Report - www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/

Report Overview

Submitted URL
www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
IP
104.26.3.123
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-03 07:40:54
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
friendshipmale.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	28 kB	172.64.202.23
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
img.bestjavporn.net	406632	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	3.0 kB	104.21.233.138
cdn.creative-bars1.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	41 kB	172.64.109.13
r.trwl1.com	34565	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	614 B	1.1 kB	185.98.53.17
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	21 kB	216.239.34.178
r.trackwilltrk.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.3 kB	185.98.53.17
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
i.jads.co	46788	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	513 B	361 B	69.16.175.42
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
simplewebanalysis.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	413 B	52.28.211.11
cdn.cloudimagesb.com	23099	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	62 kB	45.133.44.9
js.capndr.com	316718	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	362 B	45.133.44.24
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	1.8 kB	142.250.74.106
liaisondegreedaughters.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	14 kB	192.243.61.227
lightssyrupdecree.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.4 kB	8.4 kB	192.243.61.227
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	930 B	84 kB	104.17.25.14
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	35 kB	142.250.74.106
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	34 kB	142.250.74.35
poweredby.jads.co	30525	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	6.9 kB	185.94.236.253
static.adxadserv.com	128146	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	965 B	185.76.9.24
js.wpadmngr.com	25762	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	766 B	37 kB	45.133.44.24
8b9714d2f2.413dfe9f11.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	954 B	320 B	45.133.44.24
www4.bestjavporn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.0 kB	42 kB	104.26.3.123
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.1 kB	13 kB	95.101.11.115
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.131
pics.pornfhd.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	87 kB	104.21.235.64
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.5 kB	95.101.11.115
static.javhdhello.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	8.1 kB	185.76.9.16
fp.metricswpsh.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	973 B	796 B	157.90.84.242
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.5 kB	93.184.220.29
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	44 kB	142.250.74.40
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.163.49.154
asg.phukienthoitranggiare.com	277546	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	834 B	38 kB	135.181.208.216
adxadserv.com	85319	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	24 kB	185.98.53.29
static.javhd.com	39788	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	676 kB	185.76.9.16
unseenreport.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	718 B	423 B	192.243.59.13
cdn.barscreative1.com	25648	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	459 B	386 B	45.133.44.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	Malware
2022-12-03	medium	cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-03	medium	liaisondegreedaughters.com	Sinkholed
2022-12-03	medium	413dfe9f11.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-02	medium	lightssyrupdecree.com	Sinkholed
2022-12-03	medium	unseenreport.com	Sinkholed

JavaScript (36)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=UA-124653024-3	112 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-124653024-3 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-08 15:10:18 Times Seen1 Hash 4a9564a4ee8dd86fc8ae1085d36f8be2 d17d5bdc204408ce7a869301efa616ebb43af5eb 8a9b768145f897f1f682abefa4cff813e41c8e975d720e18db5a22e2a11e6026 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	116 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash 0be1ea69d1fb993a014af482fc00de04 2a5f51fcc22963fda8f6b4cb71daa63b1a7014f5 2ff5985ddb0e1152aad3b96aa9a46f56dc338928e911591ccd8105c2b98d7cf9 Loading...

	poweredby.jads.co/js/jads.js	3.8 kB	2023-03-07	2024-05-10
Pretty URL poweredby.jads.co/js/jads.js IP 185.94.236.253 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-05-10 18:47:02 Times Seen8540 Hash bc8141c4650030c41f6a98026b12ce80 af5618f7e467a207d4c64627be580283ab5640cd 5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51 Loading...

	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	37 kB	2023-03-08	2023-03-11
Pretty URL liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-11 22:59:18 Times Seen1 Hash fc1f3966a0fb116e99292397e760f50e 68698b9f1484342cb7c440a31471b860aa18d782 5edd4cac7d7cf4fdf75430bb3821528a9c349a2fb2333ff25b77726ff6a0be6d Loading...

	poweredby.jads.co/adshow.php?adzone=784300	1.9 kB	2023-03-07	2023-04-05
Pretty URL poweredby.jads.co/adshow.php?adzone=784300 IP 185.94.236.253 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2023-04-05 02:10:48 Times Seen259 Hash 5cd62169649c11f1057fd71c875fdd2f 6abb31f47f4927bf56249c39a3ef728c57385b68 1fdcbb5a37d7a7fb4938ab8f8a73fc7b68cadb81aecacdf7ad490525e6aea3fa Loading...

	static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9	2.0 kB	2023-03-08	2023-03-11
Pretty URL static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 IP 185.76.9.16 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:34:36 Last Seen2023-03-11 23:01:48 Times Seen1 Hash 712528977a29aa957dbc6f2628f04a83 e3ad70fa584824e3a05b44da7aa77928b03da001 a7a7083df2eea72a64a7e37947efb5beab3b9ca95d2c27554d4eb0d3343a2e4a Loading...

	js.capndr.com/popunder-admanager/build.m.js	44 kB	2023-03-08	2023-03-11
Pretty URL js.capndr.com/popunder-admanager/build.m.js IP 45.133.44.24 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:40 Last Seen2023-03-11 23:51:24 Times Seen1 Hash ca0d98a35e28da18e3098db115341862 bdf71b60ba9376923b3ff50505af0dce40712e98 22dfa53579e1b8bea6f9c1451033de0cacda7597d7610ccad1fa4eeb2a906043 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3	33 kB	2023-03-08	2024-01-06
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-01-06 07:53:05 Times Seen16 Hash 9c087dd00c879aaa39aa54baadb77c07 4a9233ab7ac20e8a415b7f4582d521d25920d21d 87fc1b3826f63e8d1b4f966d122e0c37cd11cf707a52f772c5d80b28c4aa040e Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	155 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 02b151f7f8bea6ea1530ad01245fa6cd 380297a64caa6dc209094187f329c61ed6a67dc1 61c58386d48745eb2671d386f65a2097706cfbab8a17103baa29b1159475c41d Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4	97 kB	2023-03-07	2024-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-10 23:59:05 Times Seen119364 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0	1.6 kB	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen38 Hash 0c8e12b6729ea495f40021071c279dbd d4bcfb6be3925b36d01f9ac879c4a86910f7a199 d7b7dc8c56c48930200905378552e435f23e32c2fd159a2176d40a712cd43513 Loading...

	static.adxadserv.com/js/adb.js	1.3 kB	2023-03-07	2023-04-16
Pretty URL static.adxadserv.com/js/adb.js IP 185.76.9.24 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-04-16 19:00:23 Times Seen28 Hash 6f620fd5ad9850e1117bb73e2326afe5 eb8576e351e8f6ff39ed9ade7a940d8aec66fad1 26ec90d22570d3951bcd6006eefe2d622a85ef89598d75418dda23cbae996dc8 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	63 B	2023-03-07	2023-03-17
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-03-17 11:36:13 Times Seen1 Hash 68b49461696c843d7eb50c3e3bd3d394 4b8bedd664b7bc395ee93416e1bdf11b6a5c482d 9aff9406b53b2576b262de3e45c58bd5220734b74b6a1a24e8d8c58c78787439 Loading...

	cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js	90 kB	2023-03-07	2024-05-10
Pretty URL cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js IP 172.64.109.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-05-10 22:18:37 Times Seen4156 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18	20 kB	2023-03-07	2024-05-01
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:28 Last Seen2024-05-01 09:52:53 Times Seen151 Hash e019a5eef7655ef670c33b1d53387c89 9febd845833a7bb5fc8766c50888d6a55cb6953f 999841f33c1c69bff363d50e357c6f1f2e7af6cacbbaf82302f857894e795d29 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	146 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen25 Hash 9615ee0aa330a699931e5f7b6e9c1e0c e0a84195adac251741043f7d937add120ef68559 740364edc7a7d4b4f2b4dbdf53f7bcdd6eb05194be8c49a0ed045716102d9ae5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 216.239.34.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	js.wpadmngr.com/static/adManager.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL js.wpadmngr.com/static/adManager.js IP 45.133.44.24 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2023-03-17 12:41:09 Times Seen1 Hash d17122a2baaec1b2ce4e62776349bb2b a732dd7dcf6b3af05e416510b77640dfdb27307f 89ceaf2fba13343764ed6f07696d5b3a49b28daf865c3f6c204c218a4cd62e1e Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	18 kB	2023-03-07	2024-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-10 23:25:30 Times Seen2912 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fmidd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa%252F%2526dt%253D1670053242815%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670053243241&t_i=1670053243250&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670053243250&fpid=&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.331	0 B	2023-03-07	2024-05-11
Pretty URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fmidd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa%252F%2526dt%253D1670053242815%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670053243241&t_i=1670053243250&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670053243250&fpid=&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.331 IP 185.98.53.29 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 00:05:42 Times Seen37530693 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	http:blank	565 B	2023-03-08	2024-02-28
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-02-28 02:41:26 Times Seen4 Hash 4c42561bb948a82f4b32d0e367543695 7fce9ddd740fee81dd857eba798f8977a9f7646f 55f1ab867653b56df88ecb576f1f6d8921e8398b023df3b905ee658b88aafdf9 Loading...

	www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-11
Pretty URL www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 00:05:39 Times Seen56577 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0	426 B	2023-03-07	2024-05-10
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-10 08:57:36 Times Seen1156 Hash fa2ce987f8db7686a86e81d3407acb43 2c0e064be7f6d1d273749ddaa289d09a0f7470c1 405a5e4943b97243440d632a958bb6e79f1d1929666745000a22ebaa5fa2d819 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	1.6 kB	2023-03-07	2024-05-10
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-10 05:46:17 Times Seen694 Hash 388722716c8c89af1136cef19a98017c 50875c3734cfd73eb9856bef783de97dbb496dae d39b00bf80cd9591e726005002d8084407bdb41ce867ac0e70ede5b7a781c472 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3	3.9 kB	2023-03-08	2023-03-13
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-03-13 17:40:57 Times Seen1 Hash 2d975d9112dedc0e2a9a19db1fca050e 159ddd8e5886340d37fd9c875d9e121d27cab9d5 da4bc148b4fb82f5ad6455617da96f52329944ab6198d049a58cd64b2499854a Loading...

	static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ	2.0 kB	2023-03-08	2023-03-12
Pretty URL static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ IP 185.76.9.16 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:06:57 Last Seen2023-03-12 22:52:18 Times Seen1 Hash e26c4b270286806fbaea479b788526f3 8de9e5526e190d2af6de83c04d64a5d8e9ba655f 15bba214cba3a919a367001ace860e86f1a29d15845a80abaec301b9f7886c9b Loading...

	asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=	568 B	2023-03-08	2023-03-08
Pretty URL asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-08 15:10:18 Times Seen1 Hash 6d5685d03ef780662195106b89e1dad6 cdf77d43c8cfe187c16ff158beff023db8f99a90 2193a2ba6827831a0495e1a918f34da6255154a727e7fafa44b89abf066ed939 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	364 B	2023-03-08	2023-03-08
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-08 16:10:23 Times Seen1 Hash bd28d38a4552ea6fe385d5c770988bd0 0db6d8c1413f0443b84c482f4237be0587919d08 a45dcef58698145a73acde797738fd72f270136978ea9a590a152acebe17e42f Loading...

	www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js	5.6 kB	2023-03-07	2024-05-06
Pretty URL www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-06 08:06:00 Times Seen701 Hash 81a54a116c4b5f257f0c296bb023e915 23167641c90ec1587c30c71625cedaa7f5701a1e 1e3bbf2a6d9503811213baca9f5e309618ca968136199ca532a0a5167c0b0f1c Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	64 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash f9675ebfcfaedcfc75362b6f6f0b848c 2eb1a3c8f6e600379712d2aa73eb1bf7e52ceb40 6a405d8f6090f493c5dba7eaf7197cfb927fe13919a5bc470ca615c3fd48243a Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/&dt=1670053242815&screen=1280x1024&tags=	345 B	2023-03-08	2023-03-08
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/&dt=1670053242815&screen=1280x1024&tags= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-08 15:10:18 Times Seen1 Hash e2253251fd02acd1687e37df9e17afe8 8a0c73dad4d6006d1f289781ae917d3d8d4bbdd5 8cc5e58f130a35575e9fc4cc0b4946804d62c50e6400d5aca41338373a9c9019 Loading...

	static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ	2.0 kB	2023-03-08	2023-03-12
Pretty URL static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ IP 185.76.9.16 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-12 06:34:52 Times Seen1 Hash 0ead42a6e2213434b664c393e11b17a1 135b3f381badba3420db0208cf53011e40d14149 b72235b6ae4a9371a6ccbf9b4cbff7c845f7eadbca307929ac05c8452d699910 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2	70 kB	2023-03-08	2023-05-09
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-05-09 13:30:00 Times Seen4 Hash 25b438bbf0012293c03182fd5c1b2c78 3b315f5f46731ad656322576d3603059f5518ff5 9bb49f7260999e2606151d15fe7c24b8fb9157a9aec2c7912be4fc203839f4e6 Loading...

	www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/	345 B	2023-03-08	2024-02-28
Pretty URL www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ IP 104.26.3.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 9e07e1de097e074188c64f54bc89e80d 549f51aa69be92fa441c291adc1fb43b72d7729b 53f0c82f7e25fd9211e8149d2088174e3f73bd867756cd49cf4d9a41e582595f Loading...

	asg.phukienthoitranggiare.com/Cqp6VQ5.js	119 kB	2023-03-08	2023-03-13
Pretty URL asg.phukienthoitranggiare.com/Cqp6VQ5.js IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:25 Last Seen2023-03-13 10:17:46 Times Seen1 Hash 20b1f7c4e40e41c2debfb17cb07134ec f5ba09f282f291f98f69d4829569903c18b5ed57 130e9e584b0c6495952676d31263fab5331788351c9f83078fcc29e2caf7d7a7 Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/&dt=1670053242815&screen=1280x1024&tags=	561 B	2023-03-08	2023-03-08
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/&dt=1670053242815&screen=1280x1024&tags= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-08 15:10:18 Times Seen1 Hash 8a470ce28770af7b49eef534e4f1c285 d2d72c16029f8ac313ebe6ccb968400dcf1828fd 2120d24a6d4667ff778e08120b2dde6357bf872ae498d4525cc3777bd64759e7 Loading...

HTTP Transactions (116)

URL IP Response Size

www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/

104.26.3.123

301 Moved Permanently

0 B

URL HTTP/1.1
www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 07:40:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Dec 2022 08:40:42 GMT
Location: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWwAdgOsZEddiGvyS%2BvsxzBD50l0paQHp%2FkgJPTemUV70cjp7G2j4weW4yCQDl6vA93PwLPJRwi%2BJZV9IND9aHP0aShHHlSjk%2BL%2FaC2ga4ydj6QQzKPz6ivzCvuUcr15eMTh%2BROu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773aa7e04cefb4ed-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13601
Expires: Sat, 03 Dec 2022 11:27:24 GMT
Date: Sat, 03 Dec 2022 07:40:43 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 527
Cache-Control: max-age=97159
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:40:02 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9187
Expires: Sat, 03 Dec 2022 10:13:50 GMT
Date: Sat, 03 Dec 2022 07:40:43 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 07:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1244
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 97/Y5SsxfSokOlrDg73KxWudcI3rKb1uSGdjEA5dW7aWjGxy8PcY+cZHMUiWmdZYRHConUUZaHc=
x-amz-request-id: P7E1A2PHTRBSWCZ0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 06:47:01 GMT
age: 3222
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
c597bb5278c285732bfc54c8bf582ce7
68c33faab675a738f9df123028e7c176575525df
714898a2cd9ee94e3397d60952f239d8201f434132136b71f57192b5af8fbd15

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3039
Cache-Control: max-age=162996
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Etag: "638acb50-116"
Expires: Mon, 05 Dec 2022 04:57:19 GMT
Last-Modified: Sat, 03 Dec 2022 04:06:40 GMT
Server: ECS (amb/6B84)
X-Cache: HIT
Content-Length: 278

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.25.14

200 OK

77 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1430729
expires: Thu, 23 Nov 2023 07:40:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q99rJ7v66hGBRR260vSdjl3CNq4xfgMUMEkkkDcI42h8lljqj433wL7wqT%2BgwW7B0srzi5QX0%2FCZxfKUz2kZgLj%2FEoe0O02xdL4rfjnk27jHhXO2vly9pyLvF%2BjDkEsf4A%2Fm6J1o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773aa7e47e7c0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.25.14

200 OK

5.1 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15334905
expires: Thu, 23 Nov 2023 07:40:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i0RJmrVf3on77qKKRHUtKrV9s6%2FpgXNXEk9ya6gfTPV9vX9MzqtDUetJygXCC3kJ5zzxKvRe1xbPY6fFc3bcWqLAwkPmcCjdSvy9sXrqBv2aFIuIwgrtQLCYYBS%2FMPLsugIlrtE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773aa7e49d5d0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js

104.26.3.123

200 OK

2.6 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5543)
Size
2.6 kB (2609 bytes)
Hash
279e69b176aeb6d57939bca556f24e20
07efe75e965a9f021a034d7d0f08a7cb191614ca
08f862b5a1e0cec5016ad1d5ded3d43a4f060344cd5fc400edbb5a2c915b1211

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 76049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vk6U7N2rJJ1InX3qFklnNTCnVqB9wSOK3UpIEkK8tWjThrh8FXMp8EMQrGvfik%2BfW17PCbCb6HhnnZCDCVWcfFJIMiSaGQ45QDggYt6Fk1uNu7kEJpWRx5XNxfjjeyl4t%2Bju1eSH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e43b25b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3

104.26.3.123

200 OK

10 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3433)
Size
10 kB (9990 bytes)
Hash
a57dbe081802834345112739b5f59ac2
58855656ebd09c17161cd992f183e4d9d958cf3e
f7aaf10320f372d894ad884338246bbfe6ba290ad2da5ce6b152e0e04bfba7b9

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=51865
etag: W/"6388cd36-ca99"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/main.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 76049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V9gA3KVgQQvxfP%2F%2BD%2FsgL5wLjUiyMxNksEU2Y8oyKuitH1GSx5StDXeQLdb8IWqznfROyBrYGPDPHXKA9WcSGu06Ajac8z3CjdooNYZDji1E5MJwjkRV6VcBaJCHn0sHkxD%2Bpo1b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e42b11b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
dbfc9a00b71ef366816c7c6021f3dca1
3a893fd310ef09991527353d3aeb1aee44652a64
31376260524fae336b4c977d2c45a05678d0f033c76e9190fa33e67128440dda

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1467
Cache-Control: max-age=127953
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Etag: "638a4891-116"
Expires: Sun, 04 Dec 2022 19:13:17 GMT
Last-Modified: Fri, 02 Dec 2022 18:48:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4

142.250.74.106

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:36:02 GMT
expires: Thu, 30 Nov 2023 16:36:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 227081
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-124653024-3

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43577 bytes)
Hash
e17c051967397bfd8b800a9c544ca265
16bed111ff6bd5475e7cb496e483e053eca9c933
fcf7529539b9829ff0a82b22e5e2001aeb8912609fbb2fc5058d803c08a8cb14

HTTP Headers

GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 07:40:43 GMT
expires: Sat, 03 Dec 2022 07:40:43 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0

104.26.3.123

200 OK

705 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
705 B (705 bytes)
Hash
75114c157a02943759c3e999918426f3
dab95fb11e9e705a0bd4bbfbb734b0ec59047337
d3c8c90e2fd9d6f8fb68bb4d23dfea61361897c425ade4672adb323a11d11bc4

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 76049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tl2j6ur9R90u5g14PsT%2FTLwDsIvLIJT%2FEnqear0kr9Qz%2Fue%2Fk9lW55T9N4mSLFwUIxo%2BBGXBcdpTK8KHDBsQ3miN3JpIiX8aGOfCk3DJz%2BH6IYwyuixmn0fDjvm2wYOam%2B2JLx1W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e42b14b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 07:08:58 GMT
cache-control: public,max-age=3600
age: 1905
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3

104.26.3.123

200 OK

1.6 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (791)
Size
1.6 kB (1606 bytes)
Hash
5b42692891c7b4e2de59eda5356480a1
4ce0a9bd470bf2a3f309369cc6dc5671f2afbe9c
7663aa8c96c08ab250868d057147ccb490ecc51999ce7993904ddbc9184ba4f6

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 54024
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bDT5%2BmJVgUKKYZ95QUXBdaOnJ7CPrFKo2U4DfK0Tf71eX13HDcxrdKQ0Z2uxME9XyAwnm3idRdQMApWbzuwBe9ARsoiL4yGtOrE2PX%2BnADSvw3S8z%2BSHfEMBKyn%2FC2kzHwA8IcDp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e44b32b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans&display=swap

142.250.74.106

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1063 bytes)
Hash
596826c1b716e0bec252902620079f74
49fac3a3b58b8e339e9a597163beaa6b5fad4334
e54c75acdd18e67add88cb1ae3d2526e64c4e93e9c4da2020b54a4bd5b0d111f

HTTP Headers

GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 07:40:43 GMT
date: Sat, 03 Dec 2022 07:40:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3

104.26.3.123

200 OK

13 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (59837), with no line terminators
Size
13 kB (12875 bytes)
Hash
275364f9cd9de127e7c8574b8f312570
0529b23d366fcbeb1f6824ce6f300a234939f7ea
e595f00dc73729a83835d9ed63f216bc91b7f2df5a899275274e9a4aecb73acd

HTTP Headers

GET /wp-content/themes/retrotube/style.css?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: text/css
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=84878
etag: W/"6388cd36-14b8e"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/style.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 76050
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eUHg6MeVQAA7cVltKkAiPyXuiiSKeubNLkSJMMNRpdAZGsbLBF1O8Y%2BnYK2RUyOc7yGiE5o4YCnCjOUfKTlajPtSSlgMypIXxRpiG4luRGb6y338M%2ByL86D8g%2FC8SnFlz64tR2pB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e41b05b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
158d67cf93ac0c933a944cc5828889de
6e222f613c1a9e3d59487bf1821bc7cf72a8a38b
2ca11c650cab8680b617a4326b7a99f0d90e7530544d90ee7cf4ea42605d2f9a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4625
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Last-Modified: Sat, 03 Dec 2022 06:23:38 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.26.3.123

200 OK

2.2 kB

URL HTTP/2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
2.2 kB (2231 bytes)
Hash
0811522ef46c61a09b597bf7b299c483
98f60c4616183e8fc0c5c2705c3027fb1dc243bd
dbd484b492d287cf46eba003a8c02ddeb18ca07f3c6222c9f5a9a71222abc795

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZG4xZuOY0WDT6btIRyJF57CA3izoHBwjhbmFSeSZ8%2FulMibA9dqLubh7B2KSVHW5UirGFV6sAkXhY0s74x72J3VZKyhzoPh18Xh6HXkCMQ3Sn3uecI4mSW8%2B4KkHmoi%2FqEF56c4A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa7e42b0ab511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 05 Dec 2022 07:40:43 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
158d67cf93ac0c933a944cc5828889de
6e222f613c1a9e3d59487bf1821bc7cf72a8a38b
2ca11c650cab8680b617a4326b7a99f0d90e7530544d90ee7cf4ea42605d2f9a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4625
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Last-Modified: Sat, 03 Dec 2022 06:23:38 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 391668
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 567
Cache-Control: max-age=92137
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:44 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:16:21 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.163.49.154

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.49.154:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QqWsRHIwcvA3O+xewbqnjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8ArU3GTbNC4yZ56DXYayfTAEbfo=

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
afb32c281d3a6ba61578626128994b5f
ac59ba05c0170ea9eb9734684907d8fc2724eb44
2eb2a74ce312a8eaa5770470fa200fb54a13461dbd7f63100691a2e150ad2217

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 07:40:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 20:27:07 GMT
Expires: Fri, 09 Dec 2022 20:27:06 GMT
Etag: "ac59ba05c0170ea9eb9734684907d8fc2724eb44"
Cache-Control: max-age=563781,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773aa7ea4d11b505-OSL

poweredby.jads.co/js/jads.js

185.94.236.253

301 Moved Permanently

178 B

URL HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.253:0
ASN
#42567 Mojohost B.v.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 07:40:44 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

poweredby.jads.co/js/jads2.js

185.94.236.253

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.253:0
ASN
#42567 Mojohost B.v.

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 07:40:44 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eae"
Content-Encoding: gzip

www.google-analytics.com/analytics.js

216.239.34.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.34.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 06:41:08 GMT
expires: Sat, 03 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 3576
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.adxadserv.com/js/adb.js

185.76.9.24

200 OK

565 B

URL HTTP/2
static.adxadserv.com/js/adb.js
IP
185.76.9.24:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (511), with CRLF line terminators
Size
565 B (565 bytes)
Hash
af6fb5b2a59d8ad5228c0fcc9b93e379
c660263e09ad93df234c8ccb9ea1e9e56adba5b0
5722cb1226c9d5aac539896451bb30ec35b45993d484819e53401c9d691b8372

HTTP Headers

GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1670929637
server: CDN77-Turbo
x-77-nzt: AblMCRTNUU//l3ICAA
x-77-nzt-ray: af5856308a995c707cfd8a63e8fabb2e
x-cache: HIT
x-age: 160407
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
058c3add7443e8f8ecadce06c9a28289
847032a32a19160f67bd3a3acf09fb68e8162968
6734b028d4f402b88cfa1af9ef73b0bcbbc004ef036f35518d9334f243df8317

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3039
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 07:40:44 GMT
Etag: "638abea6-118"
Last-Modified: Sat, 03 Dec 2022 06:50:06 GMT
Server: ECS (amb/6B84)
X-Cache: HIT
Content-Length: 280

img.bestjavporn.net/favicon.ico

104.21.233.138

200 OK

2.3 kB

URL HTTP/2
img.bestjavporn.net/favicon.ico
IP
104.21.233.138:0
ASN
#13335 CLOUDFLARENET

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
2.3 kB (2322 bytes)
Hash
335e4f038cb4773ee965852680d1dbf2
1cdf33a5264388104d9f611cfcd6f80166944832
48b346fd9a6951d9a2d8f440f0b52bdceafba468be60b5401eb2c2194ea2ee7b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2650158
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OhQpKGOZekNV%2BbbM48NURNb805GWWnovDNQPKDjRvCT9m2IqMj%2Fn04KRvGQbPvB7ywtUevzmsWuLoVzJrnleQv5fgldIV0k8IPHibDqin98tlwlF2OFgehUGfdgRYPk55uFrgvD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa7ec49f67761-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/mird00046/mird00046pl.jpg

104.21.235.64

200 OK

44 kB

URL HTTP/2
pics.pornfhd.com/s/digital/video/mird00046/mird00046pl.jpg
IP
104.21.235.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", progressive, precision 8, 512x320, components 3\012- data
Size
44 kB (44210 bytes)
Hash
3e34bc3fe66624ae2089fa7273c3c2cb
f33bba7e12f60853d52968f1905dc3b3bc6ceee8
996e6075a50deb899c01126757d5bb4ec6063016701d319d63a81f53653a451f

HTTP Headers

GET /s/digital/video/mird00046/mird00046pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: image/jpeg
last-modified: Wed, 09 Jul 2008 00:13:51 GMT
vary: Accept-Encoding
etag: W/"487402bf-aabb"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IA6EdHEMRAziMq8Rm2k9ERVpYqjjgGsF7e6Zj2etTkmQPtLJC0ZcHDAb1SLBrWqoVhNbGyN2%2BW1pww3ikEci6PQCvgybZ5q7AN99naK0ZfPDBJnvBz6fv6p5Otob5iKD7NPs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e70f9e88bb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

asg.phukienthoitranggiare.com/Cqp6VQ5.js

135.181.208.216

200 OK

36 kB

URL HTTP/2
asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
36 kB (36441 bytes)
Hash
e8d9830da804bc817f61fad74410f65a
aaa4a11b7b2b3882fbc21e4d41e3e1dd8d3b9535
ef27201df32d933acb0b250a238ff916ec575e31d8427e3b7a62245c659470dd

HTTP Headers

GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 978313776816dba934d16309fa2c65c8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: m5MBCMRQANMHGMdmir-ttRxRFk5Hsb0z7TdfGM-Xt4dtPCm5JDjaew==
age: 3269959
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
32aff9f00966385cd9715591a3b443eb
4808cc7cc6e71aaf75314dc5aecea80c33afdb4e
e320260d17d0b732c980cbebdfddc288016f691b6108693a51406e7f7976efd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E320260D17D0B732C980CBEBDFDDC288016F691B6108693A51406E7F7976EFD8"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=606
Expires: Sat, 03 Dec 2022 07:50:51 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv1=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61

185.98.53.17

200 OK

931 B

URL HTTP/1.1
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv1=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (735)
Size
931 B (931 bytes)
Hash
e59934656e644bc4e9329df45053a4c0
fb227131f37a0df6623abc4fc6d72ce6a97e9bf3
4379efd3e2665f3e8385d6eea43384900ca86cec0d7daebd0c87bb5839ecd707

HTTP Headers

GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv1=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 931
Connection: close
Set-Cookie: uid=fOXD-3gtp; Path=/; Domain=trackwilltrk.com; Expires=Sun, 04 Dec 2022 07:40:45 GMT; HttpOnly
X-Request-Id: f87268de-83cb-4bcc-8bbc-8e7f218e1224

adxadserv.com/ascripts/pxl.js

185.98.53.29

200 OK

23 kB

URL HTTP/1.1
adxadserv.com/ascripts/pxl.js
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (36114)
Size
23 kB (23098 bytes)
Hash
72d1139e9f2e6ebe3f51c9193edb4439
cd356eb9eaab433ac792406ba36d4304b6450571
74553d0effe74cd6a4f1424940f7fd133c5457ff1d5c53030e651ec6612bec88

HTTP Headers

GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Thu, 01 Dec 2022 08:33:11 GMT
Cache-Control: max-age=86400, public
X-77-NZT: Abk73hHdhvf/NEUBAA
X-77-NZT-Ray: f4787b27130910997dfd8a630255fd17
X-Cache: HIT
X-Age: 83252
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26c497a82eb16bf249b0f8a84d2cb69
f4cef3d30ffe491b2f2a43f5e68ee6dc04eed822
473d7c50bce635cd4bd853b49a556952defd273d38e8e0776801eae61f13cf0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "473D7C50BCE635CD4BD853B49A556952DEFD273D38E8E0776801EAE61F13CF0D"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6984
Expires: Sat, 03 Dec 2022 09:37:09 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20887
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20887
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20887
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20887
Expires: Sat, 03 Dec 2022 13:28:52 GMT
Date: Sat, 03 Dec 2022 07:40:45 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9715 bytes)
Hash
45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 35379
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8498f68-55a6-46be-9eb1-671b7a90a148.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.3 kB (3321 bytes)
Hash
ce5811e1c83156e6a6d4557c33faafe5
ba23b3c6adc42832ccd60941123d78dab3e435d5
a9394a4f8f80733a19fb03bc3ad216f4e15c9ba7110e2e181272304ea2f3f2df

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8498f68-55a6-46be-9eb1-671b7a90a148.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3321
x-amzn-requestid: b418b18c-969e-4525-8263-0c910593f7fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN2HJaoAMFQ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-5196fa3028f5fb80160617af;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zjXwnCMm7SoCWDGhO71JV6Itob3-rdlXetrU2UmDw6p-eeFt0T6sfA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
etag: "ba23b3c6adc42832ccd60941123d78dab3e435d5"
content-type: image/jpeg
age: 35478
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 9517
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11233 bytes)
Hash
dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 89afb72e-6967-47d0-a0ad-48cad8cd08e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIpgOEi0oAMFstg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638022ce-1e8087e734e71d611df75830;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 02:05:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d9wLy3xAxK6RiYf25v_GFT1gdezT8IzMxaFyGRuGm2nxOBh6uEOg3w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:29 GMT
age: 34756
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9449 bytes)
Hash
249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 35239
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8016 bytes)
Hash
436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 34780
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fmidd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa%252F%2526dt%253D1670053242815%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670053243241&t_i=1670053243250&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670053243250&fpid=&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.331

185.98.53.29

200 OK

0 B

URL HTTP/1.1
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fmidd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa%252F%2526dt%253D1670053242815%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670053243241&t_i=1670053243250&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670053243250&fpid=&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.331
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fmidd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa%252F%2526dt%253D1670053242815%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670053243241&t_i=1670053243250&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=cbde9b9a-72dd-11ed-b4f2-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670053243250&fpid=&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.331 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:45 GMT
Content-Length: 0
Connection: keep-alive

static.javhd.com/h5/files/overlay/1602-overlay-preview.png

185.76.9.16

200 OK

1.5 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/1602-overlay-preview.png
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1546 bytes)
Hash
7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a

HTTP Headers

GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ2OjAr/LpP/AA
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63beec472a
x-cache: HIT
x-age: 16749358
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhd.com/h5/files/overlay/1602-overlay.png

185.76.9.16

200 OK

1.8 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/1602-overlay.png
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1839 bytes)
Hash
f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7

HTTP Headers

GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ0E6LH/LpP/AA
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63034c4c2a
x-cache: HIT
x-age: 16749358
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhd.com/h5/files/button/29-button.png

185.76.9.16

200 OK

733 B

URL HTTP/2
static.javhd.com/h5/files/button/29-button.png
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
82a66a2d222379716ca9a03ff50d8f42
ae43d917ff791f9172edc527baa6266416182aaa
cc5da7b40e498d30bf5eaae43e59cae32202737076422676489dd8d3030803de

HTTP Headers

GET /h5/files/button/29-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: image/png
content-length: 733
last-modified: Tue, 22 Dec 2015 18:41:22 GMT
etag: "56799952-2dd"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ2PYoj/LpP/AA
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63d017502a
x-cache: HIT
x-age: 16749358
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js

192.243.61.227

200 OK

13 kB

URL HTTP/1.1
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with very long lines (37131), with no line terminators
Size
13 kB (13415 bytes)
Hash
cb46b98dfc1d2c1bae520bf9ba6e5149
f3a073e137d35fd0e4a33e768e54a7753c30d914
2fe58fc806d936a8f3af451ec20ffd8d38a81c45ab7a9e129a67415c77e72c5c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1aa8215bba3a71eaff5cb39b3b19669d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4

185.76.9.16

206 Partial Content

551 kB

URL HTTP/2
static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
551 kB (551282 bytes)
Hash
d57f9c72bffb62004a30bd3eb1ad58c0
81866548694b3ff0f7eab36c1224cab49b1dd72a
27a86038b0db14fb8a9df5220317d028dd21ff9b62541184b2feed8af3d47b41

HTTP Headers

GET /h5/files/video/3142-11518-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: video/mp4
content-length: 551282
last-modified: Wed, 19 Oct 2022 09:58:17 GMT
etag: "634fca39-86972"
expires: Tue, 22 Nov 2022 14:34:26 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1670078470
server: CDN77-Turbo
x-77-nzt: AblMCQ1Pd+b/9+4AAA
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63f562bf2c
x-cache: HIT
x-age: 61175
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-551281/551282
X-Firefox-Spdy: h2

static.javhd.com/h5/files/css/style.css

185.76.9.16

200 OK

967 B

URL HTTP/2
static.javhd.com/h5/files/css/style.css
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
ASCII text
Size
967 B (967 bytes)
Hash
6a808e0041ecb3175904d46ff0892e9f
a5a479186ce7a3ec315bbfad0215f0d104eeae9f
dac26066668748f13c3d6ea76e25b3bdea1c4e1a0726fbcea059a60e410ad9b3

HTTP Headers

GET /h5/files/css/style.css HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: text/css
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ3DC+f/LpP/AA
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63bcb83c2a
x-cache: HIT
x-age: 16749358
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
22697cff4db5ea5a4c791ce4358a971f
fa4d1ffe6a7354f75e8607231f57a5728e87dfb3
61575c6d3a055a65d09622357da8cdf97d57b96ed8d1d4a7360bd8432931d638

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "61575C6D3A055A65D09622357DA8CDF97D57B96ED8D1D4A7360BD8432931D638"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5003
Expires: Sat, 03 Dec 2022 09:04:09 GMT
Date: Sat, 03 Dec 2022 07:40:46 GMT
Connection: keep-alive

static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ

185.76.9.16

200 OK

1.4 kB

URL HTTP/2
static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.4 kB (1446 bytes)
Hash
dc641a94dd6099af0aed4e8030dadea3
14c2993a52cd6f43df679bf6b033437392071919
267fa13c36c70cd3a449313b584afccb2533405522801fb703f484e6a9b4a475

HTTP Headers

GET /h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dcbde9b9a-72dd-11ed-b4f2-e2e38133f3a0%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: text/html
last-modified: Wed, 19 Oct 2022 09:58:18 GMT
etag: W/"634fca3a-c86"
expires: Mon, 02 Jan 2023 07:40:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672645245
server: CDN77-Turbo
x-77-nzt: AblMCQ2rMQ+h
x-77-nzt-ray: c0a4cc2887df7a967dfd8a63ff10d523
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

52.28.211.11

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
52.28.211.11:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
b81af9128ef81a91075d468feb8a4145
315c1f4dbbc24eb0b103a2e95ac0fa5853897c86
9944cb2bfabe8a006ae954ee66729cadae10d0123214b75d33b9ac4aab320ca2

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:46 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=9a83983d-1304-4c2b-b44d-83279ccd2ec4:3:1; expires=Tue, 30 Nov 2032 07:40:46 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

js.wpadmngr.com/npc/sdk/wp-banners.js

45.133.44.24

200 OK

0 B

URL HTTP/2
js.wpadmngr.com/npc/sdk/wp-banners.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Sat, 03 Dec 2022 07:45:46 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.202.23

200 OK

28 kB

URL HTTP/2
friendshipmale.com/sfp.js
IP
172.64.202.23:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27464 bytes)
Hash
80c33f389f90941972c1f678fb8bcc70
71c07b5c5442c58571f2097fe548721da193d307
60a1353dccf140bdcdefdf56c0409635b4aa69162ff797abb0c82ef288fa08ea

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:46 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 6b47fd01a941c985d521413c137c545c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 03 Dec 2022 07:40:45 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7rcHkJAK0CK9kYidDw979wFmW4lcFiLU6M3xjGeV4SdtxPCEVarCADQxtxEYxgYR05hw3FKKvPg8BhyDawdMlPKeEwbUkHQOUluHGsb0eFq53Hm7k%2F5DKbJT0GKYZeE4ljGSDD4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa7f3bfc58862-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56859dae2ec370037ef0f25b51eb49b3
107b9c3850d16c044910190f35c74e7e9c2adcdb
3148da9ede7cdabca4d59ec2ab65d2441a508f48a8e8e7a6eb80542cd19aa7bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3148DA9EDE7CDABCA4D59EC2AB65D2441A508F48A8E8E7A6EB80542CD19AA7BD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6098
Expires: Sat, 03 Dec 2022 09:22:24 GMT
Date: Sat, 03 Dec 2022 07:40:46 GMT
Connection: keep-alive

js.wpadmngr.com/static/adManager.js

45.133.44.24

200 OK

36 kB

URL HTTP/2
js.wpadmngr.com/static/adManager.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
36 kB (36386 bytes)
Hash
43fb6341f172ae3443d8565264cd0ea4
42df1db1e9d4523e5754d458e41b7c2508d56f9d
fd65bfbde960c0a3c90bb4e041af5ccf8c614eacf60e3a3a08ff2eb9f4a08915

HTTP Headers

GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 13 Jul 2022 06:52:04 GMT
etag: W/"62ce6b94-4e2"
content-encoding: gzip
expires: Sat, 03 Dec 2022 07:45:45 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

poweredby.jads.co/adshow.php?adzone=784300

185.94.236.253

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/adshow.php?adzone=784300
IP
185.94.236.253:0
ASN
#42567 Mojohost B.v.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1702 bytes)
Hash
b9b905aeedeb6e060b0872efc1f9fb12
02daeb16899db5688cc730bf8249bdb1ad32d26c
5ebea9b6bbd4c21ed6946df53898f956738dac4552acefd14ad7655bd36ef5b8

HTTP Headers

GET /adshow.php?adzone=784300 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 07:40:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=6d3c9178afc1f465b27c83de72aeb11c; expires=Sun, 03-Dec-2023 07:40:44 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Tue, 06-Dec-2022 07:40:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 06-Dec-2022 07:40:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

i.jads.co/1x1.gif

69.16.175.42

200 OK

43 B

URL HTTP/2
i.jads.co/1x1.gif
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

HTTP Headers

GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=6d3c9178afc1f465b27c83de72aeb11c; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:47 GMT
etag: "1457030838"
cache-control: max-age=17172019
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1670053247.dop068.sk1.t,1670053247.cds069.sk1.hn,1670053247.cds217.sk1.c
X-Firefox-Spdy: h2

r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=

185.98.53.17

200 OK

757 B

URL HTTP/1.1
r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (561)
Size
757 B (757 bytes)
Hash
a645d6c6ee987a7f4a5c4fa43becc15e
6075414bce22758fa9d0727cd703bd0e3612e8c9
777bc373c3e49cbe1c28f7b7ed3c6e6f01e5cd027d761ea75e80c5a244183b05

HTTP Headers

GET /s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 757
Connection: close
Set-Cookie: uid=cfAD-FPtMp; Path=/; Domain=trackwilltrk.com; Expires=Sun, 04 Dec 2022 07:40:47 GMT; HttpOnly
X-Request-Id: c38020fe-5dab-4341-a3cd-8f233d72ba9c

static.javhd.com/h5/files/overlay/16-overlay-preview.png

185.76.9.16

200 OK

507 B

URL HTTP/2
static.javhd.com/h5/files/overlay/16-overlay-preview.png
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
507 B (507 bytes)
Hash
db53e5222242237b3bf9cfa0e57ba892
682eff797b686263d1259a4cb5e56475f6b49abe
90b8ab0ecc1d52738d7f0c0bb413375bd6e2f7d7f22d4adf1b1df004ee5d4d43

HTTP Headers

GET /h5/files/overlay/16-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:47 GMT
content-type: image/png
content-length: 507
last-modified: Tue, 06 Feb 2018 18:18:14 GMT
etag: "5a79f166-1fb"
expires: Tue, 23 May 2023 11:06:53 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684840013
server: CDN77-Turbo
x-77-nzt: AblMCQ0k1jr/spL/AA
x-77-nzt-ray: c0a4cc2887df7a967ffd8a63d6d8bd0b
x-cache: HIT
x-age: 16749234
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9

185.76.9.16

200 OK

5.2 kB

URL HTTP/2
static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
5.2 kB (5196 bytes)
Hash
5852473bece956e479173441c1999a50
331da7dfb14dc0f85b2b7a008086b380bc97feb4
535788b0fc4bc84e0e924235f7c9089db835bc98d1abb76cd455c9db9a5b7158

HTTP Headers

GET /h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:47 GMT
content-type: text/html
last-modified: Mon, 07 Feb 2022 07:41:28 GMT
etag: W/"6200cd28-c7f"
expires: Sat, 24 Dec 2022 12:57:42 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1671886662
server: CDN77-Turbo
x-77-nzt: AblMCQ0KuB3/OZMLAA
x-77-nzt-ray: c0a4cc2887df7a967ffd8a63b8328b0a
x-cache: HIT
x-age: 758585
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/button/19-button.png

185.76.9.16

200 OK

504 B

URL HTTP/2
static.javhd.com/h5/files/button/19-button.png
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
504 B (504 bytes)
Hash
6b9292b2f016f0dca094f08e98b10e4f
032fb37c0956d518c289b727d4f2b1f7d300f9e1
549b9bd0060e105223af22424e20b6dce5b9276b90bda0af13a1b0fc503bd673

HTTP Headers

GET /h5/files/button/19-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:47 GMT
content-type: image/png
content-length: 504
last-modified: Fri, 11 Dec 2015 19:04:22 GMT
etag: "566b1e36-1f8"
expires: Tue, 23 May 2023 11:05:44 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839944
server: CDN77-Turbo
x-77-nzt: AblMCQ3/B/7/95L/AA
x-77-nzt-ray: c0a4cc2887df7a967ffd8a639893cb0b
x-cache: HIT
x-age: 16749303
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d1eb5d473c23b14142ed7b1322644ca7
c486636ed9663d0520c5be5bf7b8fa4c7bfc5dd7
9c32a338435fce52d7dd0fb20c664d7f908760a6b153a06be6a9082c75f78b52

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C32A338435FCE52D7DD0FB20C664D7F908760A6B153A06BE6A9082C75F78B52"
Last-Modified: Fri, 02 Dec 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3031
Expires: Sat, 03 Dec 2022 08:31:18 GMT
Date: Sat, 03 Dec 2022 07:40:47 GMT
Connection: keep-alive

fp.metricswpsh.com/fp?tag_id=59555

157.90.84.242

204 No Content

0 B

URL HTTP/1.1
fp.metricswpsh.com/fp?tag_id=59555
IP
157.90.84.242:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www4.bestjavporn.com/
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:47 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

8b9714d2f2.413dfe9f11.com/in/track?data=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

45.133.44.24

200 OK

0 B

URL HTTP/2
8b9714d2f2.413dfe9f11.com/in/track?data=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
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /in/track?data=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 HTTP/1.1
Host: 8b9714d2f2.413dfe9f11.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7dbd52b3041840a4dbbeb720852540be
3cdb08ff2d373b763aa0146ef4b7303cefb30c31
85a9f3ff0eec1544dd3bf692675cb20eb196cc161c206721586ff28fb56834ee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85A9F3FF0EEC1544DD3BF692675CB20EB196CC161C206721586FF28FB56834EE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21382
Expires: Sat, 03 Dec 2022 13:37:10 GMT
Date: Sat, 03 Dec 2022 07:40:48 GMT
Connection: keep-alive

fp.metricswpsh.com/fp?tag_id=59555

157.90.84.242

200 OK

28 B

URL HTTP/1.1
fp.metricswpsh.com/fp?tag_id=59555
IP
157.90.84.242:0
ASN
#24940 Hetzner Online GmbH

File type
JSON data\012- , ASCII text
Size
28 B (28 bytes)
Hash
e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a

HTTP Headers

POST /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22283
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Set-Cookie: id=5559246688700908072; Expires=Sun, 03 Dec 2023 07:40:48 GMT; Secure; SameSite=None
Vary: Origin

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0

104.26.3.123

200 OK

1.1 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (529)
Size
1.1 kB (1098 bytes)
Hash
803aafaa8b2641318c86eec1fe77be10
02aa4cf74c1b3677ec32389a73a27a3ec2192565
0912b76a1b9258ad3e6bc8c6c959d547ddb0838c28ecc17bed9a71e06d2dd1a8

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 76049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UwFqBlJzQ5Uf7V7W%2FNRhS6OXsyofFe7ty8T3dQuOAb9ISqZ1t828uD%2BXpSgkpV6YcopDrcuU0A3cHrfO5bijOEXSIL8fQIfCVELuXdwjgDZC8IR%2BjU%2B8XsYRFLdEVSmwJizzMWWm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e42b0fb511-OSL
content-encoding: br
X-Firefox-Spdy: h2

lightssyrupdecree.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa

192.243.61.227

200 OK

4.1 kB

URL HTTP/1.1
lightssyrupdecree.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (5811), with no line terminators
Size
4.1 kB (4120 bytes)
Hash
dd7fdeddd1df424be37c0d95af2779fd
bd55ffcb9a8235431b11914cbec1594f67a0bd10
bc0e8ea178fcefb1063e6408dd7a537b50bcefa21b3f69af71395ec1262bfa3f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Sun, 04 Dec 2022 07:40:48 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 04 Dec 2022 07:40:48 GMT; secure; SameSite=None
uncs=1; expires=Sun, 04 Dec 2022 07:40:48 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 04 Dec 2022 07:40:48 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 04 Dec 2022 07:40:48 GMT; secure; SameSite=None
slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]; expires=Sat, 03 Dec 2022 07:40:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 850b62273d72410b5381daabea7c6c8e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9abc24f39564dc848d6bcdefbcdafc7b
b8c7e8e03ebea34dc55cb1edc5821875ef3b8ced
746046171e16c754f1385bee917d0d771988a6cc69bfef15b30af8d773cad83f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "746046171E16C754F1385BEE917D0D771988A6CC69BFEF15B30AF8D773CAD83F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1092
Expires: Sat, 03 Dec 2022 07:59:00 GMT
Date: Sat, 03 Dec 2022 07:40:48 GMT
Connection: keep-alive

lightssyrupdecree.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzmb3oML6C8GDOHsQVlYm3fMjyWwOwZiNRGMSd1dyEA9VXdWTSqq7mqru6Um8BAO6eJoIosfON8nGH4u6Rw%2BCdLxIQMjksORg%2FBtE2JsgMxkM%2B6DqvVffO3zf9%2BrT3fSMuEjp6fJ7elMqRcfqZbd0fUVGXGe2tHi35Llld6q0IqPx2lSp3b9M66bn1svu66W3hb%2Buxyqu57qe65XmpBGBbo8NUMj4QcMrN9xyrVL26jW0zZO9TR1Y6oC3zsjzkLx3efX3h5B%2BgSj8aVbY9UTHb9wKU0UTbdDiBx9E65HOIoQXZWAcBNHBcBra9gj5egQ6OhgqgG7t9RWAyR5xHnlg0cGQJlhr%2F5wpUxARGH8aWauAUAUkLeDrbUh%2BTACfY3EJUXh%2FUZuMbpyjtI%2F2yOjjfyCzHhn980VE4Q8zSrZLd7RKE6kji3aQQ7YLyGaBOD1EsulAZofwk08g%2BR9k7PEConBvySoNyfOBeikLyKCAEh1Q6yDtH%2BkgDRyksYOQn5ZovRG47kTAgmp1sub7frXq%2B%2FXJcV7n1dpk4CL1%2B%2FQ6SOIOfNWBb7YQmy2syy%2BO668df3QDJv0VdjWH5Q5s0iPO%2B1to8RyZIMgsQUYJMkmQJQRZK9%2FnylZsfp8rmzJvmCvDXM27Omnu0n2dNEVEduMz8lzfHefKtR2si9NShfFJXnVdrzpOxwNed5nP6nQiqAY16lUCCitzSDsyELwpe%2BTSlW3EskdGpv4GowWsKuDLZ0HTV0Cz7kTFBV3t1iZdbEY%2FMmGTNdqKtYnKvg7BdY44GUWy4eyqM%2FLyYFE3zQsQ%2FtH0yfyH12eLb%2BCbHLHJsSZ%2FI2iqe93bOiN7t3VmycOlOJGh3KT9Jd5JaCIuf%2Feu2Mi04fOztvPtm34f6JcP7gqbLNCIy6hpyfczknNh5rTxBfll3q4Itpza1ZnURGm8sPzW3HwYG2Gt1FEBKnuE7PwFX%2FbIU1%2BWBx%2F01VtfQZoCJs0RpkdkGJD6EH68BRsfTZ9c%2B%2Fjq2qOrsJrAqIsZFjvI0rxrKuziUUkCJS56ynJYcTT980uf3Rh55h0w8b8hu%2FYemsYBTbYRhTlaJkdL5aCqA5te6iaxOZo%2BqQ4CTDldpoyzx5RRO%2BfmWnlaEvXADYRbESxosGCCurwR1BqMNjwxwerUQ2J7%2Fuf%2Fbv0HAAD%2F%2FwEAAP%2F%2FYSRc93gEAAA%3D

192.243.61.227

200 OK

7 B

URL HTTP/1.1
lightssyrupdecree.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzmb3oML6C8GDOHsQVlYm3fMjyWwOwZiNRGMSd1dyEA9VXdWTSqq7mqru6Um8BAO6eJoIosfON8nGH4u6Rw%2BCdLxIQMjksORg%2FBtE2JsgMxkM%2B6DqvVffO3zf9%2BrT3fSMuEjp6fJ7elMqRcfqZbd0fUVGXGe2tHi35Llld6q0IqPx2lSp3b9M66bn1svu66W3hb%2Buxyqu57qe65XmpBGBbo8NUMj4QcMrN9xyrVL26jW0zZO9TR1Y6oC3zsjzkLx3efX3h5B%2BgSj8aVbY9UTHb9wKU0UTbdDiBx9E65HOIoQXZWAcBNHBcBra9gj5egQ6OhgqgG7t9RWAyR5xHnlg0cGQJlhr%2F5wpUxARGH8aWauAUAUkLeDrbUh%2BTACfY3EJUXh%2FUZuMbpyjtI%2F2yOjjfyCzHhn980VE4Q8zSrZLd7RKE6kji3aQQ7YLyGaBOD1EsulAZofwk08g%2BR9k7PEConBvySoNyfOBeikLyKCAEh1Q6yDtH%2BkgDRyksYOQn5ZovRG47kTAgmp1sub7frXq%2B%2FXJcV7n1dpk4CL1%2B%2FQ6SOIOfNWBb7YQmy2syy%2BO668df3QDJv0VdjWH5Q5s0iPO%2B1to8RyZIMgsQUYJMkmQJQRZK9%2FnylZsfp8rmzJvmCvDXM27Omnu0n2dNEVEduMz8lzfHefKtR2si9NShfFJXnVdrzpOxwNed5nP6nQiqAY16lUCCitzSDsyELwpe%2BTSlW3EskdGpv4GowWsKuDLZ0HTV0Cz7kTFBV3t1iZdbEY%2FMmGTNdqKtYnKvg7BdY44GUWy4eyqM%2FLyYFE3zQsQ%2FtH0yfyH12eLb%2BCbHLHJsSZ%2FI2iqe93bOiN7t3VmycOlOJGh3KT9Jd5JaCIuf%2Feu2Mi04fOztvPtm34f6JcP7gqbLNCIy6hpyfczknNh5rTxBfll3q4Itpza1ZnURGm8sPzW3HwYG2Gt1FEBKnuE7PwFX%2FbIU1%2BWBx%2F01VtfQZoCJs0RpkdkGJD6EH68BRsfTZ9c%2B%2Fjq2qOrsJrAqIsZFjvI0rxrKuziUUkCJS56ynJYcTT980uf3Rh55h0w8b8hu%2FYemsYBTbYRhTlaJkdL5aCqA5te6iaxOZo%2BqQ4CTDldpoyzx5RRO%2BfmWnlaEvXADYRbESxosGCCurwR1BqMNjwxwerUQ2J7%2Fuf%2Fbv0HAAD%2F%2FwEAAP%2F%2FYSRc93gEAAA%3D
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzmb3oML6C8GDOHsQVlYm3fMjyWwOwZiNRGMSd1dyEA9VXdWTSqq7mqru6Um8BAO6eJoIosfON8nGH4u6Rw%2BCdLxIQMjksORg%2FBtE2JsgMxkM%2B6DqvVffO3zf9%2BrT3fSMuEjp6fJ7elMqRcfqZbd0fUVGXGe2tHi35Llld6q0IqPx2lSp3b9M66bn1svu66W3hb%2Buxyqu57qe65XmpBGBbo8NUMj4QcMrN9xyrVL26jW0zZO9TR1Y6oC3zsjzkLx3efX3h5B%2BgSj8aVbY9UTHb9wKU0UTbdDiBx9E65HOIoQXZWAcBNHBcBra9gj5egQ6OhgqgG7t9RWAyR5xHnlg0cGQJlhr%2F5wpUxARGH8aWauAUAUkLeDrbUh%2BTACfY3EJUXh%2FUZuMbpyjtI%2F2yOjjfyCzHhn980VE4Q8zSrZLd7RKE6kji3aQQ7YLyGaBOD1EsulAZofwk08g%2BR9k7PEConBvySoNyfOBeikLyKCAEh1Q6yDtH%2BkgDRyksYOQn5ZovRG47kTAgmp1sub7frXq%2B%2FXJcV7n1dpk4CL1%2B%2FQ6SOIOfNWBb7YQmy2syy%2BO668df3QDJv0VdjWH5Q5s0iPO%2B1to8RyZIMgsQUYJMkmQJQRZK9%2FnylZsfp8rmzJvmCvDXM27Omnu0n2dNEVEduMz8lzfHefKtR2si9NShfFJXnVdrzpOxwNed5nP6nQiqAY16lUCCitzSDsyELwpe%2BTSlW3EskdGpv4GowWsKuDLZ0HTV0Cz7kTFBV3t1iZdbEY%2FMmGTNdqKtYnKvg7BdY44GUWy4eyqM%2FLyYFE3zQsQ%2FtH0yfyH12eLb%2BCbHLHJsSZ%2FI2iqe93bOiN7t3VmycOlOJGh3KT9Jd5JaCIuf%2Feu2Mi04fOztvPtm34f6JcP7gqbLNCIy6hpyfczknNh5rTxBfll3q4Itpza1ZnURGm8sPzW3HwYG2Gt1FEBKnuE7PwFX%2FbIU1%2BWBx%2F01VtfQZoCJs0RpkdkGJD6EH68BRsfTZ9c%2B%2Fjq2qOrsJrAqIsZFjvI0rxrKuziUUkCJS56ynJYcTT980uf3Rh55h0w8b8hu%2FYemsYBTbYRhTlaJkdL5aCqA5te6iaxOZo%2BqQ4CTDldpoyzx5RRO%2BfmWnlaEvXADYRbESxosGCCurwR1BqMNjwxwerUQ2J7%2Fuf%2Fbv0HAAD%2F%2FwEAAP%2F%2FYSRc93gEAAA%3D HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc7e8fac48d02a991bc758ce62073cf0
Strict-Transport-Security: max-age=0; includeSubdomains

poweredby.jads.co/adshow.php?adzone=794135

185.94.236.253

200 OK

1.5 kB

URL HTTP/1.1
poweredby.jads.co/adshow.php?adzone=794135
IP
185.94.236.253:0
ASN
#42567 Mojohost B.v.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (352), with CRLF, LF line terminators
Size
1.5 kB (1468 bytes)
Hash
8fd347e1a1d5742732ade11a4504dc6a
d043348b5e525bd71a04b38244a623b63054f53c
2ea408b9781ff0feb63a91b243d2626d66c45d817ec1b6b5c04faf9a4fbf3302

HTTP Headers

GET /adshow.php?adzone=794135 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=6d3c9178afc1f465b27c83de72aeb11c; expires=Sun, 03-Dec-2023 07:40:44 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Tue, 06-Dec-2022 07:40:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 06-Dec-2022 07:40:44 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
7007a042a79310c8938c279ae7eec8e5
8b72d7da27205ce31ff5497ba5428808a498dd7e
8188a5b1208fea4f2bdb97e404aefeb04a89ad62bc16ba2512e3a660b68b67af

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8188A5B1208FEA4F2BDB97E404AEFEB04A89AD62BC16BA2512E3A660B68B67AF"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 03 Dec 2022 09:14:54 GMT
Date: Sat, 03 Dec 2022 07:40:48 GMT
Connection: keep-alive

lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=119

192.243.61.227

200 OK

0 B

URL HTTP/1.1
lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=119
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=119 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png

172.64.109.13

200 OK

6.0 kB

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 05 Jul 2022 10:43:39 GMT
etag: "62c415db-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1532965
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Smdsvq8WeyGitwb1%2BTdwV9MOk8nhGiVjE0a1j7J%2BC8Ly4qwcKdhnZ%2FfN%2BSXl%2Fwmk%2F2%2BsGfekHRw4oRavhjqirrtchC9D%2BHbv1i4RpA6nrMwvMHDL26LsJ5T1CpM7e%2F3iUiKFkr3A2tmB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa804b9e38868-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3c0282fb1989711e4a48dce935bf7813
30bed8a42fc820e4feb64bd22ddfefe120889014
81e304f070d6b7aa4dc67c727523578cd18a665a5cfe674a3b1391f3f39fc11a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81E304F070D6B7AA4DC67C727523578CD18A665A5CFE674A3B1391F3F39FC11A"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16099
Expires: Sat, 03 Dec 2022 12:09:07 GMT
Date: Sat, 03 Dec 2022 07:40:48 GMT
Connection: keep-alive

asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=

135.181.208.216

200 OK

749 B

URL HTTP/2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
749 B (749 bytes)
Hash
c520d2970c76ab8c30607bc291398962
24bc778f260b8d744aafae9e3a160a35d459ffef
7d663da9e2ce12af8ade6edcb563aff816abd7d789160794f99cba2fbd26717a

HTTP Headers

GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=TjeGi300Onkd6LJg7kR5; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0410d88544fb52c82ed556cf1c103567
bc8bb791cc010ab3d025803d925e7f5fb592c420
0af7dc239e8822d60002423dfa22ead8abdba894cf2aa31572518762316a0e9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AF7DC239E8822D60002423DFA22EAD8ABDBA894CF2AA31572518762316A0E9B"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18324
Expires: Sat, 03 Dec 2022 12:46:12 GMT
Date: Sat, 03 Dec 2022 07:40:48 GMT
Connection: keep-alive

r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=

185.98.53.17

200 OK

754 B

URL HTTP/1.1
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (558)
Size
754 B (754 bytes)
Hash
774fa92c57b048e361f74ed8c0977b8a
b17e0a82ca1140ffb13b0a7c6be44d3ca01ac891
eb650ab1615d6315e9d4f125bccf3ec1c58365db288d8f699b73dd467b4e04fa

HTTP Headers

GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 754
Connection: close
Set-Cookie: uid=76UYzFPtp; Path=/; Domain=trwl1.com; Expires=Sun, 04 Dec 2022 07:40:48 GMT; HttpOnly
X-Request-Id: 5ec4d211-ed74-48e0-9b84-b31385751cbb

lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=144

192.243.61.227

200 OK

0 B

URL HTTP/1.1
lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=144
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=144 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.cloudimagesb.com/si/f4/a8/ed/f4a8ed430612a925dc86bd58df50d2a8/1669910249.png

45.133.44.9

200 OK

62 kB

URL HTTP/2
cdn.cloudimagesb.com/si/f4/a8/ed/f4a8ed430612a925dc86bd58df50d2a8/1669910249.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
62 kB (61978 bytes)
Hash
0532530b2b970bb865dfc106c03f8764
cda2b48610c814f5fb4fa1136ce78e732bb072fe
7872088467dd23255a1f437561e6a828b5777b978442cd138a6973bf683c2a35

HTTP Headers

GET /si/f4/a8/ed/f4a8ed430612a925dc86bd58df50d2a8/1669910249.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: image/png
content-length: 61978
server: nginx/1.17.6
last-modified: Thu, 01 Dec 2022 15:57:37 GMT
etag: "6388cef1-f21a"
expires: Mon, 05 Dec 2022 07:40:48 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=144

192.243.61.227

200 OK

0 B

URL HTTP/1.1
lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=144
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=144 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=35

192.243.61.227

200 OK

0 B

URL HTTP/1.1
lightssyrupdecree.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=35
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=35 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js

172.64.109.13

200 OK

32 kB

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
32 kB (32003 bytes)
Hash
a881a55b673503f99d6c7f9d084c3a3d
f3f99eea4adc63025ea48178e44b5c19a984933c
7e3d43211ec750a7fdd351c3106b942291430b82f7b5ab0dae438c8c18669b23

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:58 GMT
etag: W/"62ceb706-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1532965
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKtIkIuUJ3bZbwbU2Y9l6vykh%2ByZ3%2BRKaN4CtE%2F8EJ2I%2B%2B3YEAJKsHKsHcO4jJZMNFuC3v%2BC0A36xY8iqECB4HRI94DcP4Led0waIOcVJBQ4pcewam0wGiqcndcf9p3lRp04vKLBTj%2F6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa804b9e78868-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.javhd.com/h5/files/video/35-17549-300x250.medium.mp4

185.76.9.16

206 Partial Content

114 kB

URL HTTP/2
static.javhd.com/h5/files/video/35-17549-300x250.medium.mp4
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
114 kB (114048 bytes)
Hash
d8803c12bcf8480eb491e8a456b874f7
44ff348ff85b594469f80b3f3f856b7f342353d6
2aa42aafe1d00e25e8583fc7d6acf7dd9348fd1b3ca7c46a59afa424396712df

HTTP Headers

GET /h5/files/video/35-17549-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: video/mp4
content-length: 690350
last-modified: Mon, 21 Nov 2022 14:28:12 GMT
etag: "637b8afc-a88ae"
expires: Wed, 23 Nov 2022 07:36:55 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1670054354
server: CDN77-Turbo
x-77-nzt: AblMCQ3x9sv/Lk0BAA
x-77-nzt-ray: c0a4cc2887df7a9680fd8a633ec34338
x-cache: HIT
x-age: 85294
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-690349/690350
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 216394
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lightssyrupdecree.com/pixel/sbs?c=1

192.243.61.227

200 OK

0 B

URL HTTP/1.1
lightssyrupdecree.com/pixel/sbs?c=1
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830291]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 03 Dec 2022 07:40:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

pics.pornfhd.com/s/digital/video/kird00124/kird00124pl.jpg

104.21.235.64

200 OK

40 kB

URL HTTP/2
pics.pornfhd.com/s/digital/video/kird00124/kird00124pl.jpg
IP
104.21.235.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", progressive, precision 8, 478x320, components 3\012- data
Size
40 kB (39895 bytes)
Hash
8d3d9bb10549b7b971425555137be5ba
f3c4aed4a0bdd1d3c5772793fd7fb4d96a15c7c9
1e4495b81da56258ce51ddc0e9bc6027c0163598c74942caa6d8a8ff08ba5337

HTTP Headers

GET /s/digital/video/kird00124/kird00124pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: image/jpeg
last-modified: Thu, 16 Apr 2009 00:23:45 GMT
vary: Accept-Encoding
etag: W/"49e67a91-9bd0"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6sf3MiE0bEJWPDConSGRCQjehuPQM%2BapPj9oNdfiOQv2SO3KLDhC%2FO6KrIod574SVzPxNhNpwiNPk%2BRWDYs2ICRKbI27PJPRe8HuBMicAuPxCMwrbd1Gxg6GmJnqwKuwJ650"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e70fa388bb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
77a6b6638e0ee5ec4eeb988d3d3af050
219272781fc7a6ac331496b257c7976daa7b62de
d3092d8548c448fab08751eb00cce0ffb883786084d77320da1e0a858b70c5cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3092D8548C448FAB08751EB00CCE0FFB883786084D77320DA1E0A858B70C5CB"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13467
Expires: Sat, 03 Dec 2022 11:25:16 GMT
Date: Sat, 03 Dec 2022 07:40:49 GMT
Connection: keep-alive

unseenreport.com/pxf.gif?uuid=9a83983d-1304-4c2b-b44d-83279ccd2ec4&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=7

192.243.59.13

200 OK

1 B

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=9a83983d-1304-4c2b-b44d-83279ccd2ec4&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=7
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=9a83983d-1304-4c2b-b44d-83279ccd2ec4&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=7 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 03 Dec 2022 07:40:49 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f6777e9566348e73ada4ca51c160af50
Strict-Transport-Security: max-age=0; includeSubdomains

adxadserv.com/px/heartbeat/v1?pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&t_op=5.332&p_nn=adxad-rtb&fpid_sa=1670053243250&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384

185.98.53.29

200 OK

0 B

URL HTTP/1.1
adxadserv.com/px/heartbeat/v1?pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&t_op=5.332&p_nn=adxad-rtb&fpid_sa=1670053243250&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /px/heartbeat/v1?pv_uid=9ce66b5e-120b-4dbc-838e-91eb9504e984&t_op=5.332&p_nn=adxad-rtb&fpid_sa=1670053243250&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670053243250&sid_sa=1670053243250&feid=8dc67c69bc054f1b0d12b64f5ef864da&sid=764ec2d650992020af74661994e29bad&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 07:40:50 GMT
Content-Length: 0
Connection: keep-alive

www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/

104.26.3.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: text/html; charset=UTF-8
cf-ray: 773aa7e2393cb511-OSL
cache-control: max-age=3600
last-modified: Sat, 03 Dec 2022 05:34:49 GMT
link: <https://www4.bestjavporn.com/wp-json/>; rel="https://api.w.org/", <https://www4.bestjavporn.com/?p=341432>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: HIT
cf-apo-via: tcache
cf-connecting-ip: 83.253.161.64
cf-edge-cache: cache,platform=wordpress
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /index.php
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fiW5HCkLh%2B1gBnl7%2B8ME1c1L1ChUiHdmwanJrPFjxyWALC%2BRK0xWOnHH12LPHOlhwcfMs%2FyEis86K2%2Bw0yWHOwUcKrnaId%2FZxXzWy5Fe%2FsC%2Bn7VDXZhJOUy9XbgwlKgdLIkMGyKu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/video/1934-18586-728x90.medium.mp4

185.76.9.16

206 Partial Content

0 B

URL HTTP/2
static.javhd.com/h5/files/video/1934-18586-728x90.medium.mp4
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/video/1934-18586-728x90.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Sat, 03 Dec 2022 07:40:47 GMT
content-type: video/mp4
content-length: 429648
last-modified: Mon, 07 Feb 2022 07:41:26 GMT
etag: "6200cd26-68e50"
expires: Tue, 24 May 2022 11:15:59 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1670078514
server: CDN77-Turbo
x-77-nzt: AblMCQ0+vU7/ze4AAA
x-77-nzt-ray: c0a4cc2887df7a967ffd8a63b3bd280c
x-cache: HIT
x-age: 61133
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-429647/429648
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:55 GMT
etag: W/"62ceb703-1229"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1027026
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qMk1gRIbj19dQbkdz3bVmuD0tVnd5xBNzaAssNKvJED9HOIIM2YJe8nnyNQuytOSryFWn7t3jcpAYjAaPD%2FeXI1e5FUuT%2FuMwFX6j1qBOACJRa5nNtzrTPttWnJgobR9Eb4770%2FwEIcg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa804b9de8868-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0

104.26.3.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 76050
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Lu%2BGeCLzZ%2BYKcrNlz2Vt4jBmqUP8yk%2BM6wHvrN8DxnrkyG8geNcIHRP%2FuB2r%2B9y27xluqsJ7Jf8vrpB%2BkAmbgfz97jB9ZMU7gI3xshIcAKYBlzCjLFXOJZNj6pN4XxEa3uK7qU7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e41b08b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

pics.pornfhd.com/digital/video/midd00349/midd00349pl.jpg

104.21.235.64

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/digital/video/midd00349/midd00349pl.jpg
IP
104.21.235.64:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /digital/video/midd00349/midd00349pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: image/jpeg
last-modified: Thu, 06 Dec 2007 08:23:11 GMT
vary: Accept-Encoding
etag: W/"4757b16f-297af"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEWhHS5tO1m8vezRg4sD5%2FxJVEIaw1OiMJZDnVIILX8mBRj1lK5PUkHA68bZryAGO8h6tMk1Fmf7iHJR%2FiuAec4pjtwAPcv0gmdW%2BH5juXhbEG%2BHd1i5CXlVVK9AXmZ2XRxD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e4ed7088bb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ

185.76.9.16

200 OK

0 B

URL HTTP/2
static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP
185.76.9.16:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: text/html
last-modified: Mon, 21 Nov 2022 14:28:13 GMT
etag: W/"637b8afd-c82"
expires: Sat, 24 Dec 2022 16:24:20 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1671899060
server: CDN77-Turbo
x-77-nzt: AblMCQ1+3UH/zGILAA
x-77-nzt-ray: c0a4cc2887df7a9680fd8a6313ea9c36
x-cache: HIT
x-age: 746188
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/migd00203/migd00203pl.jpg

104.21.235.64

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/migd00203/migd00203pl.jpg
IP
104.21.235.64:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/migd00203/migd00203pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:44 GMT
content-type: image/jpeg
last-modified: Mon, 10 Nov 2008 08:22:31 GMT
vary: Accept-Encoding
etag: W/"4917ef47-9839"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 209006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NawG%2BDiU5Z%2BZwZnpfdSDUjCAF%2FUs%2B3jhDp7niPeUKiBIqXh6P9jp0EGeommCl9YTfACiJaG0yU0FH%2Bt3Hidm6vDmkG%2BBmMLuX1pZ65kolztkKH3%2BXAnkmJ3psQR%2FSNUFewpC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e70fa088bb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18

104.26.3.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 76049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iKk7c9m5Rz45is1dfmdA95owk0deZNb6MZ%2BRLoi%2B4a07tOL1i2WBO43zQtY8Jw6oTa4LiUMNbpaXzuKQ74RK3JYjXWcVhOVktrwByNg0HYS0qT6Bm%2FgcuP6jCVJ7K8QCRUd6Yguu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e42b10b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php

104.26.3.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /wp-content/themes/retrotube/ajax-view.php HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 49
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
cf-connecting-ip: 91.90.42.154
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/ajax-view.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pufU0PduOWyfszb63oxPawcR58plPZ5GkocnyL1wCXHldiD%2FwriXVwgSxRFY1DrjehgqHT%2BE8Oep%2FGwG554C7clp6VS5JhPJbamb0iA6sQj%2F1jgY3fNoV%2BhTuiPvdaXQUoUppsOE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7eb4a31b511-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2

104.26.3.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP
104.26.3.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/midd-349-jav-black-actor-astonishing-colossal-tits-debut-j-cup-103-cm-rui-akikawa/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:43 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
etag: W/"6388cd36-11395"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 75783
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ck0z%2F11B2ng61j%2By3KbMqqxEFp3iC6I%2BG99GiLdOsB0lLkNRsH4RoOYo2%2Bn7DdvxAOIK%2B74qlSK6VLNqLP2t5CG89%2BI3%2BHF1VJ%2F4N22ibBJAGEIgY6ipQHNxFF5z%2B%2FIe0iKi1y6v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773aa7e43b1fb511-OSL
content-encoding: br
X-Firefox-Spdy: h2

js.capndr.com/popunder-admanager/build.m.js

45.133.44.24

200 OK

0 B

URL HTTP/2
js.capndr.com/popunder-admanager/build.m.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Dec 2022 09:44:36 GMT
etag: W/"63887784-add7"
content-encoding: gzip
expires: Sat, 03 Dec 2022 07:45:48 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html

45.133.44.3

200 OK

0 B

URL HTTP/2
cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
IP
45.133.44.3:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 13 Jul 2022 12:11:03 GMT
etag: W/"62ceb657-4a6"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 03 Dec 2022 08:40:48 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 03 Dec 2022 07:40:48 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1027026
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RW9brKb%2Fhfu7A1t9F9qQmCpEtKXIQg3VReH6uTTB%2B4z5hCOZamM7w29qM4wzHchhcnv25WDPdPXJ7A7TbdomhkNkHwXe7RRbLPK%2B4k5rvn0r2DO0gyC3SMLi3%2F7Q8YrsEczweakW3Ke9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773aa804a9d28868-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations