vjav.com/
172.64.141.27301 Moved Permanently 0 B IP 172.64.141.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 08:08:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 06 Oct 2022 09:08:31 GMT
Location: https://vjav.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hFL3ilt%2BymiFTqgmwzE2OQKV1Zk8%2BlqCVlpPnaKfUlc6J8Q8Ev1%2Fz5oDbrLAZ%2B4JzQVG3OKly31iQ6gFxUcDa6BKCB06elo2yRKJLVAR7x7SaAOkkVZpP2fd8g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ce8dd78898889-LHR
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cfWuuAPdDinikHiEqWWc9gbO6CB-tppkAtQcsCaIYdhAblHSzUyzAw==
Age: 58873
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4655
Expires: Thu, 06 Oct 2022 09:26:06 GMT
Date: Thu, 06 Oct 2022 08:08:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4601
Expires: Thu, 06 Oct 2022 09:25:12 GMT
Date: Thu, 06 Oct 2022 08:08:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /vaSp2jVUHTpkJ+QrR4NopY1rVdsS51I+tXC2gxyeawDKX0xS3y+v7y/YyvdHOWi4nWeR1FaGLY=
x-amz-request-id: E3M97D8EWCRS4GXQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 07:30:41 GMT
age: 2270
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 08:08:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
vjav.com/
172.64.141.27301 Moved Permanently 169 B IP 172.64.141.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 46576a2df8328295263604c6376c9af8
6f614611cfc5906e41211f3fdafb4080bf63de0e
500ad4d69824c7bd770081fdb31f46bb481c3cd286d06fc72914a41f471b0fdd
GET / HTTP/1.1
Host: vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 06 Oct 2022 08:08:31 GMT
content-type: text/html
location: https://vjav.com/main/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ts8H3SozbKB9E2BaLnovPjnwub3JTmkqYK9Zrvj77G55tzLDXh0mhB3NfquMp712EJDsEUQ3fE0uh%2Fy5V7maRurS9mm4wkIc1kqKT4Me%2F46Zp5rl3%2BX1pUggcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755ce8dfade376ef-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 08:08:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 08:08:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MVMB4DG
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MVMB4DG
IP 142.250.74.168:0
File type ASCII text, with very long lines (1626)
Hash e7d367bd52108732f57fe584898b1a8a
3449a8bacb330c8e452b837c06d1508c8171c1e8
6ad50695f7f8ed00c710c92a8022f9e87acf048543f53b9cecc91d79d5a4a56a
GET /gtm.js?id=GTM-MVMB4DG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 08:08:32 GMT
expires: Thu, 06 Oct 2022 08:08:32 GMT
cache-control: private, max-age=900
last-modified: Thu, 06 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38235
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MW9PQ3
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MW9PQ3
IP 142.250.74.168:0
File type ASCII text, with very long lines (2219)
Hash 129dcb7d63f71a6e1a7f77b50ff3a048
29ae063f082f0288dc143f91bdb81fe8ed9d3125
fe579ed620496152107b66b118d3b10bdd3b30c52db471e7b9144fb1d122c85f
GET /gtm.js?id=GTM-MW9PQ3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 08:08:32 GMT
expires: Thu, 06 Oct 2022 08:08:32 GMT
cache-control: private, max-age=900
last-modified: Thu, 06 Oct 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45217
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Thu, 06 Oct 2022 07:29:41 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 06 Oct 2022 07:59:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wDNSg9f9ViNbVlByQp1bJkLkrcjhU8lFqLEPuAmWyEwIti-phLnfVQ==
Age: 2331
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 08:08:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5787
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 08:08:32 GMT
Last-Modified: Thu, 06 Oct 2022 06:32:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
a.exosrv.com/ads.js
205.185.216.42200 OK 972 B IP 205.185.216.42:0
File type ASCII text, with very long lines (2474), with no line terminators
Hash 7d9604b94c86720afb5884077110afc0
ff271b314f322f21e76ff297026be2c8fa7ea027
48c044514d04c243384bdfee5b66cbea06d1dcf9e21597361dbe5597b6d6d7c4
GET /ads.js HTTP/1.1
Host: a.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 08:08:32 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 972
Content-Type: application/javascript
Accept-Ranges: bytes
Server: nginx
etag: W/"b60fdcc211f42a1f246a8c80b56"
Cache-Control: max-age=10800
X-HW: 1665043712.dop009.sk1.t,1665043712.cds228.sk1.shn,1665043712.cds228.sk1.c
Access-Control-Allow-Origin: *, *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e23cac4bbe12c1339054cae922a15eb2
aaf4a59815c0c2869bae57934438c973aabbcc5f
fdd94d0ef48a816c22bd9e94ddab3ad1939c834e2a101ac030891685674391be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD94D0EF48A816C22BD9E94DDAB3AD1939C834E2A101AC030891685674391BE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6283
Expires: Thu, 06 Oct 2022 09:53:16 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e23cac4bbe12c1339054cae922a15eb2
aaf4a59815c0c2869bae57934438c973aabbcc5f
fdd94d0ef48a816c22bd9e94ddab3ad1939c834e2a101ac030891685674391be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD94D0EF48A816C22BD9E94DDAB3AD1939C834E2A101AC030891685674391BE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6283
Expires: Thu, 06 Oct 2022 09:53:16 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e23cac4bbe12c1339054cae922a15eb2
aaf4a59815c0c2869bae57934438c973aabbcc5f
fdd94d0ef48a816c22bd9e94ddab3ad1939c834e2a101ac030891685674391be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD94D0EF48A816C22BD9E94DDAB3AD1939C834E2A101AC030891685674391BE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6283
Expires: Thu, 06 Oct 2022 09:53:16 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e23cac4bbe12c1339054cae922a15eb2
aaf4a59815c0c2869bae57934438c973aabbcc5f
fdd94d0ef48a816c22bd9e94ddab3ad1939c834e2a101ac030891685674391be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD94D0EF48A816C22BD9E94DDAB3AD1939C834E2A101AC030891685674391BE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6283
Expires: Thu, 06 Oct 2022 09:53:16 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e23cac4bbe12c1339054cae922a15eb2
aaf4a59815c0c2869bae57934438c973aabbcc5f
fdd94d0ef48a816c22bd9e94ddab3ad1939c834e2a101ac030891685674391be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD94D0EF48A816C22BD9E94DDAB3AD1939C834E2A101AC030891685674391BE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6283
Expires: Thu, 06 Oct 2022 09:53:16 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
push.services.mozilla.com/
52.35.74.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.74.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4mCpoDLbXC/Cro7sqvv6Fg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fUoUPi1LfRtseAZqmFAbja8V0Xk=
tn.vjav.com/contents/videos_screenshots/566000/566849/240x180/1.jpg
45.133.44.24200 OK 22 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/566000/566849/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash f166b828c90e1961f532df9624b4a9a4
140b775488ccf7e53d6bfeb2b648f42c168793d0
794b438334b42efa337d0b278de4f1688f1c617e226443bff3533867f29844a8
GET /contents/videos_screenshots/566000/566849/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 21766
server: nginx/1.19.6
last-modified: Thu, 22 Sep 2022 11:52:12 GMT
etag: "632c4c6c-5506"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/566000/566563/240x180/1.jpg
45.133.44.24200 OK 23 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/566000/566563/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 5e3defb262dc3b2955864144d603e2b0
c768bbd4cd97b9c54f41aa5551c121cc6ca09852
a28be2603cdb792738f9c25a7ef34c91f5e9883fef1fd2dc6007a3cadf1871f4
GET /contents/videos_screenshots/566000/566563/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 22617
server: nginx/1.19.6
last-modified: Wed, 21 Sep 2022 11:08:08 GMT
etag: "632af098-5859"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/566000/566431/240x180/1.jpg
45.133.44.24200 OK 20 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/566000/566431/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 100812ebf1463549ebea627429fee810
797c5e9ecf1e811e5ddb09ac0f98a2d0076667ee
ce5f50af51e7ef6bc51697358d11828dee9403e689ea0d29895aea20c3131a35
GET /contents/videos_screenshots/566000/566431/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 19512
server: nginx/1.19.6
last-modified: Tue, 20 Sep 2022 20:31:05 GMT
etag: "632a2309-4c38"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/566000/566377/240x180/1.jpg
45.133.44.24200 OK 26 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/566000/566377/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash e56042aed7c62c6e9e806844a94ef6d5
9b7584751ec91735a01bcf9726c0eaedb6c09263
cf3f534174f63171f97eebfa28a714273780188cf439d82b150a9fe7d15912d3
GET /contents/videos_screenshots/566000/566377/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 25644
server: nginx/1.19.6
last-modified: Tue, 20 Sep 2022 15:28:09 GMT
etag: "6329dc09-642c"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/565000/565713/240x180/1.jpg
45.133.44.24200 OK 32 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/565000/565713/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 96860db9162c1e28deea6e8ad41412f4
df736ef9d49dbe34c8ae57aea0987a77af37d501
71b0b2a65741d1dd1d9677411d5787a65a7e9d432f52ffde7568263c3456c71a
GET /contents/videos_screenshots/565000/565713/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 32236
server: nginx/1.19.6
last-modified: Sun, 18 Sep 2022 03:40:06 GMT
etag: "63269316-7dec"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/564000/564643/240x180/1.jpg
45.133.44.24200 OK 29 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/564000/564643/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 42555df2b828ca693a99b36b6ce01c29
15ffd5ceacc3b413cbf42c6ababad2ef29e2bf95
86e694be401d31081bd54b33593b0a20df274d14422f024f5559d03bbb671ad2
GET /contents/videos_screenshots/564000/564643/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 29108
server: nginx/1.19.6
last-modified: Tue, 13 Sep 2022 12:08:04 GMT
etag: "632072a4-71b4"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/564000/564021/240x180/1.jpg
45.133.44.24200 OK 22 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/564000/564021/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 6d0113f79b307fabdac46e5bd7b12f4d
676ff213cd4d39aaa5558dc9f0c124c8cd94e9cc
2782f24ba40be9666676abbc8492fd53d576f4215a7ee8c5cd91f2b7e069ffe5
GET /contents/videos_screenshots/564000/564021/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 21889
server: nginx/1.19.6
last-modified: Fri, 09 Sep 2022 15:54:06 GMT
etag: "631b619e-5581"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/557000/557507/240x180/1.jpg
45.133.44.24200 OK 25 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/557000/557507/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash be7b0367e5feba4b43346c7aeb2db9db
20f7d4bc276d71ffffca6387c513443c8eb50a2e
bfb08b66deb4b0b5b364e021483aa222d82ad0938bef7876bd890fbd4209dfb3
GET /contents/videos_screenshots/557000/557507/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 25397
server: nginx/1.19.6
last-modified: Tue, 09 Aug 2022 11:39:04 GMT
etag: "62f24758-6335"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/560000/560617/240x180/1.jpg
45.133.44.24200 OK 26 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/560000/560617/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash c054a25db3638208222b719e3c2339a2
b51ced278bd84bf107f602e9d3403b08be834ec7
3bb80841782a67acef6d93175172cbea31def1cca09d8271dd4edebd3726d2cb
GET /contents/videos_screenshots/560000/560617/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 26432
server: nginx/1.19.6
last-modified: Sun, 21 Aug 2022 12:19:04 GMT
etag: "630222b8-6740"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/557000/557411/240x180/1.jpg
45.133.44.24200 OK 26 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/557000/557411/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash e1004fd68db2f4ca023fbba00f16140a
903216e6caca427f22f68004ff0fac0ba362d3bf
a9ec81234338de32671e533f53da3bbad6ab8b21edfa5945916ee386c26b16e1
GET /contents/videos_screenshots/557000/557411/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 25714
server: nginx/1.19.6
last-modified: Tue, 09 Aug 2022 10:07:12 GMT
etag: "62f231d0-6472"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/556000/556447/240x180/1.jpg
45.133.44.24200 OK 30 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/556000/556447/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 7ca936525cfe583c64a79ae05552468c
ba9d333cb20ccf86e57cd86f5a88576325cbc154
fd6efbd3caefe6dda14e9ed65af03cb1c38738723c94928077690fba14b4427a
GET /contents/videos_screenshots/556000/556447/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 30456
server: nginx/1.19.6
last-modified: Fri, 05 Aug 2022 15:41:11 GMT
etag: "62ed3a17-76f8"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/559000/559017/240x180/1.jpg
45.133.44.24200 OK 20 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/559000/559017/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash a5a3e356a754255be7b90bc197a808d9
2c86a8ae6383c226b32af0a36ee96a0f306228ec
433604afa2b764d03e68bd5b3da0e97180a74071f3cba71986f7cca84d87bd4c
GET /contents/videos_screenshots/559000/559017/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 20198
server: nginx/1.19.6
last-modified: Thu, 11 Aug 2022 05:42:03 GMT
etag: "62f496ab-4ee6"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/547000/547793/240x180/1.jpg
45.133.44.24200 OK 24 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/547000/547793/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash db1942c321d0c1af7ff49c6034a0b8f9
c10869f739adba43bbc9d0368bf70cdc25ba22a6
5edb0695f42029ecac548033cb5e0a790762c4430b3df413da3b84d95f62c346
GET /contents/videos_screenshots/547000/547793/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 23922
server: nginx/1.19.6
last-modified: Tue, 12 Jul 2022 23:26:08 GMT
etag: "62ce0310-5d72"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/548000/548107/240x180/1.jpg
45.133.44.24200 OK 29 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/548000/548107/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash ca362bc826ed9630b8d4b6173332029b
68983f1b5b135bc2770ae14ec8a125dc6f4d4b91
c12a1f7e82910e3119844e3c0b536738330d724b8881cbece5c99eb5d85f06a1
GET /contents/videos_screenshots/548000/548107/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 29408
server: nginx/1.19.6
last-modified: Thu, 14 Jul 2022 08:40:09 GMT
etag: "62cfd669-72e0"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/547000/547423/240x180/1.jpg
45.133.44.24200 OK 28 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/547000/547423/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash bd60a59b5a5653161fc4d7c9f4a090b0
00fa00986dad7e5b3b2d3c412a204eb285b16a7e
bbd1c24a0db46f41ff6fe58a47db46eb944ad3ed55aca371d17a8e1a6e4b19b6
GET /contents/videos_screenshots/547000/547423/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 28458
server: nginx/1.19.6
last-modified: Mon, 11 Jul 2022 22:14:26 GMT
etag: "62cca0c2-6f2a"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/540000/540967/240x180/1.jpg
45.133.44.24200 OK 29 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/540000/540967/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash faa17c260592e83ab2dae29540c0c4a0
d24f5bd0ead8f452ce38c6790990ce08fbecd74a
a03f7b2d80c0f5c939df0fd190cd1135487cf9c7420576bb8544dd560c47137f
GET /contents/videos_screenshots/540000/540967/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 28794
server: nginx/1.19.6
last-modified: Wed, 08 Jun 2022 14:18:04 GMT
etag: "62a0af9c-707a"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/540000/540999/240x180/1.jpg
45.133.44.24200 OK 29 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/540000/540999/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 76dc6fd6f161dafb131df8af080df844
d85f4addc4079132615a547ddfab1e36076c9646
7710f06905ea278cd36f2c9fc4f2b2498262f04d1ab5cda7076c2b1456a05c6b
GET /contents/videos_screenshots/540000/540999/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 29285
server: nginx/1.19.6
last-modified: Wed, 08 Jun 2022 16:22:06 GMT
etag: "62a0ccae-7265"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/541000/541089/240x180/1.jpg
45.133.44.24200 OK 30 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/541000/541089/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 71c7186b537472bc14ba251ff410f509
616a8e07858eaa530e6fe765a5e89262555c5465
1b03c562859f90c82aa03d8967fe1327fa109c45edd1cbf0616e3b367fdc52a5
GET /contents/videos_screenshots/541000/541089/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 29999
server: nginx/1.19.6
last-modified: Thu, 09 Jun 2022 00:33:03 GMT
etag: "62a13fbf-752f"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/540000/540103/240x180/1.jpg
45.133.44.24200 OK 20 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/540000/540103/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 19f6bf8b46c5d21831f74dd8410bb43c
f3ab5d8f62355ace71afaf508af1a38b97066105
8c8ee640ac127128f64a273a23eb566387241ae3427cb1e590dfd1ab568ccbcd
GET /contents/videos_screenshots/540000/540103/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 19781
server: nginx/1.19.6
last-modified: Sat, 04 Jun 2022 17:00:14 GMT
etag: "629b8f9e-4d45"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/520000/520605/240x180/1.jpg
45.133.44.24200 OK 25 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/520000/520605/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 388da402fde536b47b0e78137fad0478
26e8bb8d4c81592c800519036a211ccd6fde5658
332f4a0fbc881b5221f1a9ed211c3e6e83b45143f6cfe3c71e175fbe6bde56ca
GET /contents/videos_screenshots/520000/520605/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 24610
server: nginx/1.19.6
last-modified: Sat, 26 Mar 2022 18:38:07 GMT
etag: "623f5d8f-6022"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/564000/564483/240x180/1.jpg
45.133.44.24200 OK 31 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/564000/564483/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 2001d30b2628244f47e77f0b25cca47b
0ab5395da8d279470688eec024728c3ec807ce04
29bb24cea2d14624051c3c4eb5aaf3381234644524ea21edd17a5972d538228a
GET /contents/videos_screenshots/564000/564483/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 30754
server: nginx/1.19.6
last-modified: Mon, 12 Sep 2022 20:00:04 GMT
etag: "631f8fc4-7822"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/568000/568867/240x180/1.jpg
45.133.44.24200 OK 26 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/568000/568867/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 12bdb608a4fa8338a18c7e45887bacc3
5c946165bb0a01aa43b6758e629de9c9a049be42
f911336766ba7bf23f1af09e09f072940301821aac18efdd5bd081edac87990b
GET /contents/videos_screenshots/568000/568867/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 26276
server: nginx/1.19.6
last-modified: Sat, 01 Oct 2022 04:49:10 GMT
etag: "6337c6c6-66a4"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/566000/566963/240x180/1.jpg
45.133.44.24200 OK 30 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/566000/566963/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 25d888c0a7ca20550a81bef54be9c399
73cec9e63184d8545017f3ea8a90ed9b43955918
cebba2164ce22509c28123285a748511fcce0ee5bbd4f8229949f6f5ce1a893b
GET /contents/videos_screenshots/566000/566963/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 30482
server: nginx/1.19.6
last-modified: Fri, 23 Sep 2022 06:19:08 GMT
etag: "632d4fdc-7712"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/565000/565177/240x180/1.jpg
45.133.44.24200 OK 25 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/565000/565177/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 313be497ba21d2abf22a7d5e1494c0ba
efec019868bd4179210fd89e681152e84d1895e3
2b0dc47f7ddbd82a18864405bd299b9e0d3827267e29d4e79fbf3dcfd93af87a
GET /contents/videos_screenshots/565000/565177/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 25380
server: nginx/1.19.6
last-modified: Fri, 16 Sep 2022 02:19:05 GMT
etag: "6323dd19-6324"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/564000/564617/240x180/1.jpg
45.133.44.24200 OK 23 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/564000/564617/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 575d991d49bedc0271e6e36f37a00a69
f9a61ab29ea1689923e5136d358870c4dfc2fee9
8a81f10ee16fdcaa7f765b785e2ca257162cb2a9788c759026e7e5555ba3ad2b
GET /contents/videos_screenshots/564000/564617/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 23188
server: nginx/1.19.6
last-modified: Tue, 13 Sep 2022 09:32:06 GMT
etag: "63204e16-5a94"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tn.vjav.com/contents/videos_screenshots/517000/517733/240x180/1.jpg
45.133.44.24200 OK 25 kB URL HTTP/2 tn.vjav.com/contents/videos_screenshots/517000/517733/240x180/1.jpg
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 41e68e9ea1a73ed2e599d9a452dda860
8346ef427dad27164bc886b7e0d0f2cb774bae18
0979f0795ab0e688d28aa0d05f04e30de82f9a493861f7d9a1cfec520643fa96
GET /contents/videos_screenshots/517000/517733/240x180/1.jpg HTTP/1.1
Host: tn.vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/jpeg
content-length: 24599
server: nginx/1.19.6
last-modified: Thu, 17 Mar 2022 15:15:11 GMT
etag: "6233507f-6017"
cache-control: max-age=7776000
expires: Wed, 04 Jan 2023 08:08:33 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b10e85da66c14e17b0b6ab34aedab9e3
80cc37943ee8a91ede01076eded169f379b2ce02
dfcd5187dc9d1fb547b6bfdb7000a7a967b89f5e4f2f6a06a0d3fb8549e567c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFCD5187DC9D1FB547B6BFDB7000A7A967B89F5E4F2F6A06A0D3FB8549E567C4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2292
Expires: Thu, 06 Oct 2022 08:46:45 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
js.wpadmngr.com/npc/sdk/wp-banners.js
45.133.44.25200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Thu, 06 Oct 2022 08:13:33 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 06:46:56 GMT
expires: Thu, 06 Oct 2022 08:46:56 GMT
cache-control: public, max-age=7200
age: 4897
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.exoclick.com/ads.js
205.185.216.42200 OK 974 B IP 205.185.216.42:0
File type ASCII text, with very long lines (2476), with no line terminators
Hash 92af51b4341a31ff621022c2a648c05e
3761459319128e7349981f338926abcd89ba58e0
6dd1f44f60b3c9584b3d9a54af5348c3fc36c7e13585f593f205ed42a0fa7e9f
GET /ads.js HTTP/1.1
Host: ads.exoclick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 974
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"8f3c7314efe500b41baba9f571b"
X-HW: 1665043713.dop026.sk1.t,1665043713.cds203.sk1.shn,1665043713.cds203.sk1.c
Access-Control-Allow-Origin: *, *
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 29b8791ddb85f0c48ff80d93ea64387b
717490e133424d9552eebc9a9bf97e6159fc3182
945392d23eb59582ac7b133c1f3d503f38122e8f69ca9649c02377807208582b
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 08:08:33 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Mon, 10 Oct 2022 07:21:35 GMT
ETag: "717490e133424d9552eebc9a9bf97e6159fc3182"
Last-Modified: Thu, 06 Oct 2022 07:21:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 610
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ce8e98df2b505-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 29b8791ddb85f0c48ff80d93ea64387b
717490e133424d9552eebc9a9bf97e6159fc3182
945392d23eb59582ac7b133c1f3d503f38122e8f69ca9649c02377807208582b
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 08:08:33 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Mon, 10 Oct 2022 07:21:35 GMT
ETag: "717490e133424d9552eebc9a9bf97e6159fc3182"
Last-Modified: Thu, 06 Oct 2022 07:21:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 610
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ce8e98f09b4fd-OSL
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (593)
Hash 7a68c8644032413981e4ba5bc0d66c4a
2d46ca8055e8577ae7138140e34a6e633434973c
e0573e9a9cbfc3f00a921fa64c50270f5941a1ebb253ab70af2cc0dac45cb0d5
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 72341
date: Thu, 06 Oct 2022 08:08:33 GMT
access-control-allow-origin: *
etag: "633be002-11a95"
expires: Thu, 06 Oct 2022 09:08:33 GMT
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (570)
Hash 44366cc385a5c0f49df4f22b71434b42
3f56349f8a3fff52e28a3300052bdc2bde97371c
485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57285
date: Thu, 06 Oct 2022 08:08:33 GMT
access-control-allow-origin: *
etag: "633be002-dfc5"
expires: Thu, 06 Oct 2022 09:08:33 GMT
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0e888c8c1ee4bf5d21991f5137098f94
998301cfe032576985995ffcdab1e8b5a4cab94c
57980ac8ba59f72127e6c401d928c21461cdceb30cce2c5f82665d8d091d0e04
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57980AC8BA59F72127E6C401D928C21461CDCEB30CCE2C5F82665D8D091D0E04"
Last-Modified: Tue, 04 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6450
Expires: Thu, 06 Oct 2022 09:56:03 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
btds.zog.link/in/dl_show/?out_name=108221|34066|cpc|0.0009|$%200.0010&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F
109.206.161.16200 OK 7.1 kB URL HTTP/2 btds.zog.link/in/dl_show/?out_name=108221|34066|cpc|0.0009|$%200.0010&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F
IP 109.206.161.16:0
Hash eaf0e46dca74a3f0f07e9d8457d88f47
84f8bb4f768dd47be46b813dd715c4860750bfbf
444e70e62f1d2f6f100c01b3eb897be42e44633e5ec1ddcdf9d442f0202ab7da
GET /in/dl_show/?out_name=108221|34066|cpc|0.0009|$%200.0010&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: application/json
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 952.0=1; expires=Fri, 07 Oct 2022 08:08:34 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
btds.zog.link/in/dl_show/?out_name=73385|12302|cpm|0.0001|$%200.0001&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F
109.206.161.16200 OK 2 B URL HTTP/2 btds.zog.link/in/dl_show/?out_name=73385|12302|cpm|0.0001|$%200.0001&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F
IP 109.206.161.16:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /in/dl_show/?out_name=73385|12302|cpm|0.0001|$%200.0001&ad_sub=0&utm1=&utm2=&utm3=&utm4=&spot_id=&p=https%3A%2F%2Fvjav.com%2Fmain%2F HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: application/json
content-length: 2
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: 952.0=1; expires=Fri, 07 Oct 2022 08:08:33 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 68 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f0d0ad2545ac3f903079fd6febf55b5
4b09802eda3a22ffa06bdbec467e450eef9a017b
c6a93994d0c6b6b75eb48ce4b31b65a3714a1787541f13d793c0a2ee2463826a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D25CB141F29590920466348213E14EFEEE045132658B35C237D2A429D1B260F"
Last-Modified: Wed, 05 Oct 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2304
Expires: Thu, 06 Oct 2022 08:46:57 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
btds.zog.link/in/dl/?screen_resolution=1280x1024&dt=1665043713578&ad_sub=0&mo=&ve=&katds_labels=&site_id=35313285&p=https%3A//vjav.com/main/&zone=vj_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&title=Japanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies&katds_rcc=2
109.206.161.16200 OK 365 B URL HTTP/2 btds.zog.link/in/dl/?screen_resolution=1280x1024&dt=1665043713578&ad_sub=0&mo=&ve=&katds_labels=&site_id=35313285&p=https%3A//vjav.com/main/&zone=vj_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&title=Japanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies&katds_rcc=2
IP 109.206.161.16:0
File type JSON data\012- , ASCII text, with very long lines (969), with no line terminators
Hash 8150294acb0bd43dc3e3349eb9036734
7e56c4e825afe58803c719ba1f211cf9d12b5851
739d6ac0df986ff34c949984d19fd61f1d026cfeb26326fc7fcc7499f1b00934
GET /in/dl/?screen_resolution=1280x1024&dt=1665043713578&ad_sub=0&mo=&ve=&katds_labels=&site_id=35313285&p=https%3A//vjav.com/main/&zone=vj_hardlink&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&title=Japanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies&katds_rcc=2 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: 953.108221=1; expires=Fri, 07 Oct 2022 08:08:33 GMT; path=/; secure; SameSite=None
953.73385=1; expires=Fri, 07 Oct 2022 08:08:33 GMT; path=/; secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f994269c1a93aa0b1fe80e1d77e954
1f318d33a365e7a37aaaed5c9d3b471f024d86ef
003ef8c2de853060818ed2bb4b6248bef361728faedb51191f4b86b3d3105754
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "003EF8C2DE853060818ED2BB4B6248BEF361728FAEDB51191F4B86B3D3105754"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12493
Expires: Thu, 06 Oct 2022 11:36:46 GMT
Date: Thu, 06 Oct 2022 08:08:33 GMT
Connection: keep-alive
12112336.pix-cdn.org/dli/webcamera.svg
45.133.44.25200 OK 1.3 kB URL HTTP/2 12112336.pix-cdn.org/dli/webcamera.svg
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (937), with CRLF line terminators
Hash bafc3550493f70677afb95f4bd7d1135
b267787e31ea33a55b6a3140d4e802279098abb4
e7e6cd17d4242ba2a6f09e75b85b089287f2da80ce04bce096f6f40e048315f3
GET /dli/webcamera.svg HTTP/1.1
Host: 12112336.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/svg+xml
content-length: 1349
server: nginx/1.12.2
last-modified: Tue, 16 Jun 2020 16:25:10 GMT
etag: "5ee8f266-545"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
12112336.pix-cdn.org/dli/whatshot.svg
45.133.44.25200 OK 1.1 kB URL HTTP/2 12112336.pix-cdn.org/dli/whatshot.svg
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (652), with CRLF line terminators
Hash 92d4b3c9db72fefd9d6d927ec40be29b
efb550da28d7b18d7e2beb7698577415fde2b24f
7ad9fcb297f4600edf827b026deca9e0ed695be37ab46ac2d9fee35040611130
GET /dli/whatshot.svg HTTP/1.1
Host: 12112336.pix-cdn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:33 GMT
content-type: image/svg+xml
content-length: 1064
server: nginx/1.12.2
last-modified: Tue, 16 Jun 2020 16:25:10 GMT
etag: "5ee8f266-428"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0fd555c289bdc7437b20bf036a00aa3f
6b09b37cfd08873d2fbdac7bf8c3a21d71fb5bad
403b4f617355b486658c262e50d07ce3772f0f7ef09ab0402509410e2be01b8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "403B4F617355B486658C262E50D07CE3772F0F7EF09AB0402509410E2BE01B8D"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5648
Expires: Thu, 06 Oct 2022 09:42:42 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
js.wpshsdk.com/npc/sdk/wp-banners.js
45.133.44.25200 OK 0 B URL HTTP/2 js.wpshsdk.com/npc/sdk/wp-banners.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpshsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Thu, 06 Oct 2022 08:13:34 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dbd2e74794486ca31f5d847f694682ba
5b3f7179c553e1ef2c592024f56d769ba7852aef
1982b606ef05e1cdf5ba70fc69d71cf7cf8add3b550a09fe8be809b20f461b85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1982B606EF05E1CDF5BA70FC69D71CF7CF8ADD3B550A09FE8BE809B20F461B85"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21348
Expires: Thu, 06 Oct 2022 14:04:22 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d0d5a6b89cb6f1717190a25d8006816
f3091329da4909059de62fd5fce43998945492c2
d9012d7e1ca50db7f4ed784b5883d26fde383e5ceb5f1f82ff2bee6a879a910b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9012D7E1CA50DB7F4ED784B5883D26FDE383E5CEB5F1F82FF2BEE6A879A910B"
Last-Modified: Wed, 05 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14796
Expires: Thu, 06 Oct 2022 12:15:10 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d0d5a6b89cb6f1717190a25d8006816
f3091329da4909059de62fd5fce43998945492c2
d9012d7e1ca50db7f4ed784b5883d26fde383e5ceb5f1f82ff2bee6a879a910b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9012D7E1CA50DB7F4ED784B5883D26FDE383E5CEB5F1F82FF2BEE6A879A910B"
Last-Modified: Wed, 05 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14796
Expires: Thu, 06 Oct 2022 12:15:10 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aaa703b55d421aa03d745a218c651367
0662d6a236963bc0a28a6147e92c475e171811ce
a4d1870b39b66dc457acfebca20d995ada5aafe5fb35954f296992c76c74e7a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4D1870B39B66DC457ACFEBCA20D995ADA5AAFE5FB35954F296992C76C74E7A6"
Last-Modified: Wed, 05 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14892
Expires: Thu, 06 Oct 2022 12:16:46 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
nereserv.com/in/dip?site=native-push&wl=1&event_id=c9bc6ae7-9ddc-478e-908c-d0acd878498c&subid=1238912481&sid=2690461734&spot_id=50&created_at=2022-10-06&timezone=0&ver=7.4.1&is_native=1
168.119.25.22200 OK 0 B URL HTTP/2 nereserv.com/in/dip?site=native-push&wl=1&event_id=c9bc6ae7-9ddc-478e-908c-d0acd878498c&subid=1238912481&sid=2690461734&spot_id=50&created_at=2022-10-06&timezone=0&ver=7.4.1&is_native=1
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=1&event_id=c9bc6ae7-9ddc-478e-908c-d0acd878498c&subid=1238912481&sid=2690461734&spot_id=50&created_at=2022-10-06&timezone=0&ver=7.4.1&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/health/
116.202.60.158200 OK 98 kB URL HTTP/2 513bb5c897.daf58a0948.com/health/
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d0047dbac9c9778b2469cbd6d42e2825
27bb6a24b0a457a93f22813f74ae2829b0ecd1bb
b4c46d2de0ed27f78f33ccd7acfdeb5e80b8a0f404515144a3a9e098bac7da9d
GET /health/ HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/health/
116.202.60.158200 OK 0 B URL HTTP/2 513bb5c897.daf58a0948.com/health/
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /health/ HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/health/
116.202.60.158200 OK 0 B URL HTTP/2 513bb5c897.daf58a0948.com/health/
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /health/ HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/health/
116.202.60.158200 OK 0 B URL HTTP/2 513bb5c897.daf58a0948.com/health/
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /health/ HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b4069b76eaad90307d68a785c980f0c
af605822d64e4001a6b7cc193f827bddd5d59039
ac53cfea4d149b1ea9d0bd0750ba79b856a6a6f578809fda2ffe2a8a9025c344
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC53CFEA4D149B1EA9D0BD0750BA79B856A6A6F578809FDA2FFE2A8A9025C344"
Last-Modified: Wed, 05 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11307
Expires: Thu, 06 Oct 2022 11:17:01 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
3fb830355c.9be814e81e.com/in/multy
168.119.25.22204 No Content 0 B URL HTTP/2 3fb830355c.9be814e81e.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /in/multy HTTP/1.1
Host: 3fb830355c.9be814e81e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vjav.com/
Origin: https://vjav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 15 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3ab824bd5dbc769b70612a109d96f1ad
5ca4ca8be70140fd80ee0cb1f9db28773cb3041e
fae34a57fe7b337530212f2d63617255ca9a84f47a61331d0f53a8e94ce052e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4766
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4766
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4766
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 746e3c38e01d58e6fa0728798221a830
b19dd1d42995ea4242505b152e77835442341581
c524a2e7e29690030b7402077f711e643674c8f42de071214f3909b447fb1e3b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6933
x-amzn-requestid: aa50b0cd-e931-49a9-bce3-00366738aea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtNGKPoAMF6UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df987-77a4f8306103dcdf3de7d1fd;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:19 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: aRwLcesGtAJ-M6BLPyzdprcMh8tvcxVH6AOG2LJc8aSYLR0BR9WAwg==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:09:09 GMT
etag: "b19dd1d42995ea4242505b152e77835442341581"
content-type: image/jpeg
age: 35965
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
Hash 5f734878e914239fb33fe3550c2599f9
c508f73e7312e4deba074c0057a4f1b56b56846d
7628d51bb489a87cde9114d00bbed787b576f0789b121efb680388fe8575458a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:50:38 GMT
age: 15476
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.optnx.com/cimp.php?data=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
95.211.229.246302 Found 0 B URL HTTP/1.1 s.optnx.com/cimp.php?data=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
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cimp.php?data=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 HTTP/1.1
Host: s.optnx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://513bb5c897.daf58a0948.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633e7d9510e128.729667524050224670%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 06 Oct 2022 08:08:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22633e7d9510e128.729667524050224670%22%3B%7D; expires=Sat, 05 Oct 2024 08:08:34 GMT; path=; domain=.optnx.com; Secure; SameSite=none
Location: https://s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
X-Robots-Tag: noindex, follow
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2d101e6535dfc8ea8c193d3e97c07e1d
d839f3aa41455d818da9a794b0688b1144b3a03a
d73e79f203ef50354e078de30fcb52d298e14ad53924e0387ab586a9cb4376a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8651
x-amzn-requestid: 8bbdbc11-92fe-4cdf-8469-1c1ffac9e65b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPLIGG0IAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df8ad-132ee26478d791850dd14462;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: KBuHj1vlNgk4oflp8uIxuxuPoWh7B7O0SWrMrNP-lAhnp2m53ttPMw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:09:18 GMT
age: 35956
etag: "d839f3aa41455d818da9a794b0688b1144b3a03a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2e00e7f6054a915275111712ae68feb
016d84f56f97f1ab12c4046177e3e809aa861729
d042df692c87770504eaa80dae07601163a3b330061b5b9ec7b66a2bec759150
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11478
x-amzn-requestid: a09aebdb-ec16-4f21-b972-6f97eda93ac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjRNiHLGIAMFcFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfbf0-28d33fc650641df56dfb5b06;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:49:36 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: RqNGDz8fc7-Et0JSVOTstRITabta3ruIF-gtPFu7jtBRbiLDBv_cGg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:48 GMT
etag: "016d84f56f97f1ab12c4046177e3e809aa861729"
content-type: image/jpeg
age: 36586
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af17f003b33d854fd024dcd3980fea27
1282572af57f7d04cae3f736a9b9fcb378efdf70
5e0112558b9196f1025a354f4b69fb02321d9a345c2d302e523001a56b51cc31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12156
x-amzn-requestid: 0640ef42-f082-43cb-9fbb-ba509f7ec1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZXYcIFhmIAMFeVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63393ab3-2fbc1cf648993ee1346ec9b2;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 07:16:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LZZWZlT3DnlbEyrOaNR-emsGas3uCB6VaQYdTQ76-W0XL7_Yq3BAJw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 13:09:19 GMT
age: 68355
etag: "1282572af57f7d04cae3f736a9b9fcb378efdf70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 37888
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9c68f2d2f2369c19ce4b65d43b273aa8
96ef74710827f58302fc3acac2e2a7784db13f35
5f292fc2dafdd65e046e7ad0f9218a9cae9553b70555d39ebdbe5df47d95a82c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F292FC2DAFDD65E046E7AD0F9218A9CAE9553B70555D39EBDBE5DF47D95A82C"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11294
Expires: Thu, 06 Oct 2022 11:16:48 GMT
Date: Thu, 06 Oct 2022 08:08:34 GMT
Connection: keep-alive
mc.yandex.ru/watch/35313285?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 503 B URL HTTP/2 mc.yandex.ru/watch/35313285?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
Hash 9c68f2d2f2369c19ce4b65d43b273aa8
96ef74710827f58302fc3acac2e2a7784db13f35
5f292fc2dafdd65e046e7ad0f9218a9cae9553b70555d39ebdbe5df47d95a82c
GET /watch/35313285?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/35313285/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 06 Oct 2022 08:08:34 GMT
access-control-allow-origin: https://vjav.com
set-cookie: yandexuid=1423072781665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1423072781665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1341085631665043714; Path=/; SameSite=None; Secure
i=ukP6ei99thC4HOE9hTNCzNZfLIWTLXqoLrVFC/RcSH3BuPXMMc10OPHhyqCZwvKoh6gWxLNb3AVTErsi5+AGsJRvohk=; Expires=Sun, 03-Oct-2032 08:08:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696579714.yrts.1665043714#1696579714.yrtsi.1665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 08:08:34 GMT
last-modified: Thu, 06-Oct-2022 08:08:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
488bd9e16b.d3b05a6fb4.com/get/
94.130.197.134200 OK 38 kB URL HTTP/2 488bd9e16b.d3b05a6fb4.com/get/
IP 94.130.197.134:0
ASN #24940 Hetzner Online GmbH
Hash 81d684a02f9f76ba4ce66bbf575eab99
873ddb4a033e248c6cddb08557c5d11a8f0994f8
389871a20fdfcb3971e73fa52ae4177153ecbb7e67dd2f663b6e562a46706e19
Analyzer Verdict Alert quad9 Sinkholed
POST /get/ HTTP/1.1
Host: 488bd9e16b.d3b05a6fb4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vjav.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://vjav.com
Content-Length: 485
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: application/json
content-length: 1154
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash d36b597531430c6a664cfd11a0631a07
0d4652d47a587c39fe800b3d1155522a684e64c3
951e555d6f66a64fac5bea5af74644ca0f541ff39df308cfaa000548a344a98b
GET /watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Referer: https://vjav.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Thu, 06 Oct 2022 08:08:34 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://vjav.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 08:08:34 GMT
last-modified: Thu, 06-Oct-2022 08:08:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/35313285/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/35313285/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash a58abfa3ff79407aad958543dbd429fe
e8620dfbc7a685c6db1cb148b6540c7242f0c570
b251cfc40610466d2e4d4cbfc8ab5a3762aecef56e72d50c7dadee61c405f619
GET /watch/35313285/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A687191408%3Arqn%3A3%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Referer: https://vjav.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Thu, 06 Oct 2022 08:08:34 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://vjav.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 08:08:34 GMT
last-modified: Thu, 06-Oct-2022 08:08:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
185.76.9.14200 OK 25 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
IP 185.76.9.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash dbe31828ea0277ab9845bf67aa749927
cc7211683ae26562c2df637755f311868f37c8ea
6499cca4ce115e6dcb44a71342a5c705f938fbffbe5c410b55e60051a417b917
GET /library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://513bb5c897.daf58a0948.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: image/jpeg
content-length: 25056
last-modified: Thu, 30 Mar 2017 09:55:25 GMT
etag: "58dcd60d-61e0"
expires: Fri, 30 Jun 2023 14:29:46 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195223
server: CDN77-Turbo
x-77-nzt: AblMCQ1kO3n/6+9/AA
x-77-nzt-ray: a322vBPQKQY
x-cache: HIT
x-age: 8384491
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=1428028435&pid=0&site=29875&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-5&site_id=0&spot_id=29875&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0008702279232632304&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29875&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
116.202.60.158302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=1428028435&pid=0&site=29875&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-5&site_id=0&spot_id=29875&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0008702279232632304&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29875&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=1428028435&pid=0&site=29875&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-5&site_id=0&spot_id=29875&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0008702279232632304&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29875&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://513bb5c897.daf58a0948.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/get/?go=1&data=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
116.202.60.158200 OK 2.2 kB URL HTTP/2 513bb5c897.daf58a0948.com/get/?go=1&data=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
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1503)
Hash e3bf67af39c49941289f81edb90a4cda
56e1dd90a51138892f364f063075f0ea805263b3
7077e6296dede6d538d04d2403b9630441003e05d30b55e707fac17a4d1782ef
GET /get/?go=1&data=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 HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=274776122&pid=0&site=29876&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-1&site_id=0&spot_id=29876&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0016474966795224195&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29876&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
116.202.60.158302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=274776122&pid=0&site=29876&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-1&site_id=0&spot_id=29876&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0016474966795224195&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29876&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=274776122&pid=0&site=29876&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-1&site_id=0&spot_id=29876&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0016474966795224195&placement_type_id=8&skin_test=&verify_hash=&score=89&ml=&tag_ab=&ttl=&space_id=29876&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://513bb5c897.daf58a0948.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=473322172&pid=0&site=29877&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-2&site_id=0&spot_id=29877&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0006814827441705199&placement_type_id=8&skin_test=&verify_hash=&score=88&ml=&tag_ab=&ttl=&space_id=29877&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
116.202.60.158302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=473322172&pid=0&site=29877&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-2&site_id=0&spot_id=29877&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0006814827441705199&placement_type_id=8&skin_test=&verify_hash=&score=88&ml=&tag_ab=&ttl=&space_id=29877&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=473322172&pid=0&site=29877&sc=NO&usage_type=DCH&subid=0&sid=0&cid=10932&price=0&is_cpm=1&cpm=0.007597499999999999&ecpm=0.0053483740875&crid=&crtid=d41d8cd98f00b204e9800998ecf8427e&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-2&site_id=0&spot_id=29877&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=6&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=native&iabcat=IAB25&min_cpm=0.0006814827441705199&placement_type_id=8&skin_test=&verify_hash=&score=88&ml=&tag_ab=&ttl=&space_id=29877&banner_width=300&banner_height=250&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fs3t3d2y8.afcdn.net%2Flibrary%2F475567%2Fcc7211683ae26562c2df637755f311868f37c8ea.jpg&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://513bb5c897.daf58a0948.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s3t3d2y8.afcdn.net/library/475567/cc7211683ae26562c2df637755f311868f37c8ea.jpg
X-Firefox-Spdy: h2
mc.yandex.ru/watch/35313285/1?page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&hittoken=1665043714_f60661330bd85ddd125bfd60d29f22f391a6c0fdb17e589046a7d47c37cc8f6b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080834%3Aet%3A1665043715%3Ac%3A1%3Arn%3A449796296%3Arqn%3A4%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1665043711476%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665043715&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)ecs(1)rqnl(1)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/35313285/1?page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&hittoken=1665043714_f60661330bd85ddd125bfd60d29f22f391a6c0fdb17e589046a7d47c37cc8f6b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080834%3Aet%3A1665043715%3Ac%3A1%3Arn%3A449796296%3Arqn%3A4%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1665043711476%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665043715&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)ecs(1)rqnl(1)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/35313285/1?page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&hittoken=1665043714_f60661330bd85ddd125bfd60d29f22f391a6c0fdb17e589046a7d47c37cc8f6b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1608110895286%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080834%3Aet%3A1665043715%3Ac%3A1%3Arn%3A449796296%3Arqn%3A4%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aeu%3A1%3Ans%3A1665043711476%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665043715&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)ecs(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 35
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 08:08:34 GMT
access-control-allow-origin: https://vjav.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 08:08:34 GMT
last-modified: Thu, 06-Oct-2022 08:08:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 567 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b525bacd8af783a0810df4c2cca2e5bc
f5fb5d8d80019ca288182929739af29ff101c08b
a4341c7b629e0df87a6e0bcdf1ebc953e187b183686adf3c642fe4d139825318
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "558F1D5D456EA2DDF89B62492DEC6622D4B75F581CC1A35685AD32C05FD98DAE"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6931
Expires: Thu, 06 Oct 2022 10:04:06 GMT
Date: Thu, 06 Oct 2022 08:08:35 GMT
Connection: keep-alive
3fb830355c.9be814e81e.com/in/multy
168.119.25.22200 OK 11 kB URL HTTP/2 3fb830355c.9be814e81e.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (11172), with no line terminators
Hash ff306866a4e8e3a87280577f6869a6e2
10927c62e9b1a29aa9a6dd6e05cec6ac79a48745
2cda50f4872fadc7aac4c8bbf3a7a5384058c1db327a25c2a93039c682d1b3a7
Analyzer Verdict Alert quad9 Sinkholed
POST /in/multy HTTP/1.1
Host: 3fb830355c.9be814e81e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1094
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:35 GMT
content-type: application/json
content-length: 11179
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
3fb830355c.9be814e81e.com/in/show/?mid=1816703833&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1238912481&sid=2690461734&cid=12730&price=0.0014095788&is_cpm=0&cpm=0&ecpm=0.032922344829994135&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&tcid=0&out_id=1&ver=7.4.1&ver_c=&refdom=vjav.com&hostname=auc-inpage-hz-4-b&site_id=3150&spot_id=50&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1665130115&created_at=2022-10-06&is_native=2&auction_queue=0&burl=06KWZVPV9ARg4J5-FdqBBqCSr5HVMM6UWaMcmwdyo_5apt5uD706tm5W2aiOptt_D3uM2uPbcFtZgbWhHJj7u7sCs_tPQovw6jRSrjjRCivxLbn7vC-86zIJ8WgoJSeHZL6duiYgzg7oPbFbbBb1Pm6JJQkayaRhXvBkkmmDcXtYV3-b9zq2yq7hgEQfGC68wYTLtTtZgArp0EPRmXuja2XsFHXEhlZAuiFUkn9utx0_NNjF5TYGmNHov3_NKcf_ISZPuPBX0_N8lJ3SGB5NdkiTIa2ZJ641_0MvJ3lBU-0RUhbQ86H0srL6odxk-jIX2jQ5bQnoRXGu80pmxad53MvqyhwRUWMt-uBmAXh5ctUWdOrpxcI3kCVWggspx6bLpTheGzrZ_e2xU6Ziim9gmKSoIZiGeK7wbjfGWQyJ-yuTlHERRpFZWS3NYF5DHf3y9UobHIXBfhISYDQxSFWQW_-1Rqn9rclJglxnda7Whh5ruYqdOimM8q23v37An8bTeWVZFIrRCNaBB8nVZspuUwIBJNchl08gPzpDzQsvl_yuMpCsBdiHdkJj5frBeUaKzNxKujHiWxWk5pgtHX668SNW2r2X85ThVUXhOW_MfCAGzzIMUqb2cB_9Kq5lHpGTvBS0VXjRMKq_caoiDcqvurNU6qSKH7IkTf50K_XUHjzZ8q9RfkuEuB2iTY5LUPnkAi6LAxrG8HwC-N4Oj-l6v4ed4aKXFmyZP_QbCST2QPu0j8bXKUpaNLiwmOfPViB25uJq-ijcKRF-Z7N4JVUnGj_I2TbiTmnFlH69JKNLQZzwYIkk2B5pVrWHXm3ktFkIBJ6rTBXtGMgCtfo4UyhW6QM&pop_winurl=&ip=91.90.42.154&testab=0&px_id=5350&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.013177956332180416&placement_type_id=&skin_test=0&verify_hash=675e3d1aed2d6a544435ef9f64858b6c&score=94.3367155203443&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1238912481%26spot_id%3D50%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fvjav.com%252F%26idzone%3D4438152%26sid%3D1886&ml=&tag_ab=d&original_bid=0.0014095788&v2_track=0&url=unKfj3igf-wloV3FD1kRXv4X4E1bj8gUt7wT4s1aBwBUGm6n6152SeVJTR3fue0UsSZpcNfKiMtaLLy56FDCjPwmmx_hGiacx4f6l5r-mSB4_ZsRmQnBZoPXiwArpjIfA-qhMk1NlaOXNWmeZaJFqd_lpMNmZUKmRw8nAi9FyNfx5J5Q0A&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&skin_id=4&vertical_id=0&real_bid=0.001310908284&pr=&user_keywords=&auc_type=1&aid=120&ext_cid=0&device_theme=light&keywords=Asian,Adult,Japanese&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=e118242b-6823-4ab0-9841-e03a272012de
168.119.25.22302 Found 0 B URL HTTP/2 3fb830355c.9be814e81e.com/in/show/?mid=1816703833&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1238912481&sid=2690461734&cid=12730&price=0.0014095788&is_cpm=0&cpm=0&ecpm=0.032922344829994135&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&tcid=0&out_id=1&ver=7.4.1&ver_c=&refdom=vjav.com&hostname=auc-inpage-hz-4-b&site_id=3150&spot_id=50&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1665130115&created_at=2022-10-06&is_native=2&auction_queue=0&burl=06KWZVPV9ARg4J5-FdqBBqCSr5HVMM6UWaMcmwdyo_5apt5uD706tm5W2aiOptt_D3uM2uPbcFtZgbWhHJj7u7sCs_tPQovw6jRSrjjRCivxLbn7vC-86zIJ8WgoJSeHZL6duiYgzg7oPbFbbBb1Pm6JJQkayaRhXvBkkmmDcXtYV3-b9zq2yq7hgEQfGC68wYTLtTtZgArp0EPRmXuja2XsFHXEhlZAuiFUkn9utx0_NNjF5TYGmNHov3_NKcf_ISZPuPBX0_N8lJ3SGB5NdkiTIa2ZJ641_0MvJ3lBU-0RUhbQ86H0srL6odxk-jIX2jQ5bQnoRXGu80pmxad53MvqyhwRUWMt-uBmAXh5ctUWdOrpxcI3kCVWggspx6bLpTheGzrZ_e2xU6Ziim9gmKSoIZiGeK7wbjfGWQyJ-yuTlHERRpFZWS3NYF5DHf3y9UobHIXBfhISYDQxSFWQW_-1Rqn9rclJglxnda7Whh5ruYqdOimM8q23v37An8bTeWVZFIrRCNaBB8nVZspuUwIBJNchl08gPzpDzQsvl_yuMpCsBdiHdkJj5frBeUaKzNxKujHiWxWk5pgtHX668SNW2r2X85ThVUXhOW_MfCAGzzIMUqb2cB_9Kq5lHpGTvBS0VXjRMKq_caoiDcqvurNU6qSKH7IkTf50K_XUHjzZ8q9RfkuEuB2iTY5LUPnkAi6LAxrG8HwC-N4Oj-l6v4ed4aKXFmyZP_QbCST2QPu0j8bXKUpaNLiwmOfPViB25uJq-ijcKRF-Z7N4JVUnGj_I2TbiTmnFlH69JKNLQZzwYIkk2B5pVrWHXm3ktFkIBJ6rTBXtGMgCtfo4UyhW6QM&pop_winurl=&ip=91.90.42.154&testab=0&px_id=5350&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.013177956332180416&placement_type_id=&skin_test=0&verify_hash=675e3d1aed2d6a544435ef9f64858b6c&score=94.3367155203443&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1238912481%26spot_id%3D50%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fvjav.com%252F%26idzone%3D4438152%26sid%3D1886&ml=&tag_ab=d&original_bid=0.0014095788&v2_track=0&url=unKfj3igf-wloV3FD1kRXv4X4E1bj8gUt7wT4s1aBwBUGm6n6152SeVJTR3fue0UsSZpcNfKiMtaLLy56FDCjPwmmx_hGiacx4f6l5r-mSB4_ZsRmQnBZoPXiwArpjIfA-qhMk1NlaOXNWmeZaJFqd_lpMNmZUKmRw8nAi9FyNfx5J5Q0A&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&skin_id=4&vertical_id=0&real_bid=0.001310908284&pr=&user_keywords=&auc_type=1&aid=120&ext_cid=0&device_theme=light&keywords=Asian,Adult,Japanese&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=e118242b-6823-4ab0-9841-e03a272012de
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/show/?mid=1816703833&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1238912481&sid=2690461734&cid=12730&price=0.0014095788&is_cpm=0&cpm=0&ecpm=0.032922344829994135&crid=&crtid=8fc5a3949d58ed66158a5da3a7b48b19&tcid=0&out_id=1&ver=7.4.1&ver_c=&refdom=vjav.com&hostname=auc-inpage-hz-4-b&site_id=3150&spot_id=50&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=1665130115&created_at=2022-10-06&is_native=2&auction_queue=0&burl=06KWZVPV9ARg4J5-FdqBBqCSr5HVMM6UWaMcmwdyo_5apt5uD706tm5W2aiOptt_D3uM2uPbcFtZgbWhHJj7u7sCs_tPQovw6jRSrjjRCivxLbn7vC-86zIJ8WgoJSeHZL6duiYgzg7oPbFbbBb1Pm6JJQkayaRhXvBkkmmDcXtYV3-b9zq2yq7hgEQfGC68wYTLtTtZgArp0EPRmXuja2XsFHXEhlZAuiFUkn9utx0_NNjF5TYGmNHov3_NKcf_ISZPuPBX0_N8lJ3SGB5NdkiTIa2ZJ641_0MvJ3lBU-0RUhbQ86H0srL6odxk-jIX2jQ5bQnoRXGu80pmxad53MvqyhwRUWMt-uBmAXh5ctUWdOrpxcI3kCVWggspx6bLpTheGzrZ_e2xU6Ziim9gmKSoIZiGeK7wbjfGWQyJ-yuTlHERRpFZWS3NYF5DHf3y9UobHIXBfhISYDQxSFWQW_-1Rqn9rclJglxnda7Whh5ruYqdOimM8q23v37An8bTeWVZFIrRCNaBB8nVZspuUwIBJNchl08gPzpDzQsvl_yuMpCsBdiHdkJj5frBeUaKzNxKujHiWxWk5pgtHX668SNW2r2X85ThVUXhOW_MfCAGzzIMUqb2cB_9Kq5lHpGTvBS0VXjRMKq_caoiDcqvurNU6qSKH7IkTf50K_XUHjzZ8q9RfkuEuB2iTY5LUPnkAi6LAxrG8HwC-N4Oj-l6v4ed4aKXFmyZP_QbCST2QPu0j8bXKUpaNLiwmOfPViB25uJq-ijcKRF-Z7N4JVUnGj_I2TbiTmnFlH69JKNLQZzwYIkk2B5pVrWHXm3ktFkIBJ6rTBXtGMgCtfo4UyhW6QM&pop_winurl=&ip=91.90.42.154&testab=0&px_id=5350&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.013177956332180416&placement_type_id=&skin_test=0&verify_hash=675e3d1aed2d6a544435ef9f64858b6c&score=94.3367155203443&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1238912481%26spot_id%3D50%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fvjav.com%252F%26idzone%3D4438152%26sid%3D1886&ml=&tag_ab=d&original_bid=0.0014095788&v2_track=0&url=unKfj3igf-wloV3FD1kRXv4X4E1bj8gUt7wT4s1aBwBUGm6n6152SeVJTR3fue0UsSZpcNfKiMtaLLy56FDCjPwmmx_hGiacx4f6l5r-mSB4_ZsRmQnBZoPXiwArpjIfA-qhMk1NlaOXNWmeZaJFqd_lpMNmZUKmRw8nAi9FyNfx5J5Q0A&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FUS%2FUS_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp&skin_id=4&vertical_id=0&real_bid=0.001310908284&pr=&user_keywords=&auc_type=1&aid=120&ext_cid=0&device_theme=light&keywords=Asian,Adult,Japanese&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=e118242b-6823-4ab0-9841-e03a272012de HTTP/1.1
Host: 3fb830355c.9be814e81e.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:35 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/get/?go=1&data=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
116.202.60.158200 OK 2.2 kB URL HTTP/2 513bb5c897.daf58a0948.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjoyOTg3NiwidHlwZSI6InBvcCIsImlkem9uZSI6MTkyMDc2NCwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI5ODc2LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIyOTg3NiIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly92amF2LmNvbS9tYWluLyJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjUwNDM3MTQzNjh9fQ==
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1494)
Hash fabf1849f27220b3a9026500e27b5e4c
5c389cbcfe5fa027b062e79f02484367274955ad
b3e1b49fc0d31026ffc16281f1d08240ec091a32325639ce271a7aae763789c0
GET /get/?go=1&data=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 HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
88.198.209.13200 OK 590 B URL HTTP/2 static.bookmsg.com/creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp
IP 88.198.209.13:0
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash debce753f1ce6652c1637491fd72b1b1
fd102eb3f058f7a43b0f9ec03541681699f5895e
c2443b0a74b25158756abb7aa12832e5442adab247aab6e24514f54396c72579
GET /creatives/US/US_34c3a6403004486b593fb6a3428d7a2748437f4f_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:35 GMT
content-type: image/webp
content-length: 590
last-modified: Tue, 24 Nov 2020 14:24:12 GMT
etag: "5fbd178c-24e"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3cca8758888c76a675b002d6d91377cf
59b761dd0beed4cbae3791ddaa9e31b011801d65
c9956f2b21bfc06e941b1ff765a45d90181bb522e0aab46ad3ef4f76ddeffb59
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9956F2B21BFC06E941B1FF765A45D90181BB522E0AAB46AD3EF4F76DDEFFB59"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4284
Expires: Thu, 06 Oct 2022 09:19:59 GMT
Date: Thu, 06 Oct 2022 08:08:35 GMT
Connection: keep-alive
hypoterian.com/ie?v=4&c=Q8kYgh7mGTWBCRN_R2xLSzrD6uDTHM-xwe47UV0dxMQfQOu9GBYd3ALLViEmnBw0xwv-pr0SxNBDOgUB43XO2yUuz5uCsCAfrRB2DjniFokfzNLTfNtTB3uPuF57l8KPd0QU3ZH5G7YYa30h4Vo0hNIhYEZH6N7UtZuxNJjlhkUwkS7pQ3_8DNuHEsIBt-nEvBQ15Xn8rofCrOuW5rjR5Cq_y-qbi7nucSfjPNIPhkObBefAWiOPqD2XNB_LfMBOHQv_urYn83kFR91JOf5Epeg2Po9yJIKFbzwp5IeJfj2gUeVomweLAVSraHx-_gcpOTtzvmpRCdDqUadbZCDkow0E--7Xv5XISfl0bOjMaDV__Gu2AIGKbjRTA2ji5yr6tQ9QFaok013OjMEI3vhiHB_nodv4oJDtfy5LtsNVmV4Afn-Z0sHNXApzxSkl5A==
213.239.207.252301 Moved Permanently 0 B URL HTTP/1.1 hypoterian.com/ie?v=4&c=Q8kYgh7mGTWBCRN_R2xLSzrD6uDTHM-xwe47UV0dxMQfQOu9GBYd3ALLViEmnBw0xwv-pr0SxNBDOgUB43XO2yUuz5uCsCAfrRB2DjniFokfzNLTfNtTB3uPuF57l8KPd0QU3ZH5G7YYa30h4Vo0hNIhYEZH6N7UtZuxNJjlhkUwkS7pQ3_8DNuHEsIBt-nEvBQ15Xn8rofCrOuW5rjR5Cq_y-qbi7nucSfjPNIPhkObBefAWiOPqD2XNB_LfMBOHQv_urYn83kFR91JOf5Epeg2Po9yJIKFbzwp5IeJfj2gUeVomweLAVSraHx-_gcpOTtzvmpRCdDqUadbZCDkow0E--7Xv5XISfl0bOjMaDV__Gu2AIGKbjRTA2ji5yr6tQ9QFaok013OjMEI3vhiHB_nodv4oJDtfy5LtsNVmV4Afn-Z0sHNXApzxSkl5A==
IP 213.239.207.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ie?v=4&c=Q8kYgh7mGTWBCRN_R2xLSzrD6uDTHM-xwe47UV0dxMQfQOu9GBYd3ALLViEmnBw0xwv-pr0SxNBDOgUB43XO2yUuz5uCsCAfrRB2DjniFokfzNLTfNtTB3uPuF57l8KPd0QU3ZH5G7YYa30h4Vo0hNIhYEZH6N7UtZuxNJjlhkUwkS7pQ3_8DNuHEsIBt-nEvBQ15Xn8rofCrOuW5rjR5Cq_y-qbi7nucSfjPNIPhkObBefAWiOPqD2XNB_LfMBOHQv_urYn83kFR91JOf5Epeg2Po9yJIKFbzwp5IeJfj2gUeVomweLAVSraHx-_gcpOTtzvmpRCdDqUadbZCDkow0E--7Xv5XISfl0bOjMaDV__Gu2AIGKbjRTA2ji5yr6tQ9QFaok013OjMEI3vhiHB_nodv4oJDtfy5LtsNVmV4Afn-Z0sHNXApzxSkl5A== HTTP/1.1
Host: hypoterian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
server: fasthttp
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
location: https://img.vmmcdn.com/get/96038712/71049_image.png
x-app-id: 12
hypoterian.com/ie?v=4&c=BydLcorQOKthl4mVwqcTWzngU08G9na8AgtRPuT47WasvnuWD9E2pQ6Tcudy-__EwqR2l0brCYxX-9JFlB0DP2xMMO18z78SM-NpUniHuZpfaiYAgYLD9Y7xezrbh1fKt64iHem3WpLmUsU4CSY4llnmUs71hWIHbP9vZSnAvRX8fjEZvxAeCZhaMAIr50_V8fztcK7sZfwPVmxNJCAJO3nLDrRP0FfKQ6TAM-2nhlvtmxnAVc8vRnu8y5S4a0wTTB9d3DJyreQpq8lwBLOOeEjjYaAfWOhWsmnkskIlTlg4tqVNr7Ao1DCKRSW8mWCZGnN0e0iXVZDYPxyGNMsetd8MERryPQHzlWEqYxCvfsovPQcwa9TottrAWZlssjr8aadQTdYqtAyjPMlQUXMIyr_sin6bciANpZvZ&v1=457&v2=49675
213.239.207.252301 Moved Permanently 0 B URL HTTP/1.1 hypoterian.com/ie?v=4&c=BydLcorQOKthl4mVwqcTWzngU08G9na8AgtRPuT47WasvnuWD9E2pQ6Tcudy-__EwqR2l0brCYxX-9JFlB0DP2xMMO18z78SM-NpUniHuZpfaiYAgYLD9Y7xezrbh1fKt64iHem3WpLmUsU4CSY4llnmUs71hWIHbP9vZSnAvRX8fjEZvxAeCZhaMAIr50_V8fztcK7sZfwPVmxNJCAJO3nLDrRP0FfKQ6TAM-2nhlvtmxnAVc8vRnu8y5S4a0wTTB9d3DJyreQpq8lwBLOOeEjjYaAfWOhWsmnkskIlTlg4tqVNr7Ao1DCKRSW8mWCZGnN0e0iXVZDYPxyGNMsetd8MERryPQHzlWEqYxCvfsovPQcwa9TottrAWZlssjr8aadQTdYqtAyjPMlQUXMIyr_sin6bciANpZvZ&v1=457&v2=49675
IP 213.239.207.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ie?v=4&c=BydLcorQOKthl4mVwqcTWzngU08G9na8AgtRPuT47WasvnuWD9E2pQ6Tcudy-__EwqR2l0brCYxX-9JFlB0DP2xMMO18z78SM-NpUniHuZpfaiYAgYLD9Y7xezrbh1fKt64iHem3WpLmUsU4CSY4llnmUs71hWIHbP9vZSnAvRX8fjEZvxAeCZhaMAIr50_V8fztcK7sZfwPVmxNJCAJO3nLDrRP0FfKQ6TAM-2nhlvtmxnAVc8vRnu8y5S4a0wTTB9d3DJyreQpq8lwBLOOeEjjYaAfWOhWsmnkskIlTlg4tqVNr7Ao1DCKRSW8mWCZGnN0e0iXVZDYPxyGNMsetd8MERryPQHzlWEqYxCvfsovPQcwa9TottrAWZlssjr8aadQTdYqtAyjPMlQUXMIyr_sin6bciANpZvZ&v1=457&v2=49675 HTTP/1.1
Host: hypoterian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
server: fasthttp
date: Thu, 06 Oct 2022 08:08:34 GMT
content-length: 0
location: https://img.vmmcdn.com/get/54661559/71049_icon.png
x-app-id: 12
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84d1539b49cc114230c58ba3944218ac
61ed2a124c570db41a8bbc6396ea807c5b4ae300
e2502d11823b9b6157999aee7d2efb7d19678d7bcbbba4f5a0d5929e00641115
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E2502D11823B9B6157999AEE7D2EFB7D19678D7BCBBBA4F5A0D5929E00641115"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=163
Expires: Thu, 06 Oct 2022 08:11:18 GMT
Date: Thu, 06 Oct 2022 08:08:35 GMT
Connection: keep-alive
img.vmmcdn.com/get/96038712/71049_image.png
138.201.51.142200 OK 50 kB URL HTTP/1.1 img.vmmcdn.com/get/96038712/71049_image.png
IP 138.201.51.142:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 720x480, components 3\012- data
Hash 8a623e2c2f5ff57ac200c617f80c2f61
84ee241dd3a6463395147b596772ef9433318dba
07be740dcfd3eabc34ded2b37bbd9cbb761160504c578b172af50242e1ce6a8f
GET /get/96038712/71049_image.png HTTP/1.1
Host: img.vmmcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 06 Oct 2022 08:08:35 GMT
Content-Type: image/png
Content-Length: 50495
Connection: keep-alive
Last-Modified: Sat, 27 Nov 2021 11:12:16 GMT
Cache-Control: public, max-age=604800
ETag: "61a21290-c53f"
X-Proxy-Cache: HIT
Accept-Ranges: bytes
img.vmmcdn.com/get/54661559/71049_icon.png
138.201.51.142200 OK 77 kB URL HTTP/1.1 img.vmmcdn.com/get/54661559/71049_icon.png
IP 138.201.51.142:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e40bebadddf9f24d3473604087b72b61
9b18cd68b37aa261fd07341fa561f31621451138
b09761af91e52adb991dcaa32c2c407f222f91b2aa188296ae124082a5ea1ef9
GET /get/54661559/71049_icon.png HTTP/1.1
Host: img.vmmcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 06 Oct 2022 08:08:35 GMT
Content-Type: image/png
Content-Length: 77160
Connection: keep-alive
Last-Modified: Sat, 27 Nov 2021 11:12:16 GMT
Cache-Control: public, max-age=604800
ETag: "61a21290-12d68"
X-Proxy-Cache: HIT
Accept-Ranges: bytes
513bb5c897.daf58a0948.com/get/?go=1&data=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
116.202.60.158302 Found 0 B URL HTTP/2 513bb5c897.daf58a0948.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNjk1LCJzcGFjZWlkIjoyNDM0MCwidHlwZSI6InBvcCIsImlkem9uZSI6MSwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI0MzQwLCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjowLCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MSwiaCI6MX19XSwic2l0ZSI6eyJpZCI6IjI0MzQwIiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL3ZqYXYuY29tL21haW4vIn0sImRldmljZSI6eyJ3IjoxMjgwLCJoIjoxMDI0fSwidXNlciI6eyJpZCI6IjllNDk0N2YzNTc1MTQ2NTQxMWZkMWE0ZjVjMzU4Yzc4In0sImV4dCI6eyJkdCI6MTY2NTA0MzcxNzAzMH19
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /get/?go=1&data=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 HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:37 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://rtbrennab.com/banner/in/show/?mid=25514283114387094&pid=0&site=24340&sc=NO&usage_type=DCH&subid=0&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-0&site_id=0&spot_id=24340&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=91&ml=&tag_ab=&ttl=&space_id=24340&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24340%26source%3D0%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24340%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%26spot_id%3D24340%26p%3Dhttps%253A%252F%252Fvjav.com%252Fmain%252F%26katds_labels%3D%26btype%3D0%26score%3D91&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
X-Firefox-Spdy: h2
rtbrennab.com/banner/in/show/?mid=25514283114387094&pid=0&site=24340&sc=NO&usage_type=DCH&subid=0&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-0&site_id=0&spot_id=24340&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=91&ml=&tag_ab=&ttl=&space_id=24340&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24340%26source%3D0%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24340%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%26spot_id%3D24340%26p%3Dhttps%253A%252F%252Fvjav.com%252Fmain%252F%26katds_labels%3D%26btype%3D0%26score%3D91&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
116.202.60.158302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=25514283114387094&pid=0&site=24340&sc=NO&usage_type=DCH&subid=0&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-0&site_id=0&spot_id=24340&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=91&ml=&tag_ab=&ttl=&space_id=24340&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24340%26source%3D0%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24340%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%26spot_id%3D24340%26p%3Dhttps%253A%252F%252Fvjav.com%252Fmain%252F%26katds_labels%3D%26btype%3D0%26score%3D91&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=25514283114387094&pid=0&site=24340&sc=NO&usage_type=DCH&subid=0&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=vjav.com&hostname=auc-banner-hz-0&site_id=0&spot_id=24340&utm_source=&utm_medium=&utm_campaign=&utm_content=&expirationTimestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=91&ml=&tag_ab=&ttl=&space_id=24340&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D24340%26source%3D0%26idzone%3D1%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D24340%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DStraight%26spot_id%3D24340%26p%3Dhttps%253A%252F%252Fvjav.com%252Fmain%252F%26katds_labels%3D%26btype%3D0%26score%3D91&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=Straight&stratagem=&ssp=3756 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vjav.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:37 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=24340&source=0&idzone=1&w=1&h=1&mo=&ve=&site_id=24340&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&spot_id=24340&p=https%3A%2F%2Fvjav.com%2Fmain%2F&katds_labels=&btype=0&score=91
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=24340&source=0&idzone=1&w=1&h=1&mo=&ve=&site_id=24340&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&spot_id=24340&p=https%3A%2F%2Fvjav.com%2Fmain%2F&katds_labels=&btype=0&score=91
109.206.161.16302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=24340&source=0&idzone=1&w=1&h=1&mo=&ve=&site_id=24340&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&spot_id=24340&p=https%3A%2F%2Fvjav.com%2Fmain%2F&katds_labels=&btype=0&score=91
IP 109.206.161.16:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=24340&source=0&idzone=1&w=1&h=1&mo=&ve=&site_id=24340&utm1=&utm2=&utm3=&utm4=&ad_tags=Straight&spot_id=24340&p=https%3A%2F%2Fvjav.com%2Fmain%2F&katds_labels=&btype=0&score=91 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vjav.com/
Connection: keep-alive
Cookie: 912.0=1; 1624.0=1; 1629.0=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.20.1
date: Thu, 06 Oct 2022 08:08:36 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://cdn.1vag.com/1x1.png
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Fri, 07 Oct 2022 08:08:37 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8639460566f721c15e8455164facbd0b
5347271b93d141ca1d5b6c09e603e175b5982d12
af0214cef4a000bfcfb8677d118085566f8caa6c885ac0ae4645395a35f09509
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AF0214CEF4A000BFCFB8677D118085566F8CAA6C885AC0AE4645395A35F09509"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19647
Expires: Thu, 06 Oct 2022 13:36:04 GMT
Date: Thu, 06 Oct 2022 08:08:37 GMT
Connection: keep-alive
cdn.1vag.com/1x1.png
45.133.44.25200 OK 68 B IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /1x1.png HTTP/1.1
Host: cdn.1vag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vjav.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:37 GMT
content-type: image/png
content-length: 68
server: nginx/1.20.1
last-modified: Wed, 15 Apr 2020 13:30:15 GMT
etag: "5e970c67-44"
cache-control: max-age=3600
x-request-id: e0cea73041c202c45e6ab3a8b14597f5
expires: Thu, 06 Oct 2022 09:08:37 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/49315045?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/49315045?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
GET /watch/49315045?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vjav.com
Connection: keep-alive
Referer: https://vjav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/49315045/1?wmode=7&page-url=https%3A%2F%2Fvjav.com%2Fmain%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A1391%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A580723331319%3Ahid%3A125537211%3Az%3A0%3Ai%3A20221006080833%3Aet%3A1665043714%3Ac%3A1%3Arn%3A331561969%3Arqn%3A2%3Au%3A1665039764255698266%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C49%2C11%2C518%2C0%2C%2C815%2C2%2C1512%2C1512%2C0%2C1426%3Ans%3A1665043711476%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665043714%3At%3AJapanese%20Porn%20Videos%2C%20Asian%20Porn%20movies%2C%20Japan%20Sex%20Movies%20-%20VJAV.com&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 06 Oct 2022 08:08:34 GMT
access-control-allow-origin: https://vjav.com
set-cookie: yandexuid=3692390261665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3692390261665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2202812231665043714; Path=/; SameSite=None; Secure
i=4xFQ+E/BBhY8fipPJ+BlWk3fU19OLvffJKk1xo+1Zsbb82HsjI2V+3UdWrTPQqgZ1mOVISTrsrxa/6dKBKpMDezp7is=; Expires=Sun, 03-Oct-2032 08:08:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696579714.yrts.1665043714#1696579714.yrtsi.1665043714; Expires=Fri, 06-Oct-2023 08:08:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 08:08:34 GMT
last-modified: Thu, 06-Oct-2022 08:08:34 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
vjav.com/main/
172.64.141.27200 OK 0 B IP 172.64.141.27:0
GET /main/ HTTP/1.1
Host: vjav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: kt_lang=en; _ga=GA1.2.710834040.1665039764; _gid=GA1.2.212901680.1665039764; _ym_uid=1665039764255698266; _ym_d=1665039764; _ym_isad=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.2.34
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BX070DZOszrSaNaJ0nmhmREHJB%2B%2Ffasf7a1Gn6BqkD%2BX%2B8UkHYpITbCTvQBg3F8a1%2FocH%2FEmApMDcj28L0UdN7arH7Y7L7y3JNkyJ38q2VLc02G%2FQYwJj%2BuyrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 755ce8e01e8076ef-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjoyOTg3NSwidHlwZSI6InBvcCIsImlkem9uZSI6MTkyMDc2MiwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI5ODc1LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIyOTg3NSIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly92amF2LmNvbS9tYWluLyJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjUwNDM3MTQzNDR9fQ==
116.202.60.158200 OK 0 B URL HTTP/2 513bb5c897.daf58a0948.com/get/?go=1&data=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
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
GET /get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjoyOTg3NSwidHlwZSI6InBvcCIsImlkem9uZSI6MTkyMDc2MiwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI5ODc1LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIyOTg3NSIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly92amF2LmNvbS9tYWluLyJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjUwNDM3MTQzNDR9fQ== HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
sw.wpu.sh/npc/sdk/common/service-worker.js
45.133.44.24200 OK 0 B URL HTTP/2 sw.wpu.sh/npc/sdk/common/service-worker.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
GET /npc/sdk/common/service-worker.js HTTP/1.1
Host: sw.wpu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 08:08:35 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 04 Oct 2022 13:40:10 GMT
etag: W/"633c37ba-158c"
content-encoding: gzip
expires: Thu, 06 Oct 2022 08:13:35 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
513bb5c897.daf58a0948.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjoyOTg3NywidHlwZSI6InBvcCIsImlkem9uZSI6MTkyMDc2OCwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI5ODc3LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIyOTg3NyIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly92amF2LmNvbS9tYWluLyJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjUwNDM3MTQzNTd9fQ==
116.202.60.158200 OK 0 B URL HTTP/2 513bb5c897.daf58a0948.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7ImlkIjoxNDk2LCJzcGFjZWlkIjoyOTg3NywidHlwZSI6InBvcCIsImlkem9uZSI6MTkyMDc2OCwiYWRfdGFncyI6IlN0cmFpZ2h0IiwibGFiZWxzIjoiIiwiYWxsb3dlZF9sYWJlbHMiOiIiLCJ0aXRsZSI6IiIsInN1YmlkIjoiMCIsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjI5ODc3LCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjo4LCJzdHJhdGFnZW0iOm51bGwsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzc1NiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MzAwLCJoIjoyNTB9fV0sInNpdGUiOnsiaWQiOiIyOTg3NyIsImNhdCI6WyJJQUIyNSJdLCJwYWdlIjoiaHR0cHM6Ly92amF2LmNvbS9tYWluLyJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCJ9LCJleHQiOnsiZHQiOjE2NjUwNDM3MTQzNTd9fQ==
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
GET /get/?go=1&data=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 HTTP/1.1
Host: 513bb5c897.daf58a0948.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vjav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Thu, 06 Oct 2022 08:08:34 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2