GET weav.xyz/favicon.ico
404 Not Found 0 B IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject weav.xyz
Fingerprint 29:C0:9F:8D:78:B5:95:CA:3F:41:BF:3C:57:A5:43:F2:74:51:F4:67
Validity Wed, 28 May 2025 07:13:34 GMT - Tue, 26 Aug 2025 08:11:06 GMT
GET /favicon.ico HTTP/1.1
Host: weav.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 48732
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MArqI7Z8Hol7obEuqzz7IpOk0Trb5yGRQKJrTjqYWm%2FSOVXYlZVx%2BSSlscp0Qg6FXe%2Bst0kCCPKls0T%2FKiM1CMmWiUJajw%3D%3D"}]}
content-encoding: br
cf-ray: 94c690f85e19569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240109-3/c157b454ba9b5d36770ac34d92ce0ad5.jpg
200 OK 23 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240109-3/c157b454ba9b5d36770ac34d92ce0ad5.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-14
Last Seen 2025-06-08
Times Seen 7
Size 23 kB (23334 bytes)
MD5 9eb98d499317f7d771e1eb63b4cb4a05
SHA1 66adf3c2925127efe9b44e26a9a6a6aa8dcbf1cb
SHA256 55b0dc0cc9e055453b06a924001b9a5b610647a241b9582f7a0ac8edc15bb561
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240109-3/c157b454ba9b5d36770ac34d92ce0ad5.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 23334
last-modified: Sun, 09 Feb 2025 04:47:07 GMT
expires: Tue, 09 Feb 2027 16:47:07 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240109-3/c157b454ba9b5d36770ac34d92ce0ad5.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f6058bcb6cf0d7df"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET mc.webvisor.org/watch/48140495/1?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
200 OK 604 B URL
mc.webvisor.org/watch/48140495/1?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
IP / ASN
77.88.21.119
#13238 YANDEX LLC
Requested by https://young.av4us.org/
Resource Info
File type JSON text data
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 1
Size 604 B (604 bytes)
MD5 e20fdb1a4a1af269628b4714a7a63e2b
SHA1 9475257b6fbd320209f966eacd8eaad0b629e21a
SHA256 ba38f77f14b83cf19057dfbefd2ecdb868ccdd7b8890abf2cd0beb5d840f372c
Certificate Info
Issuer GlobalSign nv-sa
Subject mc.webvisor.com
Fingerprint 4E:A6:D4:57:F5:B7:FB:C1:98:C0:40:D2:B8:FA:B4:10:43:09:41:94
Validity Sun, 09 Mar 2025 21:02:24 GMT - Sun, 31 Aug 2025 20:59:59 GMT
GET /watch/48140495/1?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1 HTTP/1.1
Host: mc.webvisor.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://young.av4us.org
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Cookie: yabs-sid=220660111749366589; i=F1tNyN2SDjXgw3akHsee8tvbxnOSMnL+ZyEhdU/NBn9gdtKDuNNeOoJz0iVg0K5vLI7QJP1R355T3XHAWLP33mmx+uE=; yandexuid=8735943531749366589; yuidss=8735943531749366589; ymex=1780902589.yrts.1749366589#1780902589.yrtsi.1749366589; bh=YL3ulMIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 604
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
access-control-allow-credentials: true
pragma: no-cache
strict-transport-security: max-age=31536000
access-control-allow-origin: https://young.av4us.org
x-content-type-options: nosniff
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
x-xss-protection: 1; mode=block
expires: Sun, 08-Jun-2025 07:09:49 GMT
last-modified: Sun, 08-Jun-2025 07:09:49 GMT
X-Firefox-Spdy: h2
GET cacrz.4jpg.top/AV4.us.jpg
200 OK 8.7 kB URL
cacrz.4jpg.top/AV4.us.jpg
IP / ASN
172.67.211.235
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /AV4.us.jpg HTTP/1.1
Host: cacrz.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:56 GMT
content-type: image/jpeg
content-length: 8741
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IBjxzrgtqnuDm4GyQd4w2mi599caDSjlg4FaEgevL4nYDnun5YHE4WpLJnddJFC7MKWXitlUc511tloHjMY2MJ405LSje8nSuGzXzzMbr1TTG5YuNGiBH0LBdagqzKblFw%3D%3D"}],"group":"cf-nel","max_age":604800}
etag: "2225-5499bcea176c0"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: Cake
ahost: RZ
cache-control: public, max-age=3600000
age: 23532
cf-cache-status: HIT
cf-ray: 94c6910e9e185689-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12043&min_rtt=5255&rtt_var=5816&sent=40&recv=32&lost=0&retrans=1&sent_bytes=14413&recv_bytes=2646&delivery_rate=1841465&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=c9abf9022f4e2fc5&ts=9794&inflight_dur=94&x=80"
200 OK 0 B IP / ASN
104.21.56.23
#13335 CLOUDFLARENET
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: young.av4us.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
pdojs-line8: host-young.av4us.org4.194.8.20-myhost-young.av4us.org38.220.248/
phost: young.av4us.org
pdojs-line355: notjp-nojp-myhost-young.av4us.org-filteron-
pdojs-line963: notjp-nojp-myhost-young.av4us.org-filteron-/
line1283: URI-/-myhost-young.av4us.org-filteron-
line1413: nojp
line1448: -nojp
xline: 1505host-219667
pdojs-line1513: ibig--chname--filteron--txtlang--shows-864
cache-control: public, max-age=14400
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PaXjNMkT%2FcOqlnZrlKyu4nqt4hnDgPEH0NDhb%2Bb7v9QV97KirB0RI7R2O%2Fqz8x%2BZXU4dXDEeu2ndlqUwIhwsrWVayXprASxv0ERIkh0%3D"}]}
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Cake
x-proxy-cache-192g-la: HIT
xkey-192la: young./-A-young.av4us.org-young.av4us.org-myzone---yes
x-proxy-cache-g-la: MISS
xkey-g-la: young./-A-young.av4us.org--my_zone
age: 25
cf-cache-status: HIT
last-modified: Sun, 08 Jun 2025 07:09:13 GMT
content-encoding: br
cf-ray: 94c690a0bab956c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET xgx.mobi/preview/girls-at-age-under-15-doing-porn.jpg
200 OK 24 kB URL
xgx.mobi/preview/girls-at-age-under-15-doing-porn.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: ""Girls At Age Under 15 Doing Porn" saved from https://xgx.mobi", baseline, precision 8, 564x317, components 3
First Seen 2025-04-11
Last Seen 2025-07-31
Times Seen 17
Size 24 kB (23849 bytes)
MD5 6f854c4b8a1eb995617101411b003a46
SHA1 5463aa7d95f4f711e1fc610e90298fd1409d80da
SHA256 259f8e290cf7516c66242039eafb5a9b010cf155957afbb775367f1141ca095d
Certificate Info
Issuer Google Trust Services
Subject xgx.mobi
Fingerprint E1:6E:22:1B:DE:DB:62:65:81:9C:75:E2:D1:2C:81:A1:B8:DF:90:C5
Validity Sun, 01 Jun 2025 22:31:43 GMT - Sat, 30 Aug 2025 23:30:02 GMT
GET /preview/girls-at-age-under-15-doing-porn.jpg HTTP/1.1
Host: xgx.mobi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 23849
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Sun, 29 Jun 2025 21:05:39 GMT
last-modified: Wed, 05 Oct 2022 00:09:18 GMT
x-response-time: 0.053539
x-status: 0.000 HIT
age: 17985
cache-control: max-age=1864558
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=x4sPI0z0%2F7SvEjMA%2BchILz6IXsd%2BoMfojk0Y1r3aeFM6ExZxc%2FLnYCGS91fTuLcQr57mAvZVAVnlWhwvcNjBfZKgXAZVMg%3D%3D"}]}
cf-ray: 94c690a87a87568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=UA-620120-3
200 OK 261 kB URL
www.googletagmanager.com/gtag/js?id=UA-620120-3
IP / ASN
142.250.74.168
#15169 GOOGLE
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (2385)
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 1
Size 261 kB (261094 bytes)
MD5 4a98ec2c95d4928ab537e7114ac354b8
SHA1 f371209a12c16116113c911f1667fd762a6913e0
SHA256 505843960b3fac4378d99fc9f1180d56b54300a15568e3d700b2b317c445d27c
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint 10:76:57:2F:C3:21:F2:5F:71:E4:85:A5:DB:F7:65:3F:51:03:55:07
Validity Mon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
GET /gtag/js?id=UA-620120-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 08 Jun 2025 07:09:47 GMT
expires: Sun, 08 Jun 2025 07:09:47 GMT
cache-control: private, max-age=900
last-modified: Sun, 08 Jun 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 93389
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/5/d/d/5dda6eb632174e9a7fbc15e2f29a1ac51500192345-768-432-573-h264.mp4-6.jpg?revnum=1
200 OK 14 kB URL
cdne-pics.youjizz.com/5/d/d/5dda6eb632174e9a7fbc15e2f29a1ac51500192345-768-432-573-h264.mp4-6.jpg?revnum=1
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 692x693, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 14 kB (14077 bytes)
MD5 75fcd924d030d04769c38cb138534869
SHA1 4cb64760e6f6998518293e8fd6c37701bdb47e19
SHA256 1a5f9364e459f5081bae77064a2f89890940a1ced747eedf57e18ac229928520
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /5/d/d/5dda6eb632174e9a7fbc15e2f29a1ac51500192345-768-432-573-h264.mp4-6.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 14077
last-modified: Sun, 16 Jul 2017 08:17:20 GMT
etag: "36fd-5546ae940887a"
expires: Wed, 27 Aug 2025 07:50:45 GMT
cache-control: max-age=10401134
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
accept-ranges: bytes
x-cdn-diag: ams5-6141-1-61867-h-0-0---;7846-25-2929974----0-0-1
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg
200 OK 200 kB URL
jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 718x404, components 3
First Seen 2025-03-22
Last Seen 2025-06-15
Times Seen 16
Size 200 kB (199931 bytes)
MD5 bb3e781f7be3ae66c9c286dd6defd0ad
SHA1 bdb6d3f3b52984836edadec850860124f9451da2
SHA256 1df783b66743701e7ffdce83e5c549f424defe2ba3569d0c4d7efb4a42a172fb
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 199931
Content-Type: image/jpeg
Date: Tue, 03 Jun 2025 12:20:48 GMT
Etag: "658a3054-30cfb"
Expires: Thu, 03 Jul 2025 12:20:48 GMT
Last-Modified: Tue, 03 Jun 2025 12:20:48 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET cdn5-thumbs.motherlessmedia.com/thumbs/C9184B4.jpg
200 OK 24 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/C9184B4.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1000x999, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2024-08-19
Last Seen 2025-07-24
Times Seen 12
Size 24 kB (23459 bytes)
MD5 c5d8c4e3307e651f528fcdf1f8d766db
SHA1 3d62a193d9bcde540a2c904b5aaf0dba23777430
SHA256 ed43bb2cd136c561f8b222d41af463a7cf9ae6ee1fa19edc8ea2f226e0f6fe0c
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/C9184B4.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 23459
vary: x-s-token
last-modified: Sat, 06 Oct 2018 23:10:55 GMT
etag: "5ba3-5779780066675"
x-cache: HIT
x-whom: cdn06
accept-ranges: bytes
GET www.9188porn.xyz/upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET pornolomka2.com/uploads/posts/2017-05/medium/1495445041_a6o53zcwhtc.jpg
200 OK 87 kB URL
pornolomka2.com/uploads/posts/2017-05/medium/1495445041_a6o53zcwhtc.jpg
IP / ASN
91.194.110.16
#213166 UA-Hosting SIA
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 450x253, components 3
First Seen 2024-08-20
Last Seen 2025-06-18
Times Seen 5
Size 87 kB (87448 bytes)
MD5 80a927cf6f09686981aa8df9e2db7009
SHA1 da86c4441cfa003463f8f618fab85b2fc365b793
SHA256 5708329e8614425ca528b77a0ea976bfc2ce96f0b7a8f1070fcaa66f872d9529
Certificate Info
Issuer Let's Encrypt
Subject pornolomka2.com
Fingerprint 5E:83:DF:E0:31:40:AC:3C:BC:70:FA:A6:4C:5A:B3:43:56:02:22:15
Validity Thu, 22 May 2025 22:44:05 GMT - Wed, 20 Aug 2025 22:44:04 GMT
GET /uploads/posts/2017-05/medium/1495445041_a6o53zcwhtc.jpg HTTP/1.1
Host: pornolomka2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3
date: Sun, 08 Jun 2025 07:07:44 GMT
content-type: image/jpeg
content-length: 87448
last-modified: Sun, 30 Aug 2020 17:00:30 GMT
etag: "5f4bdb2e-15598"
expires: Sun, 15 Jun 2025 07:07:44 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET en.vidmo.org/favicon.ico
200 OK 5.4 kB URL
en.vidmo.org/favicon.ico
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer ZeroSSL
Subject vidmo.org
Fingerprint 55:2A:92:C3:B4:BE:A5:94:65:51:0B:27:D2:FF:A6:C8:47:5C:2C:F3
Validity Wed, 07 May 2025 00:00:00 GMT - Tue, 05 Aug 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: en.vidmo.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pornohub24.ru/favicon.ico
404 Not Found 0 B URL
pornohub24.ru/favicon.ico
IP / ASN
193.163.7.2
#204601 Zomro B.V.
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pornohub24.ru
Fingerprint 91:0F:79:A7:07:B9:06:B5:97:6C:F2:D4:4E:13:77:24:4D:7F:38:EC
Validity Fri, 30 May 2025 23:51:51 GMT - Thu, 28 Aug 2025 23:51:50 GMT
GET /favicon.ico HTTP/1.1
Host: pornohub24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx/1.24.0
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: gzip
X-Firefox-Spdy: h2
GET sbzytpimg1.com:3519/upload/vod/20240614-1/40112a46eda6ec8fbdc86c1c337a7740.jpg
200 OK 97 kB URL
sbzytpimg1.com:3519/upload/vod/20240614-1/40112a46eda6ec8fbdc86c1c337a7740.jpg
IP / ASN
173.249.235.21
#11878 TZULO
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 718 x 404, 8-bit colormap, non-interlaced
First Seen 2024-08-19
Last Seen 2025-06-19
Times Seen 41
Size 97 kB (97373 bytes)
MD5 a48ae883f1bf13d4901ff5e752290ea6
SHA1 00deb9312def2dd9c7f5f5e4dc44dc6f6bcc75f2
SHA256 73c072160daaf4cd98e8916639c6f98751b3471fcdf0ccc43e3cbd5c5a77a6d5
Certificate Info
Issuer SSL Corporation
Subject sbzytpimg2.com
Fingerprint E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F
Validity Thu, 19 Dec 2024 14:08:44 GMT - Mon, 19 Jan 2026 14:08:44 GMT
GET /upload/vod/20240614-1/40112a46eda6ec8fbdc86c1c337a7740.jpg HTTP/1.1
Host: sbzytpimg1.com:3519
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jun 2024 17:57:37 GMT
vary: Accept-Encoding
etag: "666b3311-17c5d"
expires: Mon, 07 Jul 2025 00:47:10 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
X-Firefox-Spdy: h2
GET pornokol.net/favicon.ico
404 Not Found 0 B URL
pornokol.net/favicon.ico
IP / ASN
178.33.192.164
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pornokol.net
Fingerprint 83:31:E0:2B:9B:E6:C8:6E:B0:FD:CD:86:C7:8C:D3:22:8B:92:38:8D
Validity Fri, 16 May 2025 07:07:14 GMT - Thu, 14 Aug 2025 07:07:13 GMT
GET /favicon.ico HTTP/1.1
Host: pornokol.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx/1.20.1
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET sbzytpimg1.com:3519/upload/vod/20240826-1/d057169f65aae824f7cf74353abe4cd3.jpg
200 OK 110 kB URL
sbzytpimg1.com:3519/upload/vod/20240826-1/d057169f65aae824f7cf74353abe4cd3.jpg
IP / ASN
173.249.235.21
#11878 TZULO
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 718 x 404, 8-bit colormap, non-interlaced
First Seen 2025-02-15
Last Seen 2025-07-31
Times Seen 38
Size 110 kB (109513 bytes)
MD5 5458537618c4b77efcf97dd332f1bd05
SHA1 f5a108f90960b5e52924a0c2bc96ff079460af3e
SHA256 77dac8c6aba5250d2c21b5914d7f4fb4ba5bcbf3665b410c957399c84900c9cd
Certificate Info
Issuer SSL Corporation
Subject sbzytpimg2.com
Fingerprint E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F
Validity Thu, 19 Dec 2024 14:08:44 GMT - Mon, 19 Jan 2026 14:08:44 GMT
GET /upload/vod/20240826-1/d057169f65aae824f7cf74353abe4cd3.jpg HTTP/1.1
Host: sbzytpimg1.com:3519
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
last-modified: Mon, 26 Aug 2024 12:19:56 GMT
vary: Accept-Encoding
etag: "66cc72ec-1abc9"
expires: Sat, 28 Jun 2025 09:49:12 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET zooporner.com/faviconico/
404 Not Found 0 B URL
zooporner.com/faviconico/
IP / ASN
172.67.177.138
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject zooporner.com
Fingerprint F6:99:70:D4:33:D2:0A:77:7F:A7:F8:3A:13:6E:56:E8:EF:99:F7:D5
Validity Tue, 27 May 2025 15:16:16 GMT - Mon, 25 Aug 2025 16:14:21 GMT
GET /faviconico/ HTTP/1.1
Host: zooporner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FgHuzr1cux4apJzwlme0dhiclTf96WfNHUuqfRKWvEm72BmoxRbEsrsVoHos%2FTYTg6DVvJNL9nWocgjFm7qfgms6h%2FKJTp71ClqWruWlqz6BKMypl7HqBb6hJqy%2FVMxi"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: ASPro_1382933ca042bef776e8100bd5eb8ac5=a2nrqpu24bvajjdo7euojltiqj; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94c690f8498256a5-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=44131&min_rtt=9342&rtt_var=29863&sent=33&recv=38&lost=0&retrans=0&sent_bytes=5639&recv_bytes=2980&delivery_rate=68238&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dc2c5e14df0ea7a5&ts=7512&inflight_dur=202&x=80"
GET pic.duga.jp/unsecure/ibworks2/0138/cap/0009.jpg
200 OK 43 kB URL
pic.duga.jp/unsecure/ibworks2/0138/cap/0009.jpg
IP / ASN
122.213.196.52
#17506 ARTERIA Networks Corporation
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 864x480, components 3
First Seen 2024-04-21
Last Seen 2025-07-27
Times Seen 15
Size 43 kB (43222 bytes)
MD5 f4afeacac12a5770c3e8eb85965c0dcd
SHA1 ef15dacec0cb5a6d132f9a45b9f1abef2081c703
SHA256 f609f8a11f76b855d546e0c5330bfaba44fcfb1bb0f13efc360dff4fc4ff8b15
Certificate Info
Issuer GlobalSign nv-sa
Subject *.duga.jp
Fingerprint 0C:84:EB:45:29:A6:F2:F3:27:78:C1:B0:45:28:2D:19:98:94:47:FF
Validity Thu, 05 Dec 2024 06:29:27 GMT - Tue, 06 Jan 2026 06:29:26 GMT
GET /unsecure/ibworks2/0138/cap/0009.jpg HTTP/1.1
Host: pic.duga.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 43222
last-modified: Wed, 04 Dec 2024 11:58:20 GMT
etag: "675043dc-a8d6"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET de.123rf.com/favicon.ico
200 OK 1.2 kB URL
de.123rf.com/favicon.ico
IP / ASN
54.240.174.72
#16509 AMAZON-02
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-10-11
Last Seen 2025-07-31
Times Seen 38
Size 1.2 kB (1150 bytes)
MD5 0ddcbe7c5d5e59ee80aa8dadb6f4dba6
SHA1 b3e91db129901063803fda1dcdf4f6469909cbd9
SHA256 0a72940d13e6e5c9f46e66189312f2654c370b9f088c023edd203d012ec9dbec
Certificate Info
Issuer Amazon
Subject 123rf.com
Fingerprint F6:36:7A:1D:6B:64:06:84:8B:E1:86:3C:2F:42:B6:A9:0B:8D:1F:8D
Validity Sat, 08 Mar 2025 00:00:00 GMT - Mon, 06 Apr 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: de.123rf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 1150
date: Sun, 08 Jun 2025 07:09:53 GMT
server: nginx
last-modified: Thu, 17 Oct 2024 07:53:56 GMT
etag: "2054-47e-624a77d0a5488"
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jyj9bsdjdFxMqxkMrfBFgTjdBhnrWCN-cd0M0tpRc5QNZRMl17C5pw==
X-Firefox-Spdy: h2
GET sbzytpimg1.com:3519/upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg
404 Not Found 0 B URL
sbzytpimg1.com:3519/upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg
IP / ASN
173.249.235.21
#11878 TZULO
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer SSL Corporation
Subject sbzytpimg2.com
Fingerprint E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F
Validity Thu, 19 Dec 2024 14:08:44 GMT - Mon, 19 Jan 2026 14:08:44 GMT
GET /upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg HTTP/1.1
Host: sbzytpimg1.com:3519
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html
content-length: 146
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
GET www.dirtysancheztube.com/favicon.ico
200 OK 1.2 kB URL
www.dirtysancheztube.com/favicon.ico
IP / ASN
104.21.16.225
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-06-16
Last Seen 2025-07-31
Times Seen 55
Size 1.2 kB (1150 bytes)
MD5 dfd251a1848f0caf669a9253f39d3068
SHA1 ee5695be8c0f24633be95c3a3adbd4b5b42ed6a3
SHA256 0b561412b53c6a575b07d9dd6cd1d9d98a4b61c2ab3540b6e9ff246eb5c88664
Certificate Info
Issuer Google Trust Services
Subject dirtysancheztube.com
Fingerprint 57:E1:09:05:19:13:BC:25:AA:EE:35:50:01:F8:F6:6F:2C:00:26:D0
Validity Thu, 17 Apr 2025 14:12:15 GMT - Wed, 16 Jul 2025 15:11:01 GMT
GET /favicon.ico HTTP/1.1
Host: www.dirtysancheztube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 1150
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VLG75ty0G7CnnLNIvRlKp%2FkgeNoCt30Tx2y15f7uUGouyzIXsa8XgkGzOmLt7j3dU8dBx4Bt%2Bq101GGPq0hJwRPm8rrnhsQD0PqvZ6jSIYwWyK1WdcOadrteOTCXQdtIlurXDvaqdUZ5Yso%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 29 Nov 2019 12:08:12 GMT
etag: "5de10a2c-47e"
expires: Thu, 04 Jun 2026 04:54:45 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 353706
cf-cache-status: HIT
cf-ray: 94c690f08cf9712a-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=39771&min_rtt=18017&rtt_var=16107&sent=146&recv=233&lost=0&retrans=0&sent_bytes=11110&recv_bytes=12914&delivery_rate=70005&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=63331836a480c68f&ts=10752&inflight_dur=187&x=80"
GET timg216.top/videos/e285f3b783c79fc73b21836187a5c1d7600ad9ca/cover/5_505_259?ih=1
200 OK 78 kB URL
timg216.top/videos/e285f3b783c79fc73b21836187a5c1d7600ad9ca/cover/5_505_259?ih=1
IP / ASN
104.22.20.157
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2025-05-21
Last Seen 2025-08-01
Times Seen 30
Size 78 kB (77476 bytes)
MD5 b84ffb326ce31ee328aea70417c5060d
SHA1 68addb1146d359a73fa33037321ed5833cfa9957
SHA256 0d4b7c286665011ef2974a4513b9daeb58ea650150c32527a1ff20d7ba313cad
Certificate Info
Issuer Google Trust Services
Subject timg216.top
Fingerprint 77:83:68:54:E0:99:C9:F6:C6:B3:2B:5F:C1:56:9E:4F:34:BE:32:D9
Validity Fri, 06 Jun 2025 03:04:17 GMT - Thu, 04 Sep 2025 04:01:55 GMT
GET /videos/e285f3b783c79fc73b21836187a5c1d7600ad9ca/cover/5_505_259?ih=1 HTTP/1.1
Host: timg216.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: application/octet-stream
content-length: 77476
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Wed, 12 Mar 2025 14:53:47 GMT
vary: Accept-Encoding
etag: "67d19ffb-12ea4"
expires: Tue, 10 Jun 2025 13:48:45 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 558665
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6FQzNehHlOd%2F7PoFZYm3LhURDmg44xLLI33hiea%2BKzdFv%2BoDMg08%2Bcc6OuzlyDZkUIx8DLtsg%2FgSNs%2Fw2CiS8C21E3OnjQ%2FIgw%3D%3D"}]}
cf-ray: 94c690b47c9e56c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.com/upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2B3zVCSmrp6fBUN8NsIvMavWxAmb0H0ybIR6JOumnUzXyDiB9aHEvcrIFJXlKcbOrsAhAk3DgwSsOXXi%2Fx6F3bH0oFP3rATYKP1g8uyx"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94c690c7c921569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET images.embed-player.space/23/04/26/1108098-055.jpg
200 OK 21 kB URL
images.embed-player.space/23/04/26/1108098-055.jpg
IP / ASN
51.77.85.40
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 640x360, components 3
First Seen 2025-06-02
Last Seen 2025-07-26
Times Seen 30
Size 21 kB (21104 bytes)
MD5 6fcece2f53e633ce2b71eca41cc613f7
SHA1 5fab10829aebb4e87c1d6e42ae09a2e6764509dc
SHA256 371edbbe518b7d78cacc1419592403cc60ef3ac06dc6288fa9ef396234aee0ce
Certificate Info
Issuer Let's Encrypt
Subject images.embed-player.space
Fingerprint 5C:3A:CC:57:E3:C9:7C:E2:FE:E0:7A:F2:28:27:0C:7E:60:D1:76:43
Validity Sun, 04 May 2025 05:51:42 GMT - Sat, 02 Aug 2025 05:51:41 GMT
GET /23/04/26/1108098-055.jpg HTTP/1.1
Host: images.embed-player.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 08 Jun 2025 07:09:42 GMT
Content-Type: image/jpeg
Content-Length: 21104
Last-Modified: Fri, 14 Mar 2025 05:03:34 GMT
Connection: keep-alive
ETag: "67d3b8a6-5270"
Accept-Ranges: bytes
GET roriruo.com/favicon.ico
404 Not Found 0 B URL
roriruo.com/favicon.ico
IP / ASN
172.67.207.136
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject roriruo.com
Fingerprint 64:C9:C8:66:C9:A2:69:8C:BB:75:17:54:32:29:90:C2:B9:DB:AF:BD
Validity Thu, 22 May 2025 01:12:01 GMT - Wed, 20 Aug 2025 02:10:41 GMT
GET /favicon.ico HTTP/1.1
Host: roriruo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
server: cloudflare
referrer-policy: no-referrer-when-downgrade
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xrOUPQOVekgk%2FS9WCZ7BsaRWbdL5v9RPRozibmgeI%2F1xClGYhE6sSKpR5ds%2BDkIG7D4Fa1BCCPp6fAgytdP1hZT9B%2FGz75rMJQ%3D%3D"}]}
content-encoding: br
cf-ray: 94c6910029bb0b02-OSL
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET gcore-pic.xvideos-cdn.com/videos/thumbs169ll/59/cb/cd/59cbcd607c9f75950157353ca530e77b/59cbcd607c9f75950157353ca530e77b.18.jpg
200 OK 12 kB URL
gcore-pic.xvideos-cdn.com/videos/thumbs169ll/59/cb/cd/59cbcd607c9f75950157353ca530e77b/59cbcd607c9f75950157353ca530e77b.18.jpg
IP / ASN
185.244.209.62
#199524 G-Core Labs S.A.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 12 kB (12478 bytes)
MD5 a6a35d51bf18e569d116b88b838b8b8d
SHA1 540eda9b5f02e910b371eb72ce507917c9ad47c3
SHA256 f0c44e101397748669f0bb88714f9089ad6888c6680b3c2be3bb7164f865b1df
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/59/cb/cd/59cbcd607c9f75950157353ca530e77b/59cbcd607c9f75950157353ca530e77b.18.jpg HTTP/1.1
Host: gcore-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 12478
traceparent: 00-6694410188be5863b162dfb3309676ed-8192eaabf1ef05c6-01
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 21 Sep 2016 22:26:02 GMT
expires: Mon, 19 May 2025 15:39:49 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-id-shield: am3-hw-edge-gc132
age: 1697385
x-id: osix-hw-edge-gc4
cache: HIT
x-cached-since: 2025-05-24T05:41:57+00:00
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pornohub24.ru/erosceny/screen/dedushka-poprosil-vnuchku-pokazat-emu-kisku-0.jpg
200 OK 13 kB URL
pornohub24.ru/erosceny/screen/dedushka-poprosil-vnuchku-pokazat-emu-kisku-0.jpg
IP / ASN
193.163.7.2
#204601 Zomro B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2025-05-26
Last Seen 2025-07-29
Times Seen 15
Size 13 kB (13187 bytes)
MD5 5cdcad2c190cc860eec04f33aabfcaad
SHA1 087f736210dcfa12ae03870dac499d76c93098fb
SHA256 c2410ce92ca9e00982b097b6c50f39696471071a1e00c08f38178ce13301e0d8
Certificate Info
Issuer Let's Encrypt
Subject pornohub24.ru
Fingerprint 91:0F:79:A7:07:B9:06:B5:97:6C:F2:D4:4E:13:77:24:4D:7F:38:EC
Validity Fri, 30 May 2025 23:51:51 GMT - Thu, 28 Aug 2025 23:51:50 GMT
GET /erosceny/screen/dedushka-poprosil-vnuchku-pokazat-emu-kisku-0.jpg HTTP/1.1
Host: pornohub24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 13187
last-modified: Sat, 06 Apr 2024 17:37:26 GMT
etag: "66118856-3383"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.dirtysancheztube.com/thumbs/7/151_babe_Yed.jpg
200 OK 16 kB URL
www.dirtysancheztube.com/thumbs/7/151_babe_Yed.jpg
IP / ASN
104.21.16.225
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2024-04-26
Last Seen 2025-07-31
Times Seen 38
Size 16 kB (15961 bytes)
MD5 2e2dd68787524df6e0c9ed799fd4f196
SHA1 5244a9594b19b0feb1e00ef5579d0f06d7f5b1b9
SHA256 ac46245067c3930d4894816ca9ec1b1c76afc12fcd23226e5e3ee71db2f4ceef
Certificate Info
Issuer Google Trust Services
Subject dirtysancheztube.com
Fingerprint 57:E1:09:05:19:13:BC:25:AA:EE:35:50:01:F8:F6:6F:2C:00:26:D0
Validity Thu, 17 Apr 2025 14:12:15 GMT - Wed, 16 Jul 2025 15:11:01 GMT
GET /thumbs/7/151_babe_Yed.jpg HTTP/1.1
Host: www.dirtysancheztube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 15961
server: cloudflare
last-modified: Wed, 29 May 2019 09:01:16 GMT
etag: "5cee4a5c-3e59"
expires: Wed, 22 Apr 2026 20:07:44 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 4014116
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=f2%2FVkFsvFMNhhTvYN7Gg3sDVqWTNHdc49l4iDNi%2FOvVlIaHGKObVgCt943MgvuZ1K8%2FIyizBKOzEWKPGOp2hzbW9zE%2Fbkhp2UOCZk%2BYz3UCABxuF3co%3D"}]}
cf-ray: 94c690a7f89eb517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn5.manyvids.com/php_uploads/video_images/FFeZine/eAO7QRPlABkYsAUWolKS_screenshot_001.jpg
200 OK 60 kB URL
cdn5.manyvids.com/php_uploads/video_images/FFeZine/eAO7QRPlABkYsAUWolKS_screenshot_001.jpg
IP / ASN
3.167.2.110
#0
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 720x406, components 3
First Seen 2024-04-30
Last Seen 2025-07-22
Times Seen 24
Size 60 kB (60245 bytes)
MD5 97033bcad3f5ff4b2d25cf341aeb57ba
SHA1 cce52b2c1fbbdabb30d4c49f03f40ec3fbe8d676
SHA256 ec55b7fb30952fa4d41639cfa40e75fecec226a23ffafc159faa4f3d80976e89
Certificate Info
Issuer Amazon
Subject cdn1.manyvids.com
Fingerprint 91:16:59:63:55:3D:B0:BF:F2:8D:7E:00:31:10:B8:52:C5:93:4E:09
Validity Wed, 02 Apr 2025 00:00:00 GMT - Sat, 02 May 2026 23:59:59 GMT
GET /php_uploads/video_images/FFeZine/eAO7QRPlABkYsAUWolKS_screenshot_001.jpg HTTP/1.1
Host: cdn5.manyvids.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 60245
last-modified: Sat, 26 Nov 2016 00:23:48 GMT
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-version-id: 1vWajnLoClfZK17vwtuyiEObLmxOaXOl
accept-ranges: bytes
server: AmazonS3
date: Sun, 08 Jun 2025 07:03:19 GMT
etag: "97033bcad3f5ff4b2d25cf341aeb57ba"
x-cache: Hit from cloudfront
via: 1.1 3da6f6abdf7146387ea7a7f42136c780.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: cqu_9gF29U49F0FzgZ6EbtXSs4o3-Nz_1oExJehaubPuIfmFld4-OQ==
age: 887
cache-control: max-age=31536000
X-Firefox-Spdy: h2
GET rolotube.com/favicon.ico
0 B URL
rolotube.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: rolotube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.redd.tube/favicon.ico
301 Moved Permanently 0 B URL
www.redd.tube/favicon.ico
IP / ASN
104.26.15.75
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject redd.tube
Fingerprint 6A:A3:49:66:02:5D:88:4D:80:FE:94:BE:C2:A9:9E:59:D7:97:02:97
Validity Sun, 01 Jun 2025 15:05:19 GMT - Sat, 30 Aug 2025 16:05:04 GMT
GET /favicon.ico HTTP/1.1
Host: www.redd.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html; charset=iso-8859-1
content-length: 229
location: http://www.redd.tube/
cf-ray: 94c690f9db2f569c-OSL
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gl0f4dmZc8%2BzH13cF8ssOpUm7UhYDY%2FqVkz0diOIGTMIWmQKs00sEBurRfftN8QwfAgTMBxGDXvtPWGwCkS%2FQ25eEtSANiTyT%2FTfjLK4uDeS8nsYbjooS7h0bJRGBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5871&min_rtt=492&rtt_var=10653&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3265&recv_bytes=1208&delivery_rate=3563576&cwnd=254&unsent_bytes=0&cid=529662bcd660f280&ts=1282&x=0"
X-Firefox-Spdy: h2
GET baraag.net/@KDE/image/png
200 OK 0 B URL
baraag.net/@KDE/image/png
IP / ASN
185.178.208.171
#57724 Ddos-guard Ltd
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject baraag.net
Fingerprint 26:B4:99:80:95:E8:44:FA:AF:51:A8:98:FE:AE:74:3F:26:6E:B9:05
Validity Fri, 23 May 2025 17:57:01 GMT - Thu, 21 Aug 2025 17:57:00 GMT
GET /@KDE/image/png HTTP/1.1
Host: baraag.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=IHLR3shvpf9YocJD; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:40 GMT
__ddg10_=1749366580; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:40 GMT
__ddg9_=91.90.42.154; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:40 GMT
__ddg1_=mmEM0u07Ezs0ZygpnHHt; Domain=.baraag.net; HttpOnly; Path=/; Expires=Mon, 08-Jun-2026 07:09:40 GMT
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: text/html; charset=utf-8
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: same-origin
vary: Accept-Encoding, Accept, Accept-Language, Cookie
link: </packs/js/locale/en-json-8e2bb01c3724d13b0392.chunk.js>; rel=preload; as=script; type=text/javascript; integrity=sha256-YzCkH5d6OACQybOPiw7cp4Gp/dcK1Q1ogGq2eKP0K0o=
cache-control: max-age=15, public, stale-while-revalidate=30, stale-if-error=86400
etag: W/"12020939efee5bf34cbd15b7be282b4b"
content-security-policy: upgrade-insecure-requests;, base-uri 'none'; default-src 'none'; frame-ancestors 'none'; font-src 'self' https://baraag.net; img-src 'self' data: blob: https://baraag.net https://media.baraag.net; style-src 'self' https://baraag.net 'nonce-5jOjlFTrvnhDMhOt1Ygcsw=='; media-src 'self' data: https://baraag.net https://media.baraag.net; manifest-src 'self' https://baraag.net; form-action 'none'; child-src 'self' blob: https://baraag.net; worker-src 'self' blob: https://baraag.net; connect-src 'self' data: blob: https://baraag.net https://media.baraag.net wss://baraag.net; script-src 'self' https://baraag.net 'wasm-unsafe-eval'; frame-src 'self' https:
x-request-id: 3b543154-0431-4873-bf17-f6d6aa46b751
x-runtime: 0.016872
strict-transport-security: max-age=63072000; includeSubDomains
x-cached: MISS
content-encoding: gzip
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
GET blumpkintube.com/thumbs/1/275/055_masturbates_hairbrush.jpg
200 OK 14 kB URL
blumpkintube.com/thumbs/1/275/055_masturbates_hairbrush.jpg
IP / ASN
104.21.79.212
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2024-05-09
Last Seen 2025-07-09
Times Seen 26
Size 14 kB (14135 bytes)
MD5 8fae8552c5146132c29f0b26d949f794
SHA1 21f2d7b8cd22fff2b5537b767bd23361d4f0f3fb
SHA256 f27af34ceaf0a5ffebdf20596a954e95a1669c314fc409ef4e376366fc7dc66a
Certificate Info
Issuer Google Trust Services
Subject blumpkintube.com
Fingerprint DA:B0:E3:91:B1:3A:F6:92:40:A5:6D:DA:6D:67:42:B4:54:2E:FF:7C
Validity Mon, 14 Apr 2025 03:20:03 GMT - Sun, 13 Jul 2025 04:18:31 GMT
GET /thumbs/1/275/055_masturbates_hairbrush.jpg HTTP/1.1
Host: blumpkintube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 14135
server: cloudflare
last-modified: Thu, 04 Feb 2021 15:22:38 GMT
etag: "601c113e-3737"
expires: Mon, 08 Jun 2026 02:11:01 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 17924
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=tPvUenAq5rJXo0N2QlQ9MaRVzsFUwwjKKPzAMDDixGv%2F4VAua44kWbgyQif7%2FWPn5Az3HPdFwTf0bvKf5%2F8yE%2BqEA3RpW4Yd23P2WreB"}]}
cf-ray: 94c690c78dd90b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.imghuo.cfd/media/videos/tmb/000/001/081/6.jpg
200 OK 5.2 kB URL
img.imghuo.cfd/media/videos/tmb/000/001/081/6.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-04-18
Last Seen 2025-07-13
Times Seen 40
Size 5.2 kB (5208 bytes)
MD5 567f199b1ec36c044c45106caad489ab
SHA1 b98bd94c04e16a458a9ac8c9608e584f033e8359
SHA256 feac8d5d44b609b0912a1573668f7156bef00a6ae4acc4610d55289e8298bc84
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /media/videos/tmb/000/001/081/6.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:43 GMT
Content-Type: image/jpeg
Content-Length: 5208
Last-Modified: Sat, 23 Mar 2024 12:21:37 GMT
Connection: keep-alive
ETag: "65fec951-1458"
Accept-Ranges: bytes
GET www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OWe5rENBds2paAdY4%2FQGkE%2FKGRBfEh%2BIyShieUQkkM1FGhkrJmbV62oPvY5XLSGzJqqG6v3PAjAiIWjP%2B%2BVzPPs0G3D4Y0MHiI741Fk%2F"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 94c690c20bf1569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/
0 B IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET 69av.one/favicon.ico
404 Not Found 0 B IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 69av.one
Fingerprint 79:7E:9B:B4:78:D3:E8:31:EB:16:5A:77:AB:75:9D:D8:71:33:11:2A
Validity Mon, 02 Jun 2025 16:54:08 GMT - Sun, 31 Aug 2025 17:52:49 GMT
GET /favicon.ico HTTP/1.1
Host: 69av.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 44841
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xo5R0ARx7nTlMj7jJ9COhx%2BgS59iUWr%2BaMsMMi0CIK1cp3cKH5X8cLesM3JDI4rri31bE45Mf98uu3NVjhllU1pk8Z37gg%3D%3D"}]}
content-encoding: br
cf-ray: 94c690f1ad0a56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img.caoliuzywimg.com:188/20230218/H2lKjcKj/1.jpg
200 OK 128 kB URL
img.caoliuzywimg.com:188/20230218/H2lKjcKj/1.jpg
IP / ASN
173.239.250.131
#197555 Smartmieten Tech Private Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1280x595, components 3
First Seen 2024-08-19
Last Seen 2025-07-31
Times Seen 39
Size 128 kB (128378 bytes)
MD5 aea1b2ad20e5a19eef2dd8b289b097e5
SHA1 d4aeb8148b8e83b9fc524560a016ce6443414006
SHA256 94e382f15ac5e3397d1c76a315174a2b615842072a725a4507541d2d8168fe47
Certificate Info
Issuer Unizeto Technologies S.A.
Subject img.caoliuzywimg.com
Fingerprint 56:53:85:09:6F:47:70:4E:D7:DB:38:DD:2A:C6:FD:9D:67:28:2A:26
Validity Mon, 31 Mar 2025 17:06:06 GMT - Thu, 30 Apr 2026 17:06:05 GMT
GET /20230218/H2lKjcKj/1.jpg HTTP/1.1
Host: img.caoliuzywimg.com:188
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH
content-type: image/jpeg
date: Sun, 08 Jun 2025 06:02:32 GMT
etag: "63f11a0f-1f57a"
last-modified: Sun, 08 Jun 2025 06:02:32 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 128378
X-Firefox-Spdy: h2
GET eb.spreee.pro/favicon.ico
404 Not Found 0 B URL
eb.spreee.pro/favicon.ico
IP / ASN
172.67.204.221
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject spreee.pro
Fingerprint DD:A1:CB:48:4C:7F:12:30:1F:C1:42:77:B5:1F:E0:E0:5F:A2:47:17
Validity Fri, 02 May 2025 11:36:32 GMT - Thu, 31 Jul 2025 12:34:49 GMT
GET /favicon.ico HTTP/1.1
Host: eb.spreee.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:51 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 134
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UD5hgRRmqMljP6zPGAEMT9EhltooksXo8OXZApgMDML8qoBdL885B4x76Mc3c2z8UIqJOEiacqB2vm9BUucDETewi6N7JX7Dlc7x"}]}
content-encoding: br
cf-ray: 94c690ec0847b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET timg215.top/videos/14b21afdd584bcc8c0ff2527dbd39cb8703a4fde/cover/5_505_259?ih=1
200 OK 48 kB URL
timg215.top/videos/14b21afdd584bcc8c0ff2527dbd39cb8703a4fde/cover/5_505_259?ih=1
IP / ASN
172.67.25.56
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 505x259, components 3
First Seen 2024-12-28
Last Seen 2025-07-31
Times Seen 15
Size 48 kB (47812 bytes)
MD5 daf51adc8e1f5874a5cac9051bd7a869
SHA1 6a22eac240449458ddc154613c12580e34099081
SHA256 0c233099a68625b6ee404e69f21a7b6767ad71dc6512c3bc1b7384a757a3ae81
Certificate Info
Issuer Google Trust Services
Subject timg215.top
Fingerprint 47:C1:38:A5:8A:9F:96:13:94:79:23:4C:77:96:01:E3:5B:39:10:DC
Validity Mon, 02 Jun 2025 04:11:42 GMT - Sun, 31 Aug 2025 05:10:26 GMT
GET /videos/14b21afdd584bcc8c0ff2527dbd39cb8703a4fde/cover/5_505_259?ih=1 HTTP/1.1
Host: timg215.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:43 GMT
content-type: application/octet-stream
content-length: 47812
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 04 Mar 2025 09:31:37 GMT
vary: Accept-Encoding
etag: "67c6c879-bac4"
expires: Tue, 24 Jun 2025 02:47:06 GMT
cache-control: public, max-age=31536000, stale-if-error=7200
t-cache: LHIT
cf-cache-status: HIT
age: 359038
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fPCuFEbSSd4RGplPAcl2Jy2byK%2FF84Vb6iDGPSJ2vObyXJ%2Bs3Re0%2BxLKTR3o9x8JG1RoKe%2BPz0SXmvY9rhRMs85W1SctZUZkNQ%3D%3D"}]}
cf-ray: 94c690b8cd32b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ytboob.com/wp-content/uploads/2021/02/lcx5xd.jpg
200 OK 102 kB URL
ytboob.com/wp-content/uploads/2021/02/lcx5xd.jpg
IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 1280x720, components 3
First Seen 2025-02-21
Last Seen 2025-06-08
Times Seen 5
Size 102 kB (101694 bytes)
MD5 18c1931eb52e3a1cc4e6866ba19650d8
SHA1 d32a4a831ebe7b5e9ad2ccdf22632c5387a48fac
SHA256 fcb18bcaf753c46ba40ec9d04f5513e56f84d735db43acae4e7fe6eeed11d615
Certificate Info
Issuer Google Trust Services
Subject ytboob.com
Fingerprint 80:33:C2:83:09:D8:44:42:EF:D7:7A:57:C5:50:8D:05:CA:0D:4B:1B
Validity Sun, 18 May 2025 08:09:48 GMT - Sat, 16 Aug 2025 09:07:28 GMT
GET /wp-content/uploads/2021/02/lcx5xd.jpg HTTP/1.1
Host: ytboob.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 101694
server: cloudflare
last-modified: Fri, 05 Feb 2021 04:02:29 GMT
etag: "601cc355-18d3e"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 3780
cache-control: max-age=31536000
cf-cache-status: HIT
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UA8H9F8uMFZCnz%2FzxHv375h224OsSFr%2F6zYh47PuONJc5Tb2i3MTANuu1C0%2FA4zS%2BRK%2BLkZrvU0SfBhiEPCO6ubX0zh1XQm1"}]}
cf-ray: 94c690bf1f9456af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pornohub24.ru/erosceny/screen/11-letnyaya-shkolnica-snyala-trusiki-i-pokazala-pisyu-malchiku-0.jpg
200 OK 23 kB URL
pornohub24.ru/erosceny/screen/11-letnyaya-shkolnica-snyala-trusiki-i-pokazala-pisyu-malchiku-0.jpg
IP / ASN
193.163.7.2
#204601 Zomro B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x240, components 3
First Seen 2024-12-08
Last Seen 2025-07-25
Times Seen 8
Size 23 kB (23060 bytes)
MD5 143220e422d6f5cf27254db081f86746
SHA1 d0391167c01ff2ba4eedb50901b1d94abc173187
SHA256 71147c3ce0f3d97b18331c4afc5dff67332d04532517f1450f66b45f08373676
Certificate Info
Issuer Let's Encrypt
Subject pornohub24.ru
Fingerprint 91:0F:79:A7:07:B9:06:B5:97:6C:F2:D4:4E:13:77:24:4D:7F:38:EC
Validity Fri, 30 May 2025 23:51:51 GMT - Thu, 28 Aug 2025 23:51:50 GMT
GET /erosceny/screen/11-letnyaya-shkolnica-snyala-trusiki-i-pokazala-pisyu-malchiku-0.jpg HTTP/1.1
Host: pornohub24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 23060
last-modified: Sat, 06 Apr 2024 17:37:13 GMT
etag: "66118849-5a14"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET xvideosrei.com/wp-content/uploads/2021/07/menininha-chupando-rola.jpg
200 OK 22 kB URL
xvideosrei.com/wp-content/uploads/2021/07/menininha-chupando-rola.jpg
IP / ASN
194.102.104.213
#0
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 600x337, components 3
First Seen 2024-04-20
Last Seen 2025-07-31
Times Seen 107
Size 22 kB (22420 bytes)
MD5 338791e48c1df4f540f96b307f8b8415
SHA1 b592b4ab7d9768292df8cc6d8ce8eea5f2e2f54f
SHA256 a687e20f80763fe54dca8f9b2be6d22d28a589dcc84041afd222d862a3c3e8da
Certificate Info
Issuer Let's Encrypt
Subject www.xvideosrei.com
Fingerprint C2:28:3A:CF:8A:D8:6A:AE:2F:E5:5E:F8:61:B6:CF:EB:A3:2F:85:03
Validity Sun, 18 May 2025 11:52:41 GMT - Sat, 16 Aug 2025 11:52:40 GMT
GET /wp-content/uploads/2021/07/menininha-chupando-rola.jpg HTTP/1.1
Host: xvideosrei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: image/jpeg
content-length: 22420
last-modified: Tue, 06 Jul 2021 00:47:23 GMT
version: MS25053003
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: public, max-age=31536000, must-revalidate
access-control-allow-origin: *
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1
404 Not Found 0 B URL
cdne-pics.youjizz.com/5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
x-cdn-diag: ams5-6140-3-3487756-h-0-0---;7846-21-2929974----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/1B376FE.jpg
200 OK 30 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/1B376FE.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 30 kB (29814 bytes)
MD5 b05086aad0a0ff03e6a6b85a173e2fc6
SHA1 589589ae561e814365b631a77c5f9898ecf8a629
SHA256 8abbb76da8114a258784e8dec0c0d81e80377806e00e9c6acf48ad6d4bff494e
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/1B376FE.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 29814
vary: x-s-token
last-modified: Tue, 02 Oct 2018 13:50:40 GMT
etag: "7476-5773f351853d6"
x-cache: HIT
x-whom: cdn02
accept-ranges: bytes
GET de.chezcathy.com/favicon.ico
200 OK 1.4 kB URL
de.chezcathy.com/favicon.ico
IP / ASN
138.199.36.11
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
First Seen 2025-05-02
Last Seen 2025-08-01
Times Seen 163
Size 1.4 kB (1406 bytes)
MD5 8851a1b28ebe567b927c9ae6600a8fc6
SHA1 113da6a02dff45d4b9c0d3c9ae531445a8c7b687
SHA256 b545a5091485f5dd485f0e9d2abcd55a06b22f9359c6da8955b8da7b1d3c9212
Certificate Info
Issuer Let's Encrypt
Subject de.chezcathy.com
Fingerprint 88:32:CD:E0:38:7C:62:5E:F2:F3:CC:E7:A9:5D:1A:0B:44:C5:FA:33
Validity Sat, 31 May 2025 05:19:38 GMT - Fri, 29 Aug 2025 05:19:37 GMT
GET /favicon.ico HTTP/1.1
Host: de.chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-length: 1406
server: BunnyCDN-DE1-1054
cdn-pullzone: 3632933
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1406-1744916365610"
last-modified: Thu, 17 Apr 2025 18:59:25 GMT
cdn-cachedat: 05/24/2025 15:52:29
x-powered-by: Express
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 53a01ccdbde1864d65d32a3e2d3693b2
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET porn112.com/favicon.ico
404 Not Found 0 B URL
porn112.com/favicon.ico
IP / ASN
94.23.171.102
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject porn112.com
Fingerprint E3:80:54:9D:90:C6:13:86:B3:F6:3F:8C:7D:B1:2A:A4:43:44:2F:B5
Validity Wed, 30 Apr 2025 07:06:37 GMT - Tue, 29 Jul 2025 07:06:36 GMT
GET /favicon.ico HTTP/1.1
Host: porn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx/1.20.1
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/1ce4ac3f61b7f0250b7b9ea8ad6d687a.jpg
200 OK 33 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240111-1/1ce4ac3f61b7f0250b7b9ea8ad6d687a.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-16
Last Seen 2025-07-17
Times Seen 17
Size 33 kB (33208 bytes)
MD5 7b84f64f605f2e73017d344b980790b8
SHA1 a91b832896f12739a75cdaf5b406fe44d492a066
SHA256 b37bb7849d285a2efcd2d93582af3f9d4a19c11603fe4f381011040f22c9f82c
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240111-1/1ce4ac3f61b7f0250b7b9ea8ad6d687a.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 33208
last-modified: Wed, 08 Jan 2025 07:05:34 GMT
expires: Fri, 08 Jan 2027 19:05:34 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240111-1/1ce4ac3f61b7f0250b7b9ea8ad6d687a.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ba61659cce3c7acb"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET en.chezcathy.com/favicon.ico
200 OK 1.4 kB URL
en.chezcathy.com/favicon.ico
IP / ASN
89.187.169.47
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
First Seen 2025-05-02
Last Seen 2025-08-01
Times Seen 163
Size 1.4 kB (1406 bytes)
MD5 8851a1b28ebe567b927c9ae6600a8fc6
SHA1 113da6a02dff45d4b9c0d3c9ae531445a8c7b687
SHA256 b545a5091485f5dd485f0e9d2abcd55a06b22f9359c6da8955b8da7b1d3c9212
Certificate Info
Issuer Let's Encrypt
Subject en.chezcathy.com
Fingerprint 90:E4:BF:DD:EC:C4:FF:16:35:5C:3D:DE:A0:3E:4B:4F:ED:0E:BB:D7
Validity Sat, 31 May 2025 05:21:06 GMT - Fri, 29 Aug 2025 05:21:05 GMT
GET /favicon.ico HTTP/1.1
Host: en.chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:53 GMT
content-length: 1406
server: BunnyCDN-DE1-756
cdn-pullzone: 3638742
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1406-1744916365610"
last-modified: Thu, 17 Apr 2025 18:59:25 GMT
cdn-cachedat: 04/28/2025 15:50:16
x-powered-by: Express
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: fc9d825ffd22a4d6cf9bdf571b92b735
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.nsfwnudes.com/favicon.ico
200 OK 1.2 kB URL
www.nsfwnudes.com/favicon.ico
IP / ASN
213.174.130.69
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-12-08
Last Seen 2025-07-30
Times Seen 26
Size 1.2 kB (1150 bytes)
MD5 8af584225eec09450b4db2d059b41a0a
SHA1 fc79905533fff60338577722a0ad51b3ccc5d1ab
SHA256 9f935f34c6af17f0afcdfac9fdab65c4b08a87f2da6d41547f09b5310f204d36
Certificate Info
Issuer Let's Encrypt
Subject nsfwnudes.com
Fingerprint E0:4B:39:C4:85:8F:80:B9:3E:C5:27:77:7C:8A:1D:80:D3:10:EB:9D
Validity Sun, 25 May 2025 03:50:27 GMT - Sat, 23 Aug 2025 03:50:26 GMT
GET /favicon.ico HTTP/1.1
Host: www.nsfwnudes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.16.1
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Sat, 04 Apr 2020 07:28:18 GMT
etag: "5e883712-47e"
expires: Tue, 08 Jul 2025 07:09:52 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/
0 B IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET taboovideos.tv/favicon.ico
200 OK 15 kB URL
taboovideos.tv/favicon.ico
IP / ASN
23.227.194.213
#29802 HVC-AS
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2025-05-23
Last Seen 2025-07-27
Times Seen 12
Size 15 kB (15406 bytes)
MD5 04f65184582cc33af8af7644287bacd2
SHA1 4b7b5f59ce8ab152c451c658df40e90fafdb1a86
SHA256 14ca9c9adc2e040dbdc30c4753bb9861f87a01279ccb6715b51482708f4d69eb
Certificate Info
Issuer Let's Encrypt
Subject taboovideos.tv
Fingerprint B6:6A:73:5C:50:EE:C9:B9:66:AA:19:59:14:BB:3D:61:89:8E:42:92
Validity Sat, 19 Apr 2025 01:17:38 GMT - Fri, 18 Jul 2025 01:17:37 GMT
GET /favicon.ico HTTP/1.1
Host: taboovideos.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.2
date: Sun, 08 Jun 2025 07:09:51 GMT
content-type: image/vnd.microsoft.icon
content-length: 15406
last-modified: Wed, 16 Feb 2022 13:01:44 GMT
etag: "3c2e-5d822405ede00"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
GET cav102.com/favicon.ico
200 OK 4.3 kB URL
cav102.com/favicon.ico
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
First Seen 2024-02-24
Last Seen 2025-07-27
Times Seen 88
Size 4.3 kB (4286 bytes)
MD5 79ca959796fd758988aa0acfb9952640
SHA1 8a8e7fa57c016b5cbc943faefc7c651e8959b0ce
SHA256 01d4884a0070a4804680dc80361b4695aa48ca7b37eb6768127b17d9763464cb
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /favicon.ico HTTP/1.1
Host: cav102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Mon, 25 Jul 2022 15:38:39 GMT
etag: "62deb8ff-10be"
strict-transport-security: max-age=31536000
cache-control: no-cache
accept-ranges: bytes
X-Firefox-Spdy: h2
GET img.imghuo.cfd/sp/media/videos/tmb/1509/12.jpg
200 OK 12 kB URL
img.imghuo.cfd/sp/media/videos/tmb/1509/12.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 384x214, components 3
First Seen 2024-04-20
Last Seen 2025-07-06
Times Seen 28
Size 12 kB (11886 bytes)
MD5 bfce0c55cc4c64ae88a635e183cbade5
SHA1 64660684ed5422ba58d3810bd5fbf2f85276de5e
SHA256 45bc2b8014a00ec8a7c071fae26bbde4c3b40e302e544889fbed6850d91bebe0
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /sp/media/videos/tmb/1509/12.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:42 GMT
Content-Type: image/jpeg
Content-Length: 11886
Last-Modified: Sat, 23 Mar 2024 12:20:59 GMT
Connection: keep-alive
ETag: "65fec92b-2e6e"
Accept-Ranges: bytes
GET i1.wp.com/jpgjingpinx.com/upload/vod/20231225-1/26d0819b2e844ce3f82bb8afc4d502bc.jpg
200 OK 11 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20231225-1/26d0819b2e844ce3f82bb8afc4d502bc.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 540x304, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-01-24
Last Seen 2025-07-24
Times Seen 12
Size 11 kB (10668 bytes)
MD5 c4a3a1c8fb3c03383a3f2a2b56e55fe4
SHA1 27d09d36b5501c44f5cece44ad82e766d205f574
SHA256 e154037edb8dd8477af1c529ad4363e10e201483fc56ea8d71e2a739f44b0f7a
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231225-1/26d0819b2e844ce3f82bb8afc4d502bc.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 10668
last-modified: Fri, 03 Jan 2025 10:31:08 GMT
expires: Sun, 03 Jan 2027 22:31:08 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231225-1/26d0819b2e844ce3f82bb8afc4d502bc.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "4eca47dbad8f25ac"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET yaebus17.ru/uploads/posts/2024-06/1718802089_1.jpg
200 OK 11 kB URL
yaebus17.ru/uploads/posts/2024-06/1718802089_1.jpg
IP / ASN
104.21.10.31
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x174, components 3
First Seen 2025-02-26
Last Seen 2025-07-31
Times Seen 6
Size 11 kB (11297 bytes)
MD5 2355d4a367ce95c76dfe670de766da3c
SHA1 a7cf21cd2f474b22be372a015d54ec9261fd9dc2
SHA256 69fdd48a46410bef39d9e606c918591bc0b5db485c468b2ad44e17e137e66b2d
Certificate Info
Issuer Google Trust Services
Subject yaebus17.ru
Fingerprint 1F:8B:73:E7:C5:A2:24:83:D2:4A:7D:0C:5B:BE:B2:9E:11:B6:E5:03
Validity Thu, 15 May 2025 22:23:04 GMT - Wed, 13 Aug 2025 23:21:51 GMT
GET /uploads/posts/2024-06/1718802089_1.jpg HTTP/1.1
Host: yaebus17.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://young.av4us.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:47 GMT
content-type: image/jpeg
content-length: 11297
server: cloudflare
last-modified: Fri, 20 Dec 2024 07:36:37 GMT
etag: "67651e85-2c21"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 118115
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SNo%2F1W7n0%2F7AOOrB%2BG4oRdHcXrNspyBvR%2BTPCjr%2FfIgOWECwPL4uOp6SCQ9xwBHOjVJNSttoYN7dftl0tuinsv3jOh5HO1rnkQ%3D%3D"}]}
cf-ray: 94c690d37b39712e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET feimian.slsltutu.com/upload/vod/20230702-1/7e7edd94d1bf0b3ee4696f8bf8d6a682.jpg
0 B URL
feimian.slsltutu.com/upload/vod/20230702-1/7e7edd94d1bf0b3ee4696f8bf8d6a682.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pic.lbtp88.com
Fingerprint E0:D8:E9:3E:58:88:56:C3:37:E7:59:82:D9:67:E8:D2:F9:49:E6:84
Validity Fri, 28 Mar 2025 15:36:34 GMT - Thu, 26 Jun 2025 15:36:33 GMT
GET /upload/vod/20230702-1/7e7edd94d1bf0b3ee4696f8bf8d6a682.jpg HTTP/1.1
Host: feimian.slsltutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET jxjav.com/favicon.ico
404 Not Found 0 B IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject jxjav.com
Fingerprint 41:62:20:35:9D:E0:EA:95:D0:68:4E:88:E0:A6:43:EF:36:54:A0:7F
Validity Tue, 20 May 2025 22:43:12 GMT - Mon, 18 Aug 2025 23:40:51 GMT
GET /favicon.ico HTTP/1.1
Host: jxjav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Ni8JO7dCBpt2vjjghEZbugxt89Q0Zl0ILB6LXydByonHLhrJcf1Hj8sY3BykHe0VprreWBkpvBYzrSqyz8bgEcC4Vr0swec%3D"}]}
age: 103
cache-control: max-age=86400
cf-cache-status: HIT
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
content-encoding: br
cf-ray: 94c69101c9e6b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.crazyshit.com/content/2021/11/2b7c96d3.jpg
200 OK 197 kB URL
media.crazyshit.com/content/2021/11/2b7c96d3.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 720x540, components 3
First Seen 2025-05-28
Last Seen 2025-06-08
Times Seen 4
Size 197 kB (196980 bytes)
MD5 099b7d0e286ab9537c7e7209304b697d
SHA1 259eb0119d9c27088f860412bcb278450de43b3d
SHA256 5d17356e2eb88aaec770a0c5311e393f86909ba886c56754a5784f43029a07cd
Certificate Info
Issuer Let's Encrypt
Subject media.crazyshit.com
Fingerprint 86:4E:C5:61:00:7D:DA:60:9D:45:C3:C0:B3:5C:33:1B:D1:54:0B:60
Validity Fri, 30 May 2025 02:32:36 GMT - Thu, 28 Aug 2025 02:32:35 GMT
GET /content/2021/11/2b7c96d3.jpg HTTP/1.1
Host: media.crazyshit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 196980
server: nginx/1.26.0
etag: 099b7d0e286ab9537c7e7209304b697d
last-modified: Sat, 06 Nov 2021 15:05:01 GMT
x-timestamp: 1636211100.94499
x-trans-id: tx9e4901ce561346f19a4ef-0066cd94c6
x-openstack-request-id: tx9e4901ce561346f19a4ef-0066cd94c6
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Tue, 10 Jun 2025 07:09:44 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/3/c/c/2/d/3cc2dd85686ee3e991c78f5cf1a40d791685256603-48.jpg
200 OK 12 kB URL
cdne-pics.youjizz.com/3/c/c/2/d/3cc2dd85686ee3e991c78f5cf1a40d791685256603-48.jpg
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 692x693, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 308x232, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 12 kB (12106 bytes)
MD5 8829b48b469c45e3b1c796619ed1849b
SHA1 c7a33888ed18dba49f6becf50a0dff8dc6771f79
SHA256 2caa176aee354cd27a07e666cabdbfab66c1db491e7e3e99112ab2ac6dd78585
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /3/c/c/2/d/3cc2dd85686ee3e991c78f5cf1a40d791685256603-48.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 12106
last-modified: Mon, 29 May 2023 07:44:07 GMT
etag: "2f4a-5fcd0406940b8"
expires: Thu, 25 Jan 2024 12:22:16 GMT
cache-control: max-age=10369759
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-3518018-h-0-0---;7846-21-2929974----0-0-1
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/4f/b0/4fb056a159c8ed7dba3a100dbd2d9663/12478831.jpg
200 OK 24 kB URL
en.vidmo.pro/thumbs_320/4f/b0/4fb056a159c8ed7dba3a100dbd2d9663/12478831.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 320x240, components 3
First Seen 2024-04-27
Last Seen 2025-07-26
Times Seen 18
Size 24 kB (23826 bytes)
MD5 521d6cde7d60efe07f0a378851f300cf
SHA1 360b7bcbbcb7e13be383f921ae7998f58b5b877f
SHA256 4620991e3e22a057cb44ce433d60166d25c4bea464f44ec181f7650d1c9b46c9
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/4f/b0/4fb056a159c8ed7dba3a100dbd2d9663/12478831.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 23826
last-modified: Thu, 05 Nov 2020 08:33:52 GMT
expires: Mon, 09 Oct 2023 19:21:18 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET static.bad.news/images/dm/c658a320cba4a9e65cbd38bcc9482902.jpg
200 OK 25 kB URL
static.bad.news/images/dm/c658a320cba4a9e65cbd38bcc9482902.jpg
IP / ASN
104.26.12.211
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 268x394, components 3
First Seen 2025-06-03
Last Seen 2025-07-13
Times Seen 4
Size 25 kB (25083 bytes)
MD5 b0a8b47afd1a33677ad6a99d47bd4c48
SHA1 12161aac92fa3b03fb77e6e30dafea8507586b10
SHA256 992a6945dfcb761e03497ff726a60d9fb29ac694d2b4a5bea8489c3ea333fa5f
Certificate Info
Issuer Google Trust Services
Subject 323e0cdf.sni.cloudflaressl.com
Fingerprint 55:86:78:CA:C5:E7:3D:35:91:89:7E:F9:9E:3F:99:4F:24:FE:14:B6
Validity Sat, 31 May 2025 10:46:28 GMT - Fri, 29 Aug 2025 11:46:23 GMT
GET /images/dm/c658a320cba4a9e65cbd38bcc9482902.jpg HTTP/1.1
Host: static.bad.news
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 25083
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25827
etag: "e7a356a17e7ee8cd05fa042a07d7ebcf"
last-modified: Sat, 07 Oct 2023 09:45:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6129
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T5kJMe%2BKgIrn0fMvE2slscweWtIsI3Lzx7wdbktAjiD9zy1mSCr0JLFxPrlYwQLuUd1oTjZr6Fv%2FPce%2B5UjttQFMTpouolj28fFfqUKwyAKVb%2FOO5qMxzEXFWWbYxKi9XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 94c690c6eddcb529-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1923&min_rtt=1625&rtt_var=613&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3315&recv_bytes=1205&delivery_rate=1757992&cwnd=253&unsent_bytes=0&cid=34c0bf07d2377980&ts=3581&x=0"
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/b8/60/b860388a8878561aa11f1355c57df693/15830933.jpg
200 OK 15 kB URL
en.vidmo.pro/thumbs_320/b8/60/b860388a8878561aa11f1355c57df693/15830933.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-04-26
Last Seen 2025-06-08
Times Seen 25
Size 15 kB (15113 bytes)
MD5 2066ec80d4ec3cf652cc6e84aeedb525
SHA1 d3c130f0148911930b02b9b1ab0ee2307a2be4ba
SHA256 73e1574e60935d4b5d0f873d2c6fd54afe66bf05c5fbf30c67e7f091338f7c45
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/b8/60/b860388a8878561aa11f1355c57df693/15830933.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 15113
last-modified: Sun, 26 Nov 2023 16:32:44 GMT
expires: Sun, 07 Apr 2024 18:02:15 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET img.aosikaimge.com/20221004/j10X8v3p/1.jpg
200 OK 2.2 kB URL
img.aosikaimge.com/20221004/j10X8v3p/1.jpg
IP / ASN
64.112.78.72
#6939 HURRICANE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 240x320, components 3
First Seen 2025-05-23
Last Seen 2025-07-31
Times Seen 22
Size 2.2 kB (2219 bytes)
MD5 4032202cd18c4808814bd541ebfb721b
SHA1 b6d678add876abd129d1da858e78a281333970eb
SHA256 ff245febf2339146b4d556dfa45cf74a72b28f5ace7c99f70e87c208cda06058
Certificate Info
Issuer Unizeto Technologies S.A.
Subject *.aosikaimge.com
Fingerprint BC:19:8D:FF:22:32:94:8C:04:80:02:CE:1A:59:1C:91:24:15:5C:66
Validity Tue, 24 Dec 2024 10:28:23 GMT - Fri, 23 Jan 2026 10:28:22 GMT
GET /20221004/j10X8v3p/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:45 GMT
Content-Type: image/jpeg
Content-Length: 2219
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 01:42:54 GMT
ETag: "633ce11e-8ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
GET vidmo.pro/favicon.ico
200 OK 5.4 kB IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /favicon.ico HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.effedupmovies.com/favicon.ico
0 B URL
www.effedupmovies.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET xvideosrei.com/wp-content/uploads/2021/07/belinda-aka-bely.jpg
200 OK 24 kB URL
xvideosrei.com/wp-content/uploads/2021/07/belinda-aka-bely.jpg
IP / ASN
194.102.104.213
#0
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 600x337, components 3
First Seen 2025-02-15
Last Seen 2025-07-07
Times Seen 10
Size 24 kB (23508 bytes)
MD5 b121f43aabf22aebcf6b43fac86149c9
SHA1 6022eae20a1cc7c60b763c57656bf2baf704a13e
SHA256 7f8d42fecd0969e198af559e5a4f7b0340ec0f2a50987aed9af8786cb755a03d
Certificate Info
Issuer Let's Encrypt
Subject www.xvideosrei.com
Fingerprint C2:28:3A:CF:8A:D8:6A:AE:2F:E5:5E:F8:61:B6:CF:EB:A3:2F:85:03
Validity Sun, 18 May 2025 11:52:41 GMT - Sat, 16 Aug 2025 11:52:40 GMT
GET /wp-content/uploads/2021/07/belinda-aka-bely.jpg HTTP/1.1
Host: xvideosrei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: image/jpeg
content-length: 23508
last-modified: Mon, 05 Jul 2021 21:59:27 GMT
version: MS25053003
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: public, max-age=31536000, must-revalidate
access-control-allow-origin: *
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET asianpornteens.com/favicon.ico
404 Not Found 0 B URL
asianpornteens.com/favicon.ico
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject asianpornteens.com
Fingerprint 00:07:3B:0D:E6:66:84:08:A3:E3:C7:61:EB:C5:48:55:CB:96:08:B1
Validity Thu, 24 Apr 2025 12:57:00 GMT - Wed, 23 Jul 2025 13:55:44 GMT
GET /favicon.ico HTTP/1.1
Host: asianpornteens.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wUU%2ByYRgGS8xwvftpMN9gBrioLeb4Dm1t4nViXpD2%2BGvRsQx9kDabdjXY56yhh5nK0u%2BKR1ExloAxeqn1xddaAgmVfWYv9dAwH692gmcPE0%3D"}]}
age: 21
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 94c690fca80db4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240108-1/063c487d44120d500f8da8d56a1ffa49.jpg
200 OK 109 kB URL
jpgjingpinx.com/upload/vod/20240108-1/063c487d44120d500f8da8d56a1ffa49.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 718 x 404, 8-bit colormap, non-interlaced
First Seen 2024-07-06
Last Seen 2025-06-15
Times Seen 17
Size 109 kB (109198 bytes)
MD5 a678ee144a109be86b7f7bfa34ffed51
SHA1 0c97f756ebee23f6fe6bab24282a2eb55a50d90c
SHA256 1e94f0e78da828d18e1864ce9d318f7c17bf6a52b2aafb021afb4ac05bc35634
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240108-1/063c487d44120d500f8da8d56a1ffa49.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 109198
Content-Type: image/jpeg
Date: Tue, 03 Jun 2025 12:09:47 GMT
Etag: "659b8f74-1aa8e"
Expires: Thu, 03 Jul 2025 12:09:47 GMT
Last-Modified: Tue, 03 Jun 2025 12:09:47 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET depositphotos.com/favicon.ico
200 OK 15 kB URL
depositphotos.com/favicon.ico
IP / ASN
135.84.52.6
#35415 Webzilla B.V.
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2024-06-16
Last Seen 2025-06-08
Times Seen 9
Size 15 kB (15086 bytes)
MD5 3f26a7a43267e35979b567f94e9900fa
SHA1 e0cd57730aa40ca2bd78e0d33de2c9a7aa86d53c
SHA256 0c677c53f596f0c0f6e3bfd42153d41fdc28166372446f9c3faa7ab197666f01
Certificate Info
Issuer Sectigo Limited
Subject *.depositphotos.com
Fingerprint B6:1E:76:56:34:85:2C:CC:4F:92:BC:AC:76:99:C0:A1:CE:4C:60:D9
Validity Mon, 21 Oct 2024 00:00:00 GMT - Fri, 21 Nov 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: depositphotos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: image/x-icon
content-length: 15086
last-modified: Fri, 25 Sep 2020 12:39:46 GMT
etag: "5f6de512-3aee"
x-balancer: balancer-wz
x-country: Norway
accept-ranges: bytes
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240108-1/59d4a11f2e74f76404e5859685dd4bd5.jpg
404 Not Found 0 B URL
jpgjingpinx.com/upload/vod/20240108-1/59d4a11f2e74f76404e5859685dd4bd5.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240108-1/59d4a11f2e74f76404e5859685dd4bd5.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 150
Content-Type: text/html
Date: Sun, 08 Jun 2025 07:09:48 GMT
Server: openresty
X-Cache: BYPASS, Status: 404
GET 159i.net/404
404 Not Found 0 B IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 159i.net
Fingerprint AA:CD:77:27:51:8D:5C:83:7B:DE:A9:3B:D4:8D:F8:E6:21:AE:CC:46
Validity Tue, 20 May 2025 05:04:13 GMT - Mon, 18 Aug 2025 06:02:43 GMT
GET /404 HTTP/1.1
Host: 159i.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://young.av4us.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=utf-8
server: cloudflare
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
priority: u=4,i=?0
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TYoyEzKMZ9a9RgrA9eyUuM07TZN0UvHJLonKlpvXADYLS8f1gCkGj18WCy9cuVFouzUShrfu7RPDNsXx7FMGMTU4lZPaVw%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
set-cookie: PHPSESSID=44ffafc5793748b1b6d10409ebee4600; Path=/
cf-ray: 94c690e12dd7b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET sorkab.com/favicon.ico
404 Not Found 0 B URL
sorkab.com/favicon.ico
IP / ASN
104.21.87.34
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject sorkab.com
Fingerprint 7E:D6:71:6B:9C:36:1D:C7:90:8F:FA:A8:7A:9C:EB:16:BE:16:EF:C1
Validity Sun, 04 May 2025 04:23:18 GMT - Sat, 02 Aug 2025 05:21:58 GMT
GET /favicon.ico HTTP/1.1
Host: sorkab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aaeNvthfrNYx8Og22x3wUMVChQI8H92q7NyUA6qjrGqbp3OeBRwzAySsuVsChr9cw4Sq8pDA1eeiBxRwK4qdKO54D7wZqurhx8ewoS6lS9AkO%2FempAWGblVu6fII"}],"group":"cf-nel","max_age":604800}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: User-Agent,Accept-Encoding,Accept-Encoding
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
referrer-policy: no-referrer-when-downgrade
permissions-policy: geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), payment=(), fullscreen=(self)
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
content-encoding: br
cf-ray: 94c690efecb40b51-OSL
server: cloudflare
server-timing: cfL4;desc="?proto=QUIC&rtt=52289&min_rtt=18216&rtt_var=21804&sent=102&recv=127&lost=0&retrans=0&sent_bytes=8553&recv_bytes=7353&delivery_rate=43784&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=9b579d460f32ccc1&ts=11133&inflight_dur=141&x=80"
GET tx-br-pic.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzE5LzE4L0JNakF5TkRBek1Ua3hPREkwTWpOZk1UVXdNREF4TlRJek1qWTVORFV6WHpFMU1ERXdOVFU0TURZME56Y3pNRjh4WHpNPV9vdXVfQjU5NTE2NmVhOGUxYThhNDRkNmNmYzNkMjE4YjMzZDc4LndlYnA.webp
200 OK 22 kB URL
tx-br-pic.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzE5LzE4L0JNakF5TkRBek1Ua3hPREkwTWpOZk1UVXdNREF4TlRJek1qWTVORFV6WHpFMU1ERXdOVFU0TURZME56Y3pNRjh4WHpNPV9vdXVfQjU5NTE2NmVhOGUxYThhNDRkNmNmYzNkMjE4YjMzZDc4LndlYnA.webp
IP / ASN
43.152.140.79
#139341 ACE
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 323x574, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2024-08-20
Last Seen 2025-07-25
Times Seen 7
Size 22 kB (21570 bytes)
MD5 c6edc6dc96d0680d2e1c0139a2f04bdc
SHA1 6559962ab4a2be52a9188e2b6193558bbb240575
SHA256 3dfa835af08933a96b9b48a94d3f86b61c911bad617cc31bd3c88f4e3494f273
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDI0LzAzLzE5LzE4L0JNakF5TkRBek1Ua3hPREkwTWpOZk1UVXdNREF4TlRJek1qWTVORFV6WHpFMU1ERXdOVFU0TURZME56Y3pNRjh4WHpNPV9vdXVfQjU5NTE2NmVhOGUxYThhNDRkNmNmYzNkMjE4YjMzZDc4LndlYnA.webp HTTP/1.1
Host: tx-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
cache-control: max-age=31536000
content-length: 21570
accept-ranges: bytes
x-nws-log-uuid: 7570086100808146153
server: Lego Server
date: Sun, 08 Jun 2025 07:09:43 GMT
x-cache-lookup: Cache Hit
kwaisign: NULL
access-control-allow-origin: *
x-ks-client-ip: 91.90.42.154
x-ks-cache: Miss from 43.152.140.79
X-Firefox-Spdy: h2
GET es.123rf.com/favicon.ico
200 OK 1.2 kB URL
es.123rf.com/favicon.ico
IP / ASN
54.240.174.72
#16509 AMAZON-02
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-10-11
Last Seen 2025-07-31
Times Seen 38
Size 1.2 kB (1150 bytes)
MD5 0ddcbe7c5d5e59ee80aa8dadb6f4dba6
SHA1 b3e91db129901063803fda1dcdf4f6469909cbd9
SHA256 0a72940d13e6e5c9f46e66189312f2654c370b9f088c023edd203d012ec9dbec
Certificate Info
Issuer Amazon
Subject 123rf.com
Fingerprint F6:36:7A:1D:6B:64:06:84:8B:E1:86:3C:2F:42:B6:A9:0B:8D:1F:8D
Validity Sat, 08 Mar 2025 00:00:00 GMT - Mon, 06 Apr 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: es.123rf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 1150
date: Sun, 08 Jun 2025 07:09:54 GMT
server: nginx
last-modified: Thu, 17 Oct 2024 07:53:56 GMT
etag: "2054-47e-624a77d0a5488"
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X15-bWQAvXmqakcucgdaGSjv8DdLp_HYB-nytjx_WgzQ5PKi0OdTng==
X-Firefox-Spdy: h2
GET yaebus16.ru/uploads/posts/2024-06/1718802089_1.jpg
301 Moved Permanently 11 kB URL
yaebus16.ru/uploads/posts/2024-06/1718802089_1.jpg
IP / ASN
104.21.66.84
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 11 kB (11297 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject yaebus16.ru
Fingerprint 8F:5C:7C:AD:F3:94:F6:9B:59:AC:DC:FA:F2:95:AB:D5:AC:F7:8F:FC
Validity Sat, 31 May 2025 21:06:48 GMT - Fri, 29 Aug 2025 22:05:21 GMT
GET /uploads/posts/2024-06/1718802089_1.jpg HTTP/1.1
Host: yaebus16.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: text/html; charset=iso-8859-1
location: https://yaebus17.ru/uploads/posts/2024-06/1718802089_1.jpg
server: cloudflare
age: 52034
cache-control: max-age=86400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WWYavxvhvQfZWloIymZD77SZiGf9So4Oiz1Fk1EX2QE1LqU2lZZ2XUYO%2B1kyhsCM%2F%2FPUQuDlD2wxAcsYZ3%2BxBYSji%2FscW7H5xQ%3D%3D"}]}
cf-ray: 94c690c63865b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.sexsex2.com/favicon.ico
0 B URL
www.sexsex2.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.sexsex2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET pornolomka2.com/favicon.ico
404 Not Found 0 B URL
pornolomka2.com/favicon.ico
IP / ASN
91.194.110.16
#213166 UA-Hosting SIA
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pornolomka2.com
Fingerprint 5E:83:DF:E0:31:40:AC:3C:BC:70:FA:A6:4C:5A:B3:43:56:02:22:15
Validity Thu, 22 May 2025 22:44:05 GMT - Wed, 20 Aug 2025 22:44:04 GMT
GET /favicon.ico HTTP/1.1
Host: pornolomka2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx/1.10.3
date: Sun, 08 Jun 2025 07:07:51 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2
GET www.nsfwnudes.com/previews/1/b785b833e2ebc9eb05e2106e24b21fd1.jpg
200 OK 22 kB URL
www.nsfwnudes.com/previews/1/b785b833e2ebc9eb05e2106e24b21fd1.jpg
IP / ASN
213.174.130.69
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 360x640, components 3
First Seen 2024-12-08
Last Seen 2025-07-30
Times Seen 19
Size 22 kB (21704 bytes)
MD5 59aa17984b8448c158b8e83e787a3b0f
SHA1 e197442466bee36fe112abbb98e4dd927408d783
SHA256 6a5858f83dfdd9a277e4f648d853ce1647be24313018c9ed510a5dfee50d1844
Certificate Info
Issuer Let's Encrypt
Subject nsfwnudes.com
Fingerprint E0:4B:39:C4:85:8F:80:B9:3E:C5:27:77:7C:8A:1D:80:D3:10:EB:9D
Validity Sun, 25 May 2025 03:50:27 GMT - Sat, 23 Aug 2025 03:50:26 GMT
GET /previews/1/b785b833e2ebc9eb05e2106e24b21fd1.jpg HTTP/1.1
Host: www.nsfwnudes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.16.1
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 21704
last-modified: Thu, 05 Mar 2020 11:43:48 GMT
etag: "5e60e5f4-54c8"
expires: Tue, 08 Jul 2025 07:09:45 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.2beeg.me/pcz/97/3a/11/973a11f227783edbe69834367f655585.jpg
200 OK 14 kB URL
cdn.2beeg.me/pcz/97/3a/11/973a11f227783edbe69834367f655585.jpg
IP / ASN
172.67.184.104
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 320x180, components 3
First Seen 2024-05-10
Last Seen 2025-07-06
Times Seen 9
Size 14 kB (14391 bytes)
MD5 c303e65fb31fd17db5110777271934d2
SHA1 0023b3c5c8aa9374a644d3cd1df11fe2c5dc05b3
SHA256 82f407fc7213e394c0f66de84c0329d529d3862eafa582e21fd3287e05b4f267
Certificate Info
Issuer Google Trust Services
Subject 2beeg.me
Fingerprint 7D:21:12:28:5B:80:57:AB:3D:3A:82:F8:AF:A7:5B:55:93:E5:4F:55
Validity Sat, 19 Apr 2025 19:40:32 GMT - Fri, 18 Jul 2025 20:37:08 GMT
GET /pcz/97/3a/11/973a11f227783edbe69834367f655585.jpg HTTP/1.1
Host: cdn.2beeg.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 14391
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581173585.929435
etag: c303e65fb31fd17db5110777271934d2
last-modified: Sat, 08 Feb 2020 14:53:10 GMT
x-timestamp: 1581173589.02113
x-trans-id: txfbde6c09245a457197a36-00672e7405
x-openstack-request-id: txfbde6c09245a457197a36-00672e7405
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Mon, 09 Jun 2025 02:44:34 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 102308
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2BL1X0Lsut%2FlBRroPij%2BeASVd3LxevprCcbTF1kXCU0bdsuaRZCs%2Fef54MTmsO4P6GX125zghRV88PctF%2FwRKpjTmNsbZx%2BWWTWg%3D"}]}
cf-ray: 94c690b4fd5c56c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1
404 Not Found 0 B URL
cdne-pics.youjizz.com/5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /5/8/e/58e64233fd1df98ac97c0358f2ccc6bc1562667369-554-416-437-h264.mp4-9.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
x-cdn-diag: ams5-6140-3-3487756-h-0-0---;7846-22-2929974----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET img.aosikaimge.com/20221004/qdhpw1lV/1.jpg
200 OK 9.2 kB URL
img.aosikaimge.com/20221004/qdhpw1lV/1.jpg
IP / ASN
64.112.78.72
#6939 HURRICANE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 9.2 kB (9200 bytes)
MD5 06686f5f5996b82d66730ba0ade74fc5
SHA1 b7c38e66942bbc955c119f5378d27bc816e1bf3e
SHA256 70cb3676f1dbacd5b6f97d732514e6ca2f04a5b65a9873397cf3d6f127e021c0
Certificate Info
Issuer Unizeto Technologies S.A.
Subject *.aosikaimge.com
Fingerprint BC:19:8D:FF:22:32:94:8C:04:80:02:CE:1A:59:1C:91:24:15:5C:66
Validity Tue, 24 Dec 2024 10:28:23 GMT - Fri, 23 Jan 2026 10:28:22 GMT
GET /20221004/qdhpw1lV/1.jpg HTTP/1.1
Host: img.aosikaimge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:45 GMT
Content-Type: image/jpeg
Content-Length: 9200
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 00:31:33 GMT
ETag: "633cd065-23f0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: public, max-age=15768000
Cache: HIT
Accept-Ranges: bytes
GET assets-cdn-s.coub.com/assets/og/coub_og_image-ac413e288cf569b3fec8bcce869961e530d0f70adef8f94fb47883590e4d57fa.png
200 OK 13 kB URL
assets-cdn-s.coub.com/assets/og/coub_og_image-ac413e288cf569b3fec8bcce869961e530d0f70adef8f94fb47883590e4d57fa.png
IP / ASN
95.181.182.182
#210756 EdgeCenter LLC
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 936 x 488, 8-bit/color RGB, non-interlaced
First Seen 2024-05-10
Last Seen 2025-07-17
Times Seen 9
Size 13 kB (12723 bytes)
MD5 c58353204046494395d282c81caebcf9
SHA1 111f0163475309b14f17368c44182aecbdc6eb00
SHA256 ac413e288cf569b3fec8bcce869961e530d0f70adef8f94fb47883590e4d57fa
Certificate Info
Issuer Let's Encrypt
Subject e74d4f0c-58fc-400a-912b-1a321e0018f9.selcdn.net
Fingerprint B8:3F:E0:46:74:E3:37:B8:10:3E:1E:BB:48:1C:29:F0:23:3D:AE:7B
Validity Wed, 28 May 2025 07:47:01 GMT - Tue, 26 Aug 2025 07:47:00 GMT
GET /assets/og/coub_og_image-ac413e288cf569b3fec8bcce869961e530d0f70adef8f94fb47883590e4d57fa.png HTTP/1.1
Host: assets-cdn-s.coub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/png
content-length: 12723
last-modified: Sun, 14 Aug 2016 06:59:19 GMT
etag: "57b016c7-31b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
cache: HIT
x-cached-since: 2023-07-17T15:59:13+00:00
x-node: m9p-up-gc31
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ds2.obmenvsemfiles.net/fo/files_attachments/f48/49b/f4849b5b568560d7599ab3057c94f9e1.jpg
200 OK 17 kB URL
ds2.obmenvsemfiles.net/fo/files_attachments/f48/49b/f4849b5b568560d7599ab3057c94f9e1.jpg
IP / ASN
85.17.28.50
#60781 LeaseWeb Netherlands B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
First Seen 2024-05-09
Last Seen 2025-07-26
Times Seen 17
Size 17 kB (17257 bytes)
MD5 f4849b5b568560d7599ab3057c94f9e1
SHA1 9540c3ca5ae5528a63f75ed9fe93b2dd1cbe84dd
SHA256 f1ff8b859f2e36adb5b4234f5d26502de66b5e1494988872fc2b72fad4198a7e
Certificate Info
Issuer Let's Encrypt
Subject ds2.obmenvsemfiles.net
Fingerprint 87:79:AC:85:11:1E:8F:94:53:32:7A:DF:0F:53:BC:9F:6C:55:9F:E9
Validity Mon, 05 May 2025 08:48:31 GMT - Sun, 03 Aug 2025 08:48:30 GMT
GET /fo/files_attachments/f48/49b/f4849b5b568560d7599ab3057c94f9e1.jpg HTTP/1.1
Host: ds2.obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 17257
last-modified: Sat, 07 May 2016 17:08:19 GMT
etag: "572e2103-4369"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET chomikuj.pl/ImageThumbnail.aspx?id=9181758947
302 Found 10 kB URL
chomikuj.pl/ImageThumbnail.aspx?id=9181758947
IP / ASN
104.22.24.70
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 10 kB (10193 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject chomikuj.pl
Fingerprint 77:74:88:C6:EB:AE:A3:47:CA:0C:FC:58:1D:06:AD:5E:2B:69:2B:0A
Validity Wed, 14 May 2025 02:07:27 GMT - Tue, 12 Aug 2025 03:07:24 GMT
GET /ImageThumbnail.aspx?id=9181758947 HTTP/1.1
Host: chomikuj.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: text/html; charset=utf-8
content-length: 276
location: https://s9564.chomikuj.pl/Thumbnail.aspx?e=Xl21uqWKz-gf8aaKi1ZF26IyVKWZLLE1XRlGHFwgsswCEl_KT6l9boT2kXaMoWeUKbu_Jo47HPTcblWKv4_NZDarqxuTcpEumrEEntTsWFM&pv=2
cf-ray: 94c690bfec3856c7-OSL
cache-control: private
set-cookie: rcid=3; expires=Mon, 08-Jun-2026 07:09:44 GMT; path=/; SameSite=Lax
x-server: m51
cf-cache-status: DYNAMIC
server: cloudflare
X-Firefox-Spdy: h2
GET vidmo.pro/thumbs_320/12/26/1226554ae3f3a51dbfc69814e494da9b/15842689.jpg
200 OK 12 kB URL
vidmo.pro/thumbs_320/12/26/1226554ae3f3a51dbfc69814e494da9b/15842689.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-04-18
Last Seen 2025-07-27
Times Seen 61
Size 12 kB (12512 bytes)
MD5 3ab0e15d24b958446534d124f492d5d9
SHA1 e93b89af5dd57624f2bbb8b56a365520a69d74b7
SHA256 5587ce4981e8ff7a36151b284c7152b9145bd0cfaae6ed80f99d502a3be5f57e
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/12/26/1226554ae3f3a51dbfc69814e494da9b/15842689.jpg HTTP/1.1
Host: vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:41 GMT
content-type: image/jpeg
content-length: 12512
last-modified: Sat, 02 Dec 2023 20:17:55 GMT
expires: Wed, 20 Dec 2023 15:20:11 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.pornvideos.rs/thumbs/d09871248063fca737065435a45884ba.jpg
200 OK 5.8 kB URL
www.pornvideos.rs/thumbs/d09871248063fca737065435a45884ba.jpg
IP / ASN
104.21.10.104
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 160x120, components 3
First Seen 2025-06-08
Last Seen 2025-07-31
Times Seen 5
Size 5.8 kB (5831 bytes)
MD5 79fccabb9db0037cb103567dac5544ad
SHA1 7f09d55723ab353bfc6265cc6f2ad687bdb790be
SHA256 3842ef78b0fcab783e2af571f2952ee9dacb496c7347e68986ffdc81335a34b9
Certificate Info
Issuer Google Trust Services
Subject pornvideos.rs
Fingerprint 3B:4D:15:B8:85:4B:57:76:5D:8B:77:02:19:9A:C2:84:0B:CC:26:E5
Validity Thu, 08 May 2025 00:57:34 GMT - Wed, 06 Aug 2025 01:56:25 GMT
GET /thumbs/d09871248063fca737065435a45884ba.jpg HTTP/1.1
Host: www.pornvideos.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 5831
server: cloudflare
last-modified: Tue, 02 Feb 2016 14:09:28 GMT
etag: "56b0b898-16c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 354657
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bqTRLbpFvVtMZGTwaUoAcHeNZ%2F42UxqeAHtf1qnpnGq%2FmGw9aElPI%2FcF%2F5LOfoUCvZOePaY2SFSrilkWjjfsLxZrNmU9e6J9T0%2F0Czqn0w%3D%3D"}]}
cf-ray: 94c690d07ea756c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET page.phic4.top/myda.php
200 OK 0 B URL
page.phic4.top/myda.php
IP / ASN
172.67.190.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject phic4.top
Fingerprint 7D:FB:B4:77:85:58:5A:A6:F5:90:D1:1A:18:37:82:49:6E:ED:B7:C6
Validity Thu, 01 May 2025 23:39:34 GMT - Thu, 31 Jul 2025 00:37:14 GMT
GET /myda.php HTTP/1.1
Host: page.phic4.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=utf-8
server: cloudflare
myda: myda2a01:799:5a6:1b00:7c38:b30d:63ef:44f4
vary: User-Agent, accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=HgpS%2FldVH1U9NjTIBeQAzh1Ax6tpeyKaw0qk0Ksw%2BdOrEMIrBBTeh8lqPK3%2Bmlb8sEIFrK4BEb08qYK2X4wWqxG2svq%2FijOfP%2FuWMQ%3D%3D"}]}
age: 1276
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Sun, 08 Jun 2025 06:48:32 GMT
content-encoding: br
cf-ray: 94c690de18fdb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pornyc.com/favicon.ico
200 OK 1.2 kB URL
pornyc.com/favicon.ico
IP / ASN
104.21.2.19
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-10-22
Last Seen 2025-07-31
Times Seen 71
Size 1.2 kB (1150 bytes)
MD5 76a87b9c0965503d64dc4f0a9b73e3cb
SHA1 b2a7bea1303bb39aea20f3f05b820c8c388efcdf
SHA256 98734b691a87d139a39c2cf171a653311834a47bb9f7aeef888a26b0fc579837
Certificate Info
Issuer Google Trust Services
Subject pornyc.com
Fingerprint A5:26:AC:13:8A:C9:12:28:A6:C8:DD:FE:E6:19:18:C8:8B:2B:5D:04
Validity Sat, 26 Apr 2025 11:01:12 GMT - Fri, 25 Jul 2025 11:59:34 GMT
GET /favicon.ico HTTP/1.1
Host: pornyc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 1150
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fvmd7QHD1C%2FfpbxfFCp%2B69ZSCvmEGi2%2B3UZ2%2BfdeIG9YlqRmB2j9tOXzLZfuujLOq3%2Fw69TtGVic4hXRoi%2FnNRqc07WKktun4oAwQiWWhNBp1%2FAJlT2D1uquBzfG"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 21 Sep 2021 08:49:38 GMT
etag: "61499ca2-47e"
expires: Sun, 07 Jun 2026 03:29:12 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 99639
cf-cache-status: HIT
cf-ray: 94c690f298410b69-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=17942&min_rtt=6062&rtt_var=9402&sent=37&recv=43&lost=0&retrans=0&sent_bytes=5090&recv_bytes=2999&delivery_rate=133372&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=85ad6e5040c5c3de&ts=6644&inflight_dur=77&x=80"
GET en.vidmo.pro/thumbs_320/19/4d/194da0025af8f106768597b9401654c5/14802579.jpg
200 OK 12 kB URL
en.vidmo.pro/thumbs_320/19/4d/194da0025af8f106768597b9401654c5/14802579.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2025-05-23
Last Seen 2025-07-22
Times Seen 6
Size 12 kB (11986 bytes)
MD5 c20d0b3d81fd986ea762d228128737b3
SHA1 231860d28cb3b25804ffbdeec556f5a2b8b3dd2a
SHA256 ad6347aa28237221886fbd18f3add9635b5fd8a78fc013e5374e18ba80b106d6
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/19/4d/194da0025af8f106768597b9401654c5/14802579.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 11986
last-modified: Fri, 15 Jul 2022 05:53:08 GMT
expires: Wed, 30 Apr 2025 20:22:36 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET wild-kitty.net/favicon.ico
404 Not Found 0 B URL
wild-kitty.net/favicon.ico
IP / ASN
104.21.40.107
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject wild-kitty.net
Fingerprint E1:D0:88:D6:C0:D9:25:42:D7:0B:93:4B:56:80:73:DE:DC:9A:BD:16
Validity Mon, 05 May 2025 19:15:03 GMT - Sun, 03 Aug 2025 20:12:11 GMT
GET /favicon.ico HTTP/1.1
Host: wild-kitty.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P48FT%2FGLoyEMbghWISdZbZGkrzIq8hmJFMXY3mf9a%2F%2B0TmaObpZaywVLCI9RANa0buD60WaJGv9kuo%2FsjbQegM3jZS2RL4sYz9m6SKml%2Fvc3G14qA8G8Cs9boMA0YujbBA%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: accept-language,accept-charset, Accept-Encoding
content-language: en
expires: Sun, 08 Jun 2025 08:12:51 GMT
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 94c690f28ea15695-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=30167&min_rtt=12743&rtt_var=15927&sent=30&recv=30&lost=0&retrans=0&sent_bytes=4694&recv_bytes=2321&delivery_rate=84849&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=c8eca02bdb20c826&ts=5588&inflight_dur=120&x=80"
GET cdne-pics.youjizz.com/b/a/5/ba554b33e21724d6f33afcfce95c558e1629263282-1262-720-860-h264.mp4-9.jpg
200 OK 19 kB URL
cdne-pics.youjizz.com/b/a/5/ba554b33e21724d6f33afcfce95c558e1629263282-1262-720-860-h264.mp4-9.jpg
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 308x232, components 3
First Seen 2024-08-19
Last Seen 2025-06-26
Times Seen 4
Size 19 kB (19204 bytes)
MD5 c8758977ab9b02e985cca9e589aec14e
SHA1 af1280896ad0569a9eb3494dffb99a90fb70e395
SHA256 08d1124906540074cae2df123f342ccaf5a39ec534547a08725b1311d1394c1f
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /b/a/5/ba554b33e21724d6f33afcfce95c558e1629263282-1262-720-860-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 19204
last-modified: Wed, 18 Aug 2021 05:20:11 GMT
etag: "4b04-5c9ce96ae099b"
expires: Fri, 15 Aug 2025 04:39:13 GMT
cache-control: max-age=10482409
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
accept-ranges: bytes
x-cdn-diag: ams5-6141-3-62002-h-0-0---;7846-26-2929974----0-0-1
X-Firefox-Spdy: h2
GET pornogids.cc/contents/videos_screenshots/7000/7928/preview.jpg
200 OK 45 kB URL
pornogids.cc/contents/videos_screenshots/7000/7928/preview.jpg
IP / ASN
104.21.64.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc60.31.102", baseline, precision 8, 720x1074, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 45 kB (44725 bytes)
MD5 a8279b64ad794e11ff549704f3ed8aba
SHA1 635ecfb29362bd7caf7352e2c99c113229994827
SHA256 3933540d9d0bce7b8c7dcfb9c3c3073fde02a1f627b076a8c848219ce39d34a9
Certificate Info
Issuer Google Trust Services
Subject pornogids.cc
Fingerprint 4F:63:9C:D3:CE:6C:1A:9A:58:7F:70:1D:AF:F9:1D:E2:6B:4F:75:88
Validity Sat, 17 May 2025 12:19:58 GMT - Fri, 15 Aug 2025 13:18:22 GMT
GET /contents/videos_screenshots/7000/7928/preview.jpg HTTP/1.1
Host: pornogids.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 44725
server: cloudflare
last-modified: Fri, 07 Mar 2025 15:41:36 GMT
etag: "67cb13b0-aeb5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 830072
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2cwCRmHnOuTuZKGCzkx1BKdHNAT9EavOm%2Fz7nJe22gAANyPf9XkEfdmqOfT6s07%2FeN8m8I6ClFLZqbqgHByKpGTTlHu6ffPTIVY%3D"}]}
cf-ray: 94c690a969f856c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.anh.moe/s9/NGWaYeW.fr.jpeg
302 Found 23 kB URL
cdn.anh.moe/s9/NGWaYeW.fr.jpeg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 23 kB (22857 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject anh.moe
Fingerprint 46:66:08:32:44:16:96:C8:4E:07:E1:0B:19:B4:37:42:F5:B4:70:07
Validity Mon, 12 May 2025 04:16:16 GMT - Sun, 10 Aug 2025 05:14:47 GMT
GET /s9/NGWaYeW.fr.jpeg HTTP/1.1
Host: cdn.anh.moe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 08 Jun 2025 07:09:40 GMT
location: https://s9.anhmoecdn.store/NGWaYeW.fr.jpeg
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Sxweao6MXMlUGvFpaIRzXp4bpr3sWyMEUaiHJS2f7n%2FRjI4b9osN3h4CNSox8FBXYc2WIO%2Fs9Y9PBsa0U5n%2Bt%2BZvUdwP3TGuaQ%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94c690aabb995687-OSL
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/a3530efb5bace5355d00eb8bf4d17cd8.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET cdn1.hotmoza.tv/thumb/4b/a0/0f/4ba00ff9e0ee81ae63c2cea8686ff612.jpg
200 OK 11 kB URL
cdn1.hotmoza.tv/thumb/4b/a0/0f/4ba00ff9e0ee81ae63c2cea8686ff612.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-05-10
Last Seen 2025-07-13
Times Seen 16
Size 11 kB (10687 bytes)
MD5 0ea121caf8bc287adb376302098c289d
SHA1 f46c266306fd436f933e705aeca49a9f3f4b8641
SHA256 f3778ed37fc2bce93934f65751014bf9c64c0c5460d04ebbd7a78e5e85669e82
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/4b/a0/0f/4ba00ff9e0ee81ae63c2cea8686ff612.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 10687
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581339858.918418
etag: 0ea121caf8bc287adb376302098c289d
last-modified: Mon, 10 Feb 2020 13:04:22 GMT
x-timestamp: 1581339861.47246
x-trans-id: tx6ebd0bf1ac574240a0530-006634109d
x-openstack-request-id: tx6ebd0bf1ac574240a0530-006634109d
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Tue, 10 Jun 2025 05:15:02 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 6878
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=dEYvww5yzIXD4knHy8vWZRJ55okF2zKMYy6W8VcT03Clh1nnILh0SBkKhK1amyvYSJOpvr2%2FjUkNDXf98CSQyUac7eiCCUd3%2BwUZEyE%3D"}]}
cf-ray: 94c690a8cb1556a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_2768744996.jpg
200 OK 11 kB URL
chezcathy.com/ext/pre_2768744996.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-05-23
Last Seen 2025-07-25
Times Seen 16
Size 11 kB (11138 bytes)
MD5 a31481e30503d5bdc1adbdc918e85f5f
SHA1 9e863ad7529c4091689a2c0b6272d0ef47c9d496
SHA256 c840b9056810c8b950486372dd8d85a39280fc186c818140a21c32d91f47a089
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_2768744996.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 11138
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "6668f60e-2b82"
last-modified: Wed, 12 Jun 2024 01:12:46 GMT
cdn-cachedat: 04/28/2025 17:13:12
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 90d710cbf683a898cc6c486bd25cbc92
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i1.wp.com/jpgjingpinx.com/upload/vod/20231229-1/154283010b8a134e88e2835e9f881bbd.jpg
200 OK 12 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20231229-1/154283010b8a134e88e2835e9f881bbd.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x276, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 12 kB (12272 bytes)
MD5 1d3a68659d55b30fd36106d1b9c2e587
SHA1 d67972489ef379b05b3aee5dca7937fd1644ec05
SHA256 63c42af1d00cf35970099acfe98c397af98b5531a340c8d41d62df9d44fdfd34
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231229-1/154283010b8a134e88e2835e9f881bbd.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: image/webp
content-length: 12272
last-modified: Sat, 01 Mar 2025 07:56:45 GMT
expires: Mon, 01 Mar 2027 19:56:45 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231229-1/154283010b8a134e88e2835e9f881bbd.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5aeb9103fb5b3bd3"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET im4.mediacont.net/animalsexporntube/thumbs/73/976-the-bedroom.jpg
200 OK 8.3 kB URL
im4.mediacont.net/animalsexporntube/thumbs/73/976-the-bedroom.jpg
IP / ASN
104.160.9.33
#63119 Angelnet Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 340x200, components 3
First Seen 2025-06-08
Last Seen 2025-07-07
Times Seen 3
Size 8.3 kB (8349 bytes)
MD5 e7a7503c69547348f73bced0969a1386
SHA1 ab2b3b73ce8e790e4f091e0ae24a0866184590ba
SHA256 0a79ed29ebbab0388aaa48774c62e7d2b058d1411e31902b88f47f5a8cd2ec55
Certificate Info
Issuer Let's Encrypt
Subject mediacont.net
Fingerprint 4B:1A:41:D8:E6:C5:06:5C:0E:8B:14:AF:42:C1:80:38:CF:73:10:E7
Validity Thu, 08 May 2025 03:04:55 GMT - Wed, 06 Aug 2025 03:04:54 GMT
GET /animalsexporntube/thumbs/73/976-the-bedroom.jpg HTTP/1.1
Host: im4.mediacont.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:44 GMT
Content-Type: image/jpeg
Content-Length: 8349
Last-Modified: Thu, 03 Nov 2022 16:46:34 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6363f06a-209d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Request-ID: 9a7d8b36341a5c2502e30c883ae9bdf5
Accept-Ranges: bytes
GET img.imghuo.cfd/yq2/media/videos/tmb/000/000/404/5.jpg
200 OK 9.1 kB URL
img.imghuo.cfd/yq2/media/videos/tmb/000/000/404/5.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-04-18
Last Seen 2025-07-15
Times Seen 153
Size 9.1 kB (9090 bytes)
MD5 b4e30eabf04502ebd9c1187dc20da82b
SHA1 5c8585c69c4a8a142d13c9faa0b86100a8e1304c
SHA256 6b7499b69f0e8dbf1fae5dd8f5fa11552fe4d6ad417fdefd19b051af52b92f9e
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /yq2/media/videos/tmb/000/000/404/5.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:46 GMT
Content-Type: image/jpeg
Content-Length: 9090
Last-Modified: Sat, 23 Mar 2024 12:21:16 GMT
Connection: keep-alive
ETag: "65fec93c-2382"
Accept-Ranges: bytes
GET www.9188porn.xyz/upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a946b597d27590219fe009706aa1c031.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET jsjs.4jpg.top/index.php?js=very
200 OK 0 B URL
jsjs.4jpg.top/index.php?js=very
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /index.php?js=very HTTP/1.1
Host: jsjs.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
imghost: 1729614248-h-jsjs4jpgtopmh--NO-rm162158222116/index.php?js=very
56nloadrate: 0.9275
cache-control: max-age=360000, private
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7IGbq9YT0%2BgfodxQPqKVjH6i57dCIMubbH%2BvMru5YTo07YggKUwTGl2RqtbqZs1UhcEpg12jcbiTVoUbAKMApVBrJHXYo1syEvXO"}]}
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Cake
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94c690a3fe6db518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/27/51/0e/27510e7f7affa9bf7f7d77d7eb6b4659/27510e7f7affa9bf7f7d77d7eb6b4659.15.jpg
200 OK 4.9 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/27/51/0e/27510e7f7affa9bf7f7d77d7eb6b4659/27510e7f7affa9bf7f7d77d7eb6b4659.15.jpg
IP / ASN
185.76.9.8
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-02
Last Seen 2025-07-31
Times Seen 23
Size 4.9 kB (4943 bytes)
MD5 10fbb27410914f148a03a89d627a6461
SHA1 3ec6ea765922d3d91064586ed25b7c9517632041
SHA256 ac686205fab0a9fd887a4ae1c50972fc78e8f531bda00ef8930177537f371903
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/27/51/0e/27510e7f7affa9bf7f7d77d7eb6b4659/27510e7f7affa9bf7f7d77d7eb6b4659.15.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 4943
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 28 Apr 2021 15:22:33 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJBgH3rqEBAAwBJRPCKwH3a+V1AAgBj/Q6yAGB
x-77-nzt-ray: 5451992d8c0c0ca839374568e018aa07
x-accel-expires: @1759627651
x-77-cache: HIT
x-accel-date: 1749259659
x-accel-date-max: 1738891650
x-77-age: 106926
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET javp1.cc/https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg
403 Forbidden 0 B URL
javp1.cc/https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject javp1.cc
Fingerprint D2:81:4F:32:09:EE:7A:5A:1F:6C:D9:90:99:8F:5A:AC:5A:29:AF:00
Validity Mon, 02 Jun 2025 04:07:36 GMT - Sun, 31 Aug 2025 05:00:34 GMT
GET /https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg HTTP/1.1
Host: javp1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 08 Jun 2025 07:09:47 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-powered-by: Express
cache-control: no-store
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=YE%2FVgwkVGWqTOc3EmZaojoCcCGCgx0IqqqHXUv6eh4dMaMNnpsn%2F4MAJj2vgxF27ChxCrd4bLJT%2BJZr%2F1khojSXC2d7MCg%3D%3D"}]}
cf-cache-status: BYPASS
vary: accept-encoding
content-encoding: br
cf-ray: 94c690c9bfee712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.crazyshit.com/content/2020/01/a3c9ba9b.jpg
200 OK 288 kB URL
media.crazyshit.com/content/2020/01/a3c9ba9b.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 720x540, components 3
First Seen 2024-08-20
Last Seen 2025-07-31
Times Seen 10
Size 288 kB (288418 bytes)
MD5 2a2f0fddcc82e451109ae218c9dc5dc1
SHA1 f130c9f3d0942c6b83f3789c4a84b324a6f87568
SHA256 b0edff7ba447c4892b38fbb6e51771f11efd63ebf0bccc973f73ad904a08b4f1
Certificate Info
Issuer Let's Encrypt
Subject media.crazyshit.com
Fingerprint 86:4E:C5:61:00:7D:DA:60:9D:45:C3:C0:B3:5C:33:1B:D1:54:0B:60
Validity Fri, 30 May 2025 02:32:36 GMT - Thu, 28 Aug 2025 02:32:35 GMT
GET /content/2020/01/a3c9ba9b.jpg HTTP/1.1
Host: media.crazyshit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 288418
server: nginx/1.24.0
x-object-meta-mtime: 1579196525.968802558
etag: 2a2f0fddcc82e451109ae218c9dc5dc1
last-modified: Mon, 05 Apr 2021 10:41:29 GMT
x-timestamp: 1617619288.42283
x-trans-id: txdc42692d9a9c459a89000-0065ccde0d
x-openstack-request-id: txdc42692d9a9c459a89000-0065ccde0d
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Tue, 10 Jun 2025 07:09:45 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/33268f7b4d2b0e48c15a1d68ae4d898f.jpg
200 OK 38 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/33268f7b4d2b0e48c15a1d68ae4d898f.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x607, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-01-09
Last Seen 2025-07-02
Times Seen 7
Size 38 kB (37904 bytes)
MD5 94e1020e40608ee7547b47a937f340eb
SHA1 d65b97cf46bd45eaf3bf2624db5f9a7347c6caca
SHA256 b0d3b7f931d870dd52ebed494b40f2d778639f438f584f9fba6000ea4923d9c4
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231225-1/33268f7b4d2b0e48c15a1d68ae4d898f.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 37904
last-modified: Sun, 15 Dec 2024 20:17:07 GMT
expires: Wed, 16 Dec 2026 08:17:07 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231225-1/33268f7b4d2b0e48c15a1d68ae4d898f.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "546b86eb35fb44b0"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET cav105.com/favicon.ico
200 OK 4.3 kB URL
cav105.com/favicon.ico
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
First Seen 2024-02-24
Last Seen 2025-07-27
Times Seen 88
Size 4.3 kB (4286 bytes)
MD5 79ca959796fd758988aa0acfb9952640
SHA1 8a8e7fa57c016b5cbc943faefc7c651e8959b0ce
SHA256 01d4884a0070a4804680dc80361b4695aa48ca7b37eb6768127b17d9763464cb
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /favicon.ico HTTP/1.1
Host: cav105.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Mon, 25 Jul 2022 15:38:39 GMT
etag: "62deb8ff-10be"
strict-transport-security: max-age=31536000
cache-control: no-cache
accept-ranges: bytes
X-Firefox-Spdy: h2
GET eva.vn/favicon.ico
200 OK 1.7 kB IP / ASN
103.174.217.39
#140766 FPT Smart Cloud Company Limited
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 21x21, 8 bits/pixel
First Seen 2025-03-12
Last Seen 2025-07-22
Times Seen 14
Size 1.7 kB (1674 bytes)
MD5 0a657f570ed039237f52f4909a3de325
SHA1 70f0031413eef6b35df70a13bb352140dfaab577
SHA256 db110beca6e6e3876a8e87824c215a49b3b01966459862d0814ed9095b9fa0e3
Certificate Info
Issuer GlobalSign nv-sa
Subject *.eva.vn
Fingerprint 3A:E0:57:2E:87:0D:DA:A8:40:1B:C2:59:57:0E:F1:59:AD:23:FD:91
Validity Tue, 15 Oct 2024 06:35:31 GMT - Sun, 16 Nov 2025 06:35:30 GMT
GET /favicon.ico HTTP/1.1
Host: eva.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:55 GMT
content-type: image/x-icon
content-length: 1674
last-modified: Fri, 28 Sep 2018 18:01:51 GMT
etag: "5bae6c8f-68a"
expires: Tue, 08 Jul 2025 07:09:55 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET blumpkintube.com/thumbs/241/916_a.jpg
200 OK 11 kB URL
blumpkintube.com/thumbs/241/916_a.jpg
IP / ASN
104.21.79.212
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2024-05-13
Last Seen 2025-07-08
Times Seen 16
Size 11 kB (11106 bytes)
MD5 8f7398334486af0aaad3fdf1f1362767
SHA1 b985c860c218365bf9eecd6e2285925e10193b18
SHA256 c457c49465bd22bd7f67a115d8ab465d1d384a5ca2022dab42bce8c61850d77b
Certificate Info
Issuer Google Trust Services
Subject blumpkintube.com
Fingerprint DA:B0:E3:91:B1:3A:F6:92:40:A5:6D:DA:6D:67:42:B4:54:2E:FF:7C
Validity Mon, 14 Apr 2025 03:20:03 GMT - Sun, 13 Jul 2025 04:18:31 GMT
GET /thumbs/241/916_a.jpg HTTP/1.1
Host: blumpkintube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 11106
server: cloudflare
last-modified: Sat, 05 Sep 2020 23:56:53 GMT
etag: "5f5425c5-2b62"
expires: Thu, 07 May 2026 00:44:01 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 2787941
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=MSufstIqhV7%2BHzVvzxkOoaQyh4wF6Tmm9HqhYtUETJSt7eZGTXly1KtUUmhPkMfnKWMu4LUGO%2BWzNAF6RMnMsT05G8oPRk61kTrgsdZ4"}]}
cf-ray: 94c690b63f990b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET media.crazyshit.com/content/2020/05/622599c0.jpg
200 OK 233 kB URL
media.crazyshit.com/content/2020/05/622599c0.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 720x540, components 3
First Seen 2024-08-19
Last Seen 2025-06-13
Times Seen 4
Size 233 kB (232912 bytes)
MD5 37a74b97c7e416f08a0aedf48306c12d
SHA1 f72de472f7eb08256432fd0c1d7d9d07470d71e2
SHA256 9deee944905d0d4e5e1aa2bd9ca24a0f7769181be3759d20ddd2b29c52fdfde3
Certificate Info
Issuer Let's Encrypt
Subject media.crazyshit.com
Fingerprint 86:4E:C5:61:00:7D:DA:60:9D:45:C3:C0:B3:5C:33:1B:D1:54:0B:60
Validity Fri, 30 May 2025 02:32:36 GMT - Thu, 28 Aug 2025 02:32:35 GMT
GET /content/2020/05/622599c0.jpg HTTP/1.1
Host: media.crazyshit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 232912
server: nginx/1.24.0
x-object-meta-mtime: 1590503113.650207611
etag: 37a74b97c7e416f08a0aedf48306c12d
last-modified: Mon, 05 Apr 2021 11:47:39 GMT
x-timestamp: 1617623258.37897
x-trans-id: txaee92229337b4de8872cc-0065ccfd45
x-openstack-request-id: txaee92229337b4de8872cc-0065ccfd45
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Tue, 10 Jun 2025 07:09:46 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET rolotube.com/images/
0 B IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/ HTTP/1.1
Host: rolotube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET fixedjs.jtube.top/AV4.us.jpg
200 OK 8.7 kB URL
fixedjs.jtube.top/AV4.us.jpg
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject jtube.top
Fingerprint D3:D5:1C:C3:7C:30:87:4D:FD:26:E5:91:17:4C:77:FB:C2:FB:FE:09
Validity Thu, 01 May 2025 14:02:56 GMT - Wed, 30 Jul 2025 15:00:36 GMT
GET /AV4.us.jpg HTTP/1.1
Host: fixedjs.jtube.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: image/jpeg
content-length: 8741
server: cloudflare
etag: "2225-614075c7eff6b"
accept-ranges: bytes
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: *
access-control-allow-headers: Cake
cache-control: public, max-age=360000
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Dr1EhLViHc8Rmeue4442DsCq%2F%2F6fRKGGkc%2FL0xkSIJVlcApcFaXOUOyZ77ZVNZ1as6FHbXRXRt%2BcC9K0bf3Dm3K55%2BYogyRIb9AxygN0GQ%3D%3D"}]}
age: 265163
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 94c690a4da0c56c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET img2.russkoeporno.tv/ruxp/img/1/1055_r2.jpg
200 OK 12 kB URL
img2.russkoeporno.tv/ruxp/img/1/1055_r2.jpg
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x224, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 12 kB (11738 bytes)
MD5 5aaa17bbf2886ce3a3565b902393ff55
SHA1 943000cc57224f171060184097d6f14e72744022
SHA256 fa73c6716cb3a226330dfbfef2202753e28c7f548a51674fa9e16aa01988c717
Certificate Info
Issuer Google Trust Services
Subject russkoeporno.tv
Fingerprint 15:E6:F1:16:9D:8B:E6:1A:0F:07:D7:2B:35:E5:36:CE:28:D4:52:E2
Validity Sat, 17 May 2025 13:05:40 GMT - Fri, 15 Aug 2025 14:02:22 GMT
GET /ruxp/img/1/1055_r2.jpg HTTP/1.1
Host: img2.russkoeporno.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 11738
server: cloudflare
last-modified: Mon, 10 Feb 2025 15:33:13 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "67aa1c39-2dda"
expires: Sun, 22 Jun 2025 22:06:59 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
accept-ranges: bytes
age: 1328563
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GB7lXqHnYKNWa%2BtdodZwgnnKeexwq7%2FWyYMEcJ7%2BuWp0%2FgyFjtHLErWaO7A82Jp1Dy2v8hoaLsmpWStxsAVBNLhTotpFM2v%2BaTTR0goSAYDgxg%3D%3D"}]}
cf-ray: 94c690b6cbe35688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cav105.com/contents/videos_screenshots/7000/7359/preview.jpg
200 OK 107 kB URL
cav105.com/contents/videos_screenshots/7000/7359/preview.jpg
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x1280, components 3
First Seen 2024-12-08
Last Seen 2025-07-26
Times Seen 28
Size 107 kB (107339 bytes)
MD5 29f3fb4ff821b86d10e96079034e06a3
SHA1 b2ba9327571bd9c8e05fdc135dce97fa628def72
SHA256 1d97cef4cc7677561c0c0ae63affb9f0fb7740898c74a6d77b184705e75eb88d
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /contents/videos_screenshots/7000/7359/preview.jpg HTTP/1.1
Host: cav105.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 107339
last-modified: Sun, 25 Sep 2022 19:55:08 GMT
etag: "6330b21c-1a34b"
expires: Sun, 08 Jun 2025 07:10:46 GMT
cache-control: max-age=60
strict-transport-security: max-age=31536000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET 159i.net/uploads/allimg/2501/D-01020G154cW6f4255E.jpg
301 Moved Permanently 0 B URL
159i.net/uploads/allimg/2501/D-01020G154cW6f4255E.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 159i.net
Fingerprint AA:CD:77:27:51:8D:5C:83:7B:DE:A9:3B:D4:8D:F8:E6:21:AE:CC:46
Validity Tue, 20 May 2025 05:04:13 GMT - Mon, 18 Aug 2025 06:02:43 GMT
GET /uploads/allimg/2501/D-01020G154cW6f4255E.jpg HTTP/1.1
Host: 159i.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sun, 08 Jun 2025 07:09:42 GMT
location: https://159i.net/404
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=opWEi%2FnyU4qIPznM2PWCThrNeVkWeRMDbaS9efGIDGWAiOAGlPFmrUBzCx%2BPnzv95G2r6fJh2A1nitqiY5arvEWWEE20Nw%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 94c690b52d8e56ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET ljcdn.ddljsytt.com/20241105/ykzXF7Xg/1.jpg
0 B URL
ljcdn.ddljsytt.com/20241105/ykzXF7Xg/1.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /20241105/ykzXF7Xg/1.jpg HTTP/1.1
Host: ljcdn.ddljsytt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET pornolomka.com/favicon.ico
301 Moved Permanently 0 B URL
pornolomka.com/favicon.ico
IP / ASN
91.194.110.16
#213166 UA-Hosting SIA
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject pornolomka.com
Fingerprint 3E:C1:19:98:F4:14:70:01:04:AD:7E:F4:9A:C2:7D:FC:C7:3C:37:17
Validity Tue, 22 Apr 2025 22:39:51 GMT - Mon, 21 Jul 2025 22:39:50 GMT
GET /favicon.ico HTTP/1.1
Host: pornolomka.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx/1.10.3
date: Sun, 08 Jun 2025 07:07:50 GMT
content-type: text/html
content-length: 185
location: https://pornolomka2.com/favicon.ico
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
GET anh.moe/favicon.ico
404 Not Found 0 B IP / ASN
185.241.41.148
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject anh.moe
Fingerprint 02:66:C0:F1:0A:7F:CC:0F:DB:03:B6:36:1C:AF:96:6B:4E:6F:88:8B
Validity Sun, 01 Jun 2025 10:06:04 GMT - Sat, 30 Aug 2025 10:06:03 GMT
GET /favicon.ico HTTP/1.1
Host: anh.moe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html; charset=utf-8
content-length: 146
server: Anh.Moe
x-content-type-options: "nosniff" always
x-xss-protection: "1; mode=block" always
strict-transport-security: "max-age=31536000; includeSubDomains; preload" always
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
GET rolotube.com/images/
0 B IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/ HTTP/1.1
Host: rolotube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET javp1.cc/https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg
403 Forbidden 0 B URL
javp1.cc/https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject javp1.cc
Fingerprint D2:81:4F:32:09:EE:7A:5A:1F:6C:D9:90:99:8F:5A:AC:5A:29:AF:00
Validity Mon, 02 Jun 2025 04:07:36 GMT - Sun, 31 Aug 2025 05:00:34 GMT
GET /https://img.caoliuzywimg.com:188/20230220/ufcSJ3FR/1.jpg HTTP/1.1
Host: javp1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=utf-8
server: cloudflare
x-powered-by: Express
cache-control: no-store
cf-cache-status: BYPASS
priority: u=4,i=?0
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=iECmEt84dyhbKy6jWoPGdXpL%2F342aHeUyZCQOOEsG5p9z3ep32xYYjHtGPtEZhzrAxWoW1v%2BfYLLRpAzSX340ep6o4XffA%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94c690dd6feab51e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.9188porn.xyz/upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET xvideosrei.com/favicon.ico
404 Not Found 0 B URL
xvideosrei.com/favicon.ico
IP / ASN
194.102.104.213
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject www.xvideosrei.com
Fingerprint C2:28:3A:CF:8A:D8:6A:AE:2F:E5:5E:F8:61:B6:CF:EB:A3:2F:85:03
Validity Sun, 18 May 2025 11:52:41 GMT - Sat, 16 Aug 2025 11:52:40 GMT
GET /favicon.ico HTTP/1.1
Host: xvideosrei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
version: MS25053003
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: no-store, no-cache, must-revalidate
strict-transport-security: max-age=31536000;
content-encoding: br
X-Firefox-Spdy: h2
GET en.vidmo.pro/favicon.ico
200 OK 5.4 kB URL
en.vidmo.pro/favicon.ico
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-05
Last Seen 2025-07-31
Times Seen 220
Size 5.4 kB (5430 bytes)
MD5 6b6734885d5e4ff9dbb7d82ba6023598
SHA1 3c454d68a346b375ed7b59a131699061e7393b1f
SHA256 0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /favicon.ico HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 5430
last-modified: Sun, 14 Oct 2012 21:41:38 GMT
etag: "507b3192-1536"
cache-control: public, no-transform
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240107-1/660c7b6d448e81470866564d31d446f8.png
200 OK 567 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240107-1/660c7b6d448e81470866564d31d446f8.png
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-06-08
Last Seen 2025-07-28
Times Seen 5
Size 567 kB (566994 bytes)
MD5 5acbd9b3ff7f28ebeb3438c688ab690f
SHA1 41a3ca95a065a8d2d270e7e27c4bcf9a6b122cba
SHA256 b9ee44a5ddf93053d44c2ca1d831f7aba747e7df7aee07b75e435fa84c1617cf
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240107-1/660c7b6d448e81470866564d31d446f8.png HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 566994
last-modified: Fri, 13 Dec 2024 23:45:22 GMT
expires: Mon, 14 Dec 2026 11:45:22 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240107-1/660c7b6d448e81470866564d31d446f8.png>; rel="canonical"
x-content-type-options: nosniff
etag: "58131f94dc37079c"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET pornodrochka.club/uploads/posts/2018-05/medium/1525185612_00_14_24.jpg
200 OK 120 kB URL
pornodrochka.club/uploads/posts/2018-05/medium/1525185612_00_14_24.jpg
IP / ASN
91.194.110.9
#213166 UA-Hosting SIA
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 450x253, components 3
First Seen 2024-05-14
Last Seen 2025-07-31
Times Seen 32
Size 120 kB (120116 bytes)
MD5 8d2246e7bb5059b25a04615cace2ab65
SHA1 684865733c0b01170152bbfffec3650940877370
SHA256 3bd0e8447687b64485ddc3ce6665899408dd906b5e5a6f4e425860479cf56b86
Certificate Info
Issuer Let's Encrypt
Subject pornodrochka.club
Fingerprint 0A:36:E3:8C:01:5A:FC:A6:E6:66:54:CA:63:6E:28:22:27:61:D6:51
Validity Tue, 22 Apr 2025 22:39:38 GMT - Mon, 21 Jul 2025 22:39:37 GMT
GET /uploads/posts/2018-05/medium/1525185612_00_14_24.jpg HTTP/1.1
Host: pornodrochka.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3
date: Sun, 08 Jun 2025 07:07:42 GMT
content-type: image/jpeg
content-length: 120116
last-modified: Sat, 29 Aug 2020 17:58:06 GMT
etag: "5f4a972e-1d534"
expires: Sun, 15 Jun 2025 07:07:42 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cav102.com/contents/videos_screenshots/7000/7268/preview.jpg
200 OK 104 kB URL
cav102.com/contents/videos_screenshots/7000/7268/preview.jpg
IP / ASN
45.145.72.132
#201106 Spartan Host Ltd
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x1280, components 3
First Seen 2024-12-07
Last Seen 2025-07-27
Times Seen 29
Size 104 kB (104073 bytes)
MD5 9b893f32567e852fb3a1fcdfb881926f
SHA1 797d89c6b0af79d9c4682b004be77e4296d7d77e
SHA256 d6bfa10297c9b6c29bdf28822a7bbbacd737b9d19a307577672ce9c697c77cd3
Certificate Info
Issuer Let's Encrypt
Subject cav102.com
Fingerprint 7A:5A:5C:15:50:AA:37:93:19:98:DB:C0:27:3B:17:FF:88:6A:EF:C5
Validity Tue, 15 Apr 2025 13:40:00 GMT - Mon, 14 Jul 2025 13:39:59 GMT
GET /contents/videos_screenshots/7000/7268/preview.jpg HTTP/1.1
Host: cav102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 104073
last-modified: Sun, 25 Sep 2022 19:00:11 GMT
etag: "6330a53b-19689"
expires: Sun, 08 Jun 2025 07:10:46 GMT
cache-control: max-age=60
strict-transport-security: max-age=31536000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 87 kB URL
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP / ASN
142.250.74.42
#15169 GOOGLE
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67258
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint 1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
Validity Mon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 10:43:10 GMT
expires: Fri, 05 Jun 2026 10:43:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 246397
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.pornlulu.com/favicon.ico
404 Not Found 0 B URL
www.pornlulu.com/favicon.ico
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject pornlulu.com
Fingerprint 8D:2F:27:67:D4:35:82:EB:97:AE:E9:86:AA:F0:4B:6B:47:05:07:C6
Validity Tue, 22 Apr 2025 07:12:05 GMT - Mon, 21 Jul 2025 08:10:04 GMT
GET /favicon.ico HTTP/1.1
Host: www.pornlulu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=14400, must-revalidate
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ECsKfDoyE2F%2Fwk0M2dAPmPhP964FM6Q3x4NHn90AboxanQRhTZYuR53K3zLjcqnFXM4vpo8H%2Fn0fcs4cfoSX3KjqwZjQKFVcRjmTT%2F07"}]}
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
server: cloudflare
x-cache: BYPASS, Status: 404
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
age: 9369
cf-cache-status: HIT
content-encoding: br
cf-ray: 94c690f85d79b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET baraag.net/@KDE/image/png
200 OK 0 B URL
baraag.net/@KDE/image/png
IP / ASN
185.178.208.171
#57724 Ddos-guard Ltd
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject baraag.net
Fingerprint 26:B4:99:80:95:E8:44:FA:AF:51:A8:98:FE:AE:74:3F:26:6E:B9:05
Validity Fri, 23 May 2025 17:57:01 GMT - Thu, 21 Aug 2025 17:57:00 GMT
GET /@KDE/image/png HTTP/1.1
Host: baraag.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=jQJdWPLqJOcA9bpm; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:48 GMT
__ddg10_=1749366588; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:48 GMT
__ddg9_=91.90.42.154; Domain=.baraag.net; Path=/; Expires=Sun, 08-Jun-2025 07:29:48 GMT
__ddg1_=K97ghQFKvTEeO1avfczy; Domain=.baraag.net; HttpOnly; Path=/; Expires=Mon, 08-Jun-2026 07:09:48 GMT
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: text/html; charset=utf-8
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: same-origin
vary: Accept-Encoding, Accept, Accept-Language, Cookie
link: </packs/js/locale/en-json-8e2bb01c3724d13b0392.chunk.js>; rel=preload; as=script; type=text/javascript; integrity=sha256-YzCkH5d6OACQybOPiw7cp4Gp/dcK1Q1ogGq2eKP0K0o=
cache-control: max-age=15, public, stale-while-revalidate=30, stale-if-error=86400
etag: W/"12020939efee5bf34cbd15b7be282b4b"
content-security-policy: upgrade-insecure-requests;, base-uri 'none'; default-src 'none'; frame-ancestors 'none'; font-src 'self' https://baraag.net; img-src 'self' data: blob: https://baraag.net https://media.baraag.net; style-src 'self' https://baraag.net 'nonce-5jOjlFTrvnhDMhOt1Ygcsw=='; media-src 'self' data: https://baraag.net https://media.baraag.net; manifest-src 'self' https://baraag.net; form-action 'none'; child-src 'self' blob: https://baraag.net; worker-src 'self' blob: https://baraag.net; connect-src 'self' data: blob: https://baraag.net https://media.baraag.net wss://baraag.net; script-src 'self' https://baraag.net 'wasm-unsafe-eval'; frame-src 'self' https:
x-request-id: 3b543154-0431-4873-bf17-f6d6aa46b751
x-runtime: 0.016872
strict-transport-security: max-age=63072000; includeSubDomains
x-cached: MISS
content-encoding: gzip
age: 8
ddg-cache-status: HIT,MISS
content-length: 10702
X-Firefox-Spdy: h2
GET www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/07/christianef.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.manyvids.com/favicon.ico
200 OK 15 kB URL
www.manyvids.com/favicon.ico
IP / ASN
54.240.174.14
#16509 AMAZON-02
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2024-09-19
Last Seen 2025-07-26
Times Seen 34
Size 15 kB (15086 bytes)
MD5 b4c706c77e46f093de900a6a7bc51305
SHA1 27ef8b88481324b5756e84eee68f3bb98dd1d62c
SHA256 a8b4eab72261736e4fb04fd45b07487dd64025b4c0f0aa1f3e5942538f6e6d1f
Certificate Info
Issuer Amazon
Subject www.manyvids.com
Fingerprint 5D:BD:1E:7B:79:B2:1A:F3:8F:5F:16:39:8E:49:1A:F4:D9:9F:1F:2A
Validity Wed, 11 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.manyvids.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: CloudFront
content-type: image/vnd.microsoft.icon
content-length: 15086
date: Tue, 13 May 2025 22:57:08 GMT
set-cookie: AWSALB=ZpD4k2FXcQNkxygaT5N6zy5WZc7E3DGDovlCdmSKzd+LjwFAahmS7CtM8qy6qtdaSZaMTxEptg4sGDHTNMQ8yfnk1FWhL4ZxaRBzeEDD2sMxlACgeuoyOBYGaFDq; Expires=Tue, 20 May 2025 22:57:08 GMT; Path=/
AWSALBCORS=ZpD4k2FXcQNkxygaT5N6zy5WZc7E3DGDovlCdmSKzd+LjwFAahmS7CtM8qy6qtdaSZaMTxEptg4sGDHTNMQ8yfnk1FWhL4ZxaRBzeEDD2sMxlACgeuoyOBYGaFDq; Expires=Tue, 20 May 2025 22:57:08 GMT; Path=/; SameSite=None; Secure
last-modified: Tue, 13 May 2025 14:29:39 GMT
etag: "3aee-6350543363ac0"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 12 Jun 2025 22:57:08 GMT
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SqR-tQytY_Nv3FFOsqPMxDR_sScLJ48h3WQEX_lGLzX6B_JAsWiadw==
age: 2189565
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
GET i0.wp.com/666529.xyz/images/2024/11/16/60c2c39840d96eeffaaa88ae28766ad0.jpg
200 OK 4.7 kB URL
i0.wp.com/666529.xyz/images/2024/11/16/60c2c39840d96eeffaaa88ae28766ad0.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 543x420, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-03-25
Last Seen 2025-08-01
Times Seen 84
Size 4.7 kB (4652 bytes)
MD5 cd903bc38c7636fddf017878e2b14699
SHA1 c7fb2bd6f331774ff3439f0e283da618ccb770fc
SHA256 82844564199f05596cae6cd3ab076d23f74448fe28639228a8f46bc829ae24a4
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /666529.xyz/images/2024/11/16/60c2c39840d96eeffaaa88ae28766ad0.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 4652
last-modified: Wed, 22 Jan 2025 00:26:58 GMT
expires: Fri, 22 Jan 2027 12:26:58 GMT
cache-control: public, max-age=63115200
link: <http://666529.xyz/images/2024/11/16/60c2c39840d96eeffaaa88ae28766ad0.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "96e8627d7186426e"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET attachments-cdn-s.coub.com/coub_storage/coub/simple/cw_image/1fc39f11aa7/522cdc6c131034d9bc79c/med_1673248498_16e67wh_1473285478_1391793147_00027.jpg
200 OK 56 kB URL
attachments-cdn-s.coub.com/coub_storage/coub/simple/cw_image/1fc39f11aa7/522cdc6c131034d9bc79c/med_1673248498_16e67wh_1473285478_1391793147_00027.jpg
IP / ASN
95.181.182.182
#210756 EdgeCenter LLC
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc55.39.101", baseline, precision 8, 640x368, components 3
First Seen 2024-04-20
Last Seen 2025-07-22
Times Seen 32
Size 56 kB (55722 bytes)
MD5 951dd5e96f96dd5759164fa1b51b718e
SHA1 9f71d3aa6837d108cc6a868ffadd56dec6074ba2
SHA256 9b14aaa8e4218df0b83766562ff2192f3f9888b9668315eec0174ac2b5007e98
Certificate Info
Issuer Let's Encrypt
Subject 3fc4ed44-3fbc-419a-97a1-a29742511391.selcdn.net
Fingerprint 21:5F:54:63:C6:8C:33:26:22:0C:49:BF:E2:EB:3F:86:9B:83:D7:A0
Validity Wed, 28 May 2025 07:47:01 GMT - Tue, 26 Aug 2025 07:47:00 GMT
GET /coub_storage/coub/simple/cw_image/1fc39f11aa7/522cdc6c131034d9bc79c/med_1673248498_16e67wh_1473285478_1391793147_00027.jpg HTTP/1.1
Host: attachments-cdn-s.coub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 55722
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges
etag: "951dd5e96f96dd5759164fa1b51b718e"
last-modified: Mon, 09 Jan 2023 07:15:05 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1673248504.92972
x-trans-id: 8cd2c782-b424-4cc0-bcca-e11421df5068
age: 0
cache: HIT
x-cached-since: 2025-06-06T12:42:50+00:00
x-node: m9-up-gc81
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET en.vidmo.pro/thumbs_320/1c/c0/1cc0d800dcd14a199783879ad4307f0a/15613374.jpg
200 OK 15 kB URL
en.vidmo.pro/thumbs_320/1c/c0/1cc0d800dcd14a199783879ad4307f0a/15613374.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-04-19
Last Seen 2025-07-31
Times Seen 53
Size 15 kB (15379 bytes)
MD5 99c1ac3d4a0054437ddff254cb3a14b6
SHA1 73c7af71634699f608e19f6f732a3c654f1a23ec
SHA256 abbfe903fbb9fe91192226e44296efc26e2c48f738f7c03a33ec98679c84a1dc
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/1c/c0/1cc0d800dcd14a199783879ad4307f0a/15613374.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 15379
last-modified: Sat, 24 Jun 2023 13:06:37 GMT
expires: Tue, 21 Nov 2023 16:22:06 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/E8C65D0.jpg
200 OK 29 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/E8C65D0.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 2000x2001, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2024-08-19
Last Seen 2025-07-19
Times Seen 7
Size 29 kB (28753 bytes)
MD5 d8ffa8afd121b9903f35407c1a291628
SHA1 04574fd711981c90a270bf58c38d4158c190db57
SHA256 e4b7a045a3e66c86efd84eccbc7eafb67499403c8047011b71dfb31c0330dee7
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/E8C65D0.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 28753
vary: x-s-token
last-modified: Sun, 07 Oct 2018 17:05:17 GMT
etag: "7051-577a682473367"
x-cache: HIT
x-whom: cdn03
accept-ranges: bytes
GET media.crazyshit.com/content/2019/05/6675bfad.jpg
200 OK 269 kB URL
media.crazyshit.com/content/2019/05/6675bfad.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 720x540, components 3
First Seen 2024-04-26
Last Seen 2025-06-13
Times Seen 10
Size 269 kB (269396 bytes)
MD5 a3d100e4eff0f9d8b038e7e225dd1361
SHA1 32e894abe65050d40bcddcde84afd6d3b5cf3aee
SHA256 2f2c6be1a1973e0478c52a41df494159551bf65b8c1a44cbe2df915ef9e53e75
Certificate Info
Issuer Let's Encrypt
Subject media.crazyshit.com
Fingerprint 86:4E:C5:61:00:7D:DA:60:9D:45:C3:C0:B3:5C:33:1B:D1:54:0B:60
Validity Fri, 30 May 2025 02:32:36 GMT - Thu, 28 Aug 2025 02:32:35 GMT
GET /content/2019/05/6675bfad.jpg HTTP/1.1
Host: media.crazyshit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 269396
server: nginx/1.24.0
x-object-meta-mtime: 1558347860.578232756
etag: a3d100e4eff0f9d8b038e7e225dd1361
last-modified: Mon, 05 Apr 2021 11:35:32 GMT
x-timestamp: 1617622531.06229
x-trans-id: txd7b93b2684d64f2f885fd-0065cd06a7
x-openstack-request-id: txd7b93b2684d64f2f885fd-0065cd06a7
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Tue, 10 Jun 2025 07:09:45 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET y.airbnb4you.ch/favicon.ico
403 Forbidden 0 B URL
y.airbnb4you.ch/favicon.ico
IP / ASN
172.67.184.204
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject airbnb4you.ch
Fingerprint 36:32:F3:C8:5B:D4:F0:AB:A3:7C:A9:BE:84:CC:3E:EB:A2:79:78:DA
Validity Tue, 06 May 2025 16:07:51 GMT - Mon, 04 Aug 2025 17:07:47 GMT
GET /favicon.ico HTTP/1.1
Host: y.airbnb4you.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xtHdVuS2P7ipS6N6%2BrcU3N%2FlHgpxefh6VCXGIXEwOqCsHV6gWyUl4JQNLTltZ%2B569Xf4ZCM2Fg2krwLtMSew%2Bv%2FakJJeGoICAQRUgxATacfxV6WouL5m6CLR%2B3PozfTz%2BDA%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="94c690f2990d5691", cfL4;desc="?proto=QUIC&rtt=7375&min_rtt=1584&rtt_var=5921&sent=127&recv=156&lost=0&retrans=1&sent_bytes=16018&recv_bytes=9165&delivery_rate=986507&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=af2036f7659adabd&ts=8694&inflight_dur=89&x=80"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 94c690f2990d5691-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
GET www.xvideos.com/favicon.ico
200 OK 15 kB URL
www.xvideos.com/favicon.ico
IP / ASN
185.88.181.10
#46652 SERVERSTACK-ASN
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
First Seen 2023-05-07
Last Seen 2025-07-31
Times Seen 218
Size 15 kB (15086 bytes)
MD5 d6baf7b631c1e482b6e2f770f9e67057
SHA1 73eb49e766e5954e1ad9538cc35038b9f14494b9
SHA256 fa1ee8d05ad6dfa0731ee0d37badfd019cc3315e6d3b9ca1ae161cee4749481b
Certificate Info
Issuer Sectigo Limited
Subject *.xvideos.com
Fingerprint 8A:99:1B:79:BF:20:90:58:BE:23:F3:B2:15:CA:58:D1:87:C9:8F:0E
Validity Mon, 30 Dec 2024 00:00:00 GMT - Fri, 30 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.xvideos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jun 2025 07:09:53 GMT
Content-Type: image/x-icon
Content-Length: 15086
Last-Modified: Mon, 09 Oct 2023 14:43:32 GMT
ETag: "65241194-3aee"
Expires: Sun, 15 Jun 2025 07:09:53 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
Server: nginx
GET sex18.photos/favicon.ico
404 Not Found 0 B URL
sex18.photos/favicon.ico
IP / ASN
31.10.5.97
#207728 EUROHOSTER Ltd.
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GoGetSSL
Subject sex18.photos
Fingerprint 8A:51:2C:C8:73:D4:66:F0:E3:B8:91:AB:69:F1:FF:E5:D7:2A:E5:AE
Validity Tue, 08 Oct 2024 00:00:00 GMT - Wed, 08 Oct 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: sex18.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 08 Jun 2025 07:09:54 GMT
Content-Type: text/html; charset=WINDOWS-1251
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
GET naturismv.com/images/relaxing-with-a-trampoline-naturist-freedom.jpg
200 OK 46 kB URL
naturismv.com/images/relaxing-with-a-trampoline-naturist-freedom.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-21
Last Seen 2025-06-19
Times Seen 76
Size 46 kB (46033 bytes)
MD5 4d4de9c2056c60ffa0ee8673b2bc67e3
SHA1 c13ca8888cd8d319fcecf842ec41473ccf4b96a0
SHA256 7fd769cb96cc3222e46b5d03a46334defbb2fed73da7117f18b6fdc516518080
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/relaxing-with-a-trampoline-naturist-freedom.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 46033
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:50 GMT
etag: "646765e2-b3d1"
expires: Sat, 06 Jun 2026 01:45:08 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 192272
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ck5T1%2BeE%2F%2BofjIZWb3nqCW7PrOE%2B0lppbX52Hb6ToM%2FqSmYg79GHEm8STCnvh3627NCLQaPrthnIrEmrjaKzd94GFE%2BU7eNq19oO"}]}
cf-ray: 94c690a78bce0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET zooporner.com/favicon.ico
301 Moved Permanently 0 B URL
zooporner.com/favicon.ico
IP / ASN
172.67.177.138
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject zooporner.com
Fingerprint F6:99:70:D4:33:D2:0A:77:7F:A7:F8:3A:13:6E:56:E8:EF:99:F7:D5
Validity Tue, 27 May 2025 15:16:16 GMT - Mon, 25 Aug 2025 16:14:21 GMT
GET /favicon.ico HTTP/1.1
Host: zooporner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gRJXexq1kklgpnpGz2h5dByoIu9VcKHydHndyWehzh%2BqnLGYAdk3Ga0z9TzyX2KwXNiVXb8MX8b8yaMl1opoZlPEXRPXWvlintpDYUFpJ%2FxSaGBISV6aQ%2FkLRB5Bz1mW"}],"group":"cf-nel","max_age":604800}
location: https://zooporner.com/faviconico/
set-cookie: ASPro_1382933ca042bef776e8100bd5eb8ac5=loiv532epphml1nt7geidfdtf2; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
cf-ray: 94c690f2f96d56a5-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=38259&min_rtt=9342&rtt_var=24158&sent=31&recv=36&lost=0&retrans=0&sent_bytes=4775&recv_bytes=2658&delivery_rate=68238&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=dc2c5e14df0ea7a5&ts=6564&inflight_dur=97&x=80"
GET cdn.yekuge.xyz/sdk/p/?zid=9801
200 OK 52 kB URL
cdn.yekuge.xyz/sdk/p/?zid=9801
IP / ASN
104.21.95.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (51798)
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 1
Size 52 kB (52281 bytes)
MD5 0adaaff7536613f9220dc65d69ebc8ac
SHA1 e220cd067de7a8e468cdb572efd0eea798f477d3
SHA256 63a3a11019a3a70afcf000ab8839051bf936a9c4b03bf15c31d7031cd3428a64
Certificate Info
Issuer Google Trust Services
Subject yekuge.xyz
Fingerprint C6:94:C6:E7:C5:1E:9D:1C:57:30:69:DB:EB:E8:C6:FF:23:87:48:90
Validity Wed, 21 May 2025 08:52:19 GMT - Tue, 19 Aug 2025 09:50:49 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sdk/p/?zid=9801 HTTP/1.1
Host: cdn.yekuge.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:47 GMT
content-type: application/javascript
server: cloudflare
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=f1PqAqMe5NeDr4QGp7yxWxcXqcla2XTGb2spG574Eq0PDCYD4rwmJ2hkxefE0c%2B1HeIFd%2BzVnMWw4fYzP6RvGrpPJ5MhsHwH9ueHwA%3D%3D"}]}
x-time: 1749366587
access-control-allow-origin: *
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94c690d07f8fb529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js
200 OK 11 kB URL
cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (10613)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 1661
Size 11 kB (10687 bytes)
MD5 ea77f824de2ef57acb12e7cb6596365e
SHA1 10bad0dbdf30a0471c2c786b349daeb1dd19180e
SHA256 2b19d92ce83bf3b498f73103ba1240f09c84798b1f92aedf1491ccf0aa6f5e4c
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/nosleep/0.11.0/NoSleep.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 3953
cf-ray: 94c690d0e8a60b59-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ed16b69-29bf"
last-modified: Fri, 29 May 2020 20:07:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 193399
expires: Fri, 29 May 2026 07:09:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Au3mHWzfG7WgYyTEdRt7f%2Bsr9%2FbalV1sMdfHSMTdUtk9JHneCb8bBqf5uKJ8dPuL%2B%2FnS6C6fzScb24H1iVRZZTSpawQZc9jxAzobZvEUawtfNdiJdk0eUOhx7ydUArKta1OgXFxa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.missvid.com/favicon.ico
404 Not Found 0 B URL
www.missvid.com/favicon.ico
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject missvid.com
Fingerprint 68:AB:31:84:E4:DB:8B:E5:93:2F:2F:3F:C1:B0:40:05:3D:79:93:CA
Validity Tue, 20 May 2025 22:46:56 GMT - Mon, 18 Aug 2025 23:45:14 GMT
GET /favicon.ico HTTP/1.1
Host: www.missvid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fAFNc6zW%2FCnpCuufNE3%2BYDRceP76hkJp%2F2utqRw8OqvYrgsWuTGtCMXBrYD2NAIh7xtabVQYkdH%2BcTMcWSeODzxaxFDNAF7Y59NQZQs%3D"}]}
age: 113
cache-control: max-age=86400
cf-cache-status: HIT
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
content-encoding: br
cf-ray: 94c691002fa05697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_6385798488.jpg
200 OK 9.0 kB URL
chezcathy.com/ext/pre_6385798488.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-01-13
Last Seen 2025-07-07
Times Seen 15
Size 9.0 kB (8961 bytes)
MD5 742b7e630e781a6e97f171548d3cd27b
SHA1 04e734edd6d200e208794823fc75ed54807b4c6f
SHA256 e259d07995012e2bafc8f7d91ad12b77eb7cfe806526a9dbb1aa5864838af92a
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_6385798488.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 8961
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "666b81c6-2301"
last-modified: Thu, 13 Jun 2024 23:33:26 GMT
cdn-cachedat: 06/04/2025 16:53:20
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 24debc57138deb5ee8ee878285ac6d3a
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET blumpkintube.com/favicon.ico
200 OK 1.2 kB URL
blumpkintube.com/favicon.ico
IP / ASN
104.21.79.212
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-05-18
Last Seen 2025-07-31
Times Seen 115
Size 1.2 kB (1150 bytes)
MD5 3de13983da1e7755426362ee988fae6a
SHA1 51d87d2cb8a6950b5e1c8ca24a257cb397664a93
SHA256 16c3dc433b7b2460b9ba12b1aa28a14c598e93f5bab8f7cb1b5afa3989457c05
Certificate Info
Issuer Google Trust Services
Subject blumpkintube.com
Fingerprint DA:B0:E3:91:B1:3A:F6:92:40:A5:6D:DA:6D:67:42:B4:54:2E:FF:7C
Validity Mon, 14 Apr 2025 03:20:03 GMT - Sun, 13 Jul 2025 04:18:31 GMT
GET /favicon.ico HTTP/1.1
Host: blumpkintube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 1150
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LXjrzi9aYpELrCB89UdcpIcDfvu6tyT2xk2dp%2BaSG7DJ363XHIqdp9x64OzodjO7s1o9%2Fl95evAexEjPAhd5Kvh3p%2FxCo2wikdgK7pju3IcunMYe7N2LmbLOq1mZhfBiVsW3"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 29 Nov 2019 11:53:39 GMT
etag: "5de106c3-47e"
expires: Mon, 08 Jun 2026 00:38:02 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 23509
cf-cache-status: HIT
cf-ray: 94c690efe896569a-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9642&min_rtt=1077&rtt_var=12155&sent=157&recv=221&lost=0&retrans=0&sent_bytes=11707&recv_bytes=12277&delivery_rate=417288&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=d0956d3e4be2e008&ts=8973&inflight_dur=188&x=80"
GET pornoperso.com/favicon.ico
404 Not Found 0 B URL
pornoperso.com/favicon.ico
IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject pornoperso.com
Fingerprint 0B:CD:F1:5F:E0:A2:D1:A3:CC:5D:7C:2C:BC:30:D9:79:0E:B2:E6:D5
Validity Tue, 22 Apr 2025 08:51:15 GMT - Mon, 21 Jul 2025 09:47:22 GMT
GET /favicon.ico HTTP/1.1
Host: pornoperso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iu1xhPztBRhVSGn%2FKybY0eeDXr6K1Q8HIz4HNXPoPbb96hLtgMfzfQwZr%2B0JutKMCQ7i1AjVeK%2Fnj31eLS2TDi0oumbdC6731Mbf3%2Fw4wJbcCz8A6ARTHUmx9s4ykM40WA%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
version: MS25053003
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, must-revalidate
age: 23730
cf-cache-status: HIT
content-encoding: br
cf-ray: 94c690f19c671c16-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=15313&min_rtt=3949&rtt_var=10280&sent=64&recv=76&lost=0&retrans=0&sent_bytes=6564&recv_bytes=4721&delivery_rate=205428&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=efe42dd677b8f66e&ts=7276&inflight_dur=129&x=80"
GET naturismv.com/images/junior-miss-pageant-contest-2003-nc12-b.jpg
200 OK 71 kB URL
naturismv.com/images/junior-miss-pageant-contest-2003-nc12-b.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-19
Last Seen 2025-07-15
Times Seen 147
Size 71 kB (70937 bytes)
MD5 d354fa05a3c605c42b69790305399760
SHA1 8fb117b75df650081d94e6c922701c898a609d37
SHA256 fc676f644a2618d22fcb6996f2ba0ba54bb723595e00ecca45aad3d9e205d951
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/junior-miss-pageant-contest-2003-nc12-b.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 70937
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:52 GMT
etag: "646765e4-11519"
expires: Fri, 29 May 2026 16:30:33 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 830346
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AtiTOPPznFsQLdoCD1AslRZPDBy6%2By36og%2FnsZH2lgMPvJ7C%2BetLBNsBtiEGzy9wsPD1Z4yq4iih3YybhFn3k2vPVYHLPX1YrIOn"}]}
cf-ray: 94c690a6db6b0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET im1.mediacont.net/azt_l/3/835_orgasms-.jpg
200 OK 18 kB URL
im1.mediacont.net/azt_l/3/835_orgasms-.jpg
IP / ASN
104.160.9.33
#63119 Angelnet Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x166, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 18 kB (17912 bytes)
MD5 6230048dc04ed0899ff94a6200732bfc
SHA1 a394861ece276407bfadcc1e9ea3a1b72304ff0d
SHA256 a11b59e9ae28f3b8f6b54e83d0b9dea5f4c4a47c2e28bd2ee4cb040613eee560
Certificate Info
Issuer Let's Encrypt
Subject mediacont.net
Fingerprint 4B:1A:41:D8:E6:C5:06:5C:0E:8B:14:AF:42:C1:80:38:CF:73:10:E7
Validity Thu, 08 May 2025 03:04:55 GMT - Wed, 06 Aug 2025 03:04:54 GMT
GET /azt_l/3/835_orgasms-.jpg HTTP/1.1
Host: im1.mediacont.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:45 GMT
Content-Type: image/jpeg
Content-Length: 17912
Last-Modified: Thu, 03 Nov 2022 17:45:29 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6363fe39-45f8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Request-ID: 12836e64fca0a8f5a8f2edd2bf3306d9
Accept-Ranges: bytes
GET zooporner.com/media/videos/tmb/000/002/087/1.jpg
200 OK 7.2 kB URL
zooporner.com/media/videos/tmb/000/002/087/1.jpg
IP / ASN
172.67.177.138
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc59.51.101", baseline, precision 8, 320x240, components 3
First Seen 2023-07-06
Last Seen 2025-07-27
Times Seen 13
Size 7.2 kB (7195 bytes)
MD5 45240403745dc6953eb104031ceb66b9
SHA1 c739288a41dc8abe1d2131033fbe414be89ce9be
SHA256 62e7b4420a52eb985cf50ba217263e878cacdd60781f8916090fe84560346222
Certificate Info
Issuer Google Trust Services
Subject zooporner.com
Fingerprint F6:99:70:D4:33:D2:0A:77:7F:A7:F8:3A:13:6E:56:E8:EF:99:F7:D5
Validity Tue, 27 May 2025 15:16:16 GMT - Mon, 25 Aug 2025 16:14:21 GMT
GET /media/videos/tmb/000/002/087/1.jpg HTTP/1.1
Host: zooporner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 7195
server: cloudflare
last-modified: Mon, 27 Mar 2023 17:22:15 GMT
etag: "6421d0c7-1c1b"
accept-ranges: bytes
age: 2331
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sNZEFVkIfYxcsPZc9pdL%2FPkwONvK9dFiEG%2B3iGvkCzR%2BQmjvvH0k%2BTrZdgraG%2F2SMDUmxLkGjHwe4VP347ZkgnK6ZvIaTB6lO9a0"}]}
cf-ray: 94c690c9a962568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET naturismv.com/images/junior-miss-pageant-contest-2003-nc12.jpg
200 OK 69 kB URL
naturismv.com/images/junior-miss-pageant-contest-2003-nc12.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-18
Last Seen 2025-07-26
Times Seen 202
Size 69 kB (69234 bytes)
MD5 c9f83ac4be5a64bf260ea8758319fcd3
SHA1 dc6b9e57f000507c7d2b4f7c45ce0540e87f86ca
SHA256 98da200d248fd1edd7c8a3ce1c3211cb9361ba9345037c609ecf4b070e315e74
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/junior-miss-pageant-contest-2003-nc12.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 69234
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:52 GMT
etag: "646765e4-10e72"
expires: Fri, 05 Jun 2026 23:41:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 199707
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Mu6CtEoJxmlLdux1cBfSNmnqWIwLpeiJGbbpEhya7nW6ploYEJobDJH9RRYHBs80TPkyq%2B2gD8GZ580P1pu9ck3XmmJykhOeVJuH"}]}
cf-ray: 94c690a6db6a0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET thumb.aporntv.com/thumbs/5/d/e/7/7/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4-3.jpg
200 OK 3.4 kB URL
thumb.aporntv.com/thumbs/5/d/e/7/7/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4-3.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, baseline, precision 8, 200x150, components 3
First Seen 2025-06-07
Last Seen 2025-07-31
Times Seen 9
Size 3.4 kB (3407 bytes)
MD5 624358dd2ce26ea73d72e9f851a24c9e
SHA1 b6f17ddd59153eadcfa4973e0a2fcd1871918b0d
SHA256 530c45d59a6274c17a15354b1d4fd7b7d62f1d1e64ace14b22a0f6ad65d78694
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/5/d/e/7/7/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4/5de7700edfa92Brother%20and%20Sister%20Selfmade.mp4-3.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 3407
cf-ray: 94c690ca0d937127-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "5de777e3-d4f"
expires: Tue, 10 Jun 2025 06:57:43 GMT
last-modified: Wed, 04 Dec 2019 09:09:55 GMT
cf-cache-status: HIT
age: 432722
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sZc9HbkOwOv%2F7ixjON68au16ewlKu3ahOEnn6MfkUms6VVsCCRDeyAMugFC5jkpuxhOhs9HnhSyBxqtsDz7tdUis1NJr8tUjn9l8sGZc5agc%2BPZRZ%2B3KGiRDthA1JYeFuapH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2688&min_rtt=398&rtt_var=3516&sent=12&recv=12&lost=0&retrans=0&sent_bytes=8778&recv_bytes=1328&delivery_rate=5838709&cwnd=253&unsent_bytes=0&cid=dd05a174ae6e1b74&ts=4363&x=0"
X-Firefox-Spdy: h2
GET css.4jpg.top/mycss/av4.css?33
200 OK 4.2 kB URL
css.4jpg.top/mycss/av4.css?33
IP / ASN
172.67.211.235
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type Unicode text, UTF-8 text
First Seen 2025-04-08
Last Seen 2025-08-01
Times Seen 225
Size 4.2 kB (4158 bytes)
MD5 e05d356eb3c9cb0366e5491f098c5b66
SHA1 9c82f99795bf55512147a0bd629e9775446291bf
SHA256 7c7a5f32e5c6a2e6e1f3e71112f35691714019685cc4c7d567e158cb32d1579c
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /mycss/av4.css?33 HTTP/1.1
Host: css.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:47 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
access-control-allow-origin: *
access-control-allow-headers: Cake
cache-control: public, max-age=360000
x-proxy-cache-192g-la: HIT
xkey-192la: jcss./mycss/av4.css?33-A-css.4jpg.top--myzone---no
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=2dEa13BybD9585eMt4HWn6t%2FuSxzG4AaOUiWUSCoJg%2FRxI0XEXzc6WOJanTaWnaUOemXmlC0vdDwtKBJG8OLqqyqgMOoFlHZ%2FOc%3D"}]}
age: 199769
cf-cache-status: HIT
etag: W/"103e-62edbddabc000"
content-encoding: br
cf-ray: 94c690d0ea9d5685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET nlt03.videosection.com/0/d/b/0dbce05a57951565618b0816909f090c/thumbs/1280x720/1.webp
200 OK 88 kB URL
nlt03.videosection.com/0/d/b/0dbce05a57951565618b0816909f090c/thumbs/1280x720/1.webp
IP / ASN
104.26.13.185
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2024-12-06
Last Seen 2025-07-31
Times Seen 8
Size 88 kB (88276 bytes)
MD5 f6d96e71d2e407275d9cd7c8967f3503
SHA1 0aa65a72399cd6988ae0db61d0e1f2899692286b
SHA256 abc554315c4584242cf4f7731b8708120f5cf9494db643666397cb78c73dbd31
Certificate Info
Issuer Google Trust Services
Subject videosection.com
Fingerprint 3E:51:2A:60:0A:59:A9:A1:BB:DC:F8:EB:EE:03:F9:39:7D:56:ED:1F
Validity Sat, 26 Apr 2025 05:41:30 GMT - Fri, 25 Jul 2025 06:41:22 GMT
GET /0/d/b/0dbce05a57951565618b0816909f090c/thumbs/1280x720/1.webp HTTP/1.1
Host: nlt03.videosection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/webp
content-length: 88276
cf-ray: 94c690b72d34b51e-OSL
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Metrics-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
last-modified: Tue, 10 Sep 2024 22:54:46 UTC
cache-control: max-age=120
cf-cache-status: HIT
age: 2210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nFmZikP8%2BBTY962Ip%2FA3RvbJ2XbtGRgdCz9W26Zwyp7PoG5FEleoIed8RNkF3gJDU03bhh%2BHc%2FTQYw2T7xSr0M%2F2R0lFsCUG%2FCAIigIK%2FfAvYCazupN3Mi0rZcsCEDLiEtqolhubc9k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1167&min_rtt=425&rtt_var=1413&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3290&recv_bytes=1257&delivery_rate=7841155&cwnd=254&unsent_bytes=0&cid=a842c78f2da66299&ts=1993&x=0"
X-Firefox-Spdy: h2
GET cdn1.hotmoza.tv/thumb/67/8d/be/678dbe1e7add53e16d01e76ba0276958.jpg
200 OK 14 kB URL
cdn1.hotmoza.tv/thumb/67/8d/be/678dbe1e7add53e16d01e76ba0276958.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 14 kB (14427 bytes)
MD5 69e0c41edb0b9c2e8b12da0959a6fe07
SHA1 cfbba8800ba4b63ed641f09d22ad658cd6bbca7d
SHA256 80623f761670b47f84f18898dcabeca2ef607f20b6ed7d394f09b66fe0b4132e
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/67/8d/be/678dbe1e7add53e16d01e76ba0276958.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 14427
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581297841.775142
etag: 69e0c41edb0b9c2e8b12da0959a6fe07
last-modified: Mon, 10 Feb 2020 01:24:05 GMT
x-timestamp: 1581297844.11037
x-trans-id: tx5ebe9f288dbe48c7a5d95-0067be8784
x-openstack-request-id: tx5ebe9f288dbe48c7a5d95-0067be8784
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Mon, 09 Jun 2025 07:09:12 GMT
x-cdn-host-id: ds8140,ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 86428
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NuEVDf1HbW49Z9Rtxh2OpXSKUx0nQC1RrAys2gmHcQ%2FdVKKvGQbqUcPLDzHPc%2FtugRNxyr3vEDXKJnBKfYNJLpxs8vLeZefK6EyiKYc%3D"}]}
cf-ray: 94c690aa5c6556a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.oedy9.com/favicon.ico
404 Not Found 0 B URL
www.oedy9.com/favicon.ico
IP / ASN
102.165.26.157
#11426 TWC-11426-CAROLINAS
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject oedy9.com
Fingerprint 7B:89:7F:CE:52:01:0C:56:82:F9:F2:5A:59:1E:26:C6:54:0E:13:5A
Validity Tue, 03 Jun 2025 13:51:46 GMT - Mon, 01 Sep 2025 13:51:45 GMT
GET /favicon.ico HTTP/1.1
Host: www.oedy9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html
content-length: 138
etag: "67ecfc3a-8a"
X-Firefox-Spdy: h2
GET cdn2.geefap.com/uploads/posts/2018-03/thumbs/796093576_363897749.jpg
200 OK 15 kB URL
cdn2.geefap.com/uploads/posts/2018-03/thumbs/796093576_363897749.jpg
IP / ASN
31.10.5.97
#207728 EUROHOSTER Ltd.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x420, components 3
First Seen 2024-04-24
Last Seen 2025-07-25
Times Seen 29
Size 15 kB (14989 bytes)
MD5 ecbc2841927c20960413f2aa68ce9a37
SHA1 ced81aab4b8d114c4f0e4192e723aeb391dd9dbe
SHA256 95540c31f6a306b2e77c300aa96d5f38f707ea9ece75c3ed15fae2307d460e2c
Certificate Info
Issuer GoGetSSL
Subject cdn2.geefap.com
Fingerprint AF:D5:79:17:2C:27:BD:47:ED:EC:E6:86:68:6C:15:FA:38:09:D7:18
Validity Mon, 21 Oct 2024 00:00:00 GMT - Tue, 21 Oct 2025 23:59:59 GMT
GET /uploads/posts/2018-03/thumbs/796093576_363897749.jpg HTTP/1.1
Host: cdn2.geefap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:43 GMT
Content-Type: image/jpeg
Content-Length: 14989
Last-Modified: Wed, 07 Mar 2018 14:07:54 GMT
Connection: keep-alive
ETag: "5a9ff23a-3a8d"
Expires: Fri, 13 Jun 2025 07:09:43 GMT
Cache-Control: max-age=432000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
GET en.vidmo.pro/thumbs_320/af/01/af01cf4ca345c6221594e2a92cd5c68d/8407761.jpg
200 OK 15 kB URL
en.vidmo.pro/thumbs_320/af/01/af01cf4ca345c6221594e2a92cd5c68d/8407761.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 320x240, components 3
First Seen 2024-04-30
Last Seen 2025-07-26
Times Seen 12
Size 15 kB (15017 bytes)
MD5 707d5fe95a2b9562eb1d8953d57f1711
SHA1 41bc552c83acb111d69ce2a1425d328489be0dc0
SHA256 31bf3c5c86fa3a2cb213f73cfb5409114c6786bcdd47d0f15699face087f510b
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/af/01/af01cf4ca345c6221594e2a92cd5c68d/8407761.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 15017
last-modified: Tue, 11 Sep 2018 08:02:14 GMT
expires: Mon, 09 Oct 2023 19:16:54 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240113-1/9af0d665469168d19032a6c6b3545778.jpg
200 OK 34 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240113-1/9af0d665469168d19032a6c6b3545778.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-22
Last Seen 2025-07-26
Times Seen 20
Size 34 kB (33976 bytes)
MD5 5053203d224f3ac7801edbdb0d3cfd48
SHA1 d96b6c84b46acd675dc6b632de01de5ea16c69d4
SHA256 cbf850035c93d56cbb35f4b8dd098acc947683161b88c9931aae575b37f433d9
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240113-1/9af0d665469168d19032a6c6b3545778.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 33976
last-modified: Fri, 28 Mar 2025 21:13:16 GMT
expires: Mon, 29 Mar 2027 09:13:16 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240113-1/9af0d665469168d19032a6c6b3545778.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "847d4426e4056846"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET y.airbnb4you.ch/wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg
403 Forbidden 0 B URL
y.airbnb4you.ch/wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg
IP / ASN
172.67.184.204
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject airbnb4you.ch
Fingerprint 36:32:F3:C8:5B:D4:F0:AB:A3:7C:A9:BE:84:CC:3E:EB:A2:79:78:DA
Validity Tue, 06 May 2025 16:07:51 GMT - Mon, 04 Aug 2025 17:07:47 GMT
GET /wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg HTTP/1.1
Host: y.airbnb4you.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 08 Jun 2025 07:09:43 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MyIGTgjJO1PtCHRQdxQiZO%2FIBPDn6U3RGxaLAr4OMuytQ90V8TmTGBylz9cP%2FefY5aFwxyExqJIzLIQvikJ3hu6lrNcYXYzULs7a38NJGsxVtz3mB1HYf3DA4fhyDN3vLIM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94c690ba2b64712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="94c690ba2b64712d", cfL4;desc="?proto=TCP&rtt=1769&min_rtt=417&rtt_var=2535&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3281&recv_bytes=1246&delivery_rate=7985294&cwnd=254&unsent_bytes=0&cid=a2d16ccc7bbacd02&ts=2263&x=0"
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/1e685d68cdcd8a935b2d155d4c1ef0cd.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET chezcathy.com/favicon.ico
200 OK 1.4 kB URL
chezcathy.com/favicon.ico
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel
First Seen 2025-05-02
Last Seen 2025-08-01
Times Seen 163
Size 1.4 kB (1406 bytes)
MD5 8851a1b28ebe567b927c9ae6600a8fc6
SHA1 113da6a02dff45d4b9c0d3c9ae531445a8c7b687
SHA256 b545a5091485f5dd485f0e9d2abcd55a06b22f9359c6da8955b8da7b1d3c9212
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /favicon.ico HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-length: 1406
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1406-1744916365610"
last-modified: Thu, 17 Apr 2025 18:59:25 GMT
cdn-cachedat: 06/05/2025 17:27:09
x-powered-by: Express
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 860
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 3cdf3f6db9b484018d2b11fc3c20277d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET dsx.obmenvsemfiles.net/fo/files_attachments/8d6/857/8d68570fd9111e5861810f44830705b6.jpg
200 OK 24 kB URL
dsx.obmenvsemfiles.net/fo/files_attachments/8d6/857/8d68570fd9111e5861810f44830705b6.jpg
IP / ASN
85.17.28.58
#60781 LeaseWeb Netherlands B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x270, components 3
First Seen 2025-03-12
Last Seen 2025-06-08
Times Seen 3
Size 24 kB (24270 bytes)
MD5 8d68570fd9111e5861810f44830705b6
SHA1 d448def13a97ac072ebafbbea4da601c1647617a
SHA256 92a044cbf3966b7d64a54d41ebc46a367f25c37e4562ab3515f0275965ab42ba
Certificate Info
Issuer Let's Encrypt
Subject ds.obmenvsemfiles.net
Fingerprint 3B:6C:04:81:FB:44:35:C5:C2:FF:78:93:BE:3E:5D:88:2B:EC:9D:27
Validity Tue, 06 May 2025 20:47:52 GMT - Mon, 04 Aug 2025 20:47:51 GMT
GET /fo/files_attachments/8d6/857/8d68570fd9111e5861810f44830705b6.jpg HTTP/1.1
Host: dsx.obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 24270
last-modified: Fri, 14 Jun 2024 03:11:37 GMT
etag: "666bb4e9-5ece"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/6476570d6d9ce424fc26f94c491ad26321dc6066.jpg
200 OK 9.6 kB URL
cdntube.b-cdn.net/thumbnails/6476570d6d9ce424fc26f94c491ad26321dc6066.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x710, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-06
Last Seen 2025-07-09
Times Seen 7
Size 9.6 kB (9610 bytes)
MD5 009fea1a219b2e483fe6ba705413a739
SHA1 d9d364533371672f94d7f8c0506c3777d42c4cb6
SHA256 2d8242f02901efe189d77d6cb3208154d53f559401d880734add253e00b68158
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/6476570d6d9ce424fc26f94c491ad26321dc6066.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/webp
content-length: 9610
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 10 Nov 2021 18:24:27 GMT
cdn-storageserver: DE-637
cdn-requestpullsuccess: True
cdn-fileserver: 253
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/05/2025 14:32:59
cdn-edgestorageid: 830
cdn-requestid: 877c1d139c56eae5ae06c7b2cdc451b7
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET vidcdn.123rf.com/450nwm/maxximmm/maxximmm1509/maxximmm150900901.jpg
200 OK 10 kB URL
vidcdn.123rf.com/450nwm/maxximmm/maxximmm1509/maxximmm150900901.jpg
IP / ASN
3.167.2.74
#0
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.18.100", baseline, precision 8, 450x252, components 3
First Seen 2024-04-24
Last Seen 2025-07-31
Times Seen 16
Size 10 kB (10539 bytes)
MD5 43ef93e6914d5a4b928c7ba530220856
SHA1 4fa38252449b3809b225273e37574af7cb89d48d
SHA256 3e0fc9f6a6d477de9f6e9868afb4c7cdaeec68e1f62966433a8153c9298d9474
Certificate Info
Issuer Amazon
Subject 123rf.com
Fingerprint F6:36:7A:1D:6B:64:06:84:8B:E1:86:3C:2F:42:B6:A9:0B:8D:1F:8D
Validity Sat, 08 Mar 2025 00:00:00 GMT - Mon, 06 Apr 2026 23:59:59 GMT
GET /450nwm/maxximmm/maxximmm1509/maxximmm150900901.jpg HTTP/1.1
Host: vidcdn.123rf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10539
x-amz-id-2: GuN7YFm4yJaKtPbr1cQFXdkGYpTQc8nzJflThhaPqaqkiPhQ3lZDuMxxfjDzUxuHqKSKvVb7zlI=
x-amz-request-id: 8MFFPD50J6DK8NQ0
last-modified: Fri, 26 Apr 2019 11:35:14 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 01 Jun 2025 02:16:44 GMT
etag: "43ef93e6914d5a4b928c7ba530220856"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 3bd19ecae9d202e55626096b4934d62e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: OFQYFfe503-4fQaUQi6uPcJKb5a_P-gwXZQ7xdwhXxxSPUlOXs-yrg==
age: 622380
X-Firefox-Spdy: h2
GET page.phic4.top/myda.php
200 OK 0 B URL
page.phic4.top/myda.php
IP / ASN
172.67.190.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject phic4.top
Fingerprint 7D:FB:B4:77:85:58:5A:A6:F5:90:D1:1A:18:37:82:49:6E:ED:B7:C6
Validity Thu, 01 May 2025 23:39:34 GMT - Thu, 31 Jul 2025 00:37:14 GMT
GET /myda.php HTTP/1.1
Host: page.phic4.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=utf-8
server: cloudflare
myda: myda2a01:799:5a6:1b00:7c38:b30d:63ef:44f4
vary: User-Agent, accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1Smcka7XoNcIrQxJ1pMau2B%2FdZ8iiRNSperauorpdv7kXHLqe299TAPNzAxRvSC8bdi0sgqj8g7pkK3SVkg8ZAGwDN%2BzG4QLWX0Row%3D%3D"}]}
age: 1276
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Sun, 08 Jun 2025 06:48:32 GMT
content-encoding: br
cf-ray: 94c690de291ab4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240108-1/ad7e0a995a518aa688b3a3e0a830d0b7.jpg
200 OK 115 kB URL
jpgjingpinx.com/upload/vod/20240108-1/ad7e0a995a518aa688b3a3e0a830d0b7.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 718 x 404, 8-bit colormap, non-interlaced
First Seen 2025-04-24
Last Seen 2025-06-16
Times Seen 30
Size 115 kB (115187 bytes)
MD5 5247653e6405a7bd3ccceede8b42606a
SHA1 b2222e8513a96ef9fa7e91c51385fc190958093a
SHA256 5b8ffc3ffa6b970ba72c69c66931cfd6142a97a3fd3d46a8a63d6483bdf88d70
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240108-1/ad7e0a995a518aa688b3a3e0a830d0b7.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 115187
Content-Type: image/jpeg
Date: Tue, 03 Jun 2025 11:42:47 GMT
Etag: "659b8f82-1c1f3"
Expires: Thu, 03 Jul 2025 11:42:47 GMT
Last-Modified: Tue, 03 Jun 2025 11:42:47 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET www.9188porn.xyz/upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a28e7c81036b65df24d80294e754f6b9.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET img.imghuo.cfd/nb/tmb/000/000/843/1.jpg
200 OK 6.7 kB URL
img.imghuo.cfd/nb/tmb/000/000/843/1.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-08-19
Last Seen 2025-07-23
Times Seen 30
Size 6.7 kB (6726 bytes)
MD5 dfcbfcc8b0af01573ef3b705d1d20f62
SHA1 d74d473d2c30b0bf11ae0b09e26db12610d1b9ac
SHA256 9fdc61a89c6a031bfb3e13d0348943e3f17c7881894864c98012e9dbb250a22a
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /nb/tmb/000/000/843/1.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:43 GMT
Content-Type: image/jpeg
Content-Length: 6726
Last-Modified: Sat, 23 Mar 2024 12:21:26 GMT
Connection: keep-alive
ETag: "65fec946-1a46"
Accept-Ranges: bytes
GET 4kincestporn.com/thumbs/194/3824942637728854194_0.jpg
200 OK 7.4 kB URL
4kincestporn.com/thumbs/194/3824942637728854194_0.jpg
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x180, components 3
First Seen 2024-01-21
Last Seen 2025-07-17
Times Seen 9
Size 7.4 kB (7449 bytes)
MD5 273f072c8b1db44a809c994c9bf6867c
SHA1 b666fc06748e275143dfcf70d0fcccbe5c7de38f
SHA256 9346e9ce64fa1fffc12746270390c91222d45755306f293886d4cd90adcf8070
Certificate Info
Issuer Google Trust Services
Subject 4kincestporn.com
Fingerprint 62:E5:2B:7D:CF:C6:9F:73:C6:2B:88:D3:EA:9D:99:80:07:4C:CE:A0
Validity Mon, 14 Apr 2025 10:05:01 GMT - Sun, 13 Jul 2025 11:03:25 GMT
GET /thumbs/194/3824942637728854194_0.jpg HTTP/1.1
Host: 4kincestporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 7449
server: cloudflare
last-modified: Fri, 06 Mar 2020 11:26:44 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5e623374-1d19"
expires: Sun, 06 Jul 2025 02:35:40 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 189245
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8pEzRqONGuj2YIXpbYlS%2BEv8VhPjpEjU3%2B9AI3hD2r6axIa8lzxqwn9N%2BYTUKnVK3xS9LnxqaSmO8zaX75%2FM6LOiwfKGmmj2LLamy6Wf"}]}
cf-ray: 94c690c8fb2b0b59-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET en.vidmo.pro/thumbs_320/68/63/6863e58996b9c4e7856c8f8fec322691/11872970.jpg
200 OK 12 kB URL
en.vidmo.pro/thumbs_320/68/63/6863e58996b9c4e7856c8f8fec322691/11872970.jpg
IP / ASN
89.248.193.244
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 320x240, components 3
First Seen 2025-01-03
Last Seen 2025-07-08
Times Seen 9
Size 12 kB (12343 bytes)
MD5 d67de0a9dee98a50e6f961fba2f6b26e
SHA1 c418745269ebce226e08c49f10e06e9aba8c966d
SHA256 4f9a44f58b017ad96fdf7fbb99d4b00efe75d9ff7f1d4a1d04f03513d346262f
Certificate Info
Issuer Let's Encrypt
Subject en.vidmo.pro
Fingerprint 57:81:80:6A:BD:AB:01:74:FA:F0:97:5E:4F:42:53:20:44:10:3D:FF
Validity Sun, 25 May 2025 20:48:54 GMT - Sat, 23 Aug 2025 20:48:53 GMT
GET /thumbs_320/68/63/6863e58996b9c4e7856c8f8fec322691/11872970.jpg HTTP/1.1
Host: en.vidmo.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 12343
last-modified: Sun, 24 May 2020 04:06:46 GMT
expires: Wed, 17 Apr 2024 11:39:05 GMT
cache-control: max-age=604800, public, no-transform
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET img.imghuo.cfd/index/img/tu/551/2.jpg
200 OK 30 kB URL
img.imghuo.cfd/index/img/tu/551/2.jpg
IP / ASN
104.238.220.129
#23470 RELIABLESITE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 600x400, components 3
First Seen 2024-04-24
Last Seen 2025-07-28
Times Seen 35
Size 30 kB (30202 bytes)
MD5 bd8b1c364b0851d0f6c6cc970e334bdc
SHA1 05dc22f58742b79566ad87085f85a90c20282857
SHA256 f79a28180ade51ee182cd57885b727afd657d5409d5a86e4307f744388f87b82
Certificate Info
Issuer Let's Encrypt
Subject img.imghuo.cfd
Fingerprint 8E:A1:62:82:8D:80:F7:81:D5:85:E8:88:A3:92:94:47:71:0E:A0:E5
Validity Wed, 21 May 2025 07:47:38 GMT - Tue, 19 Aug 2025 07:47:37 GMT
GET /index/img/tu/551/2.jpg HTTP/1.1
Host: img.imghuo.cfd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:43 GMT
Content-Type: image/jpeg
Content-Length: 30202
Last-Modified: Sat, 23 Mar 2024 12:21:10 GMT
Connection: keep-alive
ETag: "65fec936-75fa"
Accept-Ranges: bytes
GET image.beckybelike.com/upload/vod/20240909-1/60ce45db0d81643b3b2c6d5ecc0af3f4.jpg
0 B URL
image.beckybelike.com/upload/vod/20240909-1/60ce45db0d81643b3b2c6d5ecc0af3f4.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/vod/20240909-1/60ce45db0d81643b3b2c6d5ecc0af3f4.jpg HTTP/1.1
Host: image.beckybelike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET ljcdn.ddljsytt.com/20241105/ykzXF7Xg/1.jpg
0 B URL
ljcdn.ddljsytt.com/20241105/ykzXF7Xg/1.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /20241105/ykzXF7Xg/1.jpg HTTP/1.1
Host: ljcdn.ddljsytt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.xyz/upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240108-1/fe6c0f0ccd6e765a4da5aa7ea56604f0.jpg
200 OK 43 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240108-1/fe6c0f0ccd6e765a4da5aa7ea56604f0.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-22
Last Seen 2025-06-21
Times Seen 4
Size 43 kB (43396 bytes)
MD5 0ade85024606c510b0833acc22ae2602
SHA1 8ec1385a7605f40bacab75a24b6857f835529b39
SHA256 bec448a10ef65d983adee1dd235cbd3e82ede2b17b6008489e9d3638d11bc039
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240108-1/fe6c0f0ccd6e765a4da5aa7ea56604f0.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:39 GMT
content-type: image/webp
content-length: 43396
last-modified: Sat, 14 Dec 2024 00:43:09 GMT
expires: Mon, 14 Dec 2026 12:43:09 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240108-1/fe6c0f0ccd6e765a4da5aa7ea56604f0.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ced64e44887664e9"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_3664422843.jpg
200 OK 8.9 kB URL
chezcathy.com/ext/pre_3664422843.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-12-07
Last Seen 2025-07-17
Times Seen 7
Size 8.9 kB (8941 bytes)
MD5 3ea7a2940122484841c15a5e266db01b
SHA1 53cd8bb7f757ee4c19b95889b609d42c95832700
SHA256 69fe4d7a7d2c09aa2ef5ccd892affec7f9a3967d4d83f521dcd291364fa4d3f9
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_3664422843.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 8941
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "666bc971-22ed"
last-modified: Fri, 14 Jun 2024 04:39:13 GMT
cdn-cachedat: 04/28/2025 17:15:25
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: b86aa4a91fdf60557d27d60bb0af0e2b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mc.webvisor.org/watch/48140495?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1)
302 Found 604 B URL
mc.webvisor.org/watch/48140495?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1)
IP / ASN
77.88.21.119
#13238 YANDEX LLC
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 604 B (604 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer GlobalSign nv-sa
Subject mc.webvisor.com
Fingerprint 4E:A6:D4:57:F5:B7:FB:C1:98:C0:40:D2:B8:FA:B4:10:43:09:41:94
Validity Sun, 09 Mar 2025 21:02:24 GMT - Sun, 31 Aug 2025 20:59:59 GMT
GET /watch/48140495?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(21562884)fip(1)ti(1) HTTP/1.1
Host: mc.webvisor.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://young.av4us.org
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
set-cookie: yabs-sid=220660111749366589; Path=/; SameSite=None; Secure
i=F1tNyN2SDjXgw3akHsee8tvbxnOSMnL+ZyEhdU/NBn9gdtKDuNNeOoJz0iVg0K5vLI7QJP1R355T3XHAWLP33mmx+uE=; Expires=Wed, 06-Jun-2035 07:09:47 GMT; Domain=.webvisor.org; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8735943531749366589; Expires=Wed, 06-Jun-2035 07:09:47 GMT; Domain=.webvisor.org; Path=/; Secure; SameSite=None
yuidss=8735943531749366589; Expires=Mon, 08-Jun-2026 07:09:49 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure
ymex=1780902589.yrts.1749366589#1780902589.yrtsi.1749366589; Expires=Mon, 08-Jun-2026 07:09:49 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure
bh=YL3ulMIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Mon, 13 Jul 2026 07:09:49 GMT; SameSite=None; Secure
bh=YL3ulMIGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Mon, 13 Jul 2026 07:09:49 GMT; SameSite=None; Secure
last-modified: Sun, 08-Jun-2025 07:09:49 GMT
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
location: /watch/48140495/1?wmode=7&page-url=https%3A%2F%2Fyoung.av4us.org%2F&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A3e6hv5stskvynxmu7vt064uj1cm7%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2063%3Acn%3A1%3Adp%3A0%3Als%3A1122127359400%3Ahid%3A1048590934%3Az%3A0%3Ai%3A20250608070947%3Aet%3A1749366588%3Ac%3A1%3Arn%3A272229921%3Arqn%3A1%3Au%3A1749366588106542537%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C7%2C8%2C102%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1749366579209%3Afip%3A9009a2c687766e1560dc17bf8130f6c3-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1749366590%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB--VIDEOS%40AV4.us&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2821562884%29fip%281%29ti%281%29&redirnss=1
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
expires: Sun, 08-Jun-2025 07:09:49 GMT
access-control-allow-origin: https://young.av4us.org
strict-transport-security: max-age=31536000
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240119-1/8020fdb7d51df25cb482c04b0154cff9.jpg
200 OK 41 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240119-1/8020fdb7d51df25cb482c04b0154cff9.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x715, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-22
Last Seen 2025-07-09
Times Seen 13
Size 41 kB (41148 bytes)
MD5 b7ce6140098db0d186e5bdae4212680b
SHA1 82e0853242fada6f5e049a40e74ffd8982e14bfd
SHA256 b82ffd5eea866d4895ccf96352a0cefbfeb33151fd46009a26ff58427b53033a
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240119-1/8020fdb7d51df25cb482c04b0154cff9.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 41148
last-modified: Sat, 14 Dec 2024 01:58:33 GMT
expires: Mon, 14 Dec 2026 13:58:33 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240119-1/8020fdb7d51df25cb482c04b0154cff9.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "54ee7d8d84ecd920"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2019/07/christianef.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2019/07/christianef.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.topchineseporn.com/favicon.ico
404 Not Found 0 B URL
www.topchineseporn.com/favicon.ico
IP / ASN
46.229.174.194
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject topchineseporn.com
Fingerprint CC:5F:03:AE:5A:58:E6:61:D0:AD:09:78:26:EC:65:1B:92:CF:66:9C
Validity Sat, 05 Apr 2025 06:43:47 GMT - Fri, 04 Jul 2025 06:43:46 GMT
GET /favicon.ico HTTP/1.1
Host: www.topchineseporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: openresty
date: Sun, 08 Jun 2025 07:09:53 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_6603839535.jpg
200 OK 13 kB URL
chezcathy.com/ext/pre_6603839535.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-12-08
Last Seen 2025-07-31
Times Seen 40
Size 13 kB (13216 bytes)
MD5 75fc694af7b679c93ae6a210896872a0
SHA1 1d13e808a925663273b31d9adf6d9353652dd3e8
SHA256 6bcb3d7cc697ad9c26d06fe476ca02f5370123f400858989e83dc2260aee7b3f
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_6603839535.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 13216
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "6668ea52-33a0"
last-modified: Wed, 12 Jun 2024 00:22:42 GMT
cdn-cachedat: 04/28/2025 17:10:52
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 8ea390cf6d33f7a6fc3f31c2dc6e1711
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/84505D0.jpg
200 OK 22 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/84505D0.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 2000x2001, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 22 kB (22283 bytes)
MD5 85f33e75c321841917e9db4a6e7d7d69
SHA1 4f4daa4207862cbd83d33f05be2933fd34a1b77d
SHA256 246fd3dbd62158820da479136da5f231c30fe6e1380b3209cccd7d52dc701dfe
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/84505D0.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 22283
vary: x-s-token
last-modified: Thu, 04 Oct 2018 22:16:18 GMT
etag: "570b-5776e8105a973"
x-cache: HIT
x-whom: cdn06
accept-ranges: bytes
GET rule34.paheal.net/_thumbs/5589d21db0a8d1564c9aa70097a2ffb0/thumb.jpg
200 OK 2.5 kB URL
rule34.paheal.net/_thumbs/5589d21db0a8d1564c9aa70097a2ffb0/thumb.jpg
IP / ASN
185.100.87.48
#200651 FlokiNET ehf
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x108, components 3
First Seen 2025-05-24
Last Seen 2025-06-28
Times Seen 6
Size 2.5 kB (2459 bytes)
MD5 11cfe3274bc61511dd76afcdd79757a9
SHA1 17d2c4194be0fd677135a69e795f4586b9d9e76b
SHA256 c2556ef9685fc22880083f8fdf9fbaa9ee1a290e3ff96c3dbb158a5a496fef4d
Certificate Info
Issuer Let's Encrypt
Subject rule34.paheal.net
Fingerprint 14:19:38:B9:57:D4:0B:18:D5:5F:12:F6:60:8A:F4:36:25:BE:F4:9D
Validity Sat, 31 May 2025 08:55:26 GMT - Fri, 29 Aug 2025 08:55:25 GMT
GET /_thumbs/5589d21db0a8d1564c9aa70097a2ffb0/thumb.jpg HTTP/1.1
Host: rule34.paheal.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31556926
date: Sun, 08 Jun 2025 07:09:44 GMT
etag: "63b75117-99b"
last-modified: Thu, 05 Jan 2023 22:37:11 GMT
server: Unit/1.34.2
content-type: image/jpeg
content-length: 2459
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/c428f3111768e6b1df03c33b3a96aa5b.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET fapmove.com/favicon.ico
403 Forbidden 0 B URL
fapmove.com/favicon.ico
IP / ASN
185.73.220.217
#32338 HOSTISERVER
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject fapmove.com
Fingerprint 0B:06:78:1B:EF:AE:CE:8A:07:7A:D7:43:D3:79:90:63:25:E3:75:92
Validity Sat, 17 May 2025 05:19:10 GMT - Fri, 15 Aug 2025 05:19:09 GMT
GET /favicon.ico HTTP/1.1
Host: fapmove.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx
date: Sun, 08 Jun 2025 07:09:50 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
GET p2-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIzLzA2LzIwLzAxL0JNakF5TXpBMk1qQXdNVE0xTlRSZk1UVXdNREF4TVRJeU1UUTJOVEF4WHpFMU1ERXdNekkwTVRFek1EUTRObDh4WHpNPV9vdXVfQjhmZDU4MzU0ZWQ1Njg3YmZlNmU5ZmM1MzJkZDg5NjAwLndlYnA.webp
200 OK 17 kB URL
p2-kimg.kwai.net/kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIzLzA2LzIwLzAxL0JNakF5TXpBMk1qQXdNVE0xTlRSZk1UVXdNREF4TVRJeU1UUTJOVEF4WHpFMU1ERXdNekkwTVRFek1EUTRObDh4WHpNPV9vdXVfQjhmZDU4MzU0ZWQ1Njg3YmZlNmU5ZmM1MzJkZDg5NjAwLndlYnA.webp
IP / ASN
47.246.50.183
#24429 Zhejiang Taobao Network Co.,Ltd
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 322x574, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-09
Last Seen 2025-07-31
Times Seen 19
Size 17 kB (17196 bytes)
MD5 86e939cc0802cdd949d413f64c30e6ce
SHA1 04933247d313f4101a54a11e9658f89f5600b498
SHA256 734214b688b7351e8e00b76ec9d9977bb5bcba241c0e5fec8e4546d0c094b0ce
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /kimg/EKzM1y8qmQEKAnMzEg1waG90by1vdmVyc2VhGoMBdXBpYy8yMDIzLzA2LzIwLzAxL0JNakF5TXpBMk1qQXdNVE0xTlRSZk1UVXdNREF4TVRJeU1UUTJOVEF4WHpFMU1ERXdNekkwTVRFek1EUTRObDh4WHpNPV9vdXVfQjhmZDU4MzU0ZWQ1Njg3YmZlNmU5ZmM1MzJkZDg5NjAwLndlYnA.webp HTTP/1.1
Host: p2-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 17196
date: Thu, 13 Feb 2025 18:56:20 GMT
krtid: gw237d7d18400541f4842df0bdb4656da3
expires: Fri, 13 Feb 2026 18:56:20 GMT
cache-control: max-age=31536000
via: 1.1 009e5e3e32afcd1d135a7234c9da5520.cloudfront.net (CloudFront), ens-cache6.l2de3[0,0,200-0,H], ens-cache12.l2de3[2,0], ens-cache1.fr4[0,0,200-0,H], ens-cache18.fr4[1,0]
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: 4YndMWzYdMT-CAa-2ON2LcqDj_GWuwbngbpygHfYjXaukeqSptGYaw==
age: 9802950
ali-swift-global-savetime: 1739563635
x-cache: HIT TCP_MEM_HIT dirn:-2:-2
x-swift-savetime: Wed, 05 Mar 2025 07:16:57 GMT
x-swift-cachetime: 29508618
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
timing-allow-origin: *
eagleid: 2ff632a617493665854635810e
X-Firefox-Spdy: h2
GET www.clporn.com/favicon.ico
200 OK 1.2 kB URL
www.clporn.com/favicon.ico
IP / ASN
104.21.25.21
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2024-05-18
Last Seen 2025-07-31
Times Seen 109
Size 1.2 kB (1150 bytes)
MD5 7bce878d4d59681219dd7ee7b31d501f
SHA1 8078782a63dd8997b9537de46f1c19c0b60737ce
SHA256 19658bac1ca076be044dc8e1289ae869efd6847cc8d61405f1f6aeea11904dcf
Certificate Info
Issuer Google Trust Services
Subject clporn.com
Fingerprint 8F:CA:12:EB:6D:F7:0B:C6:3E:7E:FB:1F:5B:47:EE:0F:FC:F2:10:55
Validity Mon, 14 Apr 2025 20:15:06 GMT - Sun, 13 Jul 2025 21:12:18 GMT
GET /favicon.ico HTTP/1.1
Host: www.clporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 1150
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I1rU8tjsM5xAtAaABJIFegIcFJ5dvtLj7aHDsu2%2F0BiX2Pkk1W7UC7nF6B8Y74xbwqdvSLwuVP0AwfN6y5exy8wvNJhL1rNIPvbbRqtKSz5bNi3ABiy%2BmldtQKc33G89IA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 21 May 2023 03:45:32 GMT
etag: "646993dc-47e"
expires: Thu, 04 Jun 2026 03:57:42 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 357129
cf-cache-status: HIT
cf-ray: 94c690f29b85568e-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20542&min_rtt=11711&rtt_var=15039&sent=41&recv=49&lost=0&retrans=0&sent_bytes=5309&recv_bytes=3315&delivery_rate=219177&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=6a33826ba385d9ec&ts=6700&inflight_dur=145&x=80"
GET p15-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIyLzExLzIzLzE5L0JNakF5TWpFeE1qTXhPVEV6TlRaZk1UVXdNREF3TVRVMk56ZzFNVGs1WHpFMU1ERXdNVE00TXpjM09ETTBNRjh5WHpNPV9vZmZuX0JjZmM4ZGEwMWRmZTUzMTYxNzZjY2Q1ODY4OTgzODIwOS53ZWJw.webp
200 OK 8.8 kB URL
p15-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIyLzExLzIzLzE5L0JNakF5TWpFeE1qTXhPVEV6TlRaZk1UVXdNREF3TVRVMk56ZzFNVGs1WHpFMU1ERXdNVE00TXpjM09ETTBNRjh5WHpNPV9vZmZuX0JjZmM4ZGEwMWRmZTUzMTYxNzZjY2Q1ODY4OTgzODIwOS53ZWJw.webp
IP / ASN
54.240.174.90
#16509 AMAZON-02
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x406, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2024-12-22
Last Seen 2025-07-31
Times Seen 20
Size 8.8 kB (8768 bytes)
MD5 88a36730eb397e7c5a4c1126742924f7
SHA1 fd519ec8c4581f8438bf95ba936f9845921d4140
SHA256 8707289486b873b233cdbd42494eed772a0591f61649bdbf152236c9652b3998
Certificate Info
Issuer Amazon
Subject *.kwai.net
Fingerprint F1:A4:C1:87:13:2A:DC:F1:6B:70:25:61:4D:D3:B2:FA:DD:F5:F1:26
Validity Tue, 10 Sep 2024 00:00:00 GMT - Thu, 09 Oct 2025 23:59:59 GMT
GET /kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIyLzExLzIzLzE5L0JNakF5TWpFeE1qTXhPVEV6TlRaZk1UVXdNREF3TVRVMk56ZzFNVGs1WHpFMU1ERXdNVE00TXpjM09ETTBNRjh5WHpNPV9vZmZuX0JjZmM4ZGEwMWRmZTUzMTYxNzZjY2Q1ODY4OTgzODIwOS53ZWJw.webp HTTP/1.1
Host: p15-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 8768
date: Tue, 10 Dec 2024 01:33:57 GMT
krtid: gwfdd88442e717496fb9b776f330b7798f
expires: Wed, 10 Dec 2025 01:33:57 GMT
cache-control: public, max-age=31536000
via: 1.1 009e5e3e32afcd1d135a7234c9da5520.cloudfront.net (CloudFront), 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA50-C1, OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 9IKkd3fYdJvCDGGMagvOi0dNh8XflNQHHmEalakSJaxEqGeNkgpMsQ==
age: 15572148
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
GET img.youtube.com/vi/QXQdxaP2pVc/0.jpg
200 OK 24 kB URL
img.youtube.com/vi/QXQdxaP2pVc/0.jpg
IP / ASN
142.250.74.174
#15169 GOOGLE
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3
First Seen 2025-06-08
Last Seen 2025-07-20
Times Seen 6
Size 24 kB (24376 bytes)
MD5 b631c99f9f1acec288d4c31e01d9cdf1
SHA1 cdc75886776c39d7c063103c2cf931223bbd2311
SHA256 b70648819dc24a4bb45bfe0e1fd752de59f02f1e8da290463d32f324ee58b0e5
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint 7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
Validity Mon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
GET /vi/QXQdxaP2pVc/0.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 24376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Jun 2025 07:07:56 GMT
expires: Sun, 08 Jun 2025 09:07:56 GMT
cache-control: public, max-age=7200
etag: "1464116218"
content-type: image/jpeg
age: 114
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn5-thumbs.motherlessmedia.com/thumbs/F850CDF.jpg
200 OK 32 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/F850CDF.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2025-06-08
Last Seen 2025-07-03
Times Seen 4
Size 32 kB (32186 bytes)
MD5 9b2cd58b5720f4b6c50f970845e0fb87
SHA1 89500bb9ae90c9e5dbbcdc6ec8d1f00e18f226cd
SHA256 4c2ce97d1c9500cfed0475bac42c6dd2939eab482b13d33b5e0427dd6edba89e
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/F850CDF.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 32186
vary: x-s-token
last-modified: Mon, 08 Oct 2018 02:00:27 GMT
etag: "7dba-577adfc317b97"
x-cache: HIT
x-whom: cdn05
accept-ranges: bytes
GET www.9188porn.xyz/upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/a48bdba019a1ccf05f8e48c34e8964fc.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET s9.anhmoecdn.store/NGWaYeW.fr.jpeg
200 OK 23 kB URL
s9.anhmoecdn.store/NGWaYeW.fr.jpeg
IP / ASN
104.21.32.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 408x720, components 3
First Seen 2025-05-22
Last Seen 2025-07-20
Times Seen 14
Size 23 kB (22857 bytes)
MD5 e45579cf376ba9d055d710fd88c6ce5e
SHA1 c3850c6a605846204f696f87ac71ea60679308e7
SHA256 c36c5aef683b41e4e7103004ee25ce1d5c74401b99dd8e267c54cff18d182858
Certificate Info
Issuer Google Trust Services
Subject 85f669a2.sni.cloudflaressl.com
Fingerprint A7:8A:24:31:54:49:AB:0E:2B:C3:CC:9F:EB:36:BC:B2:67:6F:98:CC
Validity Sat, 07 Jun 2025 22:29:22 GMT - Fri, 05 Sep 2025 23:29:20 GMT
GET /NGWaYeW.fr.jpeg HTTP/1.1
Host: s9.anhmoecdn.store
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://young.av4us.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 22857
accept-ranges: bytes
etag: "e45579cf376ba9d055d710fd88c6ce5e"
last-modified: Sat, 07 Jun 2025 21:25:19 GMT
vary: Accept-Encoding
age: 1830
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K0bFJnKZmFBlQji2nGnZ25p8ZCKZYWeQY%2BzqR2I%2Fyj5yqc9XwMSRltDDvOOhGrQLPDARmKFMMJTITSGZDuTjqvtzjWj7zmOIQngR3DQB4tFje7A9qSa4C0fdcA239DOA89Eh1Cw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 94c690cdec1cb527-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1308&min_rtt=447&rtt_var=1743&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3316&recv_bytes=1220&delivery_rate=7927007&cwnd=254&unsent_bytes=0&cid=0de5bd5535a0c116&ts=3040&x=0"
X-Firefox-Spdy: h2
GET thumb.aporntv.com/thumbs/6/0/c/1/d/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4-4.jpg
200 OK 5.0 kB URL
thumb.aporntv.com/thumbs/6/0/c/1/d/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4-4.jpg
IP / ASN
104.26.1.238
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 200x150, components 3
First Seen 2025-01-03
Last Seen 2025-07-07
Times Seen 10
Size 5.0 kB (5029 bytes)
MD5 be637456da3b8533d62d1df76ac71901
SHA1 f3f03e206204126da4ca1ae232f4c8bf3a730425
SHA256 c8e2dbb4299b6803a52a657136fca7ceab58551fb77b0a001b96a75f427087e1
Certificate Info
Issuer Let's Encrypt
Subject aporntv.com
Fingerprint 12:C5:AA:F4:28:DA:FC:0D:26:EF:7E:DC:ED:3C:55:A1:34:24:B2:E6
Validity Tue, 22 Apr 2025 22:30:20 GMT - Mon, 21 Jul 2025 22:30:19 GMT
GET /thumbs/6/0/c/1/d/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4/60bfaa95552c9old%20man%20and%20young%20girl%20(50).mp4-4.jpg HTTP/1.1
Host: thumb.aporntv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 5029
cf-ray: 94c690c37f617127-OSL
cache-control: public, max-age=16070400
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5053
etag: "60c1d127-13bd"
expires: Fri, 13 Jun 2025 06:53:46 GMT
last-modified: Thu, 10 Jun 2021 08:45:27 GMT
cf-cache-status: HIT
age: 173758
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vC3bFEFu4kVrudnlH2DwvWWH%2BArbk0EAJiaoVNR20867jBjz8whHgsBpZR91PdQKeIsRQDDoIwFR8%2Bde8Au4m6nhwaJ2h4UwB496qy4nRv5fN1%2Bfg0n81u%2FTVm%2B1MmHbLU8l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2537&min_rtt=398&rtt_var=4285&sent=6&recv=10&lost=0&retrans=0&sent_bytes=2820&recv_bytes=1173&delivery_rate=5838709&cwnd=253&unsent_bytes=0&cid=dd05a174ae6e1b74&ts=3318&x=0"
X-Firefox-Spdy: h2
GET videopreview.chezcathy.com/ext/pre_9321583142.jpg
200 OK 7.7 kB URL
videopreview.chezcathy.com/ext/pre_9321583142.jpg
IP / ASN
57.129.130.31
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-12-10
Last Seen 2025-07-13
Times Seen 4
Size 7.7 kB (7679 bytes)
MD5 399d12c71795f6a4698fb96ae337bc7a
SHA1 75308654da1dc31914cb1618e53705d266a82910
SHA256 c29c9ff02eed7bebf0817d2cbbe6dd795fc56764fe753486e96001fa58c84b14
Certificate Info
Issuer Let's Encrypt
Subject videopreview.chezcathy.com
Fingerprint 57:9A:62:F9:2C:DF:06:02:FD:00:7E:90:41:F0:58:B7:25:C6:71:6D
Validity Fri, 18 Apr 2025 06:25:44 GMT - Thu, 17 Jul 2025 06:25:43 GMT
GET /ext/pre_9321583142.jpg HTTP/1.1
Host: videopreview.chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Sun, 08 Jun 2025 07:09:45 GMT
Content-Type: image/jpeg
Content-Length: 7679
Last-Modified: Tue, 11 Jun 2024 15:14:02 GMT
Connection: keep-alive
ETag: "666869ba-1dff"
Accept-Ranges: bytes
GET img.caoliuzywimg.com:188/20230228/De57j6st/1.jpg
200 OK 114 kB URL
img.caoliuzywimg.com:188/20230228/De57j6st/1.jpg
IP / ASN
173.239.250.131
#197555 Smartmieten Tech Private Limited
Requested by https://young.av4us.org/
Resource Info
File type PNG image data, 718 x 404, 8-bit colormap, non-interlaced
First Seen 2025-06-03
Last Seen 2025-06-24
Times Seen 16
Size 114 kB (114538 bytes)
MD5 d0e3fc70479eb0d707b6239bc537d517
SHA1 c3388a5e3757742a5c1ce48f38e0e04d037b546e
SHA256 97e63c959ca389aaa4ac60d0135dd0aeed3226c22f23058249178523dba75c25
Certificate Info
Issuer Unizeto Technologies S.A.
Subject img.caoliuzywimg.com
Fingerprint 56:53:85:09:6F:47:70:4E:D7:DB:38:DD:2A:C6:FD:9D:67:28:2A:26
Validity Mon, 31 Mar 2025 17:06:06 GMT - Thu, 30 Apr 2026 17:06:05 GMT
GET /20230228/De57j6st/1.jpg HTTP/1.1
Host: img.caoliuzywimg.com:188
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, DELETE, HEAD, OPTIONS, PATCH
content-type: image/jpeg
date: Sun, 08 Jun 2025 06:13:23 GMT
etag: "64004917-1bf6a"
last-modified: Sun, 08 Jun 2025 06:20:23 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 114538
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg
200 OK 79 kB URL
jpgjingpinx.com/upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 718x404, components 3
First Seen 2025-05-24
Last Seen 2025-06-16
Times Seen 8
Size 79 kB (78858 bytes)
MD5 a210aacdca8c2e4dae3f9a073391c9f7
SHA1 ec887ed6f11c94cf68abd1c7274cabfd8eb5263a
SHA256 3c450ce6eed6b5ee641eee4bf2e4864835d8b413808da6c3b87d5b166824205f
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240421-1/c92a2e302bb3572be1cd13f842ce3d82.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 78858
Content-Type: image/jpeg
Date: Tue, 03 Jun 2025 11:48:47 GMT
Etag: "6624a388-1340a"
Expires: Thu, 03 Jul 2025 11:48:47 GMT
Last-Modified: Tue, 03 Jun 2025 11:48:47 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET wild-kitty.net/video/vid061.jpg
200 OK 51 kB URL
wild-kitty.net/video/vid061.jpg
IP / ASN
104.21.40.107
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 768x432, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 51 kB (51020 bytes)
MD5 c7c6797f591d2dc51201f6e560bacbd4
SHA1 83015d034f319595e6db1592947d02f355898d3f
SHA256 a005670ec95605ce5de7b435bd270dd69f55d7ac1a78bc57296121e83a83a039
Certificate Info
Issuer Google Trust Services
Subject wild-kitty.net
Fingerprint E1:D0:88:D6:C0:D9:25:42:D7:0B:93:4B:56:80:73:DE:DC:9A:BD:16
Validity Mon, 05 May 2025 19:15:03 GMT - Sun, 03 Aug 2025 20:12:11 GMT
GET /video/vid061.jpg HTTP/1.1
Host: wild-kitty.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 51020
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Fri, 20 Oct 2017 10:07:34 GMT
etag: "c74c-55bf7a43c0580"
accept-ranges: bytes
age: 4738
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=OP4KrfzpXHitCAj36Go%2B8wf%2FlYC8wyfvIm6lpSBM96l%2Bf7MSW5RDWKcRxY%2BHUFB1%2FIsNKBbSuzFWFboHJQpDFmDl57u309beFqEtbA%3D%3D"}]}
cf-ray: 94c690cfa9af0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_4904502971.jpg
200 OK 12 kB URL
chezcathy.com/ext/pre_4904502971.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 639x640, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-05-25
Last Seen 2025-07-02
Times Seen 4
Size 12 kB (11684 bytes)
MD5 2426696f750f38ab844a63c87946cb3b
SHA1 2d5f3abc40596f9a681c2b74c3b45a9f7584631d
SHA256 fcfdbf4b345f3d23aedb4efb864fe6e662d9b3484695cd9c182947fedf54d0f8
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_4904502971.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 11684
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "6668dbb4-2da4"
last-modified: Tue, 11 Jun 2024 23:20:20 GMT
cdn-cachedat: 04/28/2025 17:25:20
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 755
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: f09746541fa56793cd0dec6adecd3140
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET 159i.net/404
404 Not Found 0 B IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 159i.net
Fingerprint AA:CD:77:27:51:8D:5C:83:7B:DE:A9:3B:D4:8D:F8:E6:21:AE:CC:46
Validity Tue, 20 May 2025 05:04:13 GMT - Mon, 18 Aug 2025 06:02:43 GMT
GET /404 HTTP/1.1
Host: 159i.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://young.av4us.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZGYSvJOTn6rVKQV%2BjZd0H8uuRF0ybKWq3mxDKqhySqgfvL6fDWA9EKD%2FjG%2B1WDn5kW51dXZ1zxP4V88qbETqoLUg1eBD%2FQ%3D%3D"}]}
content-encoding: br
set-cookie: PHPSESSID=d113219b57bd09355d0d8f13bb66f977; Path=/
cf-ray: 94c690bf49c256ba-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET images.fapmove.com/thumbs/1167/267_fucking-with.jpg
200 OK 35 kB URL
images.fapmove.com/thumbs/1167/267_fucking-with.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=482, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=608], baseline, precision 8, 320x180, components 3
First Seen 2025-02-15
Last Seen 2025-07-31
Times Seen 7
Size 35 kB (35147 bytes)
MD5 5e0aa08aac1c7af53cdffd930821c267
SHA1 74f5e73856c02fee60e12e98013724a4c1f02c04
SHA256 d8ca6ee6ccfe0ccd66dfa466df0d2e951f354cae0f0ba69017fd78294f8bb233
Certificate Info
Issuer Google Trust Services
Subject fapmove.com
Fingerprint 5A:40:39:E1:7A:97:43:37:6F:D3:95:65:F3:13:98:49:52:EC:86:0D
Validity Fri, 06 Jun 2025 13:28:22 GMT - Thu, 04 Sep 2025 14:24:46 GMT
GET /thumbs/1167/267_fucking-with.jpg HTTP/1.1
Host: images.fapmove.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 35147
server: cloudflare
last-modified: Wed, 30 Dec 2020 04:02:34 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "5febfbda-894b"
expires: Thu, 12 Jun 2025 01:21:57 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 280062
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5J3r%2FC6I%2FCXLdSevZ47abkXs4xRYAFeePNYEkapxz8SPBoCxkem8g0wPXTjHwkq6m614mAFMxsQrucBpgfA1scOC0%2Fb6%2FHjYBoymzDGdvc4%3D"}]}
cf-ray: 94c690a57b1b56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET st3.depositphotos.com/4938723/19277/v/600/depositphotos_192777440-stock-video-massage-room-worker-makes-massage.jpg
200 OK 15 kB URL
st3.depositphotos.com/4938723/19277/v/600/depositphotos_192777440-stock-video-massage-room-worker-makes-massage.jpg
IP / ASN
23.44.37.17
#16625 AKAMAI-AS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 608x342, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 15 kB (14700 bytes)
MD5 6947a2a12eaaeaab49010bb07d3e2ac9
SHA1 e0b15523b8684cf1ada60d7ac2f9235850bdafd1
SHA256 d4e490a715779ca0a200a4be9829b39b8f53ac2a3f2698978d03021bbab51f0e
Certificate Info
Issuer DigiCert Inc
Subject *.depositphotos.com
Fingerprint 4F:76:F2:E7:8D:64:3C:20:E6:D2:B7:A1:45:C3:1D:89:C8:9D:24:1D
Validity Thu, 24 Oct 2024 00:00:00 GMT - Sat, 25 Oct 2025 23:59:59 GMT
GET /4938723/19277/v/600/depositphotos_192777440-stock-video-massage-room-worker-makes-massage.jpg HTTP/1.1
Host: st3.depositphotos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 14700
last-modified: Fri, 20 Apr 2018 19:28:17 GMT
access-control-allow-origin: *
accept-ranges: bytes
cache-control: public, max-age=62592058
expires: Wed, 02 Jun 2027 17:50:43 GMT
date: Sun, 08 Jun 2025 07:09:45 GMT
alt-svc: h3=":443"; ma=93600
X-Firefox-Spdy: h2
GET rule34.xyz/favicon.ico
200 OK 22 kB URL
rule34.xyz/favicon.ico
IP / ASN
172.67.153.56
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 72x72, 32 bits/pixel
First Seen 2023-12-12
Last Seen 2025-07-26
Times Seen 34
Size 22 kB (21662 bytes)
MD5 8af3931693c34a541ca0364bdd32940b
SHA1 fe181a319195d6f133a73f9a232896c5369a1638
SHA256 e5226fb838325cb0e7ddf30c89f4a0d0afd3f89d7936f5189f028fac8e1e5e77
Certificate Info
Issuer Google Trust Services
Subject rule34.xyz
Fingerprint 38:BD:03:CE:75:E7:0D:20:A2:3E:5A:CB:3D:9B:CB:A2:32:F3:01:9C
Validity Tue, 20 May 2025 13:35:23 GMT - Mon, 18 Aug 2025 14:33:46 GMT
GET /favicon.ico HTTP/1.1
Host: rule34.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:53 GMT
server: cloudflare
age: 2454
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Sun, 08 Jun 2025 06:28:59 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Y3qT7jkehx%2BF9jal4o5knXEckkbyZLJafz%2FDmnHJuKqVedQauUOXqlnwikXUcZ5TGPef4M3J2%2BNys%2B%2F5k6D8B65h%2B5%2B1ondh"}]}
cf-ray: 94c690f99e3656be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET taboovideos.tv/uploads/posts/2019-10/1570928221_incest-compilation-min.jpg
200 OK 18 kB URL
taboovideos.tv/uploads/posts/2019-10/1570928221_incest-compilation-min.jpg
IP / ASN
23.227.194.213
#29802 HVC-AS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 70", baseline, precision 8, 348x200, components 3
First Seen 2024-08-20
Last Seen 2025-07-27
Times Seen 13
Size 18 kB (18375 bytes)
MD5 66e43dadcb9e6d66c137d7063c7579df
SHA1 e394e79c9e86e75bc9e5f7618f83239c509e5619
SHA256 5b83ead939295d750773714afe5353a48cefb625aa4949c5daa8acf41af991d5
Certificate Info
Issuer Let's Encrypt
Subject taboovideos.tv
Fingerprint B6:6A:73:5C:50:EE:C9:B9:66:AA:19:59:14:BB:3D:61:89:8E:42:92
Validity Sat, 19 Apr 2025 01:17:38 GMT - Fri, 18 Jul 2025 01:17:37 GMT
GET /uploads/posts/2019-10/1570928221_incest-compilation-min.jpg HTTP/1.1
Host: taboovideos.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.2
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 18375
last-modified: Wed, 16 Feb 2022 13:21:09 GMT
etag: "620cfa45-47c7"
expires: Mon, 08 Jun 2026 07:09:44 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cloudflare-br-pic.kwai.net/upic/2023/02/15/08/BMjAyMzAyMTUwODU4MzdfMTUwMDAxMzM3Mzk3MzU4XzE1MDEwMjE1NzAzNzUyNV8yXzM=_oscn2_B751a388d301f549478f1daba1bc96127.webp
200 OK 9.4 kB URL
cloudflare-br-pic.kwai.net/upic/2023/02/15/08/BMjAyMzAyMTUwODU4MzdfMTUwMDAxMzM3Mzk3MzU4XzE1MDEwMjE1NzAzNzUyNV8yXzM=_oscn2_B751a388d301f549478f1daba1bc96127.webp
IP / ASN
104.18.48.7
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 480x848, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-03-12
Last Seen 2025-07-27
Times Seen 30
Size 9.4 kB (9394 bytes)
MD5 e79cabdcff929a2e7766248d43261e33
SHA1 e52f04b1ee0e37bfb47ddac3f1e6bade24de377b
SHA256 0d1d5a2ae318c75305bab30f05319bd12bd0bfa9695ece334e7473f8b0028489
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /upic/2023/02/15/08/BMjAyMzAyMTUwODU4MzdfMTUwMDAxMzM3Mzk3MzU4XzE1MDEwMjE1NzAzNzUyNV8yXzM=_oscn2_B751a388d301f549478f1daba1bc96127.webp HTTP/1.1
Host: cloudflare-br-pic.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/webp
content-length: 9394
cf-ray: 94c690c2a9be92e8-CPH
cf-cache-status: HIT
accept-ranges: bytes
age: 11504
cache-control: max-age=2592000
etag: "E79CABDCFF929A2E7766248D43261E33"
expires: Mon, 08 Jun 2026 07:09:44 GMT
vary: Accept-Encoding
via: 1.1 b301fa8d72072cc0289eb055d8389e68.cloudfront.net (CloudFront)
x-amz-cf-id: aYS_06Ixdljd5IlDR1lDotx__8eyVVK3CszZ_xfmtqgVxw8PFD0rWw==
x-amz-cf-pop: ARN56-P2
x-cache: Hit from cloudfront
x-rsp-code: 030,040
access-control-allow-origin: *
x-ks-cache: HIT
x-ks-client-ip: 91.90.42.154
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET asianpornteens.b-cdn.net/wp-content/uploads/2019/04/69ab6e976731535a117c3e406f790ba2.10.jpg
200 OK 21 kB URL
asianpornteens.b-cdn.net/wp-content/uploads/2019/04/69ab6e976731535a117c3e406f790ba2.10.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3
First Seen 2025-02-26
Last Seen 2025-07-17
Times Seen 5
Size 21 kB (21233 bytes)
MD5 5da67fefa9418fe7b47ad51eb0d01c07
SHA1 e94d70c6f568ddab6bc4f91f4bfc2e886df33eb3
SHA256 057bbbcc9fe2ee6f411f120b41c13533f8413660a37044ce34f07eedc4cd4798
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /wp-content/uploads/2019/04/69ab6e976731535a117c3e406f790ba2.10.jpg HTTP/1.1
Host: asianpornteens.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 21233
server: BunnyCDN-NO1-830
cdn-pullzone: 84786
cdn-uid: 5bb3d78d-3ca8-4f78-b475-daab42547be5
cdn-requestcountrycode: NO
cache-control: max-age=315360000
etag: "5cb43366-52f1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 15 Apr 2019 07:31:50 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JBzLS3vbM0nEdfog%2Fn%2Ffku8Xvgoi4Rm5QzcWrFnfr93D3sBO0exWk7MkzuDAuLkOgt9GaoU7MnWh%2B6uQKH1EJJaQLQWrEIJRzKL2hp7TDVE%3D"}]}
cf-ray: 94b09c21ed61b503-OSL
cdn-proxyver: 1.28
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2025 15:12:43
cdn-edgestorageid: 830
cdn-requestid: fe52295b40cfb4c9f022adbd70b11638
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_5118355460.jpg
200 OK 7.7 kB URL
chezcathy.com/ext/pre_5118355460.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-06-03
Last Seen 2025-07-02
Times Seen 4
Size 7.7 kB (7687 bytes)
MD5 4f6cba299365458c846ac64f0873eacf
SHA1 ff340cca6daa951c85ab72fccb77c3fb6cdd337e
SHA256 9e4ae200ff369da00ad1c8ab9886b0870a720db9d762ec01e52bc32f92a7a0bc
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_5118355460.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 7687
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "6668b48d-1e07"
last-modified: Tue, 11 Jun 2024 20:33:17 GMT
cdn-cachedat: 04/28/2025 17:31:02
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: f01494826f09ed77585ea9d23e7fbf3b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET vidcdn.123rf.com/450nwm/andrewbu/andrewbu1909/andrewbu190900198.jpg
200 OK 15 kB URL
vidcdn.123rf.com/450nwm/andrewbu/andrewbu1909/andrewbu190900198.jpg
IP / ASN
3.167.2.74
#0
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 450x252, components 3
First Seen 2024-08-20
Last Seen 2025-06-08
Times Seen 5
Size 15 kB (15079 bytes)
MD5 758b4b862b2ea323897bfa989dce98c7
SHA1 96c0560aa7ea63b71599824d719f94b4d9e3d3ef
SHA256 e12c41a66f0eec1bb450f6a75512ee8603d3e4be74dffa7b2b1db4b6fb2aac26
Certificate Info
Issuer Amazon
Subject 123rf.com
Fingerprint F6:36:7A:1D:6B:64:06:84:8B:E1:86:3C:2F:42:B6:A9:0B:8D:1F:8D
Validity Sat, 08 Mar 2025 00:00:00 GMT - Mon, 06 Apr 2026 23:59:59 GMT
GET /450nwm/andrewbu/andrewbu1909/andrewbu190900198.jpg HTTP/1.1
Host: vidcdn.123rf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15079
x-amz-id-2: 76FvHaBEj4V2wn6HHXsqzuC9MvWMlQHTq7iZpqi0hZJQCmXuWWS2DsTFGDVJyBIAe9sCHkTELrM=
x-amz-request-id: 8ADHS4JA7HQFJ3EP
last-modified: Tue, 08 Oct 2019 13:07:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 01 Jun 2025 02:23:52 GMT
etag: "758b4b862b2ea323897bfa989dce98c7"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 3bd19ecae9d202e55626096b4934d62e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: Fwj0ZycreRubxxPgp6d8NZ9RZkc1-8i6HccJzHBtVRFuKdeOiln-UQ==
age: 621953
X-Firefox-Spdy: h2
GET jpgjingpinx.com/upload/vod/20240113-1/c4f06236326dc19dbfcc379e6ad94cb9.jpg
200 OK 453 kB URL
jpgjingpinx.com/upload/vod/20240113-1/c4f06236326dc19dbfcc379e6ad94cb9.jpg
IP / ASN
204.188.235.18
#46844 SHARKTECH
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x607, components 3
First Seen 2025-05-22
Last Seen 2025-06-15
Times Seen 8
Size 453 kB (452983 bytes)
MD5 fb31448e38cd195f482a63daef3e4c66
SHA1 19b63b455c45653da76d9b17ba2c1b02f9010285
SHA256 644ececd8c2c2944742f27d421d45421ceb0379df0a19bab4c5d367a975c1b31
Certificate Info
Issuer GoGetSSL
Subject jpgjingpinx.com
Fingerprint 2C:3E:6B:9C:FE:09:B4:24:D1:70:65:20:01:B7:8A:54:18:EA:BD:DC
Validity Fri, 20 Sep 2024 00:00:00 GMT - Sat, 20 Sep 2025 23:59:59 GMT
GET /upload/vod/20240113-1/c4f06236326dc19dbfcc379e6ad94cb9.jpg HTTP/1.1
Host: jpgjingpinx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Length: 452983
Content-Type: image/jpeg
Date: Tue, 03 Jun 2025 12:14:17 GMT
Etag: "65a22572-6e977"
Expires: Thu, 03 Jul 2025 12:14:17 GMT
Last-Modified: Tue, 03 Jun 2025 12:14:17 GMT
Server: openresty
X-Cache: HIT, policy, disk
GET 159i.net/uploads/allimg/2501/D-01020G154cW6f4255E.jpg
301 Moved Permanently 0 B URL
159i.net/uploads/allimg/2501/D-01020G154cW6f4255E.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 159i.net
Fingerprint AA:CD:77:27:51:8D:5C:83:7B:DE:A9:3B:D4:8D:F8:E6:21:AE:CC:46
Validity Tue, 20 May 2025 05:04:13 GMT - Mon, 18 Aug 2025 06:02:43 GMT
GET /uploads/allimg/2501/D-01020G154cW6f4255E.jpg HTTP/1.1
Host: 159i.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Sun, 08 Jun 2025 07:09:48 GMT
location: https://159i.net/404
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Kfo1pQLnMKHtFAZFqA4G8pOwivXxdzTzHCQm7nkfF7caIHDZih7Wt7Dvja97BuXpmJhhBUfQjundt8eP4IKNeIPlF914Rw%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
priority: u=4,i=?0
server: cloudflare
cf-ray: 94c690d9de69b4f3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.9188porn.com/favicon.ico
403 Forbidden 0 B URL
www.9188porn.com/favicon.ico
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /favicon.ico HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:51 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RugszXJWlntdXQZrMtdOeeIbPLLNvGKF3zNF2RVvobo%2BI2kzpGnocFhsBIkW6c904TCUSkjJV6omtLtmvw0Z8ZvjIG4%2FG3rBN4%2BIgdX5FsIrs9YoeNIGriVTFq9zO9zHGjJa"}],"group":"cf-nel","max_age":604800}
vary: Referer, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94c690ecdee00b06-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12648&min_rtt=3352&rtt_var=7546&sent=136&recv=156&lost=0&retrans=0&sent_bytes=24578&recv_bytes=9608&delivery_rate=908423&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=11b6bf060da82140&ts=7802&inflight_dur=256&x=80"
GET www.9188porn.com/upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/d605042215403c46876f5ce450b1ed0a.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNCw0qmgsm5uN9zJF1iP2cIkSwwIi5AmE2hVuczAgLQyRjKEqhAJK1J3v8fybpQgP1nLFCcjWx7fjrmiXbUMQj%2FEPLZjl5%2BeMDoscLBdMiKMGROpJOv%2BcbQ1eVrIh%2BBl6eIg"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94c690dd4e950b06-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13228&min_rtt=3352&rtt_var=8516&sent=133&recv=154&lost=0&retrans=0&sent_bytes=22199&recv_bytes=9283&delivery_rate=908423&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=11b6bf060da82140&ts=5305&inflight_dur=254&x=80"
GET e1nn.com/vs/97189274.jpg
200 OK 43 kB URL
e1nn.com/vs/97189274.jpg
IP / ASN
172.67.135.49
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 1280x720, components 3
First Seen 2024-12-05
Last Seen 2025-07-31
Times Seen 41
Size 43 kB (42867 bytes)
MD5 313c9a68b150aa5e9db4f637d546b83e
SHA1 08c562e6522bf99531d4d788c0f23e27a96bac2e
SHA256 3663f068b4ecc314e4cc59d81b0194a13b187f71b17ef2bfac401106bd61794c
Certificate Info
Issuer Google Trust Services
Subject e1nn.com
Fingerprint E6:70:04:6C:DA:38:72:CE:1F:AE:3A:E3:A5:F4:4A:33:75:E3:8F:1D
Validity Sat, 17 May 2025 10:45:49 GMT - Fri, 15 Aug 2025 11:44:08 GMT
GET /vs/97189274.jpg HTTP/1.1
Host: e1nn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 42867
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Wed, 24 Jan 2024 05:49:00 GMT
etag: "65b0a4cc-a773"
x-cache-status: HIT
accept-ranges: bytes
age: 3791
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BTFWKOmA2ruK%2Byo9z1CkaCjLnaNWs0RqOJZ985EYtGBB1fJrVDHAP2NnCsF2xBYiTiF9R%2BR07JbQ2KtERqlUOhVgebEQPA%3D%3D"}]}
cf-ray: 94c690bfd881b500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET javp1.cc/https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg
403 Forbidden 0 B URL
javp1.cc/https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject javp1.cc
Fingerprint D2:81:4F:32:09:EE:7A:5A:1F:6C:D9:90:99:8F:5A:AC:5A:29:AF:00
Validity Mon, 02 Jun 2025 04:07:36 GMT - Sun, 31 Aug 2025 05:00:34 GMT
GET /https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg HTTP/1.1
Host: javp1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-powered-by: Express
cache-control: no-store
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=yq%2Bs6FmNkOY2sHLrtsYR%2FSlZCbOuyVmej5SMFshIGBN%2BfodEijX1KNH1PUNnbpctF0xOouK3cD0tmQ2zH6iHfFQoZO%2BqsA%3D%3D"}]}
cf-cache-status: BYPASS
vary: accept-encoding
content-encoding: br
cf-ray: 94c690c258f3712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pornodrochka.org/favicon.ico
0 B URL
pornodrochka.org/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: pornodrochka.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg
200 OK 49 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-06-15
Times Seen 3
Size 49 kB (48840 bytes)
MD5 f491e8aadfedfeea46e2ab2612b8c634
SHA1 3fe39992ad85988e2d279e5b290f3d68ed665a82
SHA256 83aeed197534dda0a8eeee6a58b7fe929a4409aee0421e3b11401f623108ffd3
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 48840
last-modified: Wed, 26 Feb 2025 05:48:42 GMT
expires: Fri, 26 Feb 2027 17:48:42 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240315-1/c573b689f18b5380d411a257e824cd5a.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a2b7282ee551565e"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET pornolomka2.com/uploads/posts/2021-09/medium/1632427288_00-13-35.jpg
200 OK 100 kB URL
pornolomka2.com/uploads/posts/2021-09/medium/1632427288_00-13-35.jpg
IP / ASN
91.194.110.16
#213166 UA-Hosting SIA
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 450x253, components 3
First Seen 2024-05-02
Last Seen 2025-07-17
Times Seen 26
Size 100 kB (99798 bytes)
MD5 89dfd79e3bd2c9e341c62b4bf3d15122
SHA1 d9e0afcc3bbb97f44a7ee21f725c5025290d54b5
SHA256 ba225d7ac6d6410fbc4b7a2b34aa45468848793fe2bec230c4706e4febe6bb8f
Certificate Info
Issuer Let's Encrypt
Subject pornolomka2.com
Fingerprint 5E:83:DF:E0:31:40:AC:3C:BC:70:FA:A6:4C:5A:B3:43:56:02:22:15
Validity Thu, 22 May 2025 22:44:05 GMT - Wed, 20 Aug 2025 22:44:04 GMT
GET /uploads/posts/2021-09/medium/1632427288_00-13-35.jpg HTTP/1.1
Host: pornolomka2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.10.3
date: Sun, 08 Jun 2025 07:07:41 GMT
content-type: image/jpeg
content-length: 99798
last-modified: Thu, 23 Sep 2021 20:00:12 GMT
etag: "614cdccc-185d6"
expires: Sun, 15 Jun 2025 07:07:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/35e7629ebe40b78ee620fcddd66b8633.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.xyz/upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.ikikiv.uk/favicon.ico
0 B URL
www.ikikiv.uk/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.ikikiv.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET pornoperso.com/wp-content/uploads/2021/07/young.jpg
200 OK 27 kB URL
pornoperso.com/wp-content/uploads/2021/07/young.jpg
IP / ASN
104.21.48.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 600x337, components 3
First Seen 2025-02-19
Last Seen 2025-07-31
Times Seen 8
Size 27 kB (27351 bytes)
MD5 eb224b04ce9c7199f8d9b48e9f7792c9
SHA1 b9fe08aa9ea502e20b1c83eb6ab8fef1008f9b6c
SHA256 d612f51be9efa45430ec65527839b8034461ea823c4b67f4ae044eb217ffd09c
Certificate Info
Issuer Google Trust Services
Subject pornoperso.com
Fingerprint 0B:CD:F1:5F:E0:A2:D1:A3:CC:5D:7C:2C:BC:30:D9:79:0E:B2:E6:D5
Validity Tue, 22 Apr 2025 08:51:15 GMT - Mon, 21 Jul 2025 09:47:22 GMT
GET /wp-content/uploads/2021/07/young.jpg HTTP/1.1
Host: pornoperso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 27351
version: MS25051001
x-dns-prefetch-control: on
x-download-options: noopen
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
expires: Fri, 29 May 2026 13:18:02 GMT
cache-control: public, max-age=31536000, immutable
access-control-allow-origin: *
accept-ranges: bytes
last-modified: Thu, 29 May 2025 13:25:52 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 275364
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=4BJJ4p7OT0HtWjFo2e%2FYjd9865EUAbY7s0mOr6uUptJn1TB19vx5mWjaTVT0xiJYsLDOd4KiYNkoaoOwtx3brhfOWg7dv2CCS5RhEg%3D%3D"}]}
server: cloudflare
cf-ray: 94c690c359551c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.eva.vn/upload/3-2017/images/2017-09-08/1504844463-baohanh_01.jpg?ver=1
200 OK 18 kB URL
cdn.eva.vn/upload/3-2017/images/2017-09-08/1504844463-baohanh_01.jpg?ver=1
IP / ASN
103.161.22.7
#135905 VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 405x404, segment length 16, comment: "Lavc56.13.100", baseline, precision 8, 528x297, components 3
First Seen 2024-11-02
Last Seen 2025-06-08
Times Seen 7
Size 18 kB (17670 bytes)
MD5 84fc0df9a20598009335230675bbfaea
SHA1 dba1a8b96a843c5c1ce97ae5d98216ae6ecb9c99
SHA256 77e9b00a9f252c594de5d3cc3dc56acd5734aa8bf85f7465d498b5628dd9a09e
Certificate Info
Issuer GlobalSign nv-sa
Subject *.eva.vn
Fingerprint 3A:E0:57:2E:87:0D:DA:A8:40:1B:C2:59:57:0E:F1:59:AD:23:FD:91
Validity Tue, 15 Oct 2024 06:35:31 GMT - Sun, 16 Nov 2025 06:35:30 GMT
GET /upload/3-2017/images/2017-09-08/1504844463-baohanh_01.jpg?ver=1 HTTP/1.1
Host: cdn.eva.vn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: 24h.com.vn
Date: Sun, 08 Jun 2025 07:09:46 GMT
Content-Type: image/jpeg
Content-Length: 17670
Last-Modified: Thu, 02 Aug 2018 05:09:09 GMT
ETag: "5b6291f5-4506"
Expires: Sun, 08 Jun 2025 07:40:18 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from da013.vn05.swiftserve.com:443
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Length,Content-Type,DNT,If-Modified-Since,Keep-Alive,Key,Origin,Range,User-Agent,X-Requested-With
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS
Age: 862168
GET rtgallery.net/favicon.ico
200 OK 894 B URL
rtgallery.net/favicon.ico
IP / ASN
5.63.144.84
#13213 UK-2 Limited
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel
First Seen 2024-05-20
Last Seen 2025-07-31
Times Seen 119
Size 894 B (894 bytes)
MD5 ecfa03337847c3b30c7c0c5c4bbb5c5f
SHA1 55457dd13b92fd876c253e3a74d46aec83429441
SHA256 903d49ac2a65b3e7452534fc61790a686d1be8b936e8e6bcd9f49b1739a746f9
Certificate Info
Issuer Let's Encrypt
Subject rtgallery.net
Fingerprint 5A:F7:90:1F:C6:E2:A5:52:ED:AE:9D:AA:13:2A:83:E5:C1:01:3C:B9
Validity Fri, 23 May 2025 07:27:26 GMT - Thu, 21 Aug 2025 07:27:25 GMT
GET /favicon.ico HTTP/1.1
Host: rtgallery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 08 Jun 2025 07:09:52 GMT
Content-Type: image/x-icon
Content-Length: 894
Last-Modified: Sat, 03 Jun 2017 05:36:38 GMT
Connection: keep-alive
ETag: "59324ae6-37e"
Cache-Control: private, max-age=600, must-revalidate
Accept-Ranges: bytes
GET zozovideo.com/favicon.ico
404 Not Found 0 B URL
zozovideo.com/favicon.ico
IP / ASN
139.162.102.64
#63949 Akamai Connected Cloud
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.zozovideo.com
Fingerprint 20:AE:26:C8:3B:F7:3F:C9:1C:EC:3D:01:3D:56:BB:FC:F9:15:2C:72
Validity Sat, 19 Apr 2025 23:54:41 GMT - Fri, 18 Jul 2025 23:54:40 GMT
GET /favicon.ico HTTP/1.1
Host: zozovideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sun, 08 Jun 2025 07:09:51 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
GET cdn5-thumbs.motherlessmedia.com/thumbs/C295368.jpg
200 OK 22 kB URL
cdn5-thumbs.motherlessmedia.com/thumbs/C295368.jpg
IP / ASN
185.107.92.224
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 8000x8001, segment length 16, baseline, precision 8, 640x480, components 3
First Seen 2025-04-24
Last Seen 2025-07-31
Times Seen 13
Size 22 kB (22524 bytes)
MD5 08f8cd298d4667c50fd6d3475c14f405
SHA1 d7560afeec42589b57263269427fa9b4db921cc0
SHA256 5abc4b4ff80973951e090035cb246fae8b8c0f4d27b912c5337fbfb5f961f985
Certificate Info
Issuer GoGetSSL
Subject *.motherlessmedia.com
Fingerprint 57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8
Validity Mon, 04 Nov 2024 00:00:00 GMT - Fri, 05 Dec 2025 23:59:59 GMT
GET /thumbs/C295368.jpg HTTP/1.1
Host: cdn5-thumbs.motherlessmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: openresty/1.21.4.1
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 22524
vary: x-s-token
last-modified: Sat, 06 Oct 2018 19:38:51 GMT
etag: "57fc-5779489a50c84"
x-cache: HIT
x-whom: cdn09
accept-ranges: bytes
GET chezcathy.com/ext/pre_4964195974.jpg
200 OK 22 kB URL
chezcathy.com/ext/pre_4964195974.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2025-02-26
Last Seen 2025-07-16
Times Seen 8
Size 22 kB (21998 bytes)
MD5 a48300d247aa170d9ce10c1e37fe6403
SHA1 9281f8205bbb3ec8db3fd1f05a2862706e673de8
SHA256 4c61017f70b91b6d41da9629e18121622030acafc9b47a6c4458b32f5554c415
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_4964195974.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 21998
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "66740a4c-55ee"
last-modified: Thu, 20 Jun 2024 10:54:04 GMT
cdn-cachedat: 04/28/2025 17:19:09
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: b80055d80e5a126d0d9577b66c46af45
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/17d6c4e3abbed6e8e2b3f2aa6d5d582d.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET blumpkintube.com/thumbs/649/704_masturbation_more.jpg
200 OK 12 kB URL
blumpkintube.com/thumbs/649/704_masturbation_more.jpg
IP / ASN
104.21.79.212
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2025-06-08
Last Seen 2025-07-03
Times Seen 3
Size 12 kB (12122 bytes)
MD5 4738f03d2fddb030a72b390ae9ebe1b8
SHA1 ee5b844c0f75785d30c650cda8e50110c2116cec
SHA256 f4b6173995537c93e28f884dc4a7c2f41f0f2bf42cce9a1e84acde77da7f975c
Certificate Info
Issuer Google Trust Services
Subject blumpkintube.com
Fingerprint DA:B0:E3:91:B1:3A:F6:92:40:A5:6D:DA:6D:67:42:B4:54:2E:FF:7C
Validity Mon, 14 Apr 2025 03:20:03 GMT - Sun, 13 Jul 2025 04:18:31 GMT
GET /thumbs/649/704_masturbation_more.jpg HTTP/1.1
Host: blumpkintube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 12122
server: cloudflare
last-modified: Sun, 08 Nov 2020 11:36:36 GMT
etag: "5fa7d844-2f5a"
expires: Fri, 15 May 2026 07:54:06 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 2070936
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=IAvdnq0tcKRrKi14GmpSQCbM%2FG%2Bcvp5M7223CvciGcQxzz%2FAwKOzNHdAOkzHdD225dUmSCHf1OyQGmIzVk2d5lw%2BxWYl5jGOKNxGkHCo"}]}
cf-ray: 94c690b69fe30b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdntube.b-cdn.net/thumbnails/2c2984529fc91f20f02f25be231f5a7324a5bb00.jpg
200 OK 19 kB URL
cdntube.b-cdn.net/thumbnails/2c2984529fc91f20f02f25be231f5a7324a5bb00.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x687, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-03-25
Last Seen 2025-07-08
Times Seen 10
Size 19 kB (19168 bytes)
MD5 81c2c7fa7b568b4e854ca9b83eed1913
SHA1 c13ca8e625c451e26a1bed243811bdea615c242a
SHA256 c4cabd89bd21ef745c42ccb8328b586dc2600d4d6eb74475cf46efec43212509
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /thumbnails/2c2984529fc91f20f02f25be231f5a7324a5bb00.jpg HTTP/1.1
Host: cdntube.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/webp
content-length: 19168
server: BunnyCDN-NO1-830
cdn-pullzone: 114851
cdn-uid: 610bc618-7bcd-4e37-a18e-2efa3a8e9c35
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sat, 14 Oct 2023 01:46:59 GMT
cdn-storageserver: DE-634
cdn-requestpullsuccess: True
cdn-fileserver: 635
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 206
cdn-cachedat: 06/05/2025 14:35:44
cdn-edgestorageid: 830
cdn-requestid: dcca17974812ff712793466835b790ac
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.dirtysancheztube.com/thumbs/373/664__.jpg
200 OK 13 kB URL
www.dirtysancheztube.com/thumbs/373/664__.jpg
IP / ASN
104.21.16.225
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2024-04-19
Last Seen 2025-07-25
Times Seen 103
Size 13 kB (13244 bytes)
MD5 c3d1bb7a9ea55cae6300ca425aaa8b2c
SHA1 9c79345806d3a24acc1c0a9f6cafd1e0bf353e57
SHA256 bbda3f2849c94267ab4b8e52c879ead5c4c5717b5391f0400b53e748bcd354e8
Certificate Info
Issuer Google Trust Services
Subject dirtysancheztube.com
Fingerprint 57:E1:09:05:19:13:BC:25:AA:EE:35:50:01:F8:F6:6F:2C:00:26:D0
Validity Thu, 17 Apr 2025 14:12:15 GMT - Wed, 16 Jul 2025 15:11:01 GMT
GET /thumbs/373/664__.jpg HTTP/1.1
Host: www.dirtysancheztube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 13244
server: cloudflare
last-modified: Thu, 05 Nov 2020 04:44:23 GMT
etag: "5fa38327-33bc"
expires: Sun, 07 Jun 2026 03:23:47 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 99952
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=c7rwMbWZPV2aXQTX19uEjKZcYpn%2BYrDeNnO7fwOrajXTIiGjGjTkRFmvEf3bfUeYIyr5u0C2KZ25G9Ol1%2Bw0C%2FiI134alJqrtp96XIJDCimWsa1j4rQ%3D"}]}
cf-ray: 94c690a79865b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn1.hotmoza.tv/thumb/bb/c6/e1/bbc6e130b0904efd0f1fe6ea844b1d3f.jpg
200 OK 8.5 kB URL
cdn1.hotmoza.tv/thumb/bb/c6/e1/bbc6e130b0904efd0f1fe6ea844b1d3f.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-08-19
Last Seen 2025-06-08
Times Seen 3
Size 8.5 kB (8502 bytes)
MD5 28c1fd79bd68f3c7a93139d3daa360e8
SHA1 42fb87eab72728895c0f639df9f21c29f5dfe917
SHA256 b05531b736dfec9ed1972b79a21ea26573a0fcfcded3c6fa180aaa5fba8b7502
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/bb/c6/e1/bbc6e130b0904efd0f1fe6ea844b1d3f.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 8502
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
etag: 28c1fd79bd68f3c7a93139d3daa360e8
last-modified: Tue, 18 Oct 2022 04:06:07 GMT
x-timestamp: 1666065966.84148
x-trans-id: tx9d2ae9259702437bb6300-006384069e
x-openstack-request-id: tx9d2ae9259702437bb6300-006384069e
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Sun, 08 Jun 2025 17:52:21 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 134239
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VMAu6Yce6AvsTOOaSoM6FvhF0OLtv4P66yfxKx25nVmloSnr9sePGbAjwNF8KGkKDj%2BxsJEfAlHGuRczWVgeuQEVWz1tStyFzhBM3uM%3D"}]}
cf-ray: 94c690a95b6a56a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET naturismv.com/images/fitness-girls-naturist-freedom.jpg
200 OK 43 kB URL
naturismv.com/images/fitness-girls-naturist-freedom.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-29
Last Seen 2025-07-11
Times Seen 61
Size 43 kB (43134 bytes)
MD5 f26e2db57a5f70148567311fb931a4e5
SHA1 78841d634a04f7c7b90dcd5656a5f6766e3bfce0
SHA256 a7f76e52392b48d0683bbcc66c13cb8014540b3af5cd5963c70d5265a3201374
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/fitness-girls-naturist-freedom.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 43134
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:50 GMT
etag: "646765e2-a87e"
expires: Thu, 28 May 2026 23:12:19 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 892641
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=9YGzF2lT%2BaWjXbI2mzfManrflj%2FZMgCcRMiBCUV0GRRgnXplwfmszIrZYZsp5spiupsDDnQQ7KM7aq4566bthtKLigmoaUc%2Fusfa"}]}
cf-ray: 94c690a93ce50b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/8990989bcf76dfb6181c665c60836387.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET oedy9.com/favicon.ico
404 Not Found 0 B IP / ASN
102.165.26.157
#11426 TWC-11426-CAROLINAS
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject oedy9.com
Fingerprint 7B:89:7F:CE:52:01:0C:56:82:F9:F2:5A:59:1E:26:C6:54:0E:13:5A
Validity Tue, 03 Jun 2025 13:51:46 GMT - Mon, 01 Sep 2025 13:51:45 GMT
GET /favicon.ico HTTP/1.1
Host: oedy9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: text/html
content-length: 138
etag: "67ecfc3a-8a"
X-Firefox-Spdy: h2
GET sorkab.com/wp-content/uploads/2022/12/0002909.jpg
200 OK 44 kB URL
sorkab.com/wp-content/uploads/2022/12/0002909.jpg
IP / ASN
104.21.87.34
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 640x360, components 3
First Seen 2025-02-14
Last Seen 2025-06-08
Times Seen 3
Size 44 kB (43660 bytes)
MD5 bc63d4c3e19a985b61363dbea336f079
SHA1 510464365feb52f612cf2b04577f0c92a0503844
SHA256 271679dc470885ab11a0288b0f69fabfbc9a2b5b893dac6a2a66351d40fbb4c9
Certificate Info
Issuer Google Trust Services
Subject sorkab.com
Fingerprint 7E:D6:71:6B:9C:36:1D:C7:90:8F:FA:A8:7A:9C:EB:16:BE:16:EF:C1
Validity Sun, 04 May 2025 04:23:18 GMT - Sat, 02 Aug 2025 05:21:58 GMT
GET /wp-content/uploads/2022/12/0002909.jpg HTTP/1.1
Host: sorkab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 43660
cache-control: public, max-age=31536000
expires: Thu, 28 May 2026 23:09:22 GMT
last-modified: Wed, 22 Feb 2023 07:44:12 GMT
accept-ranges: bytes
server: cloudflare
vary: User-Agent,Accept-Encoding,Accept-Encoding
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
referrer-policy: no-referrer-when-downgrade
permissions-policy: geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), payment=(), fullscreen=(self)
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
age: 892006
cf-cache-status: HIT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ELt%2FC2t4MrIRBm8uVGDbsjtCC1XcyM8DZwB68wS8EO%2BqR7Xjfc5AlfQXWSNW3eXJ%2B8lFyX9DmNM2EotmCpfz5W3A88N28uFR"}]}
cf-ray: 94c690a6b8e656a4-OSL
X-Firefox-Spdy: h2
GET pornokol.net/i/7/481_.jpg
200 OK 23 kB URL
pornokol.net/i/7/481_.jpg
IP / ASN
178.33.192.164
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2025-05-23
Last Seen 2025-07-09
Times Seen 6
Size 23 kB (22620 bytes)
MD5 e8c08059f3a9fdfeb062f04abbdc5364
SHA1 ec0d108d1361d33feebf46906b78e7c981c50f5a
SHA256 5622fab82203111b90b02e4f21d59ee9bd760c80e7756746f47b2516d16effc9
Certificate Info
Issuer Let's Encrypt
Subject pornokol.net
Fingerprint 83:31:E0:2B:9B:E6:C8:6E:B0:FD:CD:86:C7:8C:D3:22:8B:92:38:8D
Validity Fri, 16 May 2025 07:07:14 GMT - Thu, 14 Aug 2025 07:07:13 GMT
GET /i/7/481_.jpg HTTP/1.1
Host: pornokol.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 22620
last-modified: Mon, 06 Aug 2018 15:38:10 GMT
etag: "5b686b62-585c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cacrz.4jpg.top/AV4.us.jpg
200 OK 8.7 kB URL
cacrz.4jpg.top/AV4.us.jpg
IP / ASN
172.67.211.235
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3
First Seen 2024-04-16
Last Seen 2025-08-01
Times Seen 1681
Size 8.7 kB (8741 bytes)
MD5 edfe007a6e5b3d268b2528f564b60b43
SHA1 1644c8ef97c871079e07e5079d613af5cb94052f
SHA256 bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390
Certificate Info
Issuer Google Trust Services
Subject 4jpg.top
Fingerprint BE:FB:D5:E3:D6:90:C9:AA:D7:5D:9F:CA:A4:3F:0E:6B:4A:62:A6:BC
Validity Thu, 24 Apr 2025 20:06:20 GMT - Wed, 23 Jul 2025 21:04:03 GMT
GET /AV4.us.jpg HTTP/1.1
Host: cacrz.4jpg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/jpeg
content-length: 8741
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LY7em61c0crUopAwoWD5cN1YsIMZluiCbaE5euSnFVBPX%2Bs5xDeuteAlsOw1kDeSajkIAWBZIV3E%2FP%2BQc5LjmYsLeXYod8mbi9G0qgDnyNr86fZ3p8Vi%2F4F8SZCKXSABtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
etag: "2225-5499bcea176c0"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: Cake
ahost: RZ
cache-control: public, max-age=3600000
age: 23528
cf-cache-status: HIT
cf-ray: 94c690f4fd735689-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13013&min_rtt=10277&rtt_var=5170&sent=30&recv=30&lost=0&retrans=1&sent_bytes=4709&recv_bytes=2323&delivery_rate=222562&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=c9abf9022f4e2fc5&ts=5709&inflight_dur=89&x=80"
GET rtgallery.net/tb/teen-girl-drugs.jpg
200 OK 17 kB URL
rtgallery.net/tb/teen-girl-drugs.jpg
IP / ASN
5.63.144.84
#13213 UK-2 Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 320x240, components 3
First Seen 2024-05-05
Last Seen 2025-07-27
Times Seen 20
Size 17 kB (17138 bytes)
MD5 5b0a592c09b191a6acdff8a011d79386
SHA1 2b9d558c748a8ac764b94d7dacbfbd5a3d1170a6
SHA256 eec58db90489fd8eb85677bccf110e07d860adcd79d30a08ff79b94e4b9823e2
Certificate Info
Issuer Let's Encrypt
Subject rtgallery.net
Fingerprint 5A:F7:90:1F:C6:E2:A5:52:ED:AE:9D:AA:13:2A:83:E5:C1:01:3C:B9
Validity Fri, 23 May 2025 07:27:26 GMT - Thu, 21 Aug 2025 07:27:25 GMT
GET /tb/teen-girl-drugs.jpg HTTP/1.1
Host: rtgallery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 08 Jun 2025 07:09:43 GMT
Content-Type: image/jpeg
Content-Length: 17138
Last-Modified: Fri, 02 Jun 2017 16:13:20 GMT
Connection: keep-alive
ETag: "59318ea0-42f2"
Cache-Control: private, max-age=600, must-revalidate
Accept-Ranges: bytes
GET content.jwplatform.com/favicon.ico
404 Not Found 0 B URL
content.jwplatform.com/favicon.ico
IP / ASN
3.167.2.103
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Amazon
Subject jwplayer.com
Fingerprint 4C:E0:FA:4F:1C:F1:21:A8:0C:37:01:61:F5:1E:8E:A5:44:8B:32:6D
Validity Wed, 25 Sep 2024 00:00:00 GMT - Thu, 23 Oct 2025 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: content.jwplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html
content-length: 150
date: Sun, 08 Jun 2025 07:09:52 GMT
server: openresty
x-cache: Error from cloudfront
via: 1.1 57d04bb9ff0f23ac1c33e083d49e973e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: aPDlevr83SvnPM3unOZoxyHlFNRx6ZPk1u3vYJtpu80VuQ2c8TAjtA==
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/7/7/5/775aa8c94afbca840993b21f8aa0be791500181521-768-432-491-h264.mp4-4.jpg?revnum=1
200 OK 13 kB URL
cdne-pics.youjizz.com/7/7/5/775aa8c94afbca840993b21f8aa0be791500181521-768-432-491-h264.mp4-4.jpg?revnum=1
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 692x693, segment length 16, comment: "Lavc52.123.0", baseline, precision 8, 308x232, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 13 kB (12763 bytes)
MD5 f854cc3fa41a3574637e26eb9ef8cb6d
SHA1 a470ea3aa16a83c3f69616bdfea66ab7c1a66075
SHA256 6cccffa670b94fadd3fa58ccaa874bfa668f6624d74e8bf65f4c34213c6f8ba1
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /7/7/5/775aa8c94afbca840993b21f8aa0be791500181521-768-432-491-h264.mp4-4.jpg?revnum=1 HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 12763
last-modified: Sun, 16 Jul 2017 05:19:28 GMT
etag: "31db-554686d3225a5"
expires: Sun, 14 Jul 2024 09:57:31 GMT
cache-control: max-age=10689380
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-1269574-h-0-0---;7846-26-2929974----0-0-1
X-Firefox-Spdy: h2
GET www.kwai.com/favicon.ico
200 OK 17 kB URL
www.kwai.com/favicon.ico
IP / ASN
95.101.11.138
#20940 Akamai International B.V.
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
First Seen 2024-05-18
Last Seen 2025-07-24
Times Seen 173
Size 17 kB (16958 bytes)
MD5 321813c75370556d33e64ec8c26dea6d
SHA1 73c6f171c693e0005e2f7aae020d9a6f7652d375
SHA256 5a5b31e72fbb8a672841e5511ffd511fb571cae9028a5395fd00196da7cf6c4c
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.com
Fingerprint 79:B4:47:59:A1:C1:88:DD:61:AE:E7:5A:8E:99:CB:D6:16:20:E9:CC
Validity Tue, 30 Jul 2024 09:22:23 GMT - Sun, 31 Aug 2025 09:22:22 GMT
GET /favicon.ico HTTP/1.1
Host: www.kwai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
content-length: 16958
last-modified: Thu, 05 Jun 2025 08:05:47 GMT
etag: "68414fdb-423e"
content-security-policy-report-only: default-src 'self' 'unsafe-inline' 'unsafe-eval' *.mythad.com https://*.kwai-pro.com http://*.kwai-pro.com http://*.kwai.net https://*.kwai.net *.kwai.com *.snackvideo.in *.kwai.me *.kwai.app *.kwimgs.com *.yximgs.com *.cloudfront.net *.kuaishou.com https://*.gifshow.com http://*.gifshow.com https://log-sdk.ksapisrv.com https://www.googletagmanager.com https://gifshow-static.download.ks-cdn.com https://static3.avast.com https://translate.google.com https://www.gstatic.com https://fonts.gstatic.com https://connect.facebook.net www.google-analytics.com hm.baidu.com m.snackvideo.com http://*.ap4r.com https://*.ap4r.com https://*.typekit.net http://*.typekit.net ak-sgp-pic.snackvideo.in tx-sgp-pic.snackvideo.in ws-sgp-pic.snackvideo.in g-us-kampic.golden49.net g-us-kamcdn.golden49.net m.kwai.com sentry.kuaishou.com https://cdn.jsdelivr.net https://at.alicdn.com https://www.facebook.com https://snap.licdn.com https://px.ads.linkedin.com https://cdn.linkedin.oribi.io https://www.linkedin.com https://*.google.com https://*.google-analytics.com https://*.doubleclick.net asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;img-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;connect-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;report-uri https://csplog.kwai-pro.com/log/kwai/wwwkwai
accept-ranges: bytes
date: Sun, 08 Jun 2025 07:09:53 GMT
alt-svc: h3=":443"; ma=93600
X-Firefox-Spdy: h2
GET 777.porn/images/41/759_--.jpg
200 OK 21 kB URL
777.porn/images/41/759_--.jpg
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2024-12-28
Last Seen 2025-07-18
Times Seen 6
Size 21 kB (20967 bytes)
MD5 d8de17fa656a48e3e0f122e98aebdd97
SHA1 ca1682d4bffc34dc1a8b2f06b9469a5a67eb2c10
SHA256 caeb72c2e5f1b989f6ed972648d76f351f074332b646b3c62afb11b54f33ecdc
Certificate Info
Issuer Google Trust Services
Subject 777.porn
Fingerprint 62:5F:34:5E:B9:80:09:69:32:A5:99:84:12:BD:C8:BE:0D:02:E9:5A
Validity Sat, 07 Jun 2025 02:49:51 GMT - Fri, 05 Sep 2025 03:44:25 GMT
GET /images/41/759_--.jpg HTTP/1.1
Host: 777.porn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 20967
server: cloudflare
last-modified: Sun, 25 Jun 2023 19:48:22 GMT
etag: "64989a06-51e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-request-id: 87c7a4eb3f8971d6d39b93debdc3fd76
accept-ranges: bytes
age: 4010371
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FGpGzoyiEItkL%2FC4wIm%2F9Mi%2BSQOnxAImCRPwtorKpnSRxTnWBPPYifzC%2BV2TABE9s4Vuvxts4kLITByS%2B0bE7Vn0OZZl%2FA%3D%3D"}]}
cf-ray: 94c690b448b90b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET davalka.online/uploads/posts/2020-05/otodral-p-yanuyu-zhenu-v-spal-ne-do-skvirta-v-popku.jpg
200 OK 11 kB URL
davalka.online/uploads/posts/2020-05/otodral-p-yanuyu-zhenu-v-spal-ne-do-skvirta-v-popku.jpg
IP / ASN
145.239.25.244
#16276 OVH SAS
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 382x215, components 3
First Seen 2024-12-28
Last Seen 2025-07-31
Times Seen 19
Size 11 kB (10980 bytes)
MD5 13dedb70cce020a2798a3deda0dc61f1
SHA1 246cecf0c99d53897dda59bb77fdef439c76ec5f
SHA256 2ce5702a6baeccc7ae49be7eecb707498ca9a28f0c95f1f614505f2f3d2c1b0f
Certificate Info
Issuer Let's Encrypt
Subject checkporno.com.davalka.vip
Fingerprint 43:3E:E3:CB:82:74:80:4F:16:A1:0F:8D:88:95:06:24:17:65:A2:3B
Validity Wed, 30 Apr 2025 06:14:58 GMT - Tue, 29 Jul 2025 06:14:57 GMT
GET /uploads/posts/2020-05/otodral-p-yanuyu-zhenu-v-spal-ne-do-skvirta-v-popku.jpg HTTP/1.1
Host: davalka.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 10980
last-modified: Fri, 22 May 2020 01:38:55 GMT
etag: "5ec72d2f-2ae4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/2cb7d732635512eec0b0a80aa31167ee.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET y.airbnb4you.ch/wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg
403 Forbidden 0 B URL
y.airbnb4you.ch/wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg
IP / ASN
172.67.184.204
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject airbnb4you.ch
Fingerprint 36:32:F3:C8:5B:D4:F0:AB:A3:7C:A9:BE:84:CC:3E:EB:A2:79:78:DA
Validity Tue, 06 May 2025 16:07:51 GMT - Mon, 04 Aug 2025 17:07:47 GMT
GET /wp-content/uploads/sites/50/2024/03/lisa-solo-star-sessions.jpg HTTP/1.1
Host: y.airbnb4you.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8B4F3J9mY%2B5Xfyg5zK%2Bln0OcWrR8QCC3EJ419RK2VIJkoRLJLgqmwHPvsevusoTiZlSdeIwreBXCD10iGC5AeWfoRNjkB9wAndz3z9RFI4pTgOxOyTKVeN0z%2FSXxsLAL3so%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: br
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
server-timing: chlray;desc="94c690dd38705691", cfL4;desc="?proto=QUIC&rtt=7742&min_rtt=1584&rtt_var=6915&sent=119&recv=154&lost=0&retrans=1&sent_bytes=9998&recv_bytes=8841&delivery_rate=337743&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=af2036f7659adabd&ts=5291&inflight_dur=83&x=80"
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cf-ray: 94c690dd38705691-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
GET www.9188porn.xyz/upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/d37481796908d2ed1a1e2043046bce9a.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET ajyshedfwer.buzz/favicon.ico
0 B URL
ajyshedfwer.buzz/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: ajyshedfwer.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET i.porn112.com/i/11/760_-.jpg
200 OK 14 kB URL
i.porn112.com/i/11/760_-.jpg
IP / ASN
45.133.44.3
#39572 DataWeb Global Group B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x240, components 3
First Seen 2025-02-21
Last Seen 2025-06-13
Times Seen 4
Size 14 kB (14028 bytes)
MD5 8c0afec28c8cbeb1ad8e9992519e7bfd
SHA1 32d465a341ba62cfe6976190238049a0b46ac1fc
SHA256 f5ef24099ced4dc514d76a7c35e7df0c7c479e87b8b173e66532b76f9a44fbb7
Certificate Info
Issuer Let's Encrypt
Subject i.porn112.com
Fingerprint 3B:D8:8C:15:AA:ED:07:0A:FA:DD:11:4A:60:9A:9F:22:6A:DA:8C:5E
Validity Mon, 05 May 2025 02:33:58 GMT - Sun, 03 Aug 2025 02:33:57 GMT
GET /i/11/760_-.jpg HTTP/1.1
Host: i.porn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:44 GMT
content-type: image/jpeg
content-length: 14028
server: nginx/1.20.1
last-modified: Wed, 18 Nov 2020 17:08:44 GMT
etag: "5fb5551c-36cc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
200 OK 216 kB URL
cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
IP / ASN
104.16.174.226
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (675)
First Seen 2025-06-04
Last Seen 2025-06-11
Times Seen 14
Size 216 kB (216527 bytes)
MD5 ee828cce904f77704778fdcab3b7d3ae
SHA1 484b1869af11badf2987b795f832880f48827c0e
SHA256 1aee21be18d240e459bc3985fb208bf4926e5a4f062b4b3613fdb270b780cb05
Certificate Info
Issuer Sectigo Limited
Subject *.jsdelivr.net
Fingerprint A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F
Validity Fri, 25 Apr 2025 00:00:00 GMT - Mon, 04 May 2026 23:59:59 GMT
GET /npm/yandex-metrica-watch/watch.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 85561
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.379.0
x-jsd-version-type: version
etag: W/"34dcf-aOWpnK1GD+fHM4L1YSL9dUcFUVw"
content-encoding: br
x-served-by: cache-fra-eddf8230153-FRA, cache-lga21926-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 8227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ucSY9cx8IPR6E9XPb%2Fvctenl50hNk8MjYxmghdmRTVQrNAV0u1f6EOiAK2rX%2BvS6y%2FnWBASSjptOIkU%2Be72wFzVT2u3bEBMLBFZCQrYO8bI0uyz4QrkWxT5E9VIZeT%2BTgRY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 94c690d0a85556ca-OSL
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg
200 OK 28 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-05-11
Last Seen 2025-07-31
Times Seen 54
Size 28 kB (28014 bytes)
MD5 2f692aee43df79bf36dd4af1cb64cc4c
SHA1 eaeebc396c00ac925800cad42718fd8a0b8401e5
SHA256 d8d1edb639abcf8a8c8f2a1be7ba486694641ff703cbe50e03d189436239de1f
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 28014
last-modified: Sat, 14 Dec 2024 07:33:53 GMT
expires: Mon, 14 Dec 2026 19:33:53 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231225-1/71c84d7590af58a72fbb9ea394f00622.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "285abb21453673c1"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.clporn.com/thumbs/1359/007_curly.jpg
200 OK 19 kB URL
www.clporn.com/thumbs/1359/007_curly.jpg
IP / ASN
104.21.25.21
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2025-01-24
Last Seen 2025-07-31
Times Seen 24
Size 19 kB (19381 bytes)
MD5 88e81997315a8dcbff76772ce4879a2e
SHA1 44c59fa5eab00e05da28f47e336df8aadf0959f0
SHA256 db6bb68e61ce719baed9f5bbd324a92e3eeb16c2ecbff3f9015ea7bf9079f049
Certificate Info
Issuer Google Trust Services
Subject clporn.com
Fingerprint 8F:CA:12:EB:6D:F7:0B:C6:3E:7E:FB:1F:5B:47:EE:0F:FC:F2:10:55
Validity Mon, 14 Apr 2025 20:15:06 GMT - Sun, 13 Jul 2025 21:12:18 GMT
GET /thumbs/1359/007_curly.jpg HTTP/1.1
Host: www.clporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 19381
server: cloudflare
last-modified: Sun, 03 Oct 2021 07:46:52 GMT
etag: "61595fec-4bb5"
expires: Sat, 06 Jun 2026 00:17:25 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 197539
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gtr7VbPSdVFTtFOEMPwOxzEaKJs9Pi4BcyYzsv%2FH4A7%2Fgdtwg1HtnTN6klSQlHG817gpkRv9GW%2BCMBjTwJ52gXQ%2FevcTvYcLpy%2BI9A%3D%3D"}]}
cf-ray: 94c690c858140afa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET akhwbjyshezaxck.buzz/favicon.ico
441 No Reason Phrase 0 B URL
akhwbjyshezaxck.buzz/favicon.ico
IP / ASN
91.195.240.12
#47846 SEDO GmbH
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer DigiCert Inc
Subject akhwbjyshezaxck.buzz
Fingerprint AD:F7:E5:11:E1:A0:DD:81:29:D2:74:6A:9D:F6:EC:73:9B:1B:FE:70
Validity Sat, 17 May 2025 00:00:00 GMT - Sat, 16 May 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: akhwbjyshezaxck.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 441 No Reason Phrase
date: Sun, 08 Jun 2025 07:09:54 GMT
server: Parking/1.0
content-length: 0
X-Firefox-Spdy: h2
GET pornohi.net/data/video/cover_1/1018.jpg
200 OK 6.9 kB URL
pornohi.net/data/video/cover_1/1018.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x180, components 3
First Seen 2025-02-14
Last Seen 2025-07-19
Times Seen 14
Size 6.9 kB (6903 bytes)
MD5 d94e2ff3fdfaeb0dfe2f9a194da4a97d
SHA1 f0e62f6d2a28083e09a41ca587454a2a9a68838a
SHA256 781e198d875f44a0c19893c3d8b67db59aff8f632e5188491665bd1fd90f75b9
Certificate Info
Issuer Google Trust Services
Subject pornohi.net
Fingerprint 08:2E:97:97:EE:26:0E:30:43:0A:E8:0D:C4:CD:47:C8:F6:74:D5:E2
Validity Thu, 24 Apr 2025 00:24:02 GMT - Wed, 23 Jul 2025 01:21:58 GMT
GET /data/video/cover_1/1018.jpg HTTP/1.1
Host: pornohi.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 6903
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Fri, 24 Feb 2017 08:32:46 GMT
etag: "58afefae-1af7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 276139
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=s5cnwxv54W%2FDcfNsd%2BR14V%2F6CYemX0mXd6yfKusVoY8coFbimwbfSpzzjZQXf%2Bw9J2YioWcNiPWSvvvPQV7pk9nK753NZpMXog%3D%3D"}]}
cf-ray: 94c690cdcbba569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET p1-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzAzLzAzLzEzL0JNakF5TXpBek1ETXhNekU0TkRKZk1UVXdNREF3TWpVNE1UYzVORFEyWHpFMU1ERXdNakk1T1Rrek1EVXlOMTh5WHpNPV9vZmZuX0IyZjNmM2MwZTBkODBkOGEyZGE0NjA2MzE1NzUyMmY4Ny53ZWJw.webp
200 OK 15 kB URL
p1-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzAzLzAzLzEzL0JNakF5TXpBek1ETXhNekU0TkRKZk1UVXdNREF3TWpVNE1UYzVORFEyWHpFMU1ERXdNakk1T1Rrek1EVXlOMTh5WHpNPV9vZmZuX0IyZjNmM2MwZTBkODBkOGEyZGE0NjA2MzE1NzUyMmY4Ny53ZWJw.webp
IP / ASN
43.152.140.79
#139341 ACE
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x408, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 15 kB (15272 bytes)
MD5 0573bd77d4783ef4ccff4ac688e87519
SHA1 0cce7e4bf14d20c4a9014fe2bbfa054f3bc18e21
SHA256 2ee858a5acd37442fcfaae284e85cc5b14c710ab2653d1eab0d7fe71533139e3
Certificate Info
Issuer GlobalSign nv-sa
Subject *.kwai.net
Fingerprint 55:3D:47:75:CD:99:64:ED:1B:F0:25:7F:54:76:E2:9E:07:93:CF:62
Validity Thu, 24 Oct 2024 06:41:09 GMT - Tue, 25 Nov 2025 06:41:08 GMT
GET /kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIzLzAzLzAzLzEzL0JNakF5TXpBek1ETXhNekU0TkRKZk1UVXdNREF3TWpVNE1UYzVORFEyWHpFMU1ERXdNakk1T1Rrek1EVXlOMTh5WHpNPV9vZmZuX0IyZjNmM2MwZTBkODBkOGEyZGE0NjA2MzE1NzUyMmY4Ny53ZWJw.webp HTTP/1.1
Host: p1-kimg.kwai.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
date: Sun, 09 Feb 2025 21:26:12 GMT
krtid: gwcc0a7eaf92d14d40b2909fa165d50c2f
expires: Mon, 09 Feb 2026 21:26:12 GMT
x-cache: Hit from cloudfront
x-amz-cf-pop: ARN53-P1
x-amz-cf-id: x76OEdFNdWVIrXWkMWmpuLEmPLsqeVmtPSdQEtG_0HAxMJI096KEZQ==
age: 144
cache-control: max-age=31536000
content-length: 15272
accept-ranges: bytes
x-nws-log-uuid: 17854805676749531824
server: Lego Server
x-cache-lookup: Cache Hit
access-control-allow-origin: *
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/8b0f6211422cbca04107eb224f5e9875.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.9188porn.xyz/upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-10/d3211030de0e963f91d990803fec41a0.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.w3schools.com/w3css/4/w3.css
200 OK 23 kB URL
www.w3schools.com/w3css/4/w3.css
IP / ASN
95.101.10.64
#20940 Akamai International B.V.
Requested by https://young.av4us.org/
Resource Info
File type ASCII text
First Seen 2023-06-26
Last Seen 2025-08-02
Times Seen 1424
Size 23 kB (23427 bytes)
MD5 75b37d4abbdde1322116d2744181081d
SHA1 6d6b5ff442af4682c30e970c382002a7c694ac5b
SHA256 c4f2aba13970ecf8303fb9329f97c8824861569273b0aa27acce48abc61d04f5
Certificate Info
Issuer Let's Encrypt
Subject certification.w3schools.com
Fingerprint E0:BE:6F:D5:91:F2:4E:EB:C2:EA:6D:F8:57:69:7A:96:16:FC:61:D8
Validity Mon, 02 Jun 2025 07:05:30 GMT - Sun, 31 Aug 2025 07:05:29 GMT
GET /w3css/4/w3.css HTTP/1.1
Host: www.w3schools.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 06 Jun 2025 12:17:20 GMT
accept-ranges: bytes
etag: "08843f3dcd6db1:0"
content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;
x-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;
vary: Accept-Encoding
content-encoding: gzip
content-length: 5256
cache-control: public, max-age=31383222
expires: Sat, 06 Jun 2026 12:43:32 GMT
date: Sun, 08 Jun 2025 07:09:50 GMT
x-loc: true
X-Firefox-Spdy: h2
GET 58g.top/favicon.ico
404 Not Found 0 B IP / ASN
172.67.211.23
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 58g.top
Fingerprint CC:0D:AE:74:F9:A8:E9:5F:D7:F8:0A:CA:DC:90:66:0C:00:41:42:17
Validity Sat, 19 Apr 2025 05:47:16 GMT - Fri, 18 Jul 2025 06:46:01 GMT
GET /favicon.ico HTTP/1.1
Host: 58g.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html
server: cloudflare
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XE36G1xQQ%2BY3Gm6MevaMgTw2imAqXHW2D4wU75%2FCgsDdfMjdo%2Fi79r%2B0XeY72GBCVL3Jwiuwimwpv1eGN3cizZ8nVj7I"}]}
age: 104
cache-control: max-age=86400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
content-encoding: br
cf-ray: 94c690ffcb555693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.effedupmovies.com/wp-content/uploads/2024/10/daddy1973.jpg
0 B URL
www.effedupmovies.com/wp-content/uploads/2024/10/daddy1973.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2024/10/daddy1973.jpg HTTP/1.1
Host: www.effedupmovies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET cdn.2beeg.me/pcz/0a/61/07/0a6107b6f6a5c54df924c45c24528c0c.jpg
200 OK 11 kB URL
cdn.2beeg.me/pcz/0a/61/07/0a6107b6f6a5c54df924c45c24528c0c.jpg
IP / ASN
172.67.184.104
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-12-07
Last Seen 2025-07-26
Times Seen 19
Size 11 kB (11141 bytes)
MD5 79aeb5d1835564c3c74097e4718f1d2f
SHA1 025f0adeddff046b0d3f594c1a724f11b6ed0d60
SHA256 3f040e90a6d90f1c7c0f070f12ec336904798c5580351864e5d64f5bf15acba3
Certificate Info
Issuer Google Trust Services
Subject 2beeg.me
Fingerprint 7D:21:12:28:5B:80:57:AB:3D:3A:82:F8:AF:A7:5B:55:93:E5:4F:55
Validity Sat, 19 Apr 2025 19:40:32 GMT - Fri, 18 Jul 2025 20:37:08 GMT
GET /pcz/0a/61/07/0a6107b6f6a5c54df924c45c24528c0c.jpg HTTP/1.1
Host: cdn.2beeg.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:43 GMT
content-type: image/jpeg
content-length: 11141
cf-ray: 94c690b7d84556c4-OSL
etag: 79aeb5d1835564c3c74097e4718f1d2f
last-modified: Thu, 06 Jun 2024 02:59:58 GMT
x-timestamp: 1717642797.09131
x-trans-id: tx6d829732fe344462b3d63-0066618153
x-openstack-request-id: tx6d829732fe344462b3d63-0066618153
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Mon, 09 Jun 2025 20:16:52 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 39170
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rGQPXRkLTeUCCcpIVv%2B4eTjxYhP%2BwMVHyqLxS41O2h5TQcpsA0klX1DeLq5E4xAq1wo5I2qAFZH1zoDkBHHpR3wUr9dybxxA1C9Qm%2BS0%2FzrHUK3WZEEKlKBmVBqPfg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1968&min_rtt=436&rtt_var=2607&sent=20&recv=14&lost=0&retrans=1&sent_bytes=19592&recv_bytes=1211&delivery_rate=7912568&cwnd=254&unsent_bytes=0&cid=62b2baeca0b96a5b&ts=2429&x=0"
X-Firefox-Spdy: h2
GET s9564.chomikuj.pl/Thumbnail.aspx?e=Xl21uqWKz-gf8aaKi1ZF26IyVKWZLLE1XRlGHFwgsswCEl_KT6l9boT2kXaMoWeUKbu_Jo47HPTcblWKv4_NZDarqxuTcpEumrEEntTsWFM&pv=2
200 OK 10 kB URL
s9564.chomikuj.pl/Thumbnail.aspx?e=Xl21uqWKz-gf8aaKi1ZF26IyVKWZLLE1XRlGHFwgsswCEl_KT6l9boT2kXaMoWeUKbu_Jo47HPTcblWKv4_NZDarqxuTcpEumrEEntTsWFM&pv=2
IP / ASN
95.211.227.205
#60781 LeaseWeb Netherlands B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x120, components 3
First Seen 2025-06-08
Last Seen 2025-06-08
Times Seen 2
Size 10 kB (10193 bytes)
MD5 e97b57286be67c3adafc4efe568a6f03
SHA1 1b4a4a72dd934a74e4205aee25f9b6dff75c89ef
SHA256 b6871a578ccdcb707c9b0de096e77557db903e236eb1af8f38cd3cc0f53b71f8
Certificate Info
Issuer DigiCert Inc
Subject *.chomikuj.pl
Fingerprint 6F:5B:B0:9D:FF:F4:B0:50:D0:C8:F6:93:5D:DB:D5:E9:D2:32:A2:E0
Validity Tue, 10 Dec 2024 00:00:00 GMT - Sat, 10 Jan 2026 23:59:59 GMT
GET /Thumbnail.aspx?e=Xl21uqWKz-gf8aaKi1ZF26IyVKWZLLE1XRlGHFwgsswCEl_KT6l9boT2kXaMoWeUKbu_Jo47HPTcblWKv4_NZDarqxuTcpEumrEEntTsWFM&pv=2 HTTP/1.1
Host: s9564.chomikuj.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://young.av4us.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private
content-type: image/jpeg
server: Microsoft-IIS/10.0
access-control-allow-origin: https://chomikuj.pl
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Sun, 08 Jun 2025 07:09:47 GMT
content-length: 10193
X-Firefox-Spdy: h2
GET cdn1.hotmoza.tv/thumb/f2/07/e7/f207e7fdd7b94ad09931d9405ffd2e45.jpg
200 OK 8.1 kB URL
cdn1.hotmoza.tv/thumb/f2/07/e7/f207e7fdd7b94ad09931d9405ffd2e45.jpg
IP / ASN
104.21.70.9
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 320x180, components 3
First Seen 2024-04-21
Last Seen 2025-07-24
Times Seen 60
Size 8.1 kB (8078 bytes)
MD5 826ced6f8f355badaf05146761cf2b10
SHA1 46e218b7f8d83b0a46b6b536984ecba8f492748b
SHA256 9b64fabf2b0cf761be45125cc8082305f53c597584a5899519061e844f2ba265
Certificate Info
Issuer Google Trust Services
Subject hotmoza.tv
Fingerprint 12:4E:7F:F9:7A:6B:6A:8A:18:A2:01:B3:80:4D:B8:29:9F:6F:43:4B
Validity Sat, 26 Apr 2025 03:31:28 GMT - Fri, 25 Jul 2025 04:28:03 GMT
GET /thumb/f2/07/e7/f207e7fdd7b94ad09931d9405ffd2e45.jpg HTTP/1.1
Host: cdn1.hotmoza.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 8078
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
x-object-meta-mtime: 1581181949.487582
etag: 826ced6f8f355badaf05146761cf2b10
last-modified: Sat, 08 Feb 2020 17:12:35 GMT
x-timestamp: 1581181954.16576
x-trans-id: txaf44d07afbe24be5b709e-006391cd4b
x-openstack-request-id: txaf44d07afbe24be5b709e-006391cd4b
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
expires: Sun, 08 Jun 2025 22:19:36 GMT
x-cdn-host-id: ds9225
x-proxy-cache: HIT
accept-ranges: bytes
age: 118204
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=WhR8HiIXdYUTLFmLHj45F1bHhidHyQMvJabmjOo1mYG2gMem53qG4PeRY7LFFVRYxhshSplMJcLUyx9jRVx1FdLyMRRcOIeQA8WycQE%3D"}]}
cf-ray: 94c690a8cb1456a2-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET sbzytpimg1.com:3519/upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg
404 Not Found 0 B URL
sbzytpimg1.com:3519/upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg
IP / ASN
173.249.235.21
#11878 TZULO
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer SSL Corporation
Subject sbzytpimg2.com
Fingerprint E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F
Validity Thu, 19 Dec 2024 14:08:44 GMT - Mon, 19 Jan 2026 14:08:44 GMT
GET /upload/vod/20240702-1/e22874018fcbafe1d628c4f11424cfca.jpg HTTP/1.1
Host: sbzytpimg1.com:3519
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: text/html
content-length: 146
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/19099ff773a66bed1683acae13931f17.jpg
200 OK 33 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20231225-1/19099ff773a66bed1683acae13931f17.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 961x540, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-01-24
Last Seen 2025-06-13
Times Seen 6
Size 33 kB (33076 bytes)
MD5 7631bb26c9773a0cdd59a2eb092c5958
SHA1 4d6c7a8f46c2553921f14976d2deaa916947383b
SHA256 6c03adf056d4a610679a824bbfaf526f3f6297aaa373ca4815423cbb75c68839
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20231225-1/19099ff773a66bed1683acae13931f17.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 33076
last-modified: Sat, 14 Dec 2024 07:33:03 GMT
expires: Mon, 14 Dec 2026 19:33:03 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20231225-1/19099ff773a66bed1683acae13931f17.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "51770405bc0c4441"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.sexsex61.com/favicon.ico
0 B URL
www.sexsex61.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.sexsex61.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET naturismv.com/images/naked-may-day-in-odessa-enature-net-russianbare-com.jpg
200 OK 32 kB URL
naturismv.com/images/naked-may-day-in-odessa-enature-net-russianbare-com.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-04-18
Last Seen 2025-07-05
Times Seen 80
Size 32 kB (32466 bytes)
MD5 c686c7b9a7525fd358cb06c1374eb582
SHA1 d7d9f9973a625ef36ebfbe5fc3c203323ecc6648
SHA256 5e52c7ccbb075094cedb3560a31d68b9fdadc4eb761f2e4a885dcef19bb26648
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/naked-may-day-in-odessa-enature-net-russianbare-com.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 32466
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:46 GMT
etag: "646765de-7ed2"
expires: Sun, 07 Jun 2026 05:08:21 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 93678
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1nXjYCmzIUKKojK88GF%2BM58fuQd%2BqL%2FtrJXCYYnFr1BtNfG2GhrNsn63prx77Lct%2B7wCUTn1QR1tTJwQFUx%2FGl90cdAaxQMe9EQt"}]}
cf-ray: 94c690a6db680b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET i1.wp.com/jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg
200 OK 32 kB URL
i1.wp.com/jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-06-08
Last Seen 2025-07-03
Times Seen 8
Size 32 kB (32500 bytes)
MD5 01efbbc6d247e7f7dc60683d0f943e1f
SHA1 2c9a03a81cc4fb90ea3f3b190f9a9d29bf15305b
SHA256 b70fc7c45ccf5a3873d698b1cf0adce135e078f7c79fbb7a5eff0ff3eae87101
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 32500
last-modified: Sat, 08 Feb 2025 23:27:04 GMT
expires: Tue, 09 Feb 2027 11:27:04 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240216-1/f85d7d2bd3f9f0e8dfc643881658d8b4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a514cc5f21c3f148"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.001
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET rtgallery.net/tb/amazonia-savages.jpg
200 OK 95 kB URL
rtgallery.net/tb/amazonia-savages.jpg
IP / ASN
5.63.144.84
#13213 UK-2 Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 480x360, components 3
First Seen 2024-12-06
Last Seen 2025-07-07
Times Seen 7
Size 95 kB (94960 bytes)
MD5 218e2882ffb27db93eaf5c6ba5a9a193
SHA1 28b935dcf147546735b3ca92da3a8d24bf9ad988
SHA256 259de0c00b96b0246cd923be6afb803a870f93de39dbfc6863f406c2762dcfc1
Certificate Info
Issuer Let's Encrypt
Subject rtgallery.net
Fingerprint 5A:F7:90:1F:C6:E2:A5:52:ED:AE:9D:AA:13:2A:83:E5:C1:01:3C:B9
Validity Fri, 23 May 2025 07:27:26 GMT - Thu, 21 Aug 2025 07:27:25 GMT
GET /tb/amazonia-savages.jpg HTTP/1.1
Host: rtgallery.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 08 Jun 2025 07:09:45 GMT
Content-Type: image/jpeg
Content-Length: 94960
Last-Modified: Wed, 04 Mar 2020 20:01:28 GMT
Connection: keep-alive
ETag: "5e600918-172f0"
Cache-Control: private, max-age=600, must-revalidate
Accept-Ranges: bytes
GET www.9188porn.xyz/upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/967841723e772c939d2a9d68ec6dd7e8.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET dragon.brettspizzeria.com/favicon.ico
0 B URL
dragon.brettspizzeria.com/favicon.ico
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: dragon.brettspizzeria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1
200 OK 87 kB URL
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1
IP / ASN
142.250.74.42
#15169 GOOGLE
Requested by https://young.av4us.org/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67258
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint 1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
Validity Mon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js?1 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 13:12:58 GMT
expires: Fri, 05 Jun 2026 13:12:58 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 237412
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET sorkab.com/wp-content/uploads/2025/01/0007202.jpg
200 OK 56 kB URL
sorkab.com/wp-content/uploads/2025/01/0007202.jpg
IP / ASN
104.21.87.34
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x360, components 3
First Seen 2025-02-17
Last Seen 2025-07-31
Times Seen 28
Size 56 kB (55546 bytes)
MD5 ec2e3a49cfe657acc4b40fa5ecc10a72
SHA1 95220170b6988e03cf9547a6409a553921c1c060
SHA256 abb8271923475fe313ef5eba989d7462dce070c515fcbe08354c637c3b355670
Certificate Info
Issuer Google Trust Services
Subject sorkab.com
Fingerprint 7E:D6:71:6B:9C:36:1D:C7:90:8F:FA:A8:7A:9C:EB:16:BE:16:EF:C1
Validity Sun, 04 May 2025 04:23:18 GMT - Sat, 02 Aug 2025 05:21:58 GMT
GET /wp-content/uploads/2025/01/0007202.jpg HTTP/1.1
Host: sorkab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 55546
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cache-control: public, max-age=31536000
expires: Sat, 16 May 2026 21:49:51 GMT
last-modified: Sun, 05 Jan 2025 01:39:31 GMT
vary: User-Agent,Accept-Encoding,Accept-Encoding
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
referrer-policy: no-referrer-when-downgrade
permissions-policy: geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), payment=(), fullscreen=(self)
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
server: cloudflare
accept-ranges: bytes
age: 270455
cf-cache-status: HIT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GgaeDnUsOym8TPEa5%2FSGpOFbg%2F0uBnXe4S3lrhyUVEiyqJaLwSd9bSbhzmpmmP9cizBeFM8JwQ2496Z%2Fz0TWuYBHs8Mkeet1"}]}
cf-ray: 94c690a9abf456a4-OSL
X-Firefox-Spdy: h2
GET cdne-pics.youjizz.com/0/8/c/08cb3014ce2c593f4e829a90f555a5891638360850-1920-1080-2647-h264.mp4-9.jpg
200 OK 32 kB URL
cdne-pics.youjizz.com/0/8/c/08cb3014ce2c593f4e829a90f555a5891638360850-1920-1080-2647-h264.mp4-9.jpg
IP / ASN
64.210.135.118
#30361 SWIFTWILL2
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 308x232, components 3
First Seen 2024-04-30
Last Seen 2025-07-26
Times Seen 16
Size 32 kB (31745 bytes)
MD5 865419eabaf678f92f6bc24616bf7c0c
SHA1 e8364d45f270d690fe89dabd809f0c88c22d3789
SHA256 64c4eb126c1909f760eb279e80657c7b0d4c41e95c3dc61756c1e8133739715c
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /0/8/c/08cb3014ce2c593f4e829a90f555a5891638360850-1920-1080-2647-h264.mp4-9.jpg HTTP/1.1
Host: cdne-pics.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:46 GMT
content-type: image/jpeg
content-length: 31745
last-modified: Wed, 01 Dec 2021 20:27:32 GMT
etag: "7c01-5d21b80e6c748"
expires: Wed, 31 Jan 2024 09:27:05 GMT
cache-control: max-age=10779935
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
timing-allow-origin: *
access-control-expose-headers: Content-Length
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-1269576-h-0-0---;7846-26-2929974----0-0-0
X-Firefox-Spdy: h2
GET i0.wp.com/jpgjingpinx.com/upload/vod/20240302-1/5aa5cb3eb95834bd6923a587346379e5.jpg
200 OK 46 kB URL
i0.wp.com/jpgjingpinx.com/upload/vod/20240302-1/5aa5cb3eb95834bd6923a587346379e5.jpg
IP / ASN
192.0.77.2
#2635 AUTOMATTIC
Requested by https://young.av4us.org/
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 718x404, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-02-26
Last Seen 2025-07-16
Times Seen 13
Size 46 kB (46486 bytes)
MD5 b104401db4ec795aabc8937838a4db3e
SHA1 97d6b049fb859ed3fc7cfa035a79ebdbd37b13d9
SHA256 3d1a18ea7b80a6a74fa3fba5318348f5a985ae4d9e96763353d0ada711c64e3c
Certificate Info
Issuer Let's Encrypt
Subject wp.com
Fingerprint 66:6E:B2:24:38:9C:F3:49:31:99:D5:1B:74:8E:94:0A:71:EB:D3:3F
Validity Sat, 07 Jun 2025 19:44:51 GMT - Fri, 05 Sep 2025 19:44:50 GMT
GET /jpgjingpinx.com/upload/vod/20240302-1/5aa5cb3eb95834bd6923a587346379e5.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/webp
content-length: 46486
last-modified: Sun, 19 Jan 2025 02:00:43 GMT
expires: Tue, 19 Jan 2027 14:00:43 GMT
cache-control: public, max-age=63115200
link: <http://jpgjingpinx.com/upload/vod/20240302-1/5aa5cb3eb95834bd6923a587346379e5.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d066b9820c3b7c68"
vary: Accept
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 3
server-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
GET chezcathy.com/ext/pre_5734033450.jpg
200 OK 27 kB URL
chezcathy.com/ext/pre_5734033450.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3
First Seen 2024-12-07
Last Seen 2025-07-28
Times Seen 10
Size 27 kB (26666 bytes)
MD5 303f2f90001c31372d29839c895bb8ec
SHA1 8449e07553bfefedc662424528ee1105b8f0c80f
SHA256 44e8506bb49bed9507608581aaabf0d9847c00dd06e4cfd5bf434d61f8e7e806
Certificate Info
Issuer Let's Encrypt
Subject chezcathy.com
Fingerprint A3:40:0B:5F:6C:6A:C3:96:57:4B:A7:67:A1:AD:93:88:60:B1:C9:14
Validity Sat, 31 May 2025 05:18:27 GMT - Fri, 29 Aug 2025 05:18:26 GMT
GET /ext/pre_5734033450.jpg HTTP/1.1
Host: chezcathy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 26666
server: BunnyCDN-DE1-1053
cdn-pullzone: 3632922
cdn-uid: 0f7047b6-2b70-4588-b55a-df9b2a15bf91
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
etag: "666b9681-682a"
last-modified: Fri, 14 Jun 2024 01:01:53 GMT
cdn-cachedat: 04/28/2025 18:21:45
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: b26fd299d353f309d4b52cce6df4426a
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET rule34xyz.b-cdn.net/posts/3264/3264200/3264200.picpreview.jpg
200 OK 60 kB URL
rule34xyz.b-cdn.net/posts/3264/3264200/3264200.picpreview.jpg
IP / ASN
138.199.37.232
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x450, components 3
First Seen 2025-05-27
Last Seen 2025-06-08
Times Seen 3
Size 60 kB (59934 bytes)
MD5 f7ed53690b7c40233c6d6aa42fbb8ef3
SHA1 601adc93ea97306d03aad95966ebf55b1a1b8709
SHA256 05942cc4f9119090c2d093f6e68366085641aee7ae662a02bfc090737053503f
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
GET /posts/3264/3264200/3264200.picpreview.jpg HTTP/1.1
Host: rule34xyz.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:43 GMT
content-type: image/jpeg
content-length: 59934
server: BunnyCDN-DE1-874
cdn-pullzone: 294263
cdn-uid: 66d6ad83-3f00-4738-b738-db341e02bfab
cdn-requestcountrycode: NO
cache-control: public, max-age=7776000
last-modified: Mon, 13 Jan 2025 20:32:00 GMT
cdn-storageserver: DE-1019
cdn-fileserver: 977
cdn-proxyver: 1.28
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 06/02/2025 23:08:05
cdn-edgestorageid: 874
cdn-requestid: e128c9637b1cd1d1213181fefea59cb4
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/fe/d6/a0/fed6a0f1730247505ea8d79ea7334018-1/fed6a0f1730247505ea8d79ea7334018.18.jpg
200 OK 9.2 kB URL
cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/fe/d6/a0/fed6a0f1730247505ea8d79ea7334018-1/fed6a0f1730247505ea8d79ea7334018.18.jpg
IP / ASN
185.76.9.8
#60068 Datacamp Limited
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3
First Seen 2025-06-08
Last Seen 2025-07-17
Times Seen 3
Size 9.2 kB (9218 bytes)
MD5 81c3e4079ca7f8dcd4eb2af982c36f2b
SHA1 655460cd7e9a29571a979c45e00e828405acc843
SHA256 d8684094c6e0bd2060ba02a36623296f46a1733e994ee79d80c804b51ee8d01a
Certificate Info
Issuer Sectigo Limited
Subject xvideos.com
Fingerprint 27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78
Validity Thu, 03 Oct 2024 00:00:00 GMT - Mon, 03 Nov 2025 23:59:59 GMT
GET /videos/thumbs169ll/fe/d6/a0/fed6a0f1730247505ea8d79ea7334018-1/fed6a0f1730247505ea8d79ea7334018.18.jpg HTTP/1.1
Host: cdn77-pic.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 9218
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Tue, 23 May 2023 08:25:34 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-77-nzt: EwwBuUwJBgH3ed0JAAwBz9PTEwH3cjd+AAgBj/Q6yAGB
x-77-nzt-ray: 5451992d8c0c0ca83937456834c83732
x-accel-expires: @1759087874
x-77-cache: HIT
x-accel-date: 1748720064
x-accel-date-max: 1738351869
x-77-age: 646521
server: CDN77-Turbo
accept-ranges: bytes
X-Firefox-Spdy: h2
GET sasisa.ru/favicon.ico
0 B IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: sasisa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET www.youjizz.com/favicon.ico
200 OK 4.3 kB URL
www.youjizz.com/favicon.ico
IP / ASN
66.254.114.242
#29789 REFLECTED
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
First Seen 2023-07-17
Last Seen 2025-07-31
Times Seen 223
Size 4.3 kB (4286 bytes)
MD5 cd65da5df2a2cfd472a198524ec61296
SHA1 e51ea1800eec5985026a37498f4aa7044c757d04
SHA256 321ac040acb1c782abf632960125319b8925361510e13b1a9dfd904a9e733515
Certificate Info
Issuer Sectigo Limited
Subject *.youjizz.com
Fingerprint 18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7
Validity Fri, 20 Dec 2024 00:00:00 GMT - Tue, 06 Jan 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: www.youjizz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:52 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Tue, 25 Feb 2020 06:57:19 GMT
etag: "5e54c54f-10be"
accept-ranges: bytes
set-cookie: RNLBSERVERID=ded6583; path=/
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
GET naturismv.com/images/naturist-olympiada-enature-net-helios-natura-russianbare-com.jpg
200 OK 37 kB URL
naturismv.com/images/naturist-olympiada-enature-net-helios-natura-russianbare-com.jpg
IP / ASN
104.21.44.17
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, progressive, precision 8, 400x300, components 3
First Seen 2024-12-08
Last Seen 2025-06-08
Times Seen 3
Size 37 kB (37430 bytes)
MD5 d9d7c7b12854a2816801c87d85bd3e04
SHA1 652ec216d15a1967db86b29973424f6f1829f081
SHA256 bf793f3b45a554ab9f599800307d9ff160a08f58b0f7ce711c1153c31b5a858b
Certificate Info
Issuer Google Trust Services
Subject naturismv.com
Fingerprint 89:AF:F9:3B:F9:65:5A:43:A3:77:FD:5B:A5:61:B8:50:E0:07:19:A4
Validity Fri, 02 May 2025 17:11:44 GMT - Thu, 31 Jul 2025 18:09:26 GMT
GET /images/naturist-olympiada-enature-net-helios-natura-russianbare-com.jpg HTTP/1.1
Host: naturismv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:40 GMT
content-type: image/jpeg
content-length: 37430
server: cloudflare
last-modified: Fri, 19 May 2023 12:04:46 GMT
etag: "646765de-9236"
expires: Fri, 29 May 2026 22:43:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000;
accept-ranges: bytes
age: 807947
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jNqTahrw8c6SDs9Vg9dshsmvvntlajlm0UqTUM0f4452ZocdMXL2uv9q8EbpQFSCuElDsCE%2BoYlx19vXNDR%2B45WT%2B57BrxtotT0t"}]}
cf-ray: 94c690a7fc1b0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET s3.aaaaa.io/images/dm/9115b5658f440f877681fc7eaf3665bb.jpg
200 OK 43 kB URL
s3.aaaaa.io/images/dm/9115b5658f440f877681fc7eaf3665bb.jpg
IP / ASN
104.21.70.72
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, baseline, precision 8, 268x394, components 3
First Seen 2024-12-19
Last Seen 2025-06-08
Times Seen 4
Size 43 kB (43019 bytes)
MD5 c59d497b55aff73d3549f4decd8962e1
SHA1 67bbbd27e56d0b825242b2bc73c8bb1711cfb768
SHA256 95b83aeac86b5f6ed1540d7904eb5e4336ec78e5a2d400446b0a43e7daba2b18
Certificate Info
Issuer Google Trust Services
Subject s3.aaaaa.io
Fingerprint EF:50:37:DA:2F:56:0B:2F:33:CB:EA:81:E6:BB:CF:C9:F4:71:EC:AE
Validity Mon, 28 Apr 2025 00:50:51 GMT - Sun, 27 Jul 2025 01:50:49 GMT
GET /images/dm/9115b5658f440f877681fc7eaf3665bb.jpg HTTP/1.1
Host: s3.aaaaa.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 08 Jun 2025 07:09:44 GMT
Content-Type: image/jpeg
Content-Length: 43019
Connection: keep-alive
Accept-Ranges: bytes
etag: "c59d497b55aff73d3549f4decd8962e1"
Last-Modified: Sat, 07 Oct 2023 09:30:48 GMT
Vary: Accept-Encoding
Age: 4918
Cache-Control: max-age=31536000
cf-cache-status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WWWrxdKf7yOVfz7Nbr7vISTp%2FiPBrDeSEAf%2B3LEh6JEE8YFEoLSBf%2Bvxee3xWT2%2BwiOYCSVPL177y9pP8rgQmq5lJxK79AbIGQN4gsiObxOnfd3dDFLfocj4sz8ekA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 94c690c1cbb8569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=456&min_rtt=384&rtt_var=191&sent=6&recv=8&lost=0&retrans=0&sent_bytes=3094&recv_bytes=1070&delivery_rate=7063414&cwnd=252&unsent_bytes=0&cid=0d18fba87abbd069&ts=3272&x=0"
GET ansuko.net/wp-content/uploads/2024/12/iie54zbr_header.jpg
200 OK 57 kB URL
ansuko.net/wp-content/uploads/2024/12/iie54zbr_header.jpg
IP / ASN
104.21.54.113
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x782, components 3
First Seen 2025-05-09
Last Seen 2025-07-13
Times Seen 27
Size 57 kB (57135 bytes)
MD5 587c29cf9aed82b65625e6d125fd7643
SHA1 b57875faa990b0adb1d4e81c6c7ed596b963cb76
SHA256 6ba9af541f0226a091c5e0215be99e07ed002222f17b2c05c52d0362a354adbf
Certificate Info
Issuer Google Trust Services
Subject ansuko.net
Fingerprint 1F:F9:D4:D4:79:3B:CE:6A:7A:77:54:A8:26:D5:0A:2C:38:E9:96:0F
Validity Mon, 14 Apr 2025 04:00:18 GMT - Sun, 13 Jul 2025 04:58:35 GMT
GET /wp-content/uploads/2024/12/iie54zbr_header.jpg HTTP/1.1
Host: ansuko.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 57135
server: cloudflare
last-modified: Sun, 08 Dec 2024 16:52:30 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
etag: "6755cece-df2f"
accept-ranges: bytes
age: 23305
cache-control: max-age=31536000
cf-cache-status: HIT
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=3a0IeeTe%2BM8cKcW6gDmUPP2p0M5LAHHMWs3mRDBKvSTGnu0nfV8XLwvWuAIyDRyo8XoGVQrdX%2FaVAQjtRimGHP%2FWNd0pF%2B69"}]}
cf-ray: 94c690c538f856bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.redd.tube/
200 OK 0 B IP / ASN
104.26.15.75
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject redd.tube
Fingerprint 6A:A3:49:66:02:5D:88:4D:80:FE:94:BE:C2:A9:9E:59:D7:97:02:97
Validity Sun, 01 Jun 2025 15:05:19 GMT - Sat, 30 Aug 2025 16:05:04 GMT
GET / HTTP/1.1
Host: www.redd.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:54 GMT
content-type: text/html; charset=UTF-8
cf-ray: 94c690ffeabe569c-OSL
x-content-type-options: nosniff
x-frame-options: Deny
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
ischrome: false
country-code: NO
country-code-uk: false
content-encoding: gzip
vary: Accept-Encoding
set-cookie: PHPSESSID=568472e1e874df7ca029d0f64f8a36a7; expires=Mon, 09-Jun-2025 07:09:54 GMT; Max-Age=86400; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uGOs1iBz%2FCzv3uJShIZd%2F1E1Kh2lmsNaUUQRpxh4HUOrXY4Q4AfjWpDziNdaV8pd5cCgV0MDTD6PncEdD6BSe0U2PWgnlnKDVQzFoWeocMAGtmeB9AOMVrP0oL8t4e0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4071&min_rtt=401&rtt_var=7202&sent=12&recv=16&lost=0&retrans=0&sent_bytes=4172&recv_bytes=1274&delivery_rate=8290076&cwnd=257&unsent_bytes=0&cid=529662bcd660f280&ts=2044&x=0"
X-Firefox-Spdy: h2
GET pornyc.com/thumbs/56/667_another-teen-compilation.jpg
200 OK 15 kB URL
pornyc.com/thumbs/56/667_another-teen-compilation.jpg
IP / ASN
104.21.2.19
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3
First Seen 2024-10-22
Last Seen 2025-07-03
Times Seen 13
Size 15 kB (14595 bytes)
MD5 cb7bfc904f007711aebf51a3eb9b6abd
SHA1 f98dbce4f83da70652d73b62ef04253f38f2e1dc
SHA256 c508435be52f03660dbc66bdaefdebccff2d38bf4f2bf652d99e3cda6d66939c
Certificate Info
Issuer Google Trust Services
Subject pornyc.com
Fingerprint A5:26:AC:13:8A:C9:12:28:A6:C8:DD:FE:E6:19:18:C8:8B:2B:5D:04
Validity Sat, 26 Apr 2025 11:01:12 GMT - Fri, 25 Jul 2025 11:59:34 GMT
GET /thumbs/56/667_another-teen-compilation.jpg HTTP/1.1
Host: pornyc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Jun 2025 07:09:45 GMT
content-type: image/jpeg
content-length: 14595
server: cloudflare
last-modified: Fri, 17 Sep 2021 16:34:32 GMT
etag: "6144c398-3903"
expires: Sun, 10 May 2026 00:25:36 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000, no-transform
age: 2529849
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gVcYWrUb05RZ7UhJ4juFmrI221jRh3bc0ctfXv%2FjamTQrnMq4%2FSBYQYhOm50xf9o%2BPA%2B06Fe%2FAsGV3SicaqK66ct0Z%2BiXJEb"}]}
cf-ray: 94c690c8bf635690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET zozovideo.com/wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg
200 OK 39 kB URL
zozovideo.com/wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg
IP / ASN
139.162.102.64
#63949 Akamai Connected Cloud
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3
First Seen 2025-06-02
Last Seen 2025-07-29
Times Seen 16
Size 39 kB (39025 bytes)
MD5 6f123f1b33519d8b6b3a4fbd882f95e7
SHA1 1abebdd9224cac5a759b6ba55a9f7e5e3c873a13
SHA256 755a116cd1874b0a1c2831bc418313ca68a4bf13f35bed7cdb722046562ab5c5
Certificate Info
Issuer Let's Encrypt
Subject *.zozovideo.com
Fingerprint 20:AE:26:C8:3B:F7:3F:C9:1C:EC:3D:01:3D:56:BB:FC:F9:15:2C:72
Validity Sat, 19 Apr 2025 23:54:41 GMT - Fri, 18 Jul 2025 23:54:40 GMT
GET /wp-content/uploads/2024/12/4abfbeca48e1e493de0bc8e86b6acde3.jpg HTTP/1.1
Host: zozovideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private
expires: Sun, 15 Jun 2025 07:09:44 GMT
content-type: image/jpeg
last-modified: Mon, 09 Dec 2024 02:54:16 GMT
accept-ranges: bytes
content-length: 39025
date: Sun, 08 Jun 2025 07:09:44 GMT
server: LiteSpeed
vary: User-Agent,Accept
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
GET javp1.cc/https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg
403 Forbidden 0 B URL
javp1.cc/https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject javp1.cc
Fingerprint D2:81:4F:32:09:EE:7A:5A:1F:6C:D9:90:99:8F:5A:AC:5A:29:AF:00
Validity Mon, 02 Jun 2025 04:07:36 GMT - Sun, 31 Aug 2025 05:00:34 GMT
GET /https://img.caoliuzywimg.com:188/20230220/EnEqwnDJ/1.jpg HTTP/1.1
Host: javp1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:49 GMT
content-type: text/html; charset=utf-8
server: cloudflare
x-powered-by: Express
cache-control: no-store
cf-cache-status: BYPASS
priority: u=4,i=?0
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=iM3JOUEeWHCt97ExsoxeX78%2BsZG7E2f6ZCySa8gJZJ2bjaIPtit78zHcVTDzaelhmtf5Ei6QUVtKAGQBEAk6lP2aDDvGrw%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
cf-ray: 94c690dd1f98b51e-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
403 Forbidden 0 B URL
www.9188porn.com/upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject 9188porn.com
Fingerprint 73:1D:72:A6:59:D6:B0:4B:D3:E8:3C:17:BD:D1:83:EE:7C:FB:41:23
Validity Sun, 08 Jun 2025 00:53:55 GMT - Sat, 06 Sep 2025 01:52:36 GMT
GET /upload/vod/20241010-10/28b4eb8a53f92362942b4aaaa648dfc9.png HTTP/1.1
Host: www.9188porn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 08 Jun 2025 07:09:48 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LedCo89xdoxiTiIBBuhxszQExlveZQqYGJdQ5eO6Scd2UOPfDi%2BG98hjsljSuN60MhrhHj3q%2Beq%2BqBTM%2BBnDme9Fk3fl6RCjyaboItjAGd4er%2FlumRfvOmilVaGyix23A0De"}],"group":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
content-encoding: br
cf-ray: 94c690dd2e930b06-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13473&min_rtt=3352&rtt_var=10702&sent=129&recv=152&lost=0&retrans=0&sent_bytes=19792&recv_bytes=8925&delivery_rate=908423&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=11b6bf060da82140&ts=5285&inflight_dur=249&x=80"
GET www.9188porn.xyz/upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/990dcf942914fe465a54e26990b4bd38.png HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET obmenvsemfiles.net/fo/files_attachments/d7e/5db/d7e5dbb9ff403e9d98b26ee194037dbf.jpg
200 OK 14 kB URL
obmenvsemfiles.net/fo/files_attachments/d7e/5db/d7e5dbb9ff403e9d98b26ee194037dbf.jpg
IP / ASN
82.192.80.149
#60781 LeaseWeb Netherlands B.V.
Requested by https://young.av4us.org/
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x320, components 3
First Seen 2024-04-20
Last Seen 2025-07-28
Times Seen 27
Size 14 kB (14191 bytes)
MD5 d7e5dbb9ff403e9d98b26ee194037dbf
SHA1 aa29bee1ef4abe5df9ffd69171aaee3b0cb4bbb6
SHA256 14e0af1b8cd32d5e30f752f5ebe2931f6120d61c6d1ecec7dc569291cdb04838
Certificate Info
Issuer Let's Encrypt
Subject obmenvsemfiles.net
Fingerprint 55:B7:B2:52:2E:E5:4D:1E:96:5C:1A:46:61:9B:0F:E3:B8:B2:20:CD
Validity Sat, 17 May 2025 20:45:31 GMT - Fri, 15 Aug 2025 20:45:30 GMT
GET /fo/files_attachments/d7e/5db/d7e5dbb9ff403e9d98b26ee194037dbf.jpg HTTP/1.1
Host: obmenvsemfiles.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jun 2025 07:09:42 GMT
content-type: image/jpeg
content-length: 14191
last-modified: Sat, 25 Jun 2016 06:56:39 GMT
etag: "576e2b27-376f"
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.9188porn.xyz/upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg
0 B URL
www.9188porn.xyz/upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg
IP / ASN
0.0.0.0
#0
Requested by https://young.av4us.org/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606767
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /upload/vod/20241010-11/8b78b2b00e44daabb52f01bd2e5e57e5.jpg HTTP/1.1
Host: www.9188porn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET motherless.com/favicon.ico
200 OK 1.2 kB URL
motherless.com/favicon.ico
IP / ASN
185.107.81.234
#43350 NForce Entertainment B.V.
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
First Seen 2023-05-25
Last Seen 2025-08-01
Times Seen 261
Size 1.2 kB (1150 bytes)
MD5 71fed71dccb91a13bdf68a6444f25ce4
SHA1 38da7202842147ecda5521d50f094a54d1381f2c
SHA256 18f6675d329e6cb3bb7d7d1e546a1c68c5cc599f1b3ae98c2abbd21a53dc42c2
Certificate Info
Issuer GoGetSSL
Subject *.motherless.com
Fingerprint BC:66:10:ED:31:C2:E1:48:61:92:BF:BD:98:9C:71:7C:41:97:BB:15
Validity Wed, 02 Apr 2025 00:00:00 GMT - Sun, 03 May 2026 23:59:59 GMT
GET /favicon.ico HTTP/1.1
Host: motherless.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:51 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Thu, 20 Apr 2023 06:59:04 GMT
ETag: "6440e2b8-47e"
X-Server-W: web806
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Status: HIT
Accept-Ranges: bytes
GET coub.com/favicon.ico
200 OK 8.3 kB IP / ASN
95.213.253.85
#49505 JSC Selectel
Requested by https://young.av4us.org/
Resource Info
File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel
First Seen 2023-10-30
Last Seen 2025-07-22
Times Seen 67
Size 8.3 kB (8348 bytes)
MD5 b22f84ff786b70ac82a4b6d59a0f4cb1
SHA1 8e30c3e09f0a5c85f332beadacb9dde04f6a374b
SHA256 b664fc22289370af2778e75a14c047ef3d23e45dc1daf3047cca3aaa5a2c6670
Certificate Info
Issuer Let's Encrypt
Subject coub.com
Fingerprint BA:B3:6B:68:C2:1C:DC:D0:E7:65:2C:7F:60:E2:5F:86:69:EC:3B:A9
Validity Fri, 09 May 2025 06:00:28 GMT - Thu, 07 Aug 2025 06:00:27 GMT
GET /favicon.ico HTTP/1.1
Host: coub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://young.av4us.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 08 Jun 2025 07:09:54 GMT
Content-Type: image/x-icon
Content-Length: 8348
Last-Modified: Wed, 12 Jul 2017 08:13:24 GMT
Connection: keep-alive
ETag: "5965da24-209c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
