Report - new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b

Report Overview

Visited public
2023-10-17 20:38:28
Tags
URL
new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Finishing URL
new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
IP / ASN
172.67.5.10
#13335 CLOUDFLARENET
Title
Lewd.ninja - Adult Games, Comics and Animations

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pl16225324.highcpmrevenuegate.com	unknown	unknown	No data	No data	453 B	24 kB	173.233.137.52
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-10-17 18:11:52	2.1 kB	50 kB	216.58.207.227
xxx.lewd.ninja	unknown	2017-08-13	2019-01-20 14:23:14	2023-10-15 02:04:49	1.4 kB	1.1 kB	172.67.5.10
poweredby.jads.co	30525	2012-05-17	2019-12-04 11:34:12	2023-10-17 21:10:10	3.1 kB	12 kB	185.94.236.244
i.jads.co	46788	2012-05-17	2019-12-04 09:50:06	2023-10-17 21:10:11	4.7 kB	1.1 MB	205.185.216.10
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-10-17 19:05:35	738 B	423 B	192.243.61.225
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-10-17 18:13:15	340 B	942 B	54.230.80.227
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-10-17 19:05:33	400 B	28 kB	172.64.101.19
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-10-17 18:13:42	496 B	20 kB	104.16.57.101
owo.lewd.ninja	765410	2017-08-13	2019-04-12 07:46:28	2023-10-15 02:04:47	396 B	4.2 kB	172.67.5.10
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-10-17 18:12:01	451 B	2.9 kB	142.250.74.106
new.lewd.ninja	unknown	2017-08-13	2019-01-20 14:23:12	2023-10-16 22:55:15	32 kB	1.8 MB	172.67.5.10
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-17 17:39:04	2.3 kB	4.9 kB	216.58.207.195
professionalswebcheck.com	unknown	2022-04-01	2022-04-02 00:47:29	2023-10-17 19:05:42	434 B	421 B	3.73.202.184
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-10-17 18:11:48	660 B	1.9 kB	104.18.14.101
pomptame.com	unknown	2023-10-10	2023-10-10 11:32:54	2023-10-16 18:27:01	480 B	467 B	173.233.137.60
www.recaptcha.net	2060	2007-01-06	2012-07-11 16:32:37	2023-10-17 18:18:03	2.5 kB	901 kB	142.250.74.131
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-09-20 20:05:47	406 B	1.5 kB	142.250.74.132
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-10-17 18:12:01	2.4 kB	594 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-17	medium	pomptame.com	Sinkholed
2023-10-17	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	From	Size	First Seen	Last Seen
	new.lewd.ninja/fluidplayer.min.js	ScriptElement	212 kB	2023-03-08	2024-12-14
Pretty URL new.lewd.ninja/fluidplayer.min.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:28 Last Seen2024-12-14 06:34 Times Seen73 Hash 57c091151b032dc219a8e239b3add116 a5bd1b4a98747fffd21e26902e3941f99934bcba 26bb48d4e49c2cabb541d8c1cc261551400a51fcac679ecbdb9e5e3c4329e688 Loading...

	www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js	ScriptElement	471 kB	2023-10-11	2023-11-29
Pretty URL www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-11 22:49 Last Seen2023-11-29 07:55 Times Seen3136 Hash 1597adfd61770da62f147c7072ddce90 ac0214495692e766b4c453589ce587a46242af67 c662a9036d1fd054a03bd683564761866f27663c4607aaa2b1ff417d17c512f1 Loading...

	new.lewd.ninja/_nuxt/8eeb184.js	ScriptElement	8.3 kB	2023-10-16	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/8eeb184.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-08-21 04:28 Times Seen39 Hash 5e2eecf0a0410000d906646aa054cf23 dab1003b7545383ada61759f8f2f24a2c46577d5 def51196cfab3913b959f620c8be02417a607f8398f9a23b0ed61a9fe274000a Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:48 Times Seen340603 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	new.lewd.ninja/_nuxt/bfc8f28.js	ScriptElement	6.7 kB	2023-03-13	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/bfc8f28.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 23:19 Last Seen2024-08-21 04:28 Times Seen26 Hash 0c4605a33f704bb8ca9c040c86b6a633 87e7a46f2f86f777fb82595ab680ef204241da95 b3a38ec442505cf883e7bacee0ce9c2fb9a8fc37da44188c944adb67fafd97c4 Loading...

	new.lewd.ninja/_nuxt/01ac315.js	ScriptElement	2.6 kB	2023-10-16	2024-10-29
Pretty URL new.lewd.ninja/_nuxt/01ac315.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-10-29 02:44 Times Seen28 Hash ca68d74dfccc097f944754c4ec0d51bd 5312659dc544838699d3aa478079458521d4ed55 50a2790294d5fb8987e6d61a1494d2663c376932e658ff7c3a28baa4cd41ff2d Loading...

	new.lewd.ninja/_nuxt/118b8a3.js	ScriptElement	2.2 kB	2023-10-16	2024-10-29
Pretty URL new.lewd.ninja/_nuxt/118b8a3.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-10-29 02:44 Times Seen29 Hash 1927f68c2988e320c218ddcac3e31037 7f1c77dc7803ddad0d7110cacb019e53ea51253b d0b336cde39ca61c52f1d60a4a14c8830a38f21d1e628fdee404fa02884eedf6 Loading...

	new.lewd.ninja/pug.js	ScriptElement	25 B	2023-10-16	2024-12-14
Pretty URL new.lewd.ninja/pug.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-12-14 06:34 Times Seen73 Hash acb8501274106c8c5d25141dd0dc252a 86eeee52b9443b6df7caffbf9fd4a7031fff5ccc 615ee8ac2cde2b20b7ae8fbb6ef33a9128193f07590540b77e514627be7ae1cd Loading...

	unknown	DomTimer	9 B	2023-03-07	2025-05-09
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 07:51 Times Seen20193 Hash 5e543256c480ac577d30f76f9120eb74 d5d4cd07616a542891b7ec2d0257b3a24b69856e eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c Loading...

	unknown	Function	37 B	2023-04-11	2025-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31 Last Seen2025-05-09 08:40 Times Seen263320 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854	ScriptElement	20 kB	2023-07-20	2025-04-26
Pretty URL static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-20 20:39 Last Seen2025-04-26 10:13 Times Seen7605 Hash efeb2542712dce8a2c51cf68396e4a05 ac9ce350c598644c7b7f6186aaf0368eb077d396 c235f21017bcc11fcaa31d7dfd9855aaebcbf5f6d7ee9bf9f2e98a910907c391 Loading...

	new.lewd.ninja/_nuxt/6a8d18a.js	ScriptElement	9.3 kB	2023-10-16	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/6a8d18a.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-08-21 04:28 Times Seen2 Hash e9c810e29a7363feaba08a70fc1e7c85 2197256915572b95c0786e078b3a5a5318f97e5a e575627724c7055ac0ef42cc22abc239cf65a6a889c089badfb1a3beaa977ab9 Loading...

	new.lewd.ninja/external/game/167424/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL new.lewd.ninja/external/game/167424/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 08:48 Times Seen341404 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.recaptcha.net/recaptcha/api.js?render=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM	ScriptElement	887 B	2023-10-16	2023-10-17
Pretty URL www.recaptcha.net/recaptcha/api.js?render=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2023-10-17 22:38 Times Seen2 Hash a641d7f225c585a645f14c6924276391 94c2dfb026a0d03a9d14961de8d449ed58ea5c48 abfd69f0296fb433d09e4933a0cfda64ef3b2204a0f7fda301625840b9f7bf43 Loading...

	poweredby.jads.co/adshow.php?adzone=610935	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL poweredby.jads.co/adshow.php?adzone=610935 IP 185.94.236.244 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 08:49 Times Seen4634956 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	new.lewd.ninja/_nuxt/170e200.js	ScriptElement	733 kB	2023-04-30	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/170e200.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-30 21:34 Last Seen2024-08-21 04:28 Times Seen26 Hash 495e141b0d94923693fa5fad5d62f3ad 744f776f992df5e8092884e5719a4978fc9e3010 82c4bd45f903fa36367d98b87b1664f150c6cc27dfa7331301fcab553b67985f Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-08-25	2023-11-23
Pretty URL friendshipmale.com/sfp.js IP 172.64.101.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 12:30 Last Seen2023-11-23 01:47 Times Seen6642 Hash 2d0450888479d4ddda305bd96206b240 5b4595aab1cd3f854718e05db9be0c65a12ab2f6 44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6 Loading...

	www.google.com/recaptcha/api.js	ScriptElement	850 B	2023-10-12	2023-10-19
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-12 02:17 Last Seen2023-10-19 22:47 Times Seen806 Hash cc4657404e419868f941ae8f7298bd7d 804263fd3fddc5c2555ad54467ea611bc9666c2a 407d3bdbc00f22e2287f7b5945d51cb12eb386f64413e2855a5bafe11e4c5f75 Loading...

	pl16225324.highcpmrevenuegate.com/af/a6/c4/afa6c4f1747190a87a81eefe21b3a31d.js	ScriptElement	60 kB	2023-10-17	2023-10-17
Pretty URL pl16225324.highcpmrevenuegate.com/af/a6/c4/afa6c4f1747190a87a81eefe21b3a31d.js IP 173.233.137.52 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 22:38 Last Seen2023-10-17 22:38 Times Seen1 Hash 05aba6876de510adb6e651f223b23aea 149459be6d2d4eb0eb9e2f0eb5ebf8adcf141a5d 0994d3cf027c60395f009e78c76cf05d495b4c239c01464d398a6f277450cf7c Loading...

