Report - mangarawjp.com/

Report Overview

Visited public
2023-12-12 16:41:57
Tags
URL
mangarawjp.com/
Finishing URL
mangarawjp.io/
IP / ASN
91.197.1.55
#44676 Perviy TSOD LLC
Title
漫画 raw, manga1001, manga1000, まんが, アダルト, エロまんが, エロ漫画, ファブル, 漫画, 漫画 bank, 漫画 raw, 漫画バンク, 漫画ロウ, 漫画無料, 無料エロ漫画, 無料アダルト, 無料漫画

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mangarawjp.com	unknown	unknown	2022-04-27 05:21:51	2023-02-16 23:46:43	481 B	344 B	91.197.1.55
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-12 05:10:23	916 B	3.1 kB	151.101.129.229
i.jads.co	46788	2012-05-17	2019-12-04 09:50:06	2023-12-11 08:51:56	1.2 kB	84 kB	205.185.216.10
video.ktkjmp.com	23778	2020-08-07	2020-10-02 10:52:19	2023-12-12 08:43:49	922 B	2.0 kB	104.18.48.21
xlivesex.com	260271	2007-06-17	2021-01-29 11:23:33	2023-12-05 17:34:24	434 B	590 B	104.18.63.131
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-12 07:35:06	1.0 kB	93 kB	104.17.24.14
poweredby.jads.co	30525	2012-05-17	2019-12-04 11:34:12	2023-12-12 11:45:52	8.3 kB	26 kB	185.94.236.247
img.strpst.com	12993	2021-05-31	2021-06-03 10:45:56	2023-12-12 05:22:46	1.4 kB	48 kB	104.18.63.132
libcdnjs.com	unknown	2023-04-03	2023-04-04 06:33:17	2023-12-11 09:50:22	937 B	5.6 kB	188.114.96.1
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-12 10:52:54	477 B	233 kB	142.250.74.106
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-12 07:14:14	447 B	32 kB	151.101.66.137
mangarawjp.io	unknown	2022-09-23	2022-10-01 02:59:09	2023-06-15 23:28:10	9.2 kB	561 kB	185.145.245.121
go.mnaspm.com	unknown	2022-07-05	2023-10-04 13:16:29	2023-12-12 05:22:47	6.8 kB	23 kB	104.18.59.150
creative.mnaspm.com	unknown	2022-07-05	2023-10-04 13:20:24	2023-12-11 05:16:17	4.5 kB	596 kB	104.18.59.150
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-12 10:47:14	1.1 kB	33 kB	216.58.207.227
cdn.bncloudfl.com	26601	2021-04-20	2021-06-01 17:03:04	2023-12-10 18:51:36	449 B	3.4 kB	172.67.214.86
pk910324e.com	unknown	2023-09-04	2023-09-04 12:49:14	2023-12-12 05:16:06	3.0 kB	110 kB	212.117.190.201
r.trackwilltrk.com	unknown	2020-04-24	2020-04-28 06:48:25	2023-12-05 07:34:08	1.3 kB	2.3 kB	185.196.197.35
static.javhdhello.com	unknown	2018-04-18	2022-10-14 10:27:54	2023-12-11 08:42:55	11 kB	1.7 MB	185.76.9.24
cambaddies.com	218217	2017-07-06	2018-12-19 13:30:50	2023-12-12 05:46:00	434 B	229 B	45.131.145.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-12	medium	libcdnjs.com	Sinkholed
2023-12-12	medium	libcdnjs.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	unknown	DomTimer	9 B	2023-03-07	2025-05-27
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-27 18:22 Times Seen20622 Hash 5e543256c480ac577d30f76f9120eb74 d5d4cd07616a542891b7ec2d0257b3a24b69856e eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c Loading...

	poweredby.jads.co/adshow.php?adzone=986722	ScriptElement	0 B	0001-01-01	2025-05-27
Pretty URL poweredby.jads.co/adshow.php?adzone=986722 IP 185.94.236.247 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-27 18:35 Times Seen4771177 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js	ScriptElement	282 kB	2023-12-05	2023-12-13
Pretty URL creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js IP 104.18.59.150 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 17:33 Last Seen2023-12-13 14:18 Times Seen129 Hash c125e5d95f227b20668dcf21f8db60fa bcdb1f728964d37c007515eba7a549164fd1951e 11d537b5f1c8f66d68b36f57f526f55f1e916d67a35c1944b8d559adc7723f8a Loading...

	static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0	ScriptElement	0 B	0001-01-01	2025-05-27
Pretty URL static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0 IP 185.76.9.24 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-27 18:35 Times Seen4771177 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	mangarawjp.io/	ScriptElement	63 B	2023-03-07	2024-08-20
Pretty URL mangarawjp.io/ IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42 Last Seen2024-08-20 16:02 Times Seen21 Hash 35d631f90446545d7fcd5f9eade4ac83 4bf30c202f987670a3976112c5f91c2df9df51df f52a107d117583758f877e0cd01cae7937b71e89e388ed237d5445cf3291948d Loading...

	mangarawjp.io/	ScriptElement	63 B	2023-03-07	2024-08-20
Pretty URL mangarawjp.io/ IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42 Last Seen2024-08-20 16:02 Times Seen21 Hash 33be8e07895aac85b6a37d3fdada696a 7f22dabf037a6fd2fb2da0311a22cfec00776dd2 7cea5e30360ba978a452b96d19593460f726ce31a8b828782e44ea751153e0f2 Loading...

	code.jquery.com/jquery-3.6.0.min.js	ScriptElement	90 kB	2023-03-07	2025-05-27
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-27 18:34 Times Seen208187 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	mangarawjp.io/js/lazyload.min.js	ScriptElement	8.3 kB	2023-03-07	2025-05-11
Pretty URL mangarawjp.io/js/lazyload.min.js IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 07:48 Times Seen177 Hash 11eefe11e7e465a0c37b04c463151c42 a22f9cec92532bf66288f9b0f6594f27386a27f2 721666d957cce6bee1c45bba4c602b70999853e635f5f4fe9a0e7c201542b5d5 Loading...

	poweredby.jads.co/js/jads.js	ScriptElement	3.8 kB	2023-03-07	2025-04-02
Pretty URL poweredby.jads.co/js/jads.js IP 185.94.236.247 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-02 23:24 Times Seen2022 Hash bc8141c4650030c41f6a98026b12ce80 af5618f7e467a207d4c64627be580283ab5640cd 5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51 Loading...

	mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2	ScriptElement	11 kB	2023-03-07	2025-05-27
Pretty URL mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2 IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-27 15:08 Times Seen22762 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	pk910324e.com/lv/esnk/2005529/code.js	ScriptElement	104 kB	2023-12-12	2023-12-12
Pretty URL pk910324e.com/lv/esnk/2005529/code.js IP 212.117.190.201 ASN #5577 root SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-12 14:47 Last Seen2023-12-12 18:50 Times Seen13 Hash db8f007e9911e61597c691baf6e44f06 eca5d48cd149609edf86e72ca9a33d0502d1dc82 be1c4387827cae3c787c630dd5cda2a17d6bdc79c5b5dd697496db5aeb0539ed Loading...

	libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js	ScriptElement	4.1 kB	2023-11-05	2024-08-20
Pretty URL libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-05 20:31 Last Seen2024-08-20 20:46 Times Seen90 Hash 5cc9c38134a67a83eaf64bac28af6ad8 b9b1eb9282538b309fbd510b9fce589422ffe241 64c123cb30024e1c2c17887e4038c9242d486e2972fb949af1730fcc51b428c2 Loading...

	pk910324e.com/get/2005529?zoneid=2005529&jp=_cl2mzob2cb9rjilqecvvz9&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&freq=0	ScriptElement	4.9 kB	2024-08-20	2024-08-20
Pretty URL pk910324e.com/get/2005529?zoneid=2005529&jp=_cl2mzob2cb9rjilqecvvz9&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&freq=0 IP 212.117.190.201 ASN #5577 root SA Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:01 Last Seen2024-08-20 16:01 Times Seen1 Hash 7a2e6f1a931c973daae7113dd8d894d1 eca0bc2ffd839e1241d9ba0ff704816c46fabf62 90f6c9bcef88507e0a41af638aff543253e4b08474cda15346cf8416a0ab79e4 Loading...

	mangarawjp.io/js/jquery.min.js?ver=3.6.0	ScriptElement	90 kB	2023-03-07	2025-05-27
Pretty URL mangarawjp.io/js/jquery.min.js?ver=3.6.0 IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-27 13:12 Times Seen14582 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	mangarawjp.io/	ScriptElement	150 B	2023-03-07	2024-08-21
Pretty URL mangarawjp.io/ IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:08 Last Seen2024-08-21 06:45 Times Seen49 Hash 0350312b0636a20d99219bd454741d96 c7c66110898f96148c5a2368b9b17138801d6437 5c23ef7ff90da6ac6c830f754a831cbcabe10952ddb3cae0ffef613916d210ee Loading...

	mangarawjp.io/	ScriptElement	209 B	2023-03-07	2024-08-20
Pretty URL mangarawjp.io/ IP 185.145.245.121 ASN #42532 SIA VEESP Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42 Last Seen2024-08-20 17:13 Times Seen22 Hash cab53b16a720f4094d62c7a60484b1e1 690b3c4d4aa7034c487986b3a2debfccd3954c76 85b7ab51c5df2843d0814c65b16441d775a40ef814a017cb03ee9dbc3f25cf50 Loading...

HTTP Transactions (91)

URL IP Response Size

mangarawjp.com/

91.197.1.55

301 Moved Permanently

162 B

URL User Request GET HTTP/2
mangarawjp.com/
IP
91.197.1.55:443
ASN
#44676 Perviy TSOD LLC

Certificate
IssuerLet's Encrypt
Subjectmangarawjp.com
Fingerprint65:C5:BA:87:05:E6:F2:F8:28:FF:F5:B6:1E:F1:B1:CB:60:14:48:37
ValidityWed, 27 Sep 2023 00:26:10 GMT - Tue, 26 Dec 2023 00:26:09 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET / HTTP/1.1
Host: mangarawjp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 12 Dec 2023 16:41:33 GMT
content-type: text/html
content-length: 162
location: https://mangarawjp.io/
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.0.min.js

151.101.66.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:41:34 GMT
age: 1796678
x-served-by: cache-lga21931-LGA, cache-bma1664-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 280897
x-timer: S1702399294.199063,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

mangarawjp.io/images/logo.png

185.145.245.121

200 OK

21 kB

URL GET HTTP/2
mangarawjp.io/images/logo.png
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
PNG image data, 402 x 108, 8-bit/color RGBA, non-interlaced - data
Size
21 kB (21243 bytes)
Hash
b9a226309c9fc7aea7ae9cd1bb05551a
ee99d9cdebf9c413b21a91587597273b7b4bc30d
3f1807546621bea0812b9eeec9265cbec300ffecf126a30725795e4df25eaba7

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/png
content-length: 21243
last-modified: Tue, 24 May 2022 15:03:32 GMT
etag: "628cf3c4-52fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css

104.17.24.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mangarawjp.io/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59158)
Size
10 kB (10472 bytes)
Hash
c4af24ce595437830af0a401897698b2
06b7f92dd894a9edb0aeb9d040b489460ecff593
d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d

HTTP Headers

GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1680815
expires: Sun, 01 Dec 2024 16:41:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=za%2BD3kBV0uOtG4TUb4MvXoJguGrcpv8FPihYZRV50BxiJv6rI2%2BLSlFILlxQHBAxN%2FsatnfWwDnC6g7JNyMYkqH7o2D5OOYeld4XdDF8ctp%2FycNcIV%2FAgSSdpbqxou8Hi%2B6AwhE0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83476a651e961c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css

151.101.129.229

200 OK

590 B

URL GET HTTP/2
cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://mangarawjp.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text
Size
590 B (590 bytes)
Hash
f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5

HTTP Headers

GET /npm/slick-carousel@1.8.1/slick/slick.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"6f0-qUoFmzF4tK3sCeMoGs4oGaMAlaQ"
content-encoding: br
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:41:34 GMT
age: 23552488
x-served-by: cache-fra-eddf8230085-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 590
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css

151.101.129.229

200 OK

928 B

URL GET HTTP/2
cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://mangarawjp.io/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text
Size
928 B (928 bytes)
Hash
f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a

HTTP Headers

GET /npm/slick-carousel@1.8.1/slick/slick-theme.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"c49-gaQ0+U8rESTzIyu4bylE+C+yOsA"
content-encoding: br
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:41:34 GMT
age: 7838351
x-served-by: cache-fra-eddf8230023-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 928
X-Firefox-Spdy: h2

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

80 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mangarawjp.io/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327 - data
Size
80 kB (80252 bytes)
Hash
9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2

HTTP Headers

GET /ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 80252
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5fff7432-1397c"
last-modified: Wed, 13 Jan 2021 22:29:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1427823
expires: Sun, 01 Dec 2024 16:41:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aZ8WrxkNdAxyP37E%2BZfFs1S6feeewtlIGN%2FI%2FZqQCjywv8eUWxEl5XGOrrFzcpPU%2FIJR8DNuHIxD4Bh73pEdTjGc9ydbpI%2FCip2hw8bn2KAvm2MvbU4Y6LBdkA2%2BHlRc3lp7BZ91"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83476a67fba75695-OSL
alt-svc: h3=":443"; ma=86400

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:34 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

mangarawjp.io/images/covers/51018.jpg

185.145.245.121

200 OK

32 kB

URL GET HTTP/2
mangarawjp.io/images/covers/51018.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x184, components 3 - data
Size
32 kB (31520 bytes)
Hash
c12da57ed4426fbfc6e2b506d179f19e
4900c62523c7565e0f6b7666c4467fe9f4641989
da7869f1d2617378638f6481a0a8539e5caf611f7049abf37532efc02ad90f1e

HTTP Headers

GET /images/covers/51018.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 31520
last-modified: Thu, 14 Jul 2022 13:01:41 GMT
etag: "62d013b5-7b20"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/58602.jpg

185.145.245.121

200 OK

29 kB

URL GET HTTP/2
mangarawjp.io/images/covers/58602.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 428x265, components 3 - data
Size
29 kB (28799 bytes)
Hash
81b42deb02f7333a20fe631c49657581
34c3dd900520d963d52782fb717fba7c004be772
2c824bc6efe32d4d9de86339f389ef3eec3cd7b5f1dac78a165754a1b74b8d05

HTTP Headers

GET /images/covers/58602.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 28799
last-modified: Mon, 11 Dec 2023 16:29:26 GMT
etag: "657738e6-707f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50674.jpg

185.145.245.121

200 OK

39 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50674.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x180, components 3 - data
Size
39 kB (39395 bytes)
Hash
dec638af5bf0e074c2e4e837e4761ff3
6c84267d7c76963cd26585563038ed72d1ee5e8d
27a7c5621d710235b45c85f9fc2aa22da1f9ecf286a35b04eee280c508e0d303

HTTP Headers

GET /images/covers/50674.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 39395
last-modified: Wed, 22 Jun 2022 10:41:53 GMT
etag: "62b2f1f1-99e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/js/jquery.min.js?ver=3.6.0

185.145.245.121

200 OK

31 kB

URL GET HTTP/2
mangarawjp.io/js/jquery.min.js?ver=3.6.0
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
gzip compressed data, from Unix - data
Size
31 kB (30955 bytes)
Hash
49a9f123ddc6eda6f859272b878c58e7
b55c31923bd46510f76876622660bf7bbb912b2e
ece2225a881e222736b4a9623aaf99ab9f590a4a57a9ef3643d6ddf8dd240c68

HTTP Headers

GET /js/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 23 Apr 2022 06:37:40 GMT
vary: Accept-Encoding
etag: W/"62639eb4-15db1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50591.jpg

185.145.245.121

200 OK

40 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50591.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3 - data
Size
40 kB (39925 bytes)
Hash
86b57dc88c5132dd76da14771dd47cbd
de6727bd03a47b36bd672369865405ad53b8cb6a
2102a350ed6ab6181410e02dd5257bc114971b9e4ae3a67897c90ae57579e9bf

HTTP Headers

GET /images/covers/50591.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 39925
last-modified: Wed, 29 Jun 2022 15:31:49 GMT
etag: "62bc7065-9bf5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50668.jpg

185.145.245.121

200 OK

58 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50668.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], progressive, precision 8, 680x399, components 3 - data
Size
58 kB (57836 bytes)
Hash
097043544de736e32368aef323d27fbc
4766ce805960388c147d610914074ab823b92d4e
f0a31b1e0dcf71922664ca3c365ac2e04cebd6c1f2c2830b7fba1a664c977da5

HTTP Headers

GET /images/covers/50668.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 57836
last-modified: Wed, 29 Jun 2022 15:31:52 GMT
etag: "62bc7068-e1ec"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://mangarawjp.io/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0 - data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 435309
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/54277.jpg

185.145.245.121

200 OK

29 kB

URL GET HTTP/2
mangarawjp.io/images/covers/54277.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3 - data
Size
29 kB (28724 bytes)
Hash
85cdacb865089878376d821054068f59
20972cb2d465c5eb0a0f01871de761b6ccca79f0
37b63ff0581cfb575ce632a6ff3f1f42d361e7fe043e46ec0ca7a2c8a49c6b65

HTTP Headers

GET /images/covers/54277.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 28724
last-modified: Wed, 29 Jun 2022 15:34:26 GMT
etag: "62bc7102-7034"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://mangarawjp.io/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0 - data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 474240
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50433.jpg

185.145.245.121

200 OK

33 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50433.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 320x184, components 3 - data
Size
33 kB (33249 bytes)
Hash
178a561dd607f2ccfc8a8d47f90670a8
ba1e92f6fd05a98f9b9e685925714a39b6b753b1
cf0f1484faf249ece917e60ae90bb52e7b22e0022ada65d5ed07704b370eea2a

HTTP Headers

GET /images/covers/50433.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 33249
last-modified: Tue, 12 Dec 2023 16:19:10 GMT
etag: "657887fe-81e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/56996.jpg

185.145.245.121

200 OK

30 kB

URL GET HTTP/2
mangarawjp.io/images/covers/56996.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 428x265, components 3 - data
Size
30 kB (29620 bytes)
Hash
9a152f9220e0d0b33f9865370c12cd9b
d51ca2289a11b8489521106506bd7b50429888ac
df5d892ac388a81a70996a766c35789e9e67077847b48138f62d7de022756a79

HTTP Headers

GET /images/covers/56996.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 29620
last-modified: Wed, 19 Apr 2023 03:01:43 GMT
etag: "643f5997-73b4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50494.jpg

185.145.245.121

200 OK

24 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50494.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 320x184, components 3 - data
Size
24 kB (24029 bytes)
Hash
3dc5c0ed2815eb994b6c547cad3e2cf0
714d60cc1b5c92b7e1a4c8c6f28502c7ed1c1d44
5606574338223f7610c18eb5788feebe0d676b28a5ac158bc598aee4cf3333a8

HTTP Headers

GET /images/covers/50494.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 24029
last-modified: Wed, 22 Jun 2022 10:38:00 GMT
etag: "62b2f108-5ddd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/50457.jpg

185.145.245.121

200 OK

28 kB

URL GET HTTP/2
mangarawjp.io/images/covers/50457.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x184, components 3 - data
Size
28 kB (27855 bytes)
Hash
be5943779bf8e8e3f50557ad3438143b
8dabbe64261d34c349346472ea1be55d1c46b174
8a71fc897b931e1d29624a3a89a2a69d5b81980d60aa40c11732b367a4778130

HTTP Headers

GET /images/covers/50457.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 27855
last-modified: Wed, 22 Jun 2022 10:36:47 GMT
etag: "62b2f0bf-6ccf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/56932.jpg

185.145.245.121

200 OK

30 kB

URL GET HTTP/2
mangarawjp.io/images/covers/56932.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 428x225, components 3 - data
Size
30 kB (29600 bytes)
Hash
8cf7c09dd40bbfc72f708c16671118e9
78bce1ce20cea2049c5a81ccd415173e050a01f5
d05df6fb3033cea8d5029437156fa3778f39f541c3bddd9bd6d88470f4d40a7a

HTTP Headers

GET /images/covers/56932.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 29600
last-modified: Tue, 28 Mar 2023 15:21:41 GMT
etag: "64230605-73a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/covers/54006.jpg

185.145.245.121

200 OK

71 kB

URL GET HTTP/2
mangarawjp.io/images/covers/54006.jpg
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x184, components 3 - data
Size
71 kB (70599 bytes)
Hash
af25b7b557ee1e4d8e0d80165733431a
e28f05b21f4612caf5dc2290f50ae4703f2dbc03
10cd17134b1b272d6a18fb56999d8a13dde7fed3f2ad9cd4d4a0ab01a39061f3

HTTP Headers

GET /images/covers/54006.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: image/jpeg
content-length: 70599
last-modified: Wed, 04 May 2022 09:10:13 GMT
etag: "627242f5-113c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.bncloudfl.com/bn/730/e27/758/730e277581be4ea1a14c2cddfbccf64d3c58af71.gif

172.67.214.86

200 OK

2.3 kB

URL GET HTTP/2
cdn.bncloudfl.com/bn/730/e27/758/730e277581be4ea1a14c2cddfbccf64d3c58af71.gif
IP
172.67.214.86:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mangarawjp.io/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA0:6F:CE:1E:5C:62:F4:89:8E:4E:0C:40:FE:AE:79:4C:83:7B:90:C8
ValidityFri, 31 Mar 2023 00:00:00 GMT - Sat, 30 Mar 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image - data
Size
2.3 kB (2314 bytes)
Hash
09b7732a57de15aed928dfa872fe227e
dba6c42b0820dc02d6333ac66fe44232b31eed1e
476f83f219f15588bc634e4ae7b2c795a2b7e3a7a1bd2dd09eebfe95178478d3

HTTP Headers

GET /bn/730/e27/758/730e277581be4ea1a14c2cddfbccf64d3c58af71.gif HTTP/1.1
Host: cdn.bncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: image/webp
content-length: 2314
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
cache-control: max-age=432000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=14112
content-disposition: inline; filename="730e277581be4ea1a14c2cddfbccf64d3c58af71.webp"
etag: b476ef06428753e15f3da3cf487c913a
expires: Tue, 12 Dec 2023 22:49:06 GMT
last-modified: Fri, 06 May 2022 10:47:43 GMT
vary: Accept
x-openstack-request-id: tx9839de99ac004002b1980-006274fe05
x-proxy-cache: HIT
x-timestamp: 1651834062.38215
x-trans-id: tx9839de99ac004002b1980-006274fe05
cf-cache-status: HIT
age: 150748
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 83476a6a5b3a7130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pk910324e.com/get/2005529?zoneid=2005529&jp=_cl2mzob2cb9rjilqecvvz9&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&freq=0

212.117.190.201

200 OK

3.1 kB

URL GET HTTP/2
pk910324e.com/get/2005529?zoneid=2005529&jp=_cl2mzob2cb9rjilqecvvz9&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&freq=0
IP
212.117.190.201:443
ASN
#5577 root SA

Requested by
https://mangarawjp.io/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint52:A2:D7:2B:E2:76:4C:63:FB:E5:6C:43:01:5D:79:AA:37:86:A9:18
ValidityMon, 04 Sep 2023 10:47:46 GMT - Fri, 01 Mar 2024 22:59:00 GMT

File type
ASCII text, with very long lines (8680), with no line terminators
Size
3.1 kB (3053 bytes)
Hash
6fcb41c099cd0651fc85e568f094b74c
4e81dd242d9635fa1e89625cd7650e38ba3c4a68
2dfb800c0ff04d81019bc38908b107e4c8b42406ad966c1fdb1e17e869f9471b

HTTP Headers

GET /get/2005529?zoneid=2005529&jp=_cl2mzob2cb9rjilqecvvz9&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&freq=0 HTTP/1.1
Host: pk910324e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Tue, 14 Jan 2025 16:41:34 GMT; Secure; SameSite=None
UID=2312121141f278b082f6cf4fb5a9c80647f3; Path=/; Expires=Tue, 14 Jan 2025 16:41:34 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip

poweredby.jads.co/adshow.php?adzone=986722

185.94.236.247

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=986722
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with very long lines (309), with CRLF, LF line terminators
Size
1.5 kB (1462 bytes)
Hash
b7d3d971bf22cde8f94ca571e2766f25
0d78ee7a103283cb5849509170ca5897cf19610a
9bc3b7a993ae739b8724a7c817e3c0770e3afdde9eba665a513b02f11b13d36d

HTTP Headers

GET /adshow.php?adzone=986722 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=57585fd6325f583fc082149e0b647bc6; expires=Wed, 11-Dec-2024 16:41:34 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:41:34 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:34 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

poweredby.jads.co/adshow.php?adzone=986714

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=986714
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1731 bytes)
Hash
d503dd779bb6375de2999256174e0068
f20638c3a1c2c993bed01ded33a8b36b7f0541af
83b1204aa2b2d8d4351ebf58800e1cce61d102e1c2b527509a13a659bf80a4b5

HTTP Headers

GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=57585fd6325f583fc082149e0b647bc6; expires=Wed, 11-Dec-2024 16:41:34 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:41:34 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:34 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

pk910324e.com/chicken.gif?z=2005529&pb=d9048cccf443ebfb675d486a5d7debbd1702406494&psp=JwM2Misd3lwG5542D0IkbbSVDcHEkvYgaJypYELRJFWYk4nOGOi3n9og7SSzC5FHomDe4WP-sKPtK9xmKfkpJUX2t26f0A8OaFH7N0aS_F7YVxqWw_OBtDlN-zKLJ5IIkxQCJ5R5BWIgARXzzVOX-O8sVqQ7_ePiKTzzxpUwU3hyitq9Mg1az6BewFt73lv26p1Vi7c3f2E1VPeMcPcCdUzWq5c66B8yb5AJYz0-F4pgfNWkhzA35t5_jaz5LTj4B5vOBxVevKTfmiicD31JREO20slrTcGsNKPhWEZ6m7Mv-bzBcBr39TnoWzTjNfyLBVf2GSoTqCaWaI1DdLkDzcvrPMBk2AoY_sCBT_C_Q89208_w-2YuL0H3EW5HslZ_qPAGqU_Aa9C4_ZD3ijV17Kt1r5H4u06RCbtRiZt30I2itSCytLu-YSLsmJqof1jKLI2j6tUe39VVf3zUHjwiLO6GGXVdZm65yeX1Mtv_Z7eibcWPF6jLHjy242RT6pYcqzXkWJQGSm8r4LOZArpMFbf3XnZzWAoFFgqpqsJQpGhRKxkeDjNigi6wyHBKgxiFWZ0iqby-xT6skNJ0pnU77GP8pBSPgISqlierGxyRFYsaBuMQHQ43VEXrR8TzsSwgvasasJAixenuybk7YJi_T8YyLbaH7rhD5hjfZTOYAUpUMRlxGoLyZsEWkzbkhJNoGaZvyDkaXzmCZ5zetCByCPW6RUg35ehELqYGZHe66rVPF1M_D0x_ldMzKGK5oWYYRt7IG1fZOX4moWrzvUlw43m4K0Sm5cV6c1wtirVQl2j3baI-qQUGNOZUB4MhaSxkMwygR0E9ARlRNLgRkA5MmiTsFvN4PEox39ZjfFSK1jqaTyRJBFJcxroxqW0Udq6MPFg-gm31DvdLNue51v5EnA1D7gFNoVd1DukYeWMHfQO9gNx80bhcOMg-NjIgJ-VrHnvF&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&pload=179

212.117.190.201

200 OK

43 B

URL GET HTTP/2
pk910324e.com/chicken.gif?z=2005529&pb=d9048cccf443ebfb675d486a5d7debbd1702406494&psp=JwM2Misd3lwG5542D0IkbbSVDcHEkvYgaJypYELRJFWYk4nOGOi3n9og7SSzC5FHomDe4WP-sKPtK9xmKfkpJUX2t26f0A8OaFH7N0aS_F7YVxqWw_OBtDlN-zKLJ5IIkxQCJ5R5BWIgARXzzVOX-O8sVqQ7_ePiKTzzxpUwU3hyitq9Mg1az6BewFt73lv26p1Vi7c3f2E1VPeMcPcCdUzWq5c66B8yb5AJYz0-F4pgfNWkhzA35t5_jaz5LTj4B5vOBxVevKTfmiicD31JREO20slrTcGsNKPhWEZ6m7Mv-bzBcBr39TnoWzTjNfyLBVf2GSoTqCaWaI1DdLkDzcvrPMBk2AoY_sCBT_C_Q89208_w-2YuL0H3EW5HslZ_qPAGqU_Aa9C4_ZD3ijV17Kt1r5H4u06RCbtRiZt30I2itSCytLu-YSLsmJqof1jKLI2j6tUe39VVf3zUHjwiLO6GGXVdZm65yeX1Mtv_Z7eibcWPF6jLHjy242RT6pYcqzXkWJQGSm8r4LOZArpMFbf3XnZzWAoFFgqpqsJQpGhRKxkeDjNigi6wyHBKgxiFWZ0iqby-xT6skNJ0pnU77GP8pBSPgISqlierGxyRFYsaBuMQHQ43VEXrR8TzsSwgvasasJAixenuybk7YJi_T8YyLbaH7rhD5hjfZTOYAUpUMRlxGoLyZsEWkzbkhJNoGaZvyDkaXzmCZ5zetCByCPW6RUg35ehELqYGZHe66rVPF1M_D0x_ldMzKGK5oWYYRt7IG1fZOX4moWrzvUlw43m4K0Sm5cV6c1wtirVQl2j3baI-qQUGNOZUB4MhaSxkMwygR0E9ARlRNLgRkA5MmiTsFvN4PEox39ZjfFSK1jqaTyRJBFJcxroxqW0Udq6MPFg-gm31DvdLNue51v5EnA1D7gFNoVd1DukYeWMHfQO9gNx80bhcOMg-NjIgJ-VrHnvF&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&pload=179
IP
212.117.190.201:443
ASN
#5577 root SA

Requested by
https://mangarawjp.io/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint52:A2:D7:2B:E2:76:4C:63:FB:E5:6C:43:01:5D:79:AA:37:86:A9:18
ValidityMon, 04 Sep 2023 10:47:46 GMT - Fri, 01 Mar 2024 22:59:00 GMT

File type
GIF image data, version 89a, 1 x 1 - data
Size
43 B (43 bytes)
Hash
28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84

HTTP Headers

GET /chicken.gif?z=2005529&pb=d9048cccf443ebfb675d486a5d7debbd1702406494&psp=JwM2Misd3lwG5542D0IkbbSVDcHEkvYgaJypYELRJFWYk4nOGOi3n9og7SSzC5FHomDe4WP-sKPtK9xmKfkpJUX2t26f0A8OaFH7N0aS_F7YVxqWw_OBtDlN-zKLJ5IIkxQCJ5R5BWIgARXzzVOX-O8sVqQ7_ePiKTzzxpUwU3hyitq9Mg1az6BewFt73lv26p1Vi7c3f2E1VPeMcPcCdUzWq5c66B8yb5AJYz0-F4pgfNWkhzA35t5_jaz5LTj4B5vOBxVevKTfmiicD31JREO20slrTcGsNKPhWEZ6m7Mv-bzBcBr39TnoWzTjNfyLBVf2GSoTqCaWaI1DdLkDzcvrPMBk2AoY_sCBT_C_Q89208_w-2YuL0H3EW5HslZ_qPAGqU_Aa9C4_ZD3ijV17Kt1r5H4u06RCbtRiZt30I2itSCytLu-YSLsmJqof1jKLI2j6tUe39VVf3zUHjwiLO6GGXVdZm65yeX1Mtv_Z7eibcWPF6jLHjy242RT6pYcqzXkWJQGSm8r4LOZArpMFbf3XnZzWAoFFgqpqsJQpGhRKxkeDjNigi6wyHBKgxiFWZ0iqby-xT6skNJ0pnU77GP8pBSPgISqlierGxyRFYsaBuMQHQ43VEXrR8TzsSwgvasasJAixenuybk7YJi_T8YyLbaH7rhD5hjfZTOYAUpUMRlxGoLyZsEWkzbkhJNoGaZvyDkaXzmCZ5zetCByCPW6RUg35ehELqYGZHe66rVPF1M_D0x_ldMzKGK5oWYYRt7IG1fZOX4moWrzvUlw43m4K0Sm5cV6c1wtirVQl2j3baI-qQUGNOZUB4MhaSxkMwygR0E9ARlRNLgRkA5MmiTsFvN4PEox39ZjfFSK1jqaTyRJBFJcxroxqW0Udq6MPFg-gm31DvdLNue51v5EnA1D7gFNoVd1DukYeWMHfQO9gNx80bhcOMg-NjIgJ-VrHnvF&im=1&freq=0&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1237468347082752&eclog=0&sp=1&im=1&pload=179 HTTP/1.1
Host: pk910324e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=2312121141f278b082f6cf4fb5a9c80647f3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACk7bgAAAAAAAAAB; Path=/; Expires=Thu, 11 Jan 2024 16:41:35 GMT; Secure; SameSite=None
OACIBLOCK=ACk7bgAAAABld%2BjQ; Path=/; Expires=Thu, 11 Jan 2024 16:41:35 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

poweredby.jads.co/adshow.php?adzone=986714

185.94.236.247

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=986714
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with very long lines (400), with CRLF, LF line terminators
Size
1.5 kB (1503 bytes)
Hash
923526fecd66acecfeb3ef298a0fe732
335005dafca79a72bb46fe13e8b7e58d5cca3392
2136b2f0357be77e584b271a9e62e781a959cada5ca7d5b0327122cc97b3a307

HTTP Headers

GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; expires=Wed, 11-Dec-2024 16:41:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip

poweredby.jads.co/adshow.php?adzone=986714

185.94.236.247

200 OK

1.4 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=986714
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.4 kB (1425 bytes)
Hash
0e1202b5890c8fa247b0ca8d73b8b5f2
3109305e10d4a326ea9d13eb5d8e91d9e6aac8ce
89a203dbe6697016aef9ea8c4c9a83a59289422e5547665e51872407664f81d3

HTTP Headers

GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; expires=Wed, 11-Dec-2024 16:41:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios.png

185.145.245.121

200 OK

6.4 kB

URL GET HTTP/2
mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios.png
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced - data
Size
6.4 kB (6361 bytes)
Hash
73309e4dc8f3d13b87016f8fcc834f15
833cdda051c2bccb31ad49ef7fcbce889fbe915e
8d8fdce39b541e0b02f89c4af26211265b4fd28b969aa7a71dfe29df8ac3a831

HTTP Headers

GET /images/manga-rock-pro-logo-tachiyomi-for-ios.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Cookie: bnState_2005529={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: image/png
content-length: 6361
last-modified: Tue, 24 May 2022 07:43:00 GMT
etag: "628c8c84-18d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png

185.145.245.121

200 OK

974 B

URL GET HTTP/2
mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced - data
Size
974 B (974 bytes)
Hash
caee055281e349e7724207248e2a3b25
9e1c1c7bf10653ef6340a093c61b365d727c8f88
17c164642977d40473479eaab38630fab071321b8a9d4bed5dec1031465a2353

HTTP Headers

GET /images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Cookie: bnState_2005529={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: image/png
content-length: 974
last-modified: Tue, 24 May 2022 07:43:00 GMT
etag: "628c8c84-3ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

i.jads.co/1x1.gif

205.185.216.10

200 OK

28 kB

URL GET HTTP/1.1
i.jads.co/1x1.gif
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3 - data
Size
28 kB (27460 bytes)
Hash
2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641

HTTP Headers

GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:41:35 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=17878401
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1702399295.dop231.sk1.t,1702399295.cds249.sk1.shn,1702399295.cds249.sk1.c

poweredby.jads.co/js/jads.js

185.94.236.247

301 Moved Permanently

178 B

URL GET HTTP/1.1
poweredby.jads.co/js/jads.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js

poweredby.jads.co/adshow.php?adzone=986722

185.94.236.247

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=986722
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with very long lines (309), with CRLF, LF line terminators
Size
1.5 kB (1462 bytes)
Hash
b7d3d971bf22cde8f94ca571e2766f25
0d78ee7a103283cb5849509170ca5897cf19610a
9bc3b7a993ae739b8724a7c817e3c0770e3afdde9eba665a513b02f11b13d36d

HTTP Headers

GET /adshow.php?adzone=986722 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; expires=Wed, 11-Dec-2024 16:41:35 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

r.trackwilltrk.com/s1/eff8447e-1f37-4cb7-866d-3df3d8f3d243?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=

185.196.197.35

200 OK

827 B

URL GET HTTP/1.1
r.trackwilltrk.com/s1/eff8447e-1f37-4cb7-866d-3df3d8f3d243?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
IP
185.196.197.35:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintB8:9A:77:3D:8D:51:37:65:84:11:DE:0D:07:D7:13:C4:FC:C4:B2:99
ValidityTue, 14 Nov 2023 15:17:13 GMT - Mon, 12 Feb 2024 15:17:12 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document, ASCII text, with very long lines (631)
Size
827 B (827 bytes)
Hash
c689f4dc8c635d5c31090df1a49f3ea4
c5afabc96f0517cc99bbb887d73cff50469c6c00
2bd3fc1983f1d3bad799aa8bdcc05e073551dc94b16e279f1afc590552283166

HTTP Headers

GET /s1/eff8447e-1f37-4cb7-866d-3df3d8f3d243?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 827
Connection: close
Set-Cookie: uid=9oGAt8czMp; Path=/; Domain=trackwilltrk.com; Expires=Wed, 13 Dec 2023 16:41:35 GMT; HttpOnly
X-Request-Id: 419e39a2-cc5f-4d4a-baf8-1075b1c6a22a

r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=

185.196.197.35

200 OK

827 B

URL GET HTTP/1.1
r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
IP
185.196.197.35:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintB8:9A:77:3D:8D:51:37:65:84:11:DE:0D:07:D7:13:C4:FC:C4:B2:99
ValidityTue, 14 Nov 2023 15:17:13 GMT - Mon, 12 Feb 2024 15:17:12 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document, ASCII text, with very long lines (631)
Size
827 B (827 bytes)
Hash
b7be82f709d1d3bbb4cd2f5f540a0f4b
12f55e96dbb42d197419079f7138c57e2e28b93b
bf812e3e26c82585e017377c5aff3fc800fae745d4fe7694c4f132058fca42c1

HTTP Headers

GET /s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 827
Connection: close
Set-Cookie: uid=WoGAt5c-M; Path=/; Domain=trackwilltrk.com; Expires=Wed, 13 Dec 2023 16:41:35 GMT; HttpOnly
X-Request-Id: b499711e-142d-4905-8575-b4bc2e464da9

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://mangarawjp.io/
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
DNT: 1
Connection: keep-alive
Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip

video.ktkjmp.com/adsbygoogle.js

104.18.48.21

200 OK

16 B

URL GET HTTP/2
video.ktkjmp.com/adsbygoogle.js
IP
104.18.48.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f

HTTP Headers

GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: eOt3YX0Nm2YrsRFghHjY+ldPpZhMsRS8Tg9HXo+sQY2MfQ8piotah5MMqRgsIwcNTLmVbQ2iqoU=
x-amz-request-id: Y49M74J1R1NSP1TJ
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6774
expires: Tue, 12 Dec 2023 20:41:35 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6e9f847129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

poweredby.jads.co/adshow.php?adzone=1023037

185.94.236.247

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=1023037
IP
185.94.236.247:443
ASN
#42567 Mojohost B.v.

Requested by
https://poweredby.jads.co/adshow.php?adzone=986714
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text, with very long lines (471), with CRLF, LF line terminators
Size
1.7 kB (1700 bytes)
Hash
247dcab1671a5acac714816e6b079d25
ad3e34a116b053c5b9be4320e999faa00ca9784a
c2f110f44d10766da24e1bdf69277eea02fa6238264ac4c396a9c2604bcacb22

HTTP Headers

GET /adshow.php?adzone=1023037 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:41:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps29764=1; expires=Wed, 13-Dec-2023 16:41:35 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjY5NjM0ODtpOjE3MDI2NTg0OTU7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:41:35 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

video.ktkjmp.com/adsbygoogle.js

104.18.48.21

200 OK

16 B

URL GET HTTP/2
video.ktkjmp.com/adsbygoogle.js
IP
104.18.48.21:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f

HTTP Headers

GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: eOt3YX0Nm2YrsRFghHjY+ldPpZhMsRS8Tg9HXo+sQY2MfQ8piotah5MMqRgsIwcNTLmVbQ2iqoU=
x-amz-request-id: Y49M74J1R1NSP1TJ
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 6774
expires: Tue, 12 Dec 2023 20:41:35 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6f68a77129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg

205.185.216.10

200 OK

55 kB

URL GET HTTP/1.1
i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=1023037
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=250, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x250, components 3 - data
Size
55 kB (55399 bytes)
Hash
c3348fbaa05f8e7e87c6852295108c29
6c34181d01614498abee447e37c765e7e0b614fa
801475bc7efdfb518e6e583539f7f2e75707e3ba043d9d0d27e1e682cb96c860

HTTP Headers

GET /network/user22416/29763-1538682381-0894967001538682381.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b536117c0b47e20b211d2344d39f8e77; juicy_data_1=YToxOntpOjY5NjM0ODtpOjE3MDI2NTg0OTU7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps29764=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:41:36 GMT
Connection: Keep-Alive
ETag: "1538682381"
Cache-Control: max-age=19615908
Content-Length: 55399
Content-Type: image/jpeg
Last-Modified: Thu, 04 Oct 2018 19:46:21 GMT
Accept-Ranges: bytes
X-HW: 1702399295.dop231.sk1.t,1702399296.cds249.sk1.shn,1702399296.dop231.sk1.t,1702399296.cds240.sk1.c

static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png

185.76.9.24

200 OK

1.5 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced - data
Size
1.5 kB (1546 bytes)
Hash
7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a

HTTP Headers

GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d78658c6ec70a
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/overlay/1602-overlay.png

185.76.9.24

200 OK

1.8 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/overlay/1602-overlay.png
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced - data
Size
1.8 kB (1839 bytes)
Hash
f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7

HTTP Headers

GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d78655b7fcb0a
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/button/29-button.png

185.76.9.24

200 OK

733 B

URL GET HTTP/2
static.javhdhello.com/h5/files/button/29-button.png
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced - data
Size
733 B (733 bytes)
Hash
82a66a2d222379716ca9a03ff50d8f42
ae43d917ff791f9172edc527baa6266416182aaa
cc5da7b40e498d30bf5eaae43e59cae32202737076422676489dd8d3030803de

HTTP Headers

GET /h5/files/button/29-button.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/png
content-length: 733
last-modified: Tue, 22 Dec 2015 18:41:22 GMT
etag: "56799952-2dd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d7865816ed90a
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
accept-ranges: bytes
X-Firefox-Spdy: h2

img.strpst.com/thumbs/1702399230/37088938_webp

104.18.63.132

200 OK

15 kB

URL GET HTTP/3
img.strpst.com/thumbs/1702399230/37088938_webp
IP
104.18.63.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
15 kB (15152 bytes)
Hash
e959523f55772b6a7360951b329c358f
6b82b7487c4f767544ed41e17bc5d1bc60a888d6
7f1925bb388f4f2e5617880e4d5aa9758523e54e698785d078157ec8ba9777c1

HTTP Headers

GET /thumbs/1702399230/37088938_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/webp
content-length: 15152
etag: "e959523f55772b6a7360951b329c358f"
last-modified: Tue, 12 Dec 2023 16:40:22 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a712e19569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0

185.76.9.24

200 OK

18 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://r.trackwilltrk.com/s1/eff8447e-1f37-4cb7-866d-3df3d8f3d243?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
gzip compressed data, from Unix - data
Size
18 kB (17937 bytes)
Hash
3a0b52fb283f72a1e89705924ccb642b
f8b63440ed95cce5b6914b0b5f943f458bb2cd88
637a8f4893d9b7206aadc7eaa22125763098616a164ba86d715e5825f52e82a5

HTTP Headers

GET /h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 27 Nov 2023 08:16:10 GMT
etag: W/"6564504a-d2a"
expires: Thu, 11 Jan 2024 16:41:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-77-nzt: EwgBuUwJFAFBCAG5TAoJAUEIASUTwigBQQ
x-77-nzt-ray: af585630234798623f8d786514647030
x-77-cache: MISS
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: MISS, MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2

go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A468%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A217%2C%22duration%22%3A104%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A218%2C%22duration%22%3A119%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A708%2C%22duration%22%3A0%7D%5D&mh=-757523526

104.18.59.150

200 OK

103 B

URL GET HTTP/3
go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A468%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A217%2C%22duration%22%3A104%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A218%2C%22duration%22%3A119%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A708%2C%22duration%22%3A0%7D%5D&mh=-757523526
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
data
Size
103 B (103 bytes)
Hash
8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c

HTTP Headers

GET /abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A468%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A217%2C%22duration%22%3A104%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A218%2C%22duration%22%3A119%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A708%2C%22duration%22%3A0%7D%5D&mh=-757523526 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtrsn3TfoaR3cJpttA4m4nLJ3BZ5E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 83476a70f9885693-OSL
alt-svc: h3=":443"; ma=86400

img.strpst.com/thumbs/1702399230/66083671_webp

104.18.63.132

200 OK

16 kB

URL GET HTTP/2
img.strpst.com/thumbs/1702399230/66083671_webp
IP
104.18.63.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
16 kB (15872 bytes)
Hash
41ac71fa12da0a9404775d6a57f64212
5f8c51ab7678b0d4701514781f8e82d112927c75
c649b101b552dd4cccc7f201dd07aa389e2548c70a720428b36ce9f3d4310700

HTTP Headers

GET /thumbs/1702399230/66083671_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/webp
content-length: 15872
etag: "41ac71fa12da0a9404775d6a57f64212"
last-modified: Tue, 12 Dec 2023 16:39:25 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 75
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a71bb65b4eb-OSL
alt-svc: h3=":443"; ma=86400

img.strpst.com/thumbs/1702399230/37088938_webp

104.18.63.132

200 OK

15 kB

URL GET HTTP/3
img.strpst.com/thumbs/1702399230/37088938_webp
IP
104.18.63.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
15 kB (15152 bytes)
Hash
e959523f55772b6a7360951b329c358f
6b82b7487c4f767544ed41e17bc5d1bc60a888d6
7f1925bb388f4f2e5617880e4d5aa9758523e54e698785d078157ec8ba9777c1

HTTP Headers

GET /thumbs/1702399230/37088938_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/webp
content-length: 15152
etag: "e959523f55772b6a7360951b329c358f"
last-modified: Tue, 12 Dec 2023 16:40:22 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a71bb66b4eb-OSL
alt-svc: h3=":443"; ma=86400

go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A280%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A49%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A39%2C%22transferSize%22%3A4625%7D%5D&mh=-493324000

104.18.59.150

200 OK

103 B

URL GET HTTP/3
go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A280%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A49%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A39%2C%22transferSize%22%3A4625%7D%5D&mh=-493324000
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
data
Size
103 B (103 bytes)
Hash
8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c

HTTP Headers

GET /abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A280%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A49%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A151%2C%22duration%22%3A39%2C%22transferSize%22%3A4625%7D%5D&mh=-493324000 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Cookie: __cflb=02DiuDFRFiBZBvMSLtrsn3TfoaR3cJpttA4m4nLJ3BZ5E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 83476a71bad85693-OSL
alt-svc: h3=":443"; ma=86400

static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png

185.76.9.24

200 OK

1.5 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced - data
Size
1.5 kB (1546 bytes)
Hash
7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a

HTTP Headers

GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d78657c4a1e16
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/overlay/1602-overlay.png

185.76.9.24

200 OK

1.8 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/overlay/1602-overlay.png
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced - data
Size
1.8 kB (1839 bytes)
Hash
f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7

HTTP Headers

GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d7865868f2316
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
accept-ranges: bytes
X-Firefox-Spdy: h2

go.mnaspm.com/app/domain-checker/get-check

104.18.59.150

200 OK

839 B

URL GET HTTP/3
go.mnaspm.com/app/domain-checker/get-check
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
JSON data - , ASCII text
Size
839 B (839 bytes)
Hash
ba86f6c03abf0b3de4679499c6c2bb46
d47be053b334a17afb4a381cb6e3b0eee9b5ff55
348c87d31156ca1c722612b2222a12b7b617a48696a1a55e0cf7fd2f440bcd33

HTTP Headers

GET /app/domain-checker/get-check HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVE9Kb8v5TrfcnGBncESyYsgWoxY; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:36 GMT; HttpOnly
server: cloudflare
cf-ray: 83476a71bac75693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mangarawjp.io/

185.145.245.121

200 OK

9.2 kB

URL User Request GET HTTP/2
mangarawjp.io/
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
gzip compressed data, from Unix - data
Size
9.2 kB (9189 bytes)
Hash
5d7e45fa6b86c1e1f1c54079ba8b715d
6135cd43ddc0b0de18c2920ef3e1ce0df2c51de1
77bf19f4fd405344d3859987b705ea8e7f1d5a353ad1bc24da5bd49388c0dd6d

HTTP Headers

GET / HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

cambaddies.com/checkUrl

45.131.145.131

200 OK

15 B

URL GET HTTP/2
cambaddies.com/checkUrl
IP
45.131.145.131:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerLet's Encrypt
Subjectcambaddies.com
Fingerprint42:57:E2:C5:89:F5:D5:B5:3E:C4:4A:4C:58:1F:0B:D6:BB:69:81:01
ValidityFri, 20 Oct 2023 09:52:08 GMT - Thu, 18 Jan 2024 09:52:07 GMT

File type
JSON data - , ASCII text, with no line terminators
Size
15 B (15 bytes)
Hash
7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5

HTTP Headers

GET /checkUrl HTTP/1.1
Host: cambaddies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://creative.mnaspm.com
alt-svc: h3=":443"; ma=2592000
content-type: application/json
date: Tue, 12 Dec 2023 16:41:36 GMT
content-length: 15
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4

185.76.9.24

206 Partial Content

7.0 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
data
Size
7.0 kB (7004 bytes)
Hash
ecd99814a3253ec88249e08f9a9ad298
376dc1de3c6abafbd7f7c640518f707352d9c836
f803bac03a60eff379611b3adcf0adcc4d7649d57f51e3143363d02ca9e11d98

HTTP Headers

GET /h5/files/video/7396-30413-300x250.medium.mp4 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1736704-
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: video/mp4
content-length: 7004
last-modified: Thu, 19 Oct 2023 16:54:38 GMT
etag: "65315f4e-1a9b5c"
expires: Wed, 25 Oct 2023 17:14:46 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-77-nzt: ArlMCRQ3Nzf/wHAAALlMCgE3Nzf/MAsAAA
x-77-nzt-ray: af58563023479862408d7865ad0e0d20
x-accel-expires: @1702456821
x-accel-date: 1702370432
x-77-cache: HIT
x-77-age: 31728
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 28864
x-77-pop: stockholmSE
content-range: bytes 1736704-1743707/1743708
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4

185.76.9.24

206 Partial Content

7.0 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
data
Size
7.0 kB (7004 bytes)
Hash
ecd99814a3253ec88249e08f9a9ad298
376dc1de3c6abafbd7f7c640518f707352d9c836
f803bac03a60eff379611b3adcf0adcc4d7649d57f51e3143363d02ca9e11d98

HTTP Headers

GET /h5/files/video/7396-30413-300x250.medium.mp4 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=1736704-
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: video/mp4
content-length: 7004
last-modified: Thu, 19 Oct 2023 16:54:38 GMT
etag: "65315f4e-1a9b5c"
expires: Wed, 25 Oct 2023 17:14:46 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-77-nzt: ArlMCRQ3Nzf/wHAAALlMCgE3Nzf/MAsAAA
x-77-nzt-ray: af58563023479862408d7865e4831520
x-accel-expires: @1702456821
x-accel-date: 1702370432
x-77-cache: HIT
x-77-age: 31728
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 28864
x-77-pop: stockholmSE
content-range: bytes 1736704-1743707/1743708
X-Firefox-Spdy: h2

go.mnaspm.com/app/domain-checker/check-result

104.18.59.150

204 No Content

0 B

URL POST HTTP/3
go.mnaspm.com/app/domain-checker/check-result
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /app/domain-checker/check-result HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 12 Dec 2023 16:41:36 GMT
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr4BTSnpWHamtv7KeH3gZJ6eLLtc; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:36 GMT; HttpOnly
server: cloudflare
cf-ray: 83476a738d045693-OSL
alt-svc: h3=":443"; ma=86400

go.mnaspm.com/app/domain-checker/check-result

104.18.59.150

204 No Content

0 B

URL POST HTTP/3
go.mnaspm.com/app/domain-checker/check-result
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /app/domain-checker/check-result HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 12 Dec 2023 16:41:36 GMT
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVD3VBZigQJNzkRr9oGu9Le3sYg4; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:36 GMT; HttpOnly
server: cloudflare
cf-ray: 83476a73ad395693-OSL
alt-svc: h3=":443"; ma=86400

static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4

185.76.9.24

206 Partial Content

1.7 MB

URL GET HTTP/2
static.javhdhello.com/h5/files/video/7396-30413-300x250.medium.mp4
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
data
Size
1.7 MB (1678172 bytes)
Hash
fd0d0eb424aabb01b20008e1633575b6
a94eeb77d62189c25a46fcf48c043e940c8ef537
38e9d13c733b4a2833ad451c629e11efa3e6ce32d8c23eee3fd571bf62dbdb70

HTTP Headers

GET /h5/files/video/7396-30413-300x250.medium.mp4 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=65536-
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F5a00b705-69c6-4ecb-b51c-37f8b264245a%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoxLCJwIjoxLCJzIjoyOTA0NX0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: video/mp4
content-length: 1678172
last-modified: Thu, 19 Oct 2023 16:54:38 GMT
etag: "65315f4e-1a9b5c"
expires: Wed, 25 Oct 2023 17:14:46 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-77-nzt: ArlMCRQ3Nzf/wHAAALlMCgE3Nzf/MAsAAA
x-77-nzt-ray: af58563023479862408d786592c81923
x-accel-expires: @1702456821
x-accel-date: 1702370432
x-77-cache: HIT
x-77-age: 31728
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 28864
x-77-pop: stockholmSE
content-range: bytes 65536-1743707/1743708
X-Firefox-Spdy: h2

creative.mnaspm.com/widgets/v4/Universal/lang/en.json

104.18.59.150

200 OK

565 B

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal/lang/en.json
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
JSON data - , ASCII text
Size
565 B (565 bytes)
Hash
69a54638b649d7ce4748bd42c4b6dade
a2dfe9f8791952fbc5cc44d4757b031a6cee1731
0c25fbbff92c994866041b57d519aa22aa84d55b6b31bcf681dd5b74668cb750

HTTP Headers

GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Tue, 12 Dec 2023 16:41:43 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 2
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6e4d785693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

go.mnaspm.com/api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1

104.18.59.150

200 OK

3.0 kB

URL GET HTTP/3
go.mnaspm.com/api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
JSON data - , ASCII text, with very long lines (3303), with no line terminators
Size
3.0 kB (3003 bytes)
Hash
5ef77aa68a580fcaae3bb25100f72a28
3c5e854603657c0810c458bb2bf8ef928bd5e143
17e7ee9eadd750395a3b387cbea77368c0f6e2d4dc14949580570632a3b8a71d

HTTP Headers

GET /api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:02:52 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=02DiuDFRFiBZBvMSLtrsn3TfoaR3cJpttA4m4nLJ3BZ5E; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:36 GMT; HttpOnly
server: cloudflare
cf-ray: 83476a7038155693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

go.mnaspm.com/thumbs/view

104.18.59.150

200 OK

162 B

URL POST HTTP/3
go.mnaspm.com/thumbs/view
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
eb46b59f0ad9814073251845f20a4763
315a4f7d4107e523e43468419e369b3f4a81a89a
b054748ae5bd53b4db27cbd502f3e130497cd22a4cabf7aa4f25ae573a75561e

HTTP Headers

POST /thumbs/view HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 154
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtqGxuZp8RQcjVh53CFDaymRnjW3W; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:36 GMT; HttpOnly
server: cloudflare
cf-ray: 83476a725bab5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

xlivesex.com/checkUrl

104.18.63.131

200 OK

15 B

URL GET HTTP/2
xlivesex.com/checkUrl
IP
104.18.63.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerCloudflare, Inc.
Subjectxlivesex.com
Fingerprint41:AE:80:0B:F2:EF:54:C7:BA:5D:B6:E0:3C:30:C3:E8:32:2A:4F:26
ValidityMon, 06 Mar 2023 00:00:00 GMT - Mon, 04 Mar 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
15 B (15 bytes)
Hash
1d644ae7e24f3430d634f21c1d94a975
5752bf80588493a9914d4fddf9ed3b31857d90ac
c9df5a7f763aff50375511af681843ba40d4d6ce044521c440515f7e04a2bff7

HTTP Headers

GET /checkUrl HTTP/1.1
Host: xlivesex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.mnaspm.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuFLvK1H1SdXppSxjRKJkgvUYNwz5CLFi2A3rdkMor; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 15:41:36 GMT; HttpOnly
_cfuvid=kjf80VCwyG8cD7Ni4V8o7zIKOaeZcJlwnx71g7WDbxg-1702399296412-0-604800000; path=/; domain=.xlivesex.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 83476a726c5b7130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0

185.76.9.24

200 OK

3.4 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, ASCII text, with very long lines (3586), with no line terminators
Size
3.4 kB (3370 bytes)
Hash
2f49c6f7f232208c2fc0c111f37d7150
d2bc683c5d03c8efd71d95b07dd0b24f27fc1c2e
0329358234db49514b6aa2808ff525093e71640e3cb5a1fbcc1f58246313f444

HTTP Headers

GET /h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 27 Nov 2023 08:16:10 GMT
etag: W/"6564504a-d2a"
expires: Thu, 11 Jan 2024 16:41:35 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-77-nzt: EwgBuUwJFAFBCAG5TAoBAUEIAdRmOJwBQQ
x-77-nzt-ray: af585630234798623f8d7865f4c08c30
x-77-cache: MISS
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: MISS, MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/css/style.css

185.76.9.24

200 OK

2.0 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/css/style.css
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
ASCII text, with very long lines (2098), with no line terminators
Size
2.0 kB (1981 bytes)
Hash
17e0f04a6abd6363cebb6b78ace070ca
f5913c8083b7bb7d31a03722a2504f55530f9959
4ff86eaa04fe436210b5190d598eb3e4122d2962ada68abadb7ec554a5f1862e

HTTP Headers

GET /h5/files/css/style.css HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d78659e62bf0a
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
content-encoding: gzip
X-Firefox-Spdy: h2

go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3

104.18.51.106

200 OK

6.8 kB

URL GET HTTP/2
go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
104.18.51.106:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
ASCII text, with very long lines (8886), with no line terminators
Size
6.8 kB (6785 bytes)
Hash
03da975a5e393401b56978dccb790e99
c158691255282a3ec332176e8ccd8015312ca42c
4385e0b37434b51ef90dae67331ad10fc4f7d8133cb141e20af5bac15bfb9c7d

HTTP Headers

GET /config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:00:42 GMT
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6f697db527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js

104.18.59.150

200 OK

282 kB

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type

Size
282 kB (281759 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Tue, 12 Dec 2023 16:41:37 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 4
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6d4bb65693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3

104.18.59.150

200 OK

811 B

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://poweredby.jads.co/adshow.php?adzone=986722
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, ASCII text, with very long lines (872), with no line terminators
Size
811 B (811 bytes)
Hash
1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab

HTTP Headers

GET /widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Tue, 12 Dec 2023 16:41:34 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age":  1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6dac1f5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js

188.114.96.1

200 OK

4.1 kB

URL GET HTTP/2
libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mangarawjp.io/
Certificate
IssuerGoogle Trust Services LLC
Subjectlibcdnjs.com
Fingerprint92:43:86:E7:A2:6F:88:99:96:74:55:F2:36:29:D8:47:2D:33:3D:1F
ValiditySat, 25 Nov 2023 08:32:05 GMT - Fri, 23 Feb 2024 08:32:04 GMT

File type
ASCII text, with very long lines (4094), with no line terminators
Size
4.1 kB (4087 bytes)
Hash
662e8cd40ec09bb994d2f809f0272f28
486fc29c8d0cb97a44dc2856785a9cb9ee667ca6
f449219dfc74633571a285a61b24c347587faf25184f710e7e0cb6b6f4717c47

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js HTTP/1.1
Host: libcdnjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:07:04 GMT
etag: W/"65440168-ff7"
expires: Wed, 27 Dec 2023 04:21:57 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1340377
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H8%2BT2J6AmrD0HdcjvCIAk2GwMeO04p01%2FdekxUKVptfV8wiN%2FdkuyGUrRZ8U9qjzomf8DvT3P3xT3Ib27Q4hsqv4h4dHoRY97OL7ZffD0VgpQLlAWcp01fK8S84fQyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a64d916b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2

185.145.245.121

200 OK

11 kB

URL GET HTTP/2
mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

HTTP Headers

GET /js/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 23 Apr 2022 06:37:44 GMT
vary: Accept-Encoding
etag: W/"62639eb8-2bd8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

libcdnjs.com/api/event

188.114.96.1

202 Accepted

2 B

URL POST HTTP/3
libcdnjs.com/api/event
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mangarawjp.io/
Certificate
IssuerGoogle Trust Services LLC
Subjectlibcdnjs.com
Fingerprint92:43:86:E7:A2:6F:88:99:96:74:55:F2:36:29:D8:47:2D:33:3D:1F
ValiditySat, 25 Nov 2023 08:32:05 GMT - Fri, 23 Feb 2024 08:32:04 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /api/event HTTP/1.1
Host: libcdnjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 83
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 202 Accepted
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: 
cache-control: max-age=0, private, must-revalidate
x-request-id: F6AjI480Golq9BeIzkJC
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MfUsuCKkwmacMatdbMDzj607DS8Sn92Lqa1AJDzscNmVncEfSzoiUPSvZPMgytG1L5RnvwVNhX07AHMFXQ3d56zv%2BeI6mM%2F7sci5BqbUqcqmTBCWUiZtCCDwfmQmZ%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83476a67dbda7128-OSL
alt-svc: h3=":443"; ma=86400

creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css

104.18.59.150

200 OK

13 kB

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
ASCII text, with very long lines (13396), with no line terminators
Size
13 kB (13396 bytes)
Hash
d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7

HTTP Headers

GET /widgets/v4/Universal/main.af7ca474e642b518be23.css HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3454"
expires: Tue, 12 Dec 2023 16:41:37 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 4
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6e8dba5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap

142.250.74.106

200 OK

232 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://mangarawjp.io/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text, with very long lines (1981)
Size
232 kB (232384 bytes)
Hash
c3cc8c6412781af519d89882f44a7156
650703aaac32636e2d1c33776db6e3943e811925
ce995a7e755d744426b2b58e1811baa2dce5a502e06a19758b73ed124b940a03

HTTP Headers

GET /css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 12 Dec 2023 16:41:34 GMT
date: Tue, 12 Dec 2023 16:41:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3

104.18.59.150

200 OK

811 B

URL GET HTTP/2
creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://poweredby.jads.co/adshow.php?adzone=986722
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, ASCII text, with very long lines (872), with no line terminators
Size
811 B (811 bytes)
Hash
1508368ec567cd06853cdc259448ba42
70e10e55e4dd745b14b67bbae46608a7914ba08e
41d36e18fd13233271ebc47fd2ddbb53792aa280cbce63af0b02d23c13d851ab

HTTP Headers

GET /widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Tue, 12 Dec 2023 16:41:34 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age":  1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 8
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6c0f9e56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css

104.18.59.150

200 OK

13 kB

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
ASCII text, with very long lines (13396), with no line terminators
Size
13 kB (13396 bytes)
Hash
d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7

HTTP Headers

GET /widgets/v4/Universal/main.af7ca474e642b518be23.css HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3454"
expires: Tue, 12 Dec 2023 16:41:37 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 4
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6d4bb05693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pk910324e.com/lv/esnk/2005529/code.js

212.117.190.201

200 OK

104 kB

URL GET HTTP/2
pk910324e.com/lv/esnk/2005529/code.js
IP
212.117.190.201:443
ASN
#5577 root SA

Requested by
https://mangarawjp.io/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint52:A2:D7:2B:E2:76:4C:63:FB:E5:6C:43:01:5D:79:AA:37:86:A9:18
ValidityMon, 04 Sep 2023 10:47:46 GMT - Fri, 01 Mar 2024 22:59:00 GMT

File type
ASCII text, with very long lines (65107)
Size
104 kB (104207 bytes)
Hash
db8f007e9911e61597c691baf6e44f06
eca5d48cd149609edf86e72ca9a33d0502d1dc82
be1c4387827cae3c787c630dd5cda2a17d6bdc79c5b5dd697496db5aeb0539ed

HTTP Headers

GET /lv/esnk/2005529/code.js HTTP/1.1
Host: pk910324e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/javascript
last-modified: Tue, 12 Dec 2023 10:14:40 GMT
vary: Accept-Encoding
etag: W/"65783290-1975a"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js

104.18.59.150

200 OK

282 kB

URL GET HTTP/3
creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
104.18.59.150:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type

Size
282 kB (281759 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Tue, 12 Dec 2023 16:41:37 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 4
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6e8dbc5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.javhdhello.com/h5/files/css/style.css

185.76.9.24

200 OK

2.0 kB

URL GET HTTP/2
static.javhdhello.com/h5/files/css/style.css
IP
185.76.9.24:443
ASN
#60068 Datacamp Limited

Requested by
https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate
IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT

File type
ASCII text, with very long lines (2098), with no line terminators
Size
2.0 kB (1981 bytes)
Hash
17e0f04a6abd6363cebb6b78ace070ca
f5913c8083b7bb7d31a03722a2504f55530f9959
4ff86eaa04fe436210b5190d598eb3e4122d2962ada68abadb7ec554a5f1862e

HTTP Headers

GET /h5/files/css/style.css HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/17532/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyODE5NDksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:36 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3a+8LAQ
x-77-nzt-ray: af58563023479862408d7865dc9fde0b
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17559403
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17559403
content-encoding: gzip
X-Firefox-Spdy: h2

mangarawjp.io/js/lazyload.min.js

185.145.245.121

200 OK

8.3 kB

URL GET HTTP/2
mangarawjp.io/js/lazyload.min.js
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
ASCII text, with very long lines (8438), with no line terminators
Size
8.3 kB (8292 bytes)
Hash
9f368bdcfd258b1822abefe9f60dfcfc
70799b77c76a0eea64ddf5f86e97cd76ed1ab7b5
8bea1970b3fc61369720813b4dd6ecc8c6c4a047e64309ef2165a955f246a9ba

HTTP Headers

GET /js/lazyload.min.js HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 09 Mar 2022 01:49:35 GMT
vary: Accept-Encoding
etag: W/"622807af-2064"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

mangarawjp.io/css/style2.css

185.145.245.121

200 OK

19 kB

URL GET HTTP/2
mangarawjp.io/css/style2.css
IP
185.145.245.121:443
ASN
#42532 SIA VEESP

Requested by
https://mangarawjp.io/
Certificate
IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT

File type
ASCII text, with very long lines (19177), with no line terminators
Size
19 kB (19177 bytes)
Hash
93d4963ef5bfc4da4425aa4933119c46
2cd6f95da9c967dbc3a8ac47f21958cc66981d49
4deca8af6a4434192662014a444caaabf40d90f3b0d3d4071239cec5c34509c0

HTTP Headers

GET /css/style2.css HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:41:34 GMT
content-type: text/css
last-modified: Wed, 29 Jun 2022 01:31:38 GMT
vary: Accept-Encoding
etag: W/"62bbab7a-4ae9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

104.18.51.106

200 OK

6.8 kB

URL GET HTTP/2
go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
104.18.51.106:443
ASN
#13335 CLOUDFLARENET

Requested by
https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate
IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT

File type
ASCII text, with very long lines (8886), with no line terminators
Size
6.8 kB (6785 bytes)
Hash
03da975a5e393401b56978dccb790e99
c158691255282a3ec332176e8ccd8015312ca42c
4385e0b37434b51ef90dae67331ad10fc4f7d8133cb141e20af5bac15bfb9c7d

HTTP Headers

GET /config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:41:35 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:00:42 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=02DiuDFRFiBZBvMSLtrth8k2gcTaYMvv77GVPXPBrnubi; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:41:35 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 83476a6ee8d9b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash