4QFRxoAMF3Yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc69a-112bec36430d78e3733e6e12;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:37:31 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: PCrktePti3HtIntww9Fq70JsHe6rENG1L_AQX6avgkSNDxnaYOtOSQ==
via: 1.1 626ad4a6bf529166d2aad94a2957694c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 22:00:43 GMT
etag: "9aea167a3ebf62d91e705433f13b9fb0194daad4"
content-type: image/jpeg
age: 49859
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400&subset=latin,latin-ext
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400&subset=latin,latin-ext
IP 142.250.74.138:0
GET /css?family=Open+Sans:300,400&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-gakemi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 11:51:40 GMT
date: Fri, 24 Mar 2023 11:51:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2