	new.lewd.ninja/_nuxt/f1146cd.js	ScriptElement	16 kB	2023-10-16	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/f1146cd.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-08-21 04:28 Times Seen26 Hash 55e9fdcdca82975ae0615d735db7e604 e106cbd8446a76a3bda470e66b9536727f73f87b a08ad6e6db84218f7d5fff3ee870c85745a8c5b8d37395ba1763f309b4161884 Loading...

	www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b	ScriptElement	72 B	2023-03-07	2025-05-09
Pretty URL www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11 Last Seen2025-05-09 07:25 Times Seen8362 Hash 497770a2ab62f2aa5e9a92139301634d 49c10647ffe35e24f84f743006f162ff0fe16399 0663d282ac18b3e9d3e81725926a5310e5cae5e6954873f09b7ee193136fb5e4 Loading...

	new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b	ScriptElement	1.4 kB	2023-10-17	2024-08-21
Pretty URL new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-17 22:38 Last Seen2024-08-21 04:19 Times Seen3 Hash 1cb1603e17029ff62b01061758e61d06 7f718cb0a5db6e6d9dc27efa0858269244da33db f5caf1f064e69f3751a59b3df35f1a6f12bbfe10b60ff40195935f5edb345a4d Loading...

	new.lewd.ninja/_nuxt/da44a21.js	ScriptElement	4.9 kB	2024-08-21	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/da44a21.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash 69ab5e3f33997d49ce56b8ec187c40ed 623ec91a67d74198a89e16b3bdf431ecf41acbbc 7172129cd6fc6d75dfbeee314c7af621f3919ee0ef355313f6653a7ca174cc0c Loading...

	new.lewd.ninja/_nuxt/79762b8.js	ScriptElement	285 kB	2023-03-13	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/79762b8.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 23:19 Last Seen2024-08-21 04:28 Times Seen26 Hash a8c3e5fa62fda322ba9eca823da10015 a555dcd76440e461266ee8eb574ac26ec35eba52 3ed86012470a49391a3dca49597ba97a8e6c0d3dd7057a5b833d7da23b79a7e1 Loading...

	new.lewd.ninja/_nuxt/0562770.js	ScriptElement	174 kB	2023-10-16	2024-08-21
Pretty URL new.lewd.ninja/_nuxt/0562770.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-08-21 04:28 Times Seen2 Hash fb455ab71171e16b022e3bef03c5bc18 2f6bea784830d9db8be0e6f8d41433f72de4a038 81d5eff4bdb5fcf3a82cd1da845e1b41f24d15afc2ca4327ae83233a9cccae4e Loading...

	unknown	Function	98 B	2023-04-12	2024-08-21
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 12:52 Last Seen2024-08-21 09:40 Times Seen850 Hash 9c2355c1862f27be33f1d1c490852011 df4b4ecfcbcb400ba65c6db887bb7b0c34967fc2 cd886e4500625ef3ab17e2ecc8d0d25c8545ab87769755796aa71a412f19c2f3 Loading...

	new.lewd.ninja/_nuxt/a7f0721.js	ScriptElement	2.7 kB	2023-10-16	2024-10-29
Pretty URL new.lewd.ninja/_nuxt/a7f0721.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-10-29 02:44 Times Seen28 Hash d499b858736ee9c0ded0582bec9256f6 bcd0f7ee689f5db48814d406829113fee536e1cf 13f60f3d61b8984e9b404d8ed5cd1c708e6de11392431746ec1b9315b12cab04 Loading...

	owo.lewd.ninja/j2.js	ScriptElement	3.8 kB	2023-10-16	2024-12-14
Pretty URL owo.lewd.ninja/j2.js IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-16 23:07 Last Seen2024-12-14 06:34 Times Seen73 Hash 829aa8c505c0d047dbe946d14187b32e 56ce06baf4c6dff0cdf029925a3c14cc482a627e 8083f887f97200735f060557c8542c512a44fa9c1854acec9e91bb7216a88ba8 Loading...

	new.lewd.ninja/cdn-cgi/zaraz/s.js?z=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	ScriptElement	5.2 kB	2024-08-21	2024-08-21
Pretty URL new.lewd.ninja/cdn-cgi/zaraz/s.js?z=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 IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash 7f527d1cd7bc90a9935567183cc95226 a09369a27903e355c49c58cdca4bb269c5fd2c4d ee45ad284c66e496b6fb4fb1f3ed4b0cc70e5fb70252afb0914cb9cffffb1e25 Loading...

	www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b	ScriptElement	50 kB	2024-08-21	2024-08-21
Pretty URL www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash 757c4fa405d18ca7366165f3d03e3db0 89bc85ad6809911dc7eba29fe18a7377ef8cea2f 7efd7245e4cbb800ac8beb4603316f87f7626ebfed12e0355598fa5fd73cff5e Loading...

	new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b	ScriptElement	662 B	2024-08-21	2024-08-21
Pretty URL new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b IP 172.67.5.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash c453215d12af2c2787d1b5f058a44dd9 19b8e6a85a7815eadbb78a9b8b61fc050e28c1ef 03c3b17cf835d723083c7d90098d1872a601ebb268c92ee9ddd8c24cff59fba4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - fb7145e7e64609e736cf25c717063c8e	17 kB	2024-08-21 04:19	2024-08-21 04:19
Pretty Observations First Seen2024-08-21 04:19 Last Seen2024-08-21 04:19 Times Seen1 Hash fb7145e7e64609e736cf25c717063c8e 056c9a17780248da3a8dab5c0356d6ffb42366d0 3ee1ba3ef304b44a9817ffdfd3ddb39cb2db96ae5d61c01a7c98fbe625621896 Loading...

	#2 Eval - 949619bccdc191252ad34ad48a7c2bc1	22 B	2023-10-16 09:13	2024-08-21 04:34
Pretty Observations First Seen2023-10-16 09:13 Last Seen2024-08-21 04:34 Times Seen756 Hash 949619bccdc191252ad34ad48a7c2bc1 1966154340ca380e7ae1e09b82d42e4d21f38e15 59dab11108d397d4f4c1ece28d55be0f9644aeacd62d8f4693f700a4686ea90d Loading...

	#3 Eval - d44b23d50579d3de1df7e088c0d87ef8	22 B	2023-10-16 09:13	2024-08-21 04:34
Pretty Observations First Seen2023-10-16 09:13 Last Seen2024-08-21 04:34 Times Seen756 Hash d44b23d50579d3de1df7e088c0d87ef8 b0f2414039ed022a7903ddf051aea4405e6e2e27 11cb3f7529bae6b45737cf27c1400713c41f8d5ce219b246348981c7a365f141 Loading...

	#4 Eval - 0bb857e3025c953db76b3298d82c3e8e	16 kB	2023-10-16 09:13	2024-08-21 04:34
Pretty Observations First Seen2023-10-16 09:13 Last Seen2024-08-21 04:34 Times Seen754 Hash 0bb857e3025c953db76b3298d82c3e8e 735b15b3579af1eb2bfcc8fbd632d341a02f60eb bd4220ab3f550d387a3904d4988dfb620ab088533b425c0605208a1991d5a65b Loading...

	#5 Eval - f906678aabe4fad50cd0ad23071a7745	62 B	2023-10-16 09:13	2024-08-21 04:34
Pretty Observations First Seen2023-10-16 09:13 Last Seen2024-08-21 04:34 Times Seen753 Hash f906678aabe4fad50cd0ad23071a7745 f0ce61709b0e077f422f76610304942c62608f72 55e6dd2ad28a5017daca194f62d4d1ef2d6aa3c63b78614373122f43bebc72c5 Loading...

HTTP Transactions (90)

URL IP Response Size

new.lewd.ninja/pug.js

172.67.5.10

200 OK

25 B

URL GET HTTP/3
new.lewd.ninja/pug.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
acb8501274106c8c5d25141dd0dc252a
86eeee52b9443b6df7caffbf9fd4a7031fff5ccc
615ee8ac2cde2b20b7ae8fbb6ef33a9128193f07590540b77e514627be7ae1cd

HTTP Headers

GET /pug.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
content-length: 25
vary: Accept-Encoding
etag: "19-hu7uUrlEO233yv+/n9SnAx//XMw"
last-modified: 2023-10-17T18:36:23.458Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 817b57eb9e51569d-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

216.58.207.195

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
563a3bab24190c8ca83022ac691d21c1
3cc5c13bd8288315e55d980392b63baef627da11
c7e58e6cafdf3277ced660fb53a54ca4269cd942a79caa04fdcd5f71e99ece4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

new.lewd.ninja/_nuxt/css/58cee63.css

172.67.5.10

200 OK

243 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/58cee63.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (389), with no line terminators
Size
243 B (243 bytes)
Hash
56a5485ddcdcc44d7a08a3d63ffbce43
edd4ab62de52984cf77d0a484d72733d6ad8708f
807aec1f916e8cfd01a35c5704972740c3728eebda257167f55a89decec738d3

HTTP Headers

GET /_nuxt/css/58cee63.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"185-7dSrYt5SmEz3fQpITXJzPWrYcI8"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7162
server: cloudflare
cf-ray: 817b57ebae5d569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/3b560fb.css

172.67.5.10

200 OK

993 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/3b560fb.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2115), with no line terminators
Size
993 B (993 bytes)
Hash
c2c7fb5156533a214a74def0640ba23d
8b7b18025b0911df91fd6a086f82d950614d08e2
089ae66d14319effad48cfcf54c945788d58c5c779d3918af4191726566211d6

HTTP Headers

GET /_nuxt/css/3b560fb.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"843-i3sYAlsJEd+R/WoIb4LZUGFNCOI"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed38cd569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api.js

142.250.74.132

200 OK

1.1 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC9:F6:98:54:A9:56:99:75:0A:10:B7:BD:95:70:40:74:3A:B0:B0:77
ValidityMon, 18 Sep 2023 08:25:14 GMT - Mon, 11 Dec 2023 08:25:13 GMT

File type
gzip compressed data\012- data
Size
1.1 kB (1056 bytes)
Hash
038ba01a0f94928ba313dbacb2de7399
800d221c06c08920d1514156ceff7dee4930cc57
5cfdd07b818ae7e485f70373ef9f864883da041c4bbd1be6627bc8c32e75bc12

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 17 Oct 2023 20:38:08 GMT
date: Tue, 17 Oct 2023 20:38:08 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

new.lewd.ninja/_nuxt/css/1c9a4f3.css

172.67.5.10

200 OK

6.2 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/1c9a4f3.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8020)
Size
6.2 kB (6214 bytes)
Hash
7805289423de172f2e84eea70a2aeed8
1a86aeb0e639931489fc2ff7b6ddf79a2345390e
a51a46e4742b5d626fca63fc077dfe3718029c109e6952ca37a1e5fb6c9837bf

HTTP Headers

GET /_nuxt/css/1c9a4f3.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"3bfd-GoausOY5kxSJ/C/3tt33miNFOQ4"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7162
server: cloudflare
cf-ray: 817b57eb9e59569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

216.58.207.195

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87d874e16161e60b13bd34c9dbb4fcf1
a4dbc700e79aa715720a7e7d3973c2c0a7f67fcf
2a2d26e9e4f8fb4e385cf21e3973474c876611b1ca3378d8fefe736b3f86323e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pl16225324.highcpmrevenuegate.com/af/a6/c4/afa6c4f1747190a87a81eefe21b3a31d.js

173.233.137.52

200 OK

24 kB

URL GET HTTP/1.1
pl16225324.highcpmrevenuegate.com/af/a6/c4/afa6c4f1747190a87a81eefe21b3a31d.js
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerLet's Encrypt
Subjecthighcpmrevenuegate.com
Fingerprint05:55:3B:E2:80:35:3A:08:FB:BB:55:82:83:A5:E5:78:E0:1D:2F:6E
ValidityFri, 29 Sep 2023 07:37:01 GMT - Thu, 28 Dec 2023 07:37:00 GMT

File type
ASCII text, with very long lines (60505)
Size
24 kB (23452 bytes)
Hash
05aba6876de510adb6e651f223b23aea
149459be6d2d4eb0eb9e2f0eb5ebf8adcf141a5d
0994d3cf027c60395f009e78c76cf05d495b4c239c01464d398a6f277450cf7c

HTTP Headers

GET /af/a6/c4/afa6c4f1747190a87a81eefe21b3a31d.js HTTP/1.1
Host: pl16225324.highcpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Oct 2023 20:38:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2814-l=1; expires=Thu, 19 Oct 2023 20:38:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1cdf92625845f1eac545a9ee64d84b58
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

216.58.207.195

471 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4e3d632834f367982e02547ed01f3c2e
e6de16d3f26695de5e45b6aed6bce1f0c8504fef
5af172e50ca188e53368a2b368ef9b1c69fe0ca984d46d0993ec663ae1251d83

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Oct 2023 15:18:26 GMT
expires: Fri, 11 Oct 2024 15:18:26 GMT
cache-control: public, max-age=31536000
age: 451182
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.207.195

471 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f02b76bfd6055df0d880bf655b413dfa
5e7d3a2cd417a20a13c521ececdd73785a01e1ec
49ed95035f613a90e9364a9bf733da44a45ed81c343f84af0e95c01f98edc4ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 21:09:04 GMT
expires: Sat, 12 Oct 2024 21:09:04 GMT
cache-control: public, max-age=31536000
age: 343744
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.207.195

471 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4e3d632834f367982e02547ed01f3c2e
e6de16d3f26695de5e45b6aed6bce1f0c8504fef
5af172e50ca188e53368a2b368ef9b1c69fe0ca984d46d0993ec663ae1251d83

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js

142.250.74.35

200 OK

188 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
ASCII text, with very long lines (665)
Size
188 kB (187844 bytes)
Hash
1597adfd61770da62f147c7072ddce90
ac0214495692e766b4c453589ce587a46242af67
c662a9036d1fd054a03bd683564761866f27663c4607aaa2b1ff417d17c512f1

HTTP Headers

GET /recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 187844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Oct 2023 01:35:30 GMT
expires: Wed, 16 Oct 2024 01:35:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Oct 2023 02:01:40 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68559
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.207.195

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
849e19cc0d3b5e1e4dbde15bb862ba81
257453bb4e47104b3c4c164e5bcbe2579dc6bee9
8b8afc3455632d35439394987566451f216a0aa76d279cb9636fe05adc0efa8c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

xxx.lewd.ninja/changelog

172.67.5.10

200 OK

0 B

URL GET HTTP/2
xxx.lewd.ninja/changelog
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /changelog HTTP/1.1
Host: xxx.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 17 Oct 2023 20:38:09 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
x-easter: L1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 817b57f60c85b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.207.195

472 B

URL
ocsp.pki.goog/gts1c3
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
849e19cc0d3b5e1e4dbde15bb862ba81
257453bb4e47104b3c4c164e5bcbe2579dc6bee9
8b8afc3455632d35439394987566451f216a0aa76d279cb9636fe05adc0efa8c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Oct 2023 20:38:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.r2m03.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
3f4808370559f2b7bcd6376f4b9a0504
82c5ce802df173c8fddad801bbd3099d2388f48d
e597d981f645a5f1d7037e4457396177d54846c18d73411ad10aeb8a086a5439

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 17 Oct 2023 20:38:09 GMT
Last-Modified: Tue, 17 Oct 2023 19:29:19 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GK3hJZWqNsB-1c2MZ-2hPvutN6I2CQjkjsbz5CDtd34op68IaasZDA==
Age: 4130

new.lewd.ninja/_nuxt/img/logo-ua.7e20ab7.jpg

172.67.5.10

200 OK

1.1 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/img/logo-ua.7e20ab7.jpg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 52x52, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.1 kB (1104 bytes)
Hash
403e7442c3c2839afa6095cda1cdbb9a
c12e8b590d3175cf9fc7e5a701cf92591a1426ae
27d1831d37effaf126fe1b39d331066dbfec7d170382748388e173b7182e7fa3

HTTP Headers

GET /_nuxt/img/logo-ua.7e20ab7.jpg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/webp
content-length: 1104
access-control-allow-origin: *, *
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=15392
content-disposition: inline; filename="logo-ua.webp"
etag: "3c20-dHSo1DWAvkOyrIz36Z/bk71G2qI"
last-modified: 2023-10-17T18:36:23.382Z
server-timing: -;dur=0;desc="Generate"
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7164
accept-ranges: bytes
server: cloudflare
cf-ray: 817b57f82b11569d-OSL
alt-svc: h3=":443"; ma=86400

professionalswebcheck.com/stats

3.73.202.184

200 OK

40 B

URL GET HTTP/2
professionalswebcheck.com/stats
IP
3.73.202.184:443
ASN
#16509 AMAZON-02

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
149e46dd0b7aed1826e0a213c53488ef
c142b3f0f0b0fe7df1e4778ccc2600eabe259ac7
ebddc141c327891d7a5733a26d5d0ddd7e584b91fedad42a89ca9043da3e1a34

HTTP Headers

GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://new.lewd.ninja
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e1d89e01-30b0-4471-9883-86bc4ac8e72c:3:1; expires=Fri, 14 Oct 2033 20:38:09 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

new.lewd.ninja/_nuxt/f1146cd.js

172.67.5.10

200 OK

4.4 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/f1146cd.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (15769), with no line terminators
Size
4.4 kB (4358 bytes)
Hash
55e9fdcdca82975ae0615d735db7e604
e106cbd8446a76a3bda470e66b9536727f73f87b
a08ad6e6db84218f7d5fff3ee870c85745a8c5b8d37395ba1763f309b4161884

HTTP Headers

GET /_nuxt/f1146cd.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"3d99-4QbL2ERqdqO9pHDma5U2cn9z+Hs"
last-modified: 2023-10-17T18:36:22.918Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 6567
server: cloudflare
cf-ray: 817b57f84b34569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js

142.250.74.35

200 OK

188 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
ASCII text, with very long lines (665)
Size
188 kB (187844 bytes)
Hash
1597adfd61770da62f147c7072ddce90
ac0214495692e766b4c453589ce587a46242af67
c662a9036d1fd054a03bd683564761866f27663c4607aaa2b1ff417d17c512f1

HTTP Headers

GET /recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 187844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Oct 2023 01:35:30 GMT
expires: Wed, 16 Oct 2024 01:35:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Oct 2023 02:01:40 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.14.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
642d56dd3dfbaa1ed2ee28fcf3354bc2
863a4c8a0288667e1ba55c9509c2de76b256d944
cb3a613b577c66599a55a9b1a9c83bb7f0ad37bedb274f223d07259e0879b055

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Oct 2023 14:35:32 GMT
Expires: Tue, 24 Oct 2023 14:35:31 GMT
Etag: "863a4c8a0288667e1ba55c9509c2de76b256d944"
Cache-Control: max-age=583031,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 817b57f9981eb51e-OSL

friendshipmale.com/sfp.js

172.64.101.19

200 OK

28 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.101.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27557 bytes)
Hash
2d0450888479d4ddda305bd96206b240
5b4595aab1cd3f854718e05db9be0c65a12ab2f6
44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 3627e94a4cb8c5af499b0ec9e5fd22e8
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 17 Oct 2023 20:38:09 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=90WdwDJA8%2FjPKI635TX8zrj6jMS5njyfrXl2LjEI8nf%2FnhCZnBC0cA2PCAyigKfOOv1%2FUJit2ckrP8QSpdCyHx0ALKbudZqrJOl40TklX6iP36xGRE%2BdVWMMp18ygqgGNscmT%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b57f62a6a7306-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.14.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.14.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
642d56dd3dfbaa1ed2ee28fcf3354bc2
863a4c8a0288667e1ba55c9509c2de76b256d944
cb3a613b577c66599a55a9b1a9c83bb7f0ad37bedb274f223d07259e0879b055

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Oct 2023 14:35:32 GMT
Expires: Tue, 24 Oct 2023 14:35:31 GMT
Etag: "863a4c8a0288667e1ba55c9509c2de76b256d944"
Cache-Control: max-age=583268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 817b57f99f34b500-OSL

pomptame.com/pixel/purst?dl=0&th=0&sc=0&rs=1588&rd=1588&fd=894&bv=23.10.v.19&tmpl=70

173.233.137.60

200 OK

0 B

URL GET HTTP/1.1
pomptame.com/pixel/purst?dl=0&th=0&sc=0&rs=1588&rd=1588&fd=894&bv=23.10.v.19&tmpl=70
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerLet's Encrypt
Subjectpomptame.com
Fingerprint93:99:D4:42:79:07:D7:F3:12:19:0C:DE:2B:98:24:82:46:79:88:AC
ValidityTue, 10 Oct 2023 08:31:13 GMT - Mon, 08 Jan 2024 08:31:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1588&rd=1588&fd=894&bv=23.10.v.19&tmpl=70 HTTP/1.1
Host: pomptame.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
ASCII text, with very long lines (56398), with no line terminators
Size
25 kB (24606 bytes)
Hash
eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

HTTP Headers

GET /recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Oct 2023 13:59:13 GMT
expires: Wed, 16 Oct 2024 13:59:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Oct 2023 02:01:40 GMT
content-type: text/css
vary: Accept-Encoding
age: 23937
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js

142.250.74.35

200 OK

188 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
ASCII text, with very long lines (665)
Size
188 kB (187844 bytes)
Hash
1597adfd61770da62f147c7072ddce90
ac0214495692e766b4c453589ce587a46242af67
c662a9036d1fd054a03bd683564761866f27663c4607aaa2b1ff417d17c512f1

HTTP Headers

GET /recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 187844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Oct 2023 01:35:30 GMT
expires: Wed, 16 Oct 2024 01:35:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Oct 2023 02:01:40 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 68560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

poweredby.jads.co/adshow.php?adzone=610935

185.94.236.244

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=610935
IP
185.94.236.244:443
ASN
#42567 Mojohost B.v.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1735 bytes)
Hash
930e1da467a857b1d1b8913c0ba260a1
9ab00df7e949f4d170f8ab96c54a9becb71e5126
162edd069a9a1bfd7ea9ed4dc80c2d64265805b59e498709e4025a6b72c13046

HTTP Headers

GET /adshow.php?adzone=610935 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; expires=Wed, 16-Oct-2024 20:38:10 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps1354=1; expires=Wed, 18-Oct-2023 20:38:10 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE1NTg0MDk7aToxNjk3ODM0MjkwO30%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

poweredby.jads.co/adshow.php?adzone=643057

185.94.236.244

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=643057
IP
185.94.236.244:443
ASN
#42567 Mojohost B.v.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (426), with CRLF, LF line terminators
Size
1.5 kB (1538 bytes)
Hash
81674afe3e4eea51bf8a71571d686267
62ce3388585c86945051dbd905da648d076921cb
432d6fa1b52b8a7aa73ae68182faaf6b1dc78673d98ebe4e80a224b7337b5a82

HTTP Headers

GET /adshow.php?adzone=643057 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; expires=Wed, 16-Oct-2024 20:38:10 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps1354=1; expires=Wed, 18-Oct-2023 20:38:10 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE2NTI2Nzc7aToxNjk3ODM0MjkwO30%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

new.lewd.ninja/_nuxt/118b8a3.js

172.67.5.10

200 OK

28 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/118b8a3.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2171), with no line terminators
Size
28 kB (28448 bytes)
Hash
1927f68c2988e320c218ddcac3e31037
7f1c77dc7803ddad0d7110cacb019e53ea51253b
d0b336cde39ca61c52f1d60a4a14c8830a38f21d1e628fdee404fa02884eedf6

HTTP Headers

GET /_nuxt/118b8a3.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770; ppu_main_afa6c4f1747190a87a81eefe21b3a31d=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e1d89e01-30b0-4471-9883-86bc4ac8e72c%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:10 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"884-fxx33HgD3a0NcRDKywGeU+pRJTs"
last-modified: 2023-10-17T18:36:23.450Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 5308
server: cloudflare
cf-ray: 817b57fa8ce2569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b

142.250.74.131

200 OK

676 kB

URL GET HTTP/3
www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc.google.com
FingerprintAB:24:A8:96:AB:9F:E1:A0:D2:6D:56:08:87:AA:8D:5C:17:08:A6:C4
ValidityMon, 18 Sep 2023 08:22:45 GMT - Mon, 11 Dec 2023 08:22:44 GMT

File type
gzip compressed data\012- data
Size
676 kB (676335 bytes)
Hash
a4e48acdf7c3d14798f51f1da5c1fd40
52dc78356f24cfa15a33bd719b26802006f202c0
6c747ae0467dd40d4955312e24dc5a99f89bb2028571276d60f87080207eae5b

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 17 Oct 2023 20:38:10 GMT
content-security-policy: script-src 'nonce-qPBi0CvR8CfapqKoowrGAQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/MydHw_zggsxIJuhSbyOmPv5R/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 14:42:45 GMT
expires: Fri, 20 Oct 2023 14:42:45 GMT
cache-control: public, max-age=604800
age: 366925
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

i.jads.co/network/user11892/1354-1680827139-0818402001680827139.jpg

205.185.216.10

200 OK

43 kB

URL GET HTTP/1.1
i.jads.co/network/user11892/1354-1680827139-0818402001680827139.jpg
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=643057
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 728x90, components 3\012- data
Size
43 kB (42742 bytes)
Hash
9144bd575517a98a1011abfb10535be3
e9808faf2682ac6239912f4a88fe75c538097a58
b6df136ab253d0dfc7897ac1506013caee11002c9d6ab7c304fb1119d1eb5182

HTTP Headers

GET /network/user11892/1354-1680827139-0818402001680827139.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToxOntpOjE2NTI2Nzc7aToxNjk3ODM0MjkwO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Connection: Keep-Alive
ETag: "1680827139"
Cache-Control: max-age=14823295
Content-Length: 42742
Content-Type: image/jpeg
Last-Modified: Fri, 07 Apr 2023 00:25:39 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop208.sk1.t,1697575090.cds249.sk1.shn,1697575090.dop208.sk1.t,1697575090.cds221.sk1.c

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Oct 2023 23:51:35 GMT
expires: Fri, 11 Oct 2024 23:51:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 420395
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint24:E0:20:DC:DE:E3:A8:D9:A8:17:BA:26:F5:41:32:19:98:D0:30:F3
ValidityMon, 18 Sep 2023 08:25:05 GMT - Mon, 11 Dec 2023 08:25:04 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Oct 2023 22:20:01 GMT
expires: Sat, 12 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 339489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.recaptcha.net/recaptcha/api2/webworker.js?hl=en&v=MydHw_zggsxIJuhSbyOmPv5R

142.250.74.131

200 OK

188 kB

URL GET HTTP/3
www.recaptcha.net/recaptcha/api2/webworker.js?hl=en&v=MydHw_zggsxIJuhSbyOmPv5R
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc.google.com
FingerprintAB:24:A8:96:AB:9F:E1:A0:D2:6D:56:08:87:AA:8D:5C:17:08:A6:C4
ValidityMon, 18 Sep 2023 08:22:45 GMT - Mon, 11 Dec 2023 08:22:44 GMT

File type
ASCII text, with very long lines (665)
Size
188 kB (187956 bytes)
Hash
7ac20382fc5b824640cd663961ebf56e
446d391acd994871f038649948415dda734586b3
39945c1b998d6c0db9563d59fa4589c5b8ebaaa0f6f26d5c2fa4cc13b7fd687d

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=MydHw_zggsxIJuhSbyOmPv5R HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 17 Oct 2023 20:38:10 GMT
date: Tue, 17 Oct 2023 20:38:10 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

poweredby.jads.co/adshow.php?adzone=699330

185.94.236.244

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=699330
IP
185.94.236.244:443
ASN
#42567 Mojohost B.v.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (433), with CRLF, LF line terminators
Size
1.5 kB (1547 bytes)
Hash
823c2d23b727fc5843f635093e0c3901
7163283be3b79b7017958c149d51c60bcb559495
6515fc473ff701065e29ced154ad9d58d75561510b1b17268632a336b84f2648

HTTP Headers

GET /adshow.php?adzone=699330 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Oct 2023 20:38:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; expires=Wed, 16-Oct-2024 20:38:10 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps58823=1; expires=Wed, 18-Oct-2023 20:38:10 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO30%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:10 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

i.jads.co/network/user193658/58823-1694532338-0209088001694532338.png

205.185.216.10

115 kB

URL
i.jads.co/network/user193658/58823-1694532338-0209088001694532338.png
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
115 kB (114882 bytes)
Hash
b127553cdd166fde53747df021d3cce2
910097da88145b511036b4a2a68eccd0466e7d74
93effe814fdd721b4fc5685bc85bc7fc34e486e08aa57985e85554677e616d9f

HTTP Headers

GET /network/user193658/58823-1694532338-0209088001694532338.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToxOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Connection: Keep-Alive
ETag: "1694532338"
Cache-Control: max-age=28533157
Content-Length: 114882
Content-Type: image/png
Last-Modified: Tue, 12 Sep 2023 15:25:38 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop208.sk1.t,1697575090.cds249.sk1.shn,1697575090.dop208.sk1.t,1697575090.cds256.sk1.c

new.lewd.ninja/cdn-cgi/rum?

172.67.5.10

204 No Content

0 B

URL POST HTTP/3
new.lewd.ninja/cdn-cgi/rum?
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 14889
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770; ppu_main_afa6c4f1747190a87a81eefe21b3a31d=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e1d89e01-30b0-4471-9883-86bc4ac8e72c%3A3%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 17 Oct 2023 20:38:10 GMT
access-control-allow-origin: https://new.lewd.ninja
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 817b57fe7fb4569d-OSL
x-frame-options: DENY
x-content-type-options: nosniff

unseenreport.com/pxf.gif?uuid=e1d89e01-30b0-4471-9883-86bc4ac8e72c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=afa6c4f1747190a87a81eefe21b3a31d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20

192.243.61.225

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=e1d89e01-30b0-4471-9883-86bc4ac8e72c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=afa6c4f1747190a87a81eefe21b3a31d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintBE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A
ValiditySat, 23 Sep 2023 07:33:12 GMT - Fri, 22 Dec 2023 07:33:11 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=e1d89e01-30b0-4471-9883-86bc4ac8e72c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=afa6c4f1747190a87a81eefe21b3a31d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=20 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Oct 2023 20:38:11 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bbe66c229a97490b486e9a03110cf99
Strict-Transport-Security: max-age=0; includeSubdomains

poweredby.jads.co/adshow.php?adzone=699330

185.94.236.244

200 OK

1.5 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=699330
IP
185.94.236.244:443
ASN
#42567 Mojohost B.v.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (433), with CRLF, LF line terminators
Size
1.5 kB (1546 bytes)
Hash
c7664e0b358b056c8c97ddda0f96fa36
20d42bab1d524125642bac30dfe8fd0e9d6c17bc
6bcab1ee0e1e33f2d12a62a2e80366144f38887b56a24617f03bb90999b1ec17

HTTP Headers

GET /adshow.php?adzone=699330 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToxOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Oct 2023 20:38:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps58823=2; expires=Wed, 18-Oct-2023 20:38:14 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

i.jads.co/network/user193658/58823-1694532340-0213193001694532340.png

205.185.216.10

200 OK

111 kB

URL GET HTTP/1.1
i.jads.co/network/user193658/58823-1694532340-0213193001694532340.png
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=699330
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
111 kB (111356 bytes)
Hash
e97cd4473f537075a6526fa098fa69ff
816a25b8991da9f491e750b8301fb113c94e93c4
61f9a71b1b970f61383917e9cf99f6b0cc72106ed32e0f4e39d6bfa2f30beaf4

HTTP Headers

GET /network/user193658/58823-1694532340-0213193001694532340.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToyOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:14 GMT
Connection: Keep-Alive
ETag: "1694532340"
Cache-Control: max-age=28533492
Content-Length: 111356
Content-Type: image/png
Last-Modified: Tue, 12 Sep 2023 15:25:40 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop208.sk1.t,1697575090.cds249.sk1.shn,1697575094.dop208.sk1.t,1697575094.cds213.sk1.c

xxx.lewd.ninja/meta/r9k

172.67.5.10

200 OK

0 B

URL GET HTTP/3
xxx.lewd.ninja/meta/r9k
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /meta/r9k HTTP/1.1
Host: xxx.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: https://new.lewd.ninja/
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 17 Oct 2023 20:38:15 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
x-easter: L1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 817b5819b812569d-OSL
alt-svc: h3=":443"; ma=86400

xxx.lewd.ninja/meta/r9k

172.67.5.10

200 OK

4 B

URL GET HTTP/3
xxx.lewd.ninja/meta/r9k
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

HTTP Headers

GET /meta/r9k HTTP/1.1
Host: xxx.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:15 GMT
content-type: application/json; charset=utf-8
content-length: 4
x-powered-by: Express
access-control-allow-origin: *
etag: W/"4-X/5TO4MPCKAyY0ipFgr6/IraRNs"
x-easter: L1
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b581a38cd569d-OSL
alt-svc: h3=":443"; ma=86400

poweredby.jads.co/adshow.php?adzone=699330

185.94.236.244

200 OK

1.7 kB

URL GET HTTP/1.1
poweredby.jads.co/adshow.php?adzone=699330
IP
185.94.236.244:443
ASN
#42567 Mojohost B.v.

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1746 bytes)
Hash
d1900f213c661f90795fb8ddfa4f3cfc
7a39bd3005e94e848920bce0d664ca9351388ff7
935c27cf08599f7eca1dd366ea00fce2ff03092055cb2995b3d7a10f595bddec

HTTP Headers

GET /adshow.php?adzone=699330 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToyOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Oct 2023 20:38:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps58823=3; expires=Wed, 18-Oct-2023 20:38:16 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTozOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7aToxNjk2NTMzO2k6MTY5NzgzNDI5Njt9; expires=Fri, 20-Oct-2023 20:38:16 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 20-Oct-2023 20:38:16 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

i.jads.co/network/user193658/58823-1694532318-0071779001694532318.png

205.185.216.10

200 OK

100 kB

URL GET HTTP/1.1
i.jads.co/network/user193658/58823-1694532318-0071779001694532318.png
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=699330
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
100 kB (100368 bytes)
Hash
2a4c49a09c040f65acca636e86e7621e
92396543f32a7ff128c1d491ba3a0ca805ac4477
a8ae916c0cb14c112a27d712dd4b8a31b60c9f2880d1770ea358ed1f4b8f6733

HTTP Headers

GET /network/user193658/58823-1694532318-0071779001694532318.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YTozOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7aToxNjk2NTMzO2k6MTY5NzgzNDI5Njt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:16 GMT
Connection: Keep-Alive
ETag: "1694532332"
Cache-Control: max-age=28533256
Content-Length: 100368
Content-Type: image/png
Last-Modified: Tue, 12 Sep 2023 15:25:32 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop208.sk1.t,1697575090.cds249.sk1.shn,1697575096.dop208.sk1.t,1697575096.cds217.sk1.c

new.lewd.ninja/_nuxt/css/81644a5.css

172.67.5.10

200 OK

28 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/81644a5.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (321), with no line terminators
Size
28 kB (27613 bytes)
Hash
3727dbbd43a1de391911624063c6dd29
3b6a3436c1ecc2ee94b1b7edb1e2bbfad5070c0f
ea2b9bb0272be3ec7695cdb9795a26baaf83e82bc23760d8db139617eb3aa7be

HTTP Headers

GET /_nuxt/css/81644a5.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"141-O2o0NsHswu6UsbftseK7+tUHDA8"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed48dc569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/cdn-cgi/rum?

172.67.5.10

204 No Content

0 B

URL POST HTTP/3
new.lewd.ninja/cdn-cgi/rum?
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 789
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Tue, 17 Oct 2023 20:38:24 GMT
access-control-allow-origin: https://new.lewd.ninja
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 817b585628a6569d-OSL
x-frame-options: DENY
x-content-type-options: nosniff

new.lewd.ninja/_nuxt/css/b511cb9.css

172.67.5.10

200 OK

1.9 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/b511cb9.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1909), with no line terminators
Size
1.9 kB (1909 bytes)
Hash
28d087fb09915af676bc6b1511c6f1ce
14cdd152d6594dff2cbbad2b0a37a5f5183d349b
8ae431d118279d9dfa133dab4ac66c0dd1818457bb9cdbc682c4e745d06d2731

HTTP Headers

GET /_nuxt/css/b511cb9.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"775-FM3RUtZZTf8su60rCjel9Rg9NJs"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed58f0569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/6a8d18a.js

172.67.5.10

200 OK

9.3 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/6a8d18a.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9693), with no line terminators
Size
9.3 kB (9306 bytes)
Hash
59f7bc27cb56c628219307bcd0bfbfdf
8f2423585bfbca0d972e7ece15e0f144abef06b0
6825c64bda99258930747ac6b92ae488efc904aef644b05bb9acb8dd343cbef2

HTTP Headers

GET /_nuxt/6a8d18a.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"245a-IZclaRVXK5XAeG4HizpaUxj5flo"
last-modified: 2023-10-17T18:36:23.426Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4776
server: cloudflare
cf-ray: 817b57f0bc5e569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/flag/br.svg

172.67.5.10

200 OK

970 B

URL GET HTTP/3
new.lewd.ninja/flag/br.svg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (1031), with no line terminators
Size
970 B (970 bytes)
Hash
ce65f21c0bf81a492ea25b2834a1ec6e
d2c380e8b482649a553e7fdd16ad9825fdcdbeae
7937a49a234645ad6d18b760f50d7199da481d9606db614709c93fe4b01e575a

HTTP Headers

GET /flag/br.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"3ca-e0spMFwxuqEnj9m5L03FvlzUs4Y"
last-modified: 2023-10-17T18:36:23.478Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f45fd9569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/53580c5.css

172.67.5.10

200 OK

354 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/53580c5.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (354), with no line terminators
Size
354 B (354 bytes)
Hash
0edda3d4d8ac571787e9e06d9d6176da
a85b590184fc6ccbe9e692329bca6e25088daf50
3b103c55ed03bb3e2089ccf3c721e07295d431bb21db511913652cff72f3789b

HTTP Headers

GET /_nuxt/css/53580c5.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"162-qFtZAYT8bMvp5pIym8puJQiNr1A"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed48d6569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/ee9a000.css

172.67.5.10

200 OK

88 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/ee9a000.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
48e85d6dfdab2e1f75f1de016528a28b
e764d317adc699fff3e2224cf09f74950e0f61ef
772d8beaaac95f216c341ffafec6a19f195ff86d8afc8ddbabf385dff51dd4d5

HTTP Headers

GET /_nuxt/css/ee9a000.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"58-52TTF63Gmf/z4iJM8J90lQ4PYe8"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed6909569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/flag/pt.svg

172.67.5.10

200 OK

751 B

URL GET HTTP/3
new.lewd.ninja/flag/pt.svg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (811), with no line terminators
Size
751 B (751 bytes)
Hash
98d5b0c1080eb0a6ac272b3782de57ee
2921ee23421c9e5d337883d9d2d108ae2254242c
ba6dd85e2e9d5637f03c68ffe2d8ecb1e1d26bffc468d8bc637f52c38cb1ae0d

HTTP Headers

GET /flag/pt.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"2ef-I0ACoADofB9ir7oKK7wmMAFMMMg"
last-modified: 2023-10-17T18:36:23.478Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f45fd1569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/8b6543b.css

172.67.5.10

200 OK

236 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/8b6543b.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
236 kB (235724 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/css/8b6543b.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"398cc-rxSZDSZAE8BCpxc8VUHwxZdOzaY"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7162
server: cloudflare
cf-ray: 817b57eb9e5a569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/d432a61.css

172.67.5.10

200 OK

3.7 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/d432a61.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3751), with no line terminators
Size
3.7 kB (3749 bytes)
Hash
c3c802cc5e3651352d4bdac7c2704edf
446055dd19e182237a3839e15594d608e1f23727
254f9e7821c946a7208f2f1ec6c67f071f199d6efc54507b667ca2736d30bfb8

HTTP Headers

GET /_nuxt/css/d432a61.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"ea5-iXYoXjOi376Zkk/zSHDz4TFBGqg"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed58f7569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/f39b716.css

172.67.5.10

200 OK

94 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/f39b716.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
94 B (94 bytes)
Hash
2b3e230b93a8c2cd1cafb4342d057624
87c1caa7dc9c81faaf24e211164871b76eb0a4d6
2ebf94a729552c5fb6ec4acd4bbea186c09f63e680176818392f1a26b1a0898a

HTTP Headers

GET /_nuxt/css/f39b716.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"5e-h8HKp9ycgfqvJOIRFkhxt26wpNY"
last-modified: 2023-10-17T18:36:23.402Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed7931569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/bfc8f28.js

172.67.5.10

200 OK

6.7 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/bfc8f28.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6914), with no line terminators
Size
6.7 kB (6678 bytes)
Hash
4b8980fd4342ff0dc0250e6949cd2eda
297c0bb962b01926c1a19a369db7f92025651b42
c51159c9819167b2482d1eeb455c265dbaffe148271fa00511ed63d0b5cb3f94

HTTP Headers

GET /_nuxt/bfc8f28.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770; ppu_main_afa6c4f1747190a87a81eefe21b3a31d=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e1d89e01-30b0-4471-9883-86bc4ac8e72c%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:10 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1a16-h+ekby+G93f7gllatoDvIEJB2pU"
last-modified: 2023-10-17T18:36:22.934Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 6567
server: cloudflare
cf-ray: 817b57f98c0b569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/aa37f48.css

172.67.5.10

200 OK

564 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/aa37f48.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (564), with no line terminators
Size
564 B (564 bytes)
Hash
3c4b16061d280abb156d81fcce107046
6d6b9c1037a190b4e3181c5b12c3790619c8e470
8d3a1f83abc391df7622c03a917d7112a69495e4a90cbed0d360ccd81337653c

HTTP Headers

GET /_nuxt/css/aa37f48.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"234-bWucEDehkLTjGBxbEsN5BhnI5HA"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed58e4569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/a7f0721.js

172.67.5.10

200 OK

2.7 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/a7f0721.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2784), with no line terminators
Size
2.7 kB (2653 bytes)
Hash
65254dcf5ef2891d8d709ba59e105564
61ed838628f5d2aef1c3ae868622c47e6299a76c
45b393445dc778fa8a062a5f8d7813627b004ddae9c2d0c2e2cb0fa9a3978ca5

HTTP Headers

GET /_nuxt/a7f0721.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770; ppu_main_afa6c4f1747190a87a81eefe21b3a31d=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e1d89e01-30b0-4471-9883-86bc4ac8e72c%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:10 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"a5d-vND37mifXbSIFNQGgpET/uU24c8"
last-modified: 2023-10-17T18:36:23.414Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 5226
server: cloudflare
cf-ray: 817b57f9dc4c569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i.jads.co/1x1.gif

205.185.216.10

200 OK

28 kB

URL GET HTTP/1.1
i.jads.co/1x1.gif
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=699330
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3\012- data
Size
28 kB (27460 bytes)
Hash
2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641

HTTP Headers

GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YTozOntpOjE2OTY1MzY7aToxNjk3ODM0MjkwO2k6MTY5NjUzNztpOjE2OTc4MzQyOTQ7aToxNjk2NTMzO2k6MTY5NzgzNDI5Njt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps58823=3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:16 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=22702600
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop001.sk1.t,1697575096.cds203.sk1.shn,1697575096.cds203.sk1.c

new.lewd.ninja/_nuxt/css/4fac9a6.css

172.67.5.10

200 OK

524 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/4fac9a6.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (524), with no line terminators
Size
524 B (524 bytes)
Hash
38e124de5cbaf1738a1f238c6d22cdab
065a1a4f9d6dfaf293c99c07bbd26c485b8eeb17
167650990d45b391dc8cb29cf9df85af21c7660b7f4d07f8ea20ec4e35046f9e

HTTP Headers

GET /_nuxt/css/4fac9a6.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"20c-BloaT51t+vKTyZwHu9JsSFuO6xc"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed38cf569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/fluidplayer.min.js

172.67.5.10

200 OK

212 kB

URL GET HTTP/3
new.lewd.ninja/fluidplayer.min.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (62751)
Size
212 kB (211686 bytes)
Hash
57c091151b032dc219a8e239b3add116
a5bd1b4a98747fffd21e26902e3941f99934bcba
26bb48d4e49c2cabb541d8c1cc261551400a51fcac679ecbdb9e5e3c4329e688

HTTP Headers

GET /fluidplayer.min.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"33ae6-pb0bSph0f//SHiaQLjlB+Zk0vLo"
last-modified: 2023-10-17T18:36:23.470Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7162
server: cloudflare
cf-ray: 817b57ebae6d569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854

104.16.57.101

200 OK

20 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854
IP
104.16.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19978), with no line terminators
Size
20 kB (19978 bytes)
Hash
efeb2542712dce8a2c51cf68396e4a05
ac9ce350c598644c7b7f6186aaf0368eb077d396
c235f21017bcc11fcaa31d7dfd9855aaebcbf5f6d7ee9bf9f2e98a910907c391

HTTP Headers

GET /beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://new.lewd.ninja
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.7.1"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b57ebebbeb4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

i.jads.co/1x1.gif

205.185.216.10

200 OK

28 kB

URL GET HTTP/1.1
i.jads.co/1x1.gif
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=610935
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3\012- data
Size
28 kB (27460 bytes)
Hash
2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641

HTTP Headers

GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToxOntpOjE1NTg0MDk7aToxNjk3ODM0MjkwO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=22702606
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop001.sk1.t,1697575090.cds203.sk1.shn,1697575090.cds203.sk1.c

new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b

172.67.5.10

200 OK

28 kB

URL User Request GET HTTP/2
new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
28 kB (28390 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: text/html;charset=UTF-8
cf-ray: 817b57e77d9b5693-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: *, *
vary: Accept-Encoding
server-timing: -;dur=0;desc="Generate"
set-cookie: i18n_redirected=en; Path=/; Expires=Wed, 16 Oct 2024 20:38:07 GMT; SameSite=Lax
auth.strategy=local; Path=/
__cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; SameSite=Lax; path=/; expires=Wed, 18-Oct-23 20:38:07 GMT; HttpOnly
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

new.lewd.ninja/_nuxt/css/ecfe4c1.css

172.67.5.10

200 OK

2.0 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/ecfe4c1.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2012), with no line terminators
Size
2.0 kB (2010 bytes)
Hash
07b82e749a63540d8dd81b7ec6466120
90e10a7a0afa7a2feb7ebca360245d76ad419962
903236aa64fd5b17719ed8d49cc94087448a649ed0c7c7296438a648f2b440c0

HTTP Headers

GET /_nuxt/css/ecfe4c1.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"7da-KtYiGuLoMDpu+UpbEalIakAPg2s"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed6902569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/flag/ru.svg

172.67.5.10

200 OK

613 B

URL GET HTTP/3
new.lewd.ninja/flag/ru.svg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (672), with no line terminators
Size
613 B (613 bytes)
Hash
89e1b477cde905834deffbb6a041ade5
3f0dcd99b300644fabcb5d591d20b88b1414c8c4
112bebed6a9a1f34b22f386e4ccb199145635e1eaa21d42c6007079c5ed2c194

HTTP Headers

GET /flag/ru.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"265-9F3dO27o8ALaXoLTYj/rSUDHEGA"
last-modified: 2023-10-17T18:36:23.474Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f43fbc569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/8eeb184.js

172.67.5.10

200 OK

8.3 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/8eeb184.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (8810), with no line terminators
Size
8.3 kB (8257 bytes)
Hash
3463321db270fd22803cc9df063248d6
729fdb83b9c62a9e1184a4fdd7bd4e1437e3c3fe
0cb833038000bfeaf3d4332dc13f972f83dc39827f655ce25ae5926cd486c908

HTTP Headers

GET /_nuxt/8eeb184.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2041-2rEAO3VFODraYXWfjy8kosRld9U"
last-modified: 2023-10-17T18:36:23.414Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f83b27569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/0562770.js

172.67.5.10

200 OK

174 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/0562770.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
174 kB (174189 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/0562770.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2a86d-L2vqeEgw2duL4Ob41BQz9y3koDg"
last-modified: 2023-10-17T18:36:23.454Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4818
server: cloudflare
cf-ray: 817b57ebae62569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/93cd910.css

172.67.5.10

200 OK

319 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/93cd910.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (319), with no line terminators
Size
319 B (319 bytes)
Hash
61f11ed3058037eb7fd2cb369631e700
f439d0d528c8ca87e65c3f0423206e2d98cee21f
ef7cc05c931adfed0ff92bb9d2894d64b5af87b94287f1f4feafba1d0508d6ba

HTTP Headers

GET /_nuxt/css/93cd910.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"13f-9DnQ1SjIyofmXD8EIyBuLZjO4h8"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed48df569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/flag/gb.svg

172.67.5.10

200 OK

2.1 kB

URL GET HTTP/3
new.lewd.ninja/flag/gb.svg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (2231), with no line terminators
Size
2.1 kB (2102 bytes)
Hash
633c3ded142537234d4702d7fbeb2e7b
fb867fffb53404bcecdac895e3b1e9f42cecbc4d
bfee694cd5d0f957f9640e8cd96eb542c87bbdcae9bb3f41d4a58066a330c238

HTTP Headers

GET /flag/gb.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"836-I2OrVz9r14mjCOc2QVLcXqUawps"
last-modified: 2023-10-17T18:36:23.478Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f42fa2569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

owo.lewd.ninja/j2.js

172.67.5.10

200 OK

3.8 kB

URL GET HTTP/3
owo.lewd.ninja/j2.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3981), with no line terminators
Size
3.8 kB (3764 bytes)
Hash
0c33aa896dc76d4f41cbb4edb33678bf
6e8854e9c079d67ac86077de59be06d8e8cb914c
824f52a3f58addeb822d810da577a1eee6d8d0a24145d52f5eae9687796d6e19

HTTP Headers

GET /j2.js HTTP/1.1
Host: owo.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: application/javascript
last-modified: Tue, 17 Nov 2020 16:48:40 GMT
etag: W/"5fb3fee8-eb4"
expires: Thu, 16 Nov 2023 18:37:08 GMT
cache-control: public, max-age=2592000
lewd: yes
x-cache-status: MISS
cf-cache-status: HIT
age: 7162
vary: Accept-Encoding
server: cloudflare
cf-ray: 817b57ebeee8569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/8d5794a.css

172.67.5.10

200 OK

77 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/8d5794a.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
29165efc5bdf9194f6c279fa824c866d
82e25defe1aa7004f79132fe576cd26068d98ee1
d282000d138914647bc82687720d1296527d53b60675dd4f4b5e564925bd8ccc

HTTP Headers

GET /_nuxt/css/8d5794a.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"4d-guJd7+GqcAT3kTL+V2zSYGjZjuE"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed48dd569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/01ac315.js

172.67.5.10

200 OK

2.6 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/01ac315.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2812), with no line terminators
Size
2.6 kB (2630 bytes)
Hash
92cf10b687943416a9fbb30b25edade4
676b67d66442b24bded217d8f501cf0984da63c8
2d02419d832fabf82035e0fc34af04c14a5314828ec2494c1d49d119792ac46a

HTTP Headers

GET /_nuxt/01ac315.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770; ppu_main_afa6c4f1747190a87a81eefe21b3a31d=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e1d89e01-30b0-4471-9883-86bc4ac8e72c%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:10 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"a46-UxJlncVEg4aZ06pHgHlFhSHU7VU"
last-modified: 2023-10-17T18:36:23.454Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 5308
server: cloudflare
cf-ray: 817b57f9dc48569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.recaptcha.net/recaptcha/api2/reload?k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM

142.250.74.131

200 OK

34 kB

URL POST HTTP/3
www.recaptcha.net/recaptcha/api2/reload?k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc.google.com
FingerprintAB:24:A8:96:AB:9F:E1:A0:D2:6D:56:08:87:AA:8D:5C:17:08:A6:C4
ValidityMon, 18 Sep 2023 08:22:45 GMT - Mon, 11 Dec 2023 08:22:44 GMT

File type
ASCII text, with very long lines (33749)
Size
34 kB (33754 bytes)
Hash
b64a662c52bd86cbe43a3c572cc39601
f036c13b5a2a3fda98a2eff8242ca705c69c0600
41bf8f55b645fbfd5321b147b8f76d6d02106487ce11df11f246fc5250d2df8a

HTTP Headers

POST /recaptcha/api2/reload?k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6464
Origin: https://www.recaptcha.net
DNT: 1
Connection: keep-alive
Referer: https://www.recaptcha.net/recaptcha/api2/anchor?ar=1&k=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM&co=aHR0cHM6Ly9uZXcubGV3ZC5uaW5qYTo0NDM.&hl=en&v=MydHw_zggsxIJuhSbyOmPv5R&size=invisible&cb=jupc2j8yjt7b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Tue, 17 Oct 2023 20:38:15 GMT
expires: Tue, 17 Oct 2023 20:38:15 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09AMccBYStGSCOsLyxJANbayk_q24iQ8PO3_ByL3bS6-OUayRmvnZL3zJxipk4qAhpbbrxtxJrGl7qpQtZJ5fGZio;Path=/recaptcha;Expires=Sun, 14-Apr-2024 20:38:15 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

new.lewd.ninja/_nuxt/170e200.js

172.67.5.10

200 OK

733 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/170e200.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
733 kB (732829 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/170e200.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"b2e9d-dE93b5kt9egJKITlcZpJePyeMBA"
last-modified: 2023-10-17T18:36:23.446Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4818
server: cloudflare
cf-ray: 817b57ebae65569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

i.jads.co/network/user11892/1354-1673565010-0089849001673565010.gif

205.185.216.10

200 OK

643 kB

URL GET HTTP/1.1
i.jads.co/network/user11892/1354-1673565010-0089849001673565010.gif
IP
205.185.216.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://poweredby.jads.co/adshow.php?adzone=610935
Certificate
IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT

File type
GIF image data, version 89a, 728 x 90\012- data
Size
643 kB (643245 bytes)
Hash
0a584f2d41701950bac1568c322ce97a
fead39b871f6fcd4dadfadc402578b2c781b066e
16c2cdeaa8d2f08ef9859c3b07e5d12735972777fdf2a2980a0a8ae233790c31

HTTP Headers

GET /network/user11892/1354-1673565010-0089849001673565010.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c36f322c5cd52374ae6cd985ae768ecd; imps1354=1; juicy_data_1=YToxOntpOjE1NTg0MDk7aToxNjk3ODM0MjkwO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 17 Oct 2023 20:38:10 GMT
Connection: Keep-Alive
ETag: "1673565010"
Cache-Control: max-age=7569528
Content-Length: 643245
Content-Type: image/gif
Last-Modified: Thu, 12 Jan 2023 23:10:10 GMT
Accept-Ranges: bytes
X-HW: 1697575090.dop208.sk1.t,1697575090.cds249.sk1.shn,1697575090.dop208.sk1.t,1697575090.cds213.sk1.c

new.lewd.ninja/_nuxt/79762b8.js

172.67.5.10

200 OK

285 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/79762b8.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type

Size
285 kB (284622 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/79762b8.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"457ce-pVXc12RA5GEmbujrV0rCbsNeulI"
last-modified: 2023-10-17T18:36:23.422Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4818
server: cloudflare
cf-ray: 817b57ebae66569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/favicon.ico

172.67.5.10

200 OK

1.2 kB

URL GET HTTP/3
new.lewd.ninja/favicon.ico
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
d9616028c608050263d7dc6b4adb9f39
802212567182a6a26711d5b0dbf5e39870731217
47dabc9ca64738d0b691a4ce5511c6eb21824487946132baf83415ab45dccddd

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/vnd.microsoft.icon
vary: Accept-Encoding
etag: W/"47e-gCISVnGCpqJnEdWw2/XjmHBzEhc"
last-modified: 2023-10-17T18:36:23.478Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7162
server: cloudflare
cf-ray: 817b57f28e38569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Poppins:400,700&display=swap

142.250.74.106

200 OK

2.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins:400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint73:C0:B4:AB:41:0A:6A:68:D4:AE:EE:E2:11:A4:38:23:EF:D2:86:B7
ValidityMon, 18 Sep 2023 08:25:07 GMT - Mon, 11 Dec 2023 08:25:06 GMT

File type
ASCII text, with very long lines (2284), with no line terminators
Size
2.2 kB (2230 bytes)
Hash
b0c37e51cdaf2a324d4bf59101bd49b7
905c88943785b914ad61fdeb327b864244504a62
efae939be8f50b51b4c6387e258b37f1d9683a9a2e404e6793010a399110b789

HTTP Headers

GET /css?family=Poppins:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Oct 2023 20:38:08 GMT
date: Tue, 17 Oct 2023 20:38:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

new.lewd.ninja/_nuxt/css/e14266d.css

172.67.5.10

200 OK

36 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/e14266d.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
36 B (36 bytes)
Hash
16ad4c4ff969c4d1192df9c3858d47f6
52321d0b0cc26acd5c8950684160706e3808c599
3c330828890a6a8691e6806af10f14459b4e17314f8be60c605240b50f79dcff

HTTP Headers

GET /_nuxt/css/e14266d.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
content-length: 36
vary: Accept-Encoding
etag: "24-UjIdCwzCas1ciVBoQWBwbjgIxZk"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
accept-ranges: bytes
server: cloudflare
cf-ray: 817b57ed58fc569d-OSL
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/d188683.css

172.67.5.10

200 OK

287 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/d188683.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
287 B (287 bytes)
Hash
191b325e961c3c13f93edd94f123917e
f5c26ffb76966c1f0cd4be008307fd6d2e37662a
95120f69629ffe32782c8bae4577871b92e6b8c5a84bcd5589f409014df446c2

HTTP Headers

GET /_nuxt/css/d188683.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"11f-9cJv+3aWbB8M1L4Agwf9bS43Zio"
last-modified: 2023-10-17T18:36:23.406Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed58f5569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/02955de.css

172.67.5.10

200 OK

2.2 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/02955de.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2186), with no line terminators
Size
2.2 kB (2182 bytes)
Hash
83a9bffffc2e0c9e35b5edab8d78d8ed
70933cb935781add2e4482de474872e70ba49d90
7b5854a9faed811e7ad0f95043d4b7d9a1b2bbeb87026f93ea135899de561baf

HTTP Headers

GET /_nuxt/css/02955de.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"886-fEe5pN/vgiDMb8mzQ7O9wsHy7gk"
last-modified: 2023-10-17T18:36:23.410Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed38cb569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/cdn-cgi/zaraz/s.js?z=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

172.67.5.10

200 OK

5.2 kB

URL GET HTTP/3
new.lewd.ninja/cdn-cgi/zaraz/s.js?z=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
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5320), with no line terminators
Size
5.2 kB (5215 bytes)
Hash
eab3d8c6706de3ab516e6e7ffad1973e
626c6b08b6349b26417d23e425c220c4893e994a
8efe7ec7a13e5b2c3f2ca1d294e45e4d485a4cf22612957a48ca0c2089177901

HTTP Headers

GET /cdn-cgi/zaraz/s.js?z=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 HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://new.lewd.ninja/
DNT: 1
Connection: keep-alive
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: https://new.lewd.ninja
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Set-Cookie, Cache-Control
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 600
set-cookie: google-analytics_v4_fizD__engagementStart=1697575088770; Domain=lewd.ninja; Path=/; Max-Age=31536000000; HttpOnly; Secure; SameSite=Lax
google-analytics_v4_fizD__counter=1; Domain=lewd.ninja; Path=/; Max-Age=31536000000; HttpOnly; Secure; SameSite=Lax
google-analytics_v4_fizD__ga4sid=1584775143; Domain=lewd.ninja; Path=/; Max-Age=1800; HttpOnly; Secure; SameSite=Lax
google-analytics_v4_fizD__session_counter=1; Domain=lewd.ninja; Path=/; Max-Age=31536000000; HttpOnly; Secure; SameSite=Lax
google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; Domain=lewd.ninja; Path=/; Max-Age=31536000000; HttpOnly; Secure; SameSite=Lax
google-analytics_v4_fizD__let=1697575088770; Domain=lewd.ninja; Path=/; Max-Age=31536000000; HttpOnly; Secure; SameSite=Lax
server: cloudflare
cf-ray: 817b57f0cc64569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/flag/dk.svg

172.67.5.10

200 OK

522 B

URL GET HTTP/3
new.lewd.ninja/flag/dk.svg
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML document, ASCII text, with very long lines (563), with no line terminators
Size
522 B (522 bytes)
Hash
a40c5b55d733af44544df7100804d0ce
dcd9d0d3506aaa599c95a51d901308de1140cea8
8fc862a04b60704aadee8014ce942e49a3f00f35d9ef7aa14c8d9a985b60d3b5

HTTP Headers

GET /flag/dk.svg HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx; google-analytics_v4_fizD__engagementStart=1697575088770; google-analytics_v4_fizD__counter=1; google-analytics_v4_fizD__ga4sid=1584775143; google-analytics_v4_fizD__session_counter=1; google-analytics_v4_fizD__ga4=4a0db638-cc2c-4929-b00d-455a8dd56a32; google-analytics_v4_fizD__let=1697575088770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:09 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"20a-LyEenG022/YAhBM0hvWUsGxS5fM"
last-modified: 2023-10-17T18:36:23.478Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7164
server: cloudflare
cf-ray: 817b57f48fea569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/da44a21.js

172.67.5.10

200 OK

4.9 kB

URL GET HTTP/3
new.lewd.ninja/_nuxt/da44a21.js
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5192), with no line terminators
Size
4.9 kB (4886 bytes)
Hash
8a6db143a00a7f24f4563c43c3a7d7a1
946ebdb11b08f4686edad043d82815b88f94f279
77ab2652ac587a4211705999fa2253f53e877611ae1d25be25fb250d2d1113f2

HTTP Headers

GET /_nuxt/da44a21.js HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:07 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1316-Yj7JGmfXQZionhazvfQx7PQay7w"
last-modified: 2023-10-17T18:36:23.398Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 4818
server: cloudflare
cf-ray: 817b57ebae6b569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

new.lewd.ninja/_nuxt/css/eefd083.css

172.67.5.10

200 OK

111 B

URL GET HTTP/3
new.lewd.ninja/_nuxt/css/eefd083.css
IP
172.67.5.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:40:5C:F2:3B:BB:4F:ED:D5:BF:61:5F:20:1E:D1:59:33:7E:F3:A8
ValidityFri, 12 May 2023 00:00:00 GMT - Sat, 11 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
111 B (111 bytes)
Hash
34194314d33cc19df0a3e7fa342333e7
8b7b0b9ff1c6680a9336f2a8b2a10eb63a1ffd4e
6175e8a9af1bb29b58543fa6f0dcf005f77caa28f78d854ddaa95f4111ca4311

HTTP Headers

GET /_nuxt/css/eefd083.css HTTP/1.1
Host: new.lewd.ninja
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Cookie: i18n_redirected=en; auth.strategy=local; __cflb=02DiuD31mJTL5vLfw6PxqkdVTqYW1gcMWatP97N9gN1gx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Oct 2023 20:38:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"6f-i3sLn/HGaAqTNvKosqEOtjof/U4"
last-modified: 2023-10-17T18:36:23.402Z
server-timing: -;dur=0;desc="Generate"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *, *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 7163
server: cloudflare
cf-ray: 817b57ed7930569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.recaptcha.net/recaptcha/api.js?render=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM

142.250.74.131

200 OK

887 B

URL GET HTTP/2
www.recaptcha.net/recaptcha/api.js?render=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://new.lewd.ninja/external/game/167424/b11414dc56412146638a912b1e5e81b679d00fd5cda15a5152bba4b668a3588b
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc.google.com
FingerprintAB:24:A8:96:AB:9F:E1:A0:D2:6D:56:08:87:AA:8D:5C:17:08:A6:C4
ValidityMon, 18 Sep 2023 08:22:45 GMT - Mon, 11 Dec 2023 08:22:44 GMT

File type
ASCII text, with very long lines (887), with no line terminators
Size
887 B (887 bytes)
Hash
a641d7f225c585a645f14c6924276391
94c2dfb026a0d03a9d14961de8d449ed58ea5c48
abfd69f0296fb433d09e4933a0cfda64ef3b2204a0f7fda301625840b9f7bf43

HTTP Headers

GET /recaptcha/api.js?render=6LerLOQZAAAAAKx-K_eEEU0esYQ-XtvJYrrOsgWM HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://new.lewd.ninja/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 17 Oct 2023 20:38:09 GMT
date: Tue, 17 Oct 2023 20:38:09 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN