www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
104.26.3.123301 Moved Permanently 0 B URL HTTP/1.1 www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
IP 104.26.3.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Dec 2022 14:37:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 14 Dec 2022 15:37:26 GMT
Location: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1tAZ0Wepa05SDXtK1%2F9%2BfoTbMoL0up3Kcd%2BxJr9vku2Bs0DtTAB02zQIOtVmdvyFxuxhCRsSKLde0LGXdYgarxbzvqLJFgTzQCEAN%2BBsZ0Q7KF4Ud15vp7AH1S2HPr%2FPXmo527X5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7797ad6fac8db523-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11847
Expires: Wed, 14 Dec 2022 17:54:53 GMT
Date: Wed, 14 Dec 2022 14:37:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 555d8608594803d49eeb9581c6b70702
d01e0201e0ba0cf751ef97226620338a853bc635
2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5341
Expires: Wed, 14 Dec 2022 16:06:27 GMT
Date: Wed, 14 Dec 2022 14:37:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 14 Dec 2022 14:33:49 GMT
content-type: application/json
age: 217
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17292
Expires: Wed, 14 Dec 2022 19:25:38 GMT
Date: Wed, 14 Dec 2022 14:37:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bixxhuLTLO4QZr2Ju/5MZNLJeH65FtL2ppH3iTIkzhHMrICe5/sZ0aDAevN5SAqwV12tIAkZDmA=
x-amz-request-id: B78Z5QXVHKP6TDB2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 14 Dec 2022 13:50:31 GMT
age: 2815
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8a1c642da1d0f8012210ed492562da25
8103749305762d77a6a6647046ec5b34e263c5d5
a49a9cf07dd17443337486745f55400850a1d98e1a54a74a8687b50b4c1084ac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4405
Cache-Control: max-age=139360
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:26 GMT
Etag: "63994bd1-118"
Expires: Fri, 16 Dec 2022 05:20:06 GMT
Last-Modified: Wed, 14 Dec 2022 04:06:41 GMT
Server: ECS (amb/6B7A)
X-Cache: HIT
Content-Length: 280
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 14:37:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 14 Dec 2022 14:07:58 GMT
age: 1768
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.24.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 595900
expires: Mon, 04 Dec 2023 14:37:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tN3Cu4jZcZmZetwDRSALx3LfW6i2yp7S0IT6PAdNU6%2F01iWziBxnX%2FNq0Vy6%2F3%2Bza%2B582y%2FRLbsIH9rNeUqLO4ZWPIoRUmSYrR%2FjSTtxzh00MA43AsQObQGhFK56MpZ7jLvupFN8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7797ad746f0eb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
5.1 kB URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP :0
Hash abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
104.26.2.123200 OK 5.8 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP 104.26.2.123:0
File type ASCII text, with very long lines (20018), with CRLF line terminators
Hash 0f81d012d28b3a31585838d56bfcb327
0680682dfd657c210a29f0c95b8110c01b367eb6
a49e02d98e3e0f95f94c166d7eacf9018f2456db2620480b6666d3e5e4c73f81
GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 13796
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xL6k8YMzDHxh7VYyM4phQaaOTOyI6wYrlO1znd2whMZHMaEg3H%2FwQyIu9V%2FdqNeTOOrvCdNUXkAB%2Bz0%2Be9xtGlYjzf%2FCLdXtgQz8boRppsAnQg1aIUldLiw%2BAZCPteZUZejAAWGR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad741cf0b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
104.26.2.123200 OK 10 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
IP 104.26.2.123:0
File type ASCII text, with very long lines (3433)
Hash 82f7b2d3bf69dfb3e8dfda9e34e9b2b7
edb11e6409c9d6d7b541e95e96a50ad0fcfd2ade
576a2c9e3c5942ea28d956e25a5db08f699cb735d14eda813c7b1e4c4133950d
GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=51865
etag: W/"6388cd36-ca99"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/main.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 13796
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0mrcjhZo2FMcNpfvEIKGztdGlZlYcRg37oBrIvnr2QuiRRYl7pZHERqvX4ays%2FVDd71DfbcQ96Sl4NaY95h9IrpgxQIz7sdvKQR0dlacmJfxtW5PuwqleBZ52iPOi6XSMqg0HfT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad741cf1b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
104.26.2.123200 OK 1.1 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP 104.26.2.123:0
File type ASCII text, with very long lines (529)
Hash 660a1a1265e41c2d31f1b0cdc7fdfcc8
7f8dae2a1c7aa829f6dd49b25fe73504a93c9ea3
621d1ba3060c7290f38dd3acf1a24ee9b914b941830c5eed24338895cccee2af
GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 13796
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y09Dgxd%2FjmW8pEXOS%2F6x0uvaXReY8Kh5eFt1kjqs6o3dR%2F5o5VbG0%2Fjd4x49MAbWW8xnHfNexp5GEzwYH%2F5FvUa%2BCNxhOAr0LiKbsvF68CDMmadHoWVi3dP5N4OvVUCZKKLBFpDe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad741cebb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 210b7a2584ae55362c4b582e325f37f7
5f1982f961f1c5db96bbb66af075bab3cb535963
cb3767debad90cb8a34ce287de194cdb2a4f7146e7b51560fd2e0eb11fbfbc2f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5692
Cache-Control: max-age=158661
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Etag: "63999230-1d7"
Expires: Fri, 16 Dec 2022 10:41:48 GMT
Last-Modified: Wed, 14 Dec 2022 09:06:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b3c4459ccef6b36249ea519a012dc84c
2b88a95d37722e66ae550c87ec7cdf252c9a2b30
76e30a20f08725a17e3b890a9b049bd5883f1cf3c7b8ee4bcfde97593151e32b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2210
Cache-Control: max-age=103691
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Etag: "6398c910-117"
Expires: Thu, 15 Dec 2022 19:25:38 GMT
Last-Modified: Tue, 13 Dec 2022 18:48:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP 142.250.74.170:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 19:27:28 GMT
expires: Sat, 09 Dec 2023 19:27:28 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 414599
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-124653024-3
142.250.74.72200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP 142.250.74.72:0
File type ASCII text, with very long lines (1921)
Hash 56bd1a404ad0512358a979a124bd557b
daff54cf5de0824cc67bae946184de96968aa8f9
85622a3ef0a46bebe4fe77443e1539995dba26222fceb32a198132fc299ce53b
GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 14 Dec 2022 14:37:27 GMT
expires: Wed, 14 Dec 2022 14:37:27 GMT
cache-control: private, max-age=900
last-modified: Wed, 14 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0ee0c469970516bf6d255dafb0bd1225
884a347c2db0f220ce35dae3a64b1525ddbc3fa4
ff8285413954679ea64613c021380586779d139c7e0ccb6595f9efe3f1ae7e1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
theporndude.com/favicon-32x32.png
104.19.128.100200 OK 1.6 kB URL HTTP/2 theporndude.com/favicon-32x32.png
IP 104.19.128.100:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /favicon-32x32.png HTTP/1.1
Host: theporndude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/webp
content-length: 1576
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1823
content-disposition: inline; filename="favicon-32x32.webp"
vary: Accept
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control: public, max-age=31536000
etag: "71f-5dbddefb-94cda11995fd4df4;;;"
expires: Thu, 14 Dec 2023 14:37:27 GMT
last-modified: Sat, 02 Nov 2019 19:54:35 GMT
strict-transport-security: max-age=31536000
x-frame-options: allow-from https://webvisor.com/
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1268978
accept-ranges: bytes
server: cloudflare
cf-ray: 7797ad764d26b50f-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:52:55 GMT
expires: Tue, 12 Dec 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 157472
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YcyMPJAcj2n85RF4IAJRtA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QctvTQ0imsvJAZUL5A0XNlgMQ2o=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f3a70d8ddbade77f5a23db8af884c0d6
04ea47aef9f45cfaac947c94a3f56ad9a1a9e610
7ced73077954fcf401b9bddc683d5c3ee38212cca3d30c56a1c2519f986d13b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 14 Dec 2022 12:41:08 GMT
expires: Wed, 14 Dec 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 6979
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0fbe3d80eaa6623da753aece08c3a818
d3c6fe97e3154f00f681647a3c74800008ac2d2f
cab890482eacc4298414a2aa0e41ea5bce399eccd4d5e50c9cdc55c735c83b1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 6775836d0255d7372cec2703fb651e91
43f918640742a77ca445a1577035ce2b5c86c2d1
3a92a8c297e9d8c3d2ee7cd3755a26d66bcde5f50a8f384e2b02cd04765056eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 14:37:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Dec 2022 08:27:06 GMT
Expires: Tue, 20 Dec 2022 08:27:05 GMT
Etag: "43f918640742a77ca445a1577035ce2b5c86c2d1"
Cache-Control: max-age=495577,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7797ad785ba5b506-OSL
pics.pornfhd.com/s/mono/movie/adult/ppbd246/ppbd246pl.jpg
104.21.235.64200 OK 44 kB URL HTTP/2 pics.pornfhd.com/s/mono/movie/adult/ppbd246/ppbd246pl.jpg
IP 104.21.235.64:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", progressive, precision 8, 476x320, components 3\012- data
Hash 595ead3140d24baad06662a8bed1d7ec
08784363019df73523c22e7bf6d9c11abeaff3f0
39b174deda3ff9f86823ecd9c5a70586f529661144f4cb62d8a96ea93fdc014c
GET /s/mono/movie/adult/ppbd246/ppbd246pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 10:11:00 GMT
vary: Accept-Encoding
etag: W/"634935b4-ad0f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2008892
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yEXdVIjE3JPWr%2FBf8uaCAgeXE28XQ5oClkOYIh1f4AD2KW6Nu7Lioow8wa76tTOOJebIcHnqvla4UwgmT%2FvlLhaLUn0IKWxL11NMaVygxVVV11JMS%2FySDsu4Px7tCCMJ%2Fyrt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad770e598877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
185.94.236.245200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP 185.94.236.245:0
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Dec 2022 14:37:28 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eae"
Content-Encoding: gzip
ocsp.pki.goog/s/gts1p5/WhibRaqexi4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/WhibRaqexi4
IP 142.250.74.131:0
Hash bd581c086c68f1ffecb8d150c8013e9c
9fc72b9f6a74a1e719c471c87652db3ba2681d3a
e0079cf80053abf8c50220c68b53996ade586c4b17171813a1bf594564aa71f3
POST /s/gts1p5/WhibRaqexi4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/WhibRaqexi4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/WhibRaqexi4
IP 142.250.74.131:0
Hash bd581c086c68f1ffecb8d150c8013e9c
9fc72b9f6a74a1e719c471c87652db3ba2681d3a
e0079cf80053abf8c50220c68b53996ade586c4b17171813a1bf594564aa71f3
POST /s/gts1p5/WhibRaqexi4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 14:37:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8479a3148cab4275d4ce504e9865174b
a61b0fd5cf905b5278c5bfd075e9ecf4e29c4a86
101498cadbcf70ee23cca45072c70c318dc3e8a0b526c2a0a684556a3e2541df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "101498CADBCF70EE23CCA45072C70C318DC3E8A0B526C2A0A684556A3E2541DF"
Last-Modified: Tue, 13 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2262
Expires: Wed, 14 Dec 2022 15:15:10 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ec692b4bb3d01c1d40dbc392c0096f1
0db69c07415e5fc5908fa894825e6d3d2459745c
5134a24a4515285d21bd294eeb9d11a93ed6337ec9f9779d42576998630ba69a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5134A24A4515285D21BD294EEB9D11A93ED6337EC9F9779D42576998630BA69A"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2146
Expires: Wed, 14 Dec 2022 15:13:14 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/&dt=1671028645887&screen=1280x1024&tags=
185.98.53.2200 OK 1.7 kB URL HTTP/2 ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/&dt=1671028645887&screen=1280x1024&tags=
IP 185.98.53.2:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (579)
Hash 241eafc9088647a939de240dc8c85876
b443d568bb74aec61d22a07dbf2efe1f78dddcc0
ff1447f57dc528af4f912bfe45ecc70ceda7589f1905f9499a14b8a23f9e0dd4
GET /ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/&dt=1671028645887&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 14:37:28 GMT
content-type: text/html; charset=utf-8
content-length: 1689
cache-control: no-cache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96fcd2cd43a8753bec8344d3bec88d91
c1a21bddaea6f4c0c4d0b13fd72629d7e9599302
635b7a8f7b8fea3fb1efc6f05ca0a01112fa8627aaffeeff99503f022e55a042
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "635B7A8F7B8FEA3FB1EFC6F05CA0A01112FA8627AAFFEEFF99503F022E55A042"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8257
Expires: Wed, 14 Dec 2022 16:55:05 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv1=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
185.98.53.17200 OK 988 B URL HTTP/1.1 r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv1=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP 185.98.53.17:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (792)
Hash 43b3b462a402d8f0153b54aa7b268e45
58c2332a055d5c13b17339266830c24e5b156753
597ce75588a3529ab449bbf7e516c14fc1cff814e78f7417d33d45faa5b98ef5
GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv1=d59848e1-7bbc-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 988
Connection: close
Set-Cookie: uid=u6NgnPEtp; Path=/; Domain=trackwilltrk.com; Expires=Thu, 15 Dec 2022 14:37:28 GMT; HttpOnly
X-Request-Id: 6c617089-5ee3-48dd-8e3e-5eb6259b504e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14923
Expires: Wed, 14 Dec 2022 18:46:11 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14923
Expires: Wed, 14 Dec 2022 18:46:11 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
173.233.137.60200 OK 13 kB URL HTTP/1.1 liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP 173.233.137.60:0
File type ASCII text, with very long lines (37110), with no line terminators
Hash 861e56f9d146876463d757155af3aa2c
67562d775937c81879c6a217234603e61964d09c
5fd21582fa7b6dbebcababe3f376f7b23a50bb4b9e800824659651ed5049af7d
Analyzer Verdict Alert fortinet Malware
GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: eca3b43d046caca454ccfaa4d5513dc4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14923
Expires: Wed, 14 Dec 2022 18:46:11 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14923
Expires: Wed, 14 Dec 2022 18:46:11 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14923
Expires: Wed, 14 Dec 2022 18:46:11 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
104.26.2.123200 OK 14 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP 104.26.2.123:0
File type HTML document, ASCII text, with very long lines (791)
Hash 1ac84022c0a6659f4475603b414302fb
15dac565cb7410cdde1f4b9b9410acc872fe5fd6
cb1472ca12d943eb3dfe2e4867c69b5af320fb88eadc2407e55ee425cc062ec2
GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 78401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1mN3QLi%2Bu2iI4ykQ5aBMy4KOxyhmaznuZmOB7KaMbRROaScPPACb8u7eBM%2ByHJD%2BhO0tJe48VWMv6LBCPHiZCDElPvHj%2FK9rScdD96tyfLBTi7CZSWjBwGwV80RyDwyhgYut7yR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad742d10b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8b0477fb90d103e2155bbf7ab47d877
ab668e755bd742b165fa3ba46a4c486c616a7ff6
40e2282cf64da6034f73a2ff0c0d060550caa364244d5bdf282d2f54719d48ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4703
x-amzn-requestid: 975cb427-5feb-4c36-bcfe-bed0cc9bd3b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czpW4Hh4IAMFeRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639155c5-63d6d97371f11d6012edae68;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 03:11:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BouIqIrg_vfxBH0weDXiqoEBcSV8_d4qDVB3Er5PeIrZz249iHdqGQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 05:29:25 GMT
age: 32883
etag: "ab668e755bd742b165fa3ba46a4c486c616a7ff6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3acfbf939eab432007f8315f2376f563
e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c
d02ae4fa55f6ba4b1ca2186eb31a40018eada1e1491efdc4a95ffba4c35afa07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5108
x-amzn-requestid: cba619a3-ef9a-420b-b280-2b53608aad53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpL0G93IAMF59Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef18-7cc4f81a16016a8d63156bff;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3JmSN0RECaKzxPmndCUHm_4YLojawf7kw8A43yj1h1IfuZQKsVl6eg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:32 GMT
age: 60056
etag: "e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3319031c-7524-4aba-998b-86a7b8a1132f.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3319031c-7524-4aba-998b-86a7b8a1132f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 690133687ca909986a7ac4e919193bbb
9f36b8f5cd7f540d18318c0b8ca55d40e85ed1d4
d4913048b7f2b341c77a345420a855e6385e00c64ef30f6cf136ad16f6bda771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3319031c-7524-4aba-998b-86a7b8a1132f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6711
x-amzn-requestid: ac93518c-b2e1-4995-9152-11c30c05cc9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c9h4oHmiIAMFXQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639549d0-5180e10e467c4c4c5e7fd1f4;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 03:09:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YHHaFWjmRFuBvcFQ6orltY_4JuQEcHhfyjxHO3-XZduh_hEGfPcPoA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 03:59:04 GMT
age: 38304
etag: "9f36b8f5cd7f540d18318c0b8ca55d40e85ed1d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf99cc35-2988-4958-a87c-f7f44e2094c7.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf99cc35-2988-4958-a87c-f7f44e2094c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f8501112ef886bfa0aaf2239cee2d312
f07542e9312ef0b42c96f2687766fe46f57f38cb
296c8dd5bdcb6ff49fcfebe464a7baa9c22bbe8ef6fef0798e92b10e1b3b1ac9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf99cc35-2988-4958-a87c-f7f44e2094c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4294
x-amzn-requestid: a906aaed-cfa3-453a-b872-87f906f6251c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGp1ME7aoAMFWyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398f021-23ddca2815a10a181549c5d8;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:35:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2uDwp7t_YtOtwnTAUFA9n_mcS-JHhi37LnqgWhLYF6We8IQl6gfCBQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:55:32 GMT
age: 60116
etag: "f07542e9312ef0b42c96f2687766fe46f57f38cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25e5932a6449b859223367ce1e67e59c
5d2ea71d4f0d952d665586bdf32ed0e88c605af6
160021eb4b65b4720d90337bf46bfc3c5b317b2ec406ba377c9368a11c56f629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F654e7722-a3eb-46c4-b652-ed202ea6f8d1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12046
x-amzn-requestid: 53e890e7-eaa7-434d-bcde-4a1e60b5b6b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGqNWEhooAMFZxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398f0bb-0282299f7b644bbd2b65c079;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:38:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XJelUmwr6ECrVewxG3xTG9Zfvy0dUgxkP6FhPndIJ43i3iK6yrJZsw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:34 GMT
age: 60054
etag: "5d2ea71d4f0d952d665586bdf32ed0e88c605af6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
adxadserv.com/ascripts/pxl.js
185.98.53.29200 OK 78 kB URL HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:28 GMT
Content-Type: application/javascript
Content-Length: 77806
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: "5f6dbe8d-12fee"
Expires: Sun, 27 Nov 2022 08:33:17 GMT
Cache-Control: max-age=86400, public
X-77-NZT: AblMCgp7Q7f/RQUAAA
X-77-NZT-Ray: 2109d110529550b7a8df996391775f31
X-Cache: HIT
X-Age: 1349
X-77-POP: amsterdamNL
X-77-Cache: HIT
Accept-Ranges: bytes
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash da1ead7a692f2fe5455f8ef2763bd76c
7de0479b1ca5802b754baec939ba1dca33eebdfd
43ac39cafd0c4d1f0d1ff203f2f132db3f11bfbb7d28a7174e36533af236063a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "43AC39CAFD0C4D1F0D1FF203F2F132DB3F11BFBB7D28A7174E36533AF236063A"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2879
Expires: Wed, 14 Dec 2022 15:25:27 GMT
Date: Wed, 14 Dec 2022 14:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 445c54d886b88951901b19f1009d1b2c
974fbab1b2bc09f867afb0cf58d03c2cb6fc97ff
584ac94cfd451fbc68b7acbd2f98c92319b7996ff5d4b23d211b3fe5a1282396
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "584AC94CFD451FBC68B7ACBD2F98C92319B7996FF5D4B23D211B3FE5A1282396"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17664
Expires: Wed, 14 Dec 2022 19:31:53 GMT
Date: Wed, 14 Dec 2022 14:37:29 GMT
Connection: keep-alive
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fjav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia%252F%2526dt%253D1671028645887%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671028646256&t_i=1671028646264&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=d59848e1-7bbc-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671028646264&fpid=&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.311
185.98.53.29200 OK 0 B URL HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fjav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia%252F%2526dt%253D1671028645887%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671028646256&t_i=1671028646264&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=d59848e1-7bbc-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671028646264&fpid=&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.311
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fjav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia%252F%2526dt%253D1671028645887%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671028646256&t_i=1671028646264&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=d59848e1-7bbc-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671028646264&fpid=&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.311 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:29 GMT
Content-Length: 0
Connection: keep-alive
static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
185.76.9.26200 OK 2.7 kB URL HTTP/2 static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash c99a1d8e0e84b252965e62d283580d6c
78cd3a5d445c334ddefa26afdacddd85254ca5e1
a3a2a4bbcd47d851f90c4ce2434cf1aa898c1fb5697069f8acfd65b68fad1be4
GET /h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3Dd59848e1-7bbc-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: text/html
last-modified: Mon, 21 Nov 2022 14:28:13 GMT
etag: W/"637b8afd-c82"
expires: Fri, 13 Jan 2023 14:37:28 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1673620649
server: CDN77-Turbo
x-77-nzt: AblMCRRWIcOh
x-77-nzt-ray: af585630bf26e2eca8df99633c166f39
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/1602-overlay.png
185.76.9.26200 OK 1.8 kB URL HTTP/2 static.javhd.com/h5/files/overlay/1602-overlay.png
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7
GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRQ3i4f/WHUOAQ
x-77-nzt-ray: af585630bf26e2eca9df99636b1ff102
x-cache: HIT
x-age: 17724760
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
asg.phukienthoitranggiare.com/Cqp6VQ5.js
135.181.208.216200 OK 36 kB URL HTTP/2 asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash 7638848d769127511dfe1330a0a04435
e6dcb314c941185b4408e0f5e491ce5dd081d13a
2480210961b0ca867fa566a6b9b9fdf4a26f03f906e0b0a2253ec4195ea07294
GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 828a61ebc3af4e0465a5577a4c08af7a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CMJacAwj5IE6sKrwoPVOz5jfiH6HFbVWEcd2dHqAtAKv9gBqucYefw==
age: 4249737
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
45.133.44.24200 OK 692 kB URL HTTP/2 js.wpadmngr.com/static/adManager.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Size 692 kB (691509 bytes)
Hash ec9b8a148b3d1bb0734a5d40fdf15183
9b41ff7f60e20b52a16f2a6c129362e7e3ac1014
2cf4a23d139758ebbd173869c4632100d4f1af8b01b05d837b04dc7ba6a1bbc2
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 05 Dec 2022 13:37:26 GMT
etag: W/"638df416-4dd"
content-encoding: gzip
expires: Wed, 14 Dec 2022 14:42:29 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 801b52658938119bb773ea1d481b7169
27ed326f27fb206bc72eab314b30d5d7278287b4
18d23851bc0a71f081554f04b8efd395cad0dbc5c1cd19a11add68b9a6991777
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85775
Date: Wed, 14 Dec 2022 14:37:29 GMT
Etag: "63987e9d-1d7"
Expires: Thu, 15 Dec 2022 14:27:04 GMT
Last-Modified: Tue, 13 Dec 2022 13:31:09 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9ToY-zlboh5Pe-4dkVtI9vmNRINOHQD0fgJb5oevaB0W3y3WXK10Lw==
Age: 3355
simplewebanalysis.com/stats
18.195.193.92200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.193.92:0
File type ASCII text, with no line terminators
Hash 61a068c78320ea713ce88b2efa1f6ade
359a2f36ecc83b5816cbed24ef5188ec7baa24ee
6c9a245e6efc320cb9924785b20504931ab2c3efa757c92c621850c67cd34872
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; expires=Sat, 11 Dec 2032 14:37:29 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash da1ead7a692f2fe5455f8ef2763bd76c
7de0479b1ca5802b754baec939ba1dca33eebdfd
43ac39cafd0c4d1f0d1ff203f2f132db3f11bfbb7d28a7174e36533af236063a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "43AC39CAFD0C4D1F0D1FF203F2F132DB3F11BFBB7D28A7174E36533AF236063A"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2878
Expires: Wed, 14 Dec 2022 15:25:27 GMT
Date: Wed, 14 Dec 2022 14:37:29 GMT
Connection: keep-alive
js.wpadmngr.com/npc/sdk/wp-banners.js
45.133.44.24200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Wed, 14 Dec 2022 14:42:29 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.141.24200 OK 28 kB URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.141.24:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 37658f99716f08000889408f33637ceb
af93b21225cbdf00a484cdf8611d5c1032ea0e5d
d416a8836663a0fe06f54cf0b32aa1fcdd61a839df07a2d865f28c392bbad9bc
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: a3e90268e6cce7413d3ca6579814aec5
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 14 Dec 2022 14:37:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIHUIG7%2Bg0zh1yvlbmDDErswQun6Sfs6oUX9OoTX%2BDCPVvFLDx56PpYW7VerbkQCPJ51cn9hvelKCaq2MRe%2FK5%2BDwv%2BbVX4m%2FIR8gOBNTGxNtytFAlGLE9%2FCtq1BwrZargy%2FqiE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad804aa4741f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
na.nawpush.com/tags/59555?version_name=d
45.133.44.24200 OK 1.1 kB URL HTTP/2 na.nawpush.com/tags/59555?version_name=d
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (1106), with no line terminators
Hash dc0a31c6d676473b303005385917dc6e
5d6c793a9968ed86916c454c82758487946a661e
bd2ed155698a172edfee2d450d25a85c50c396e8fd279db38e69e3dacc03203b
GET /tags/59555?version_name=d HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: application/json
content-length: 1106
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.adxadserv.com/js/adb.js
185.76.9.25200 OK 2.1 kB URL HTTP/2 static.adxadserv.com/js/adb.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (511), with CRLF, LF line terminators
Hash 5ae555e96798f2f4fb74cedb6436cf2f
ca8e48330309141e54af1353fc3887cd7ad04ecf
d37953931784964413b9cf9df43fa755c3c93bf83095b8aea72da6e5c575ace0
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:28 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1671966438
server: CDN77-Turbo
x-77-nzt: AblMCRRlXEz/woIBAA
x-77-nzt-ray: af5856305b29f9e3a8df99638d539011
x-cache: HIT
x-age: 99010
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4728ea9c882f17ddaa663d80f87149e2
5ceff941260417bea917a077809a5b75fb7514a2
000e78a7bc82be2f3fe51578bc1d99a28be15dd7f252af6c03f91edf69230bcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "000E78A7BC82BE2F3FE51578BC1D99A28BE15DD7F252AF6C03F91EDF69230BCB"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9530
Expires: Wed, 14 Dec 2022 17:16:20 GMT
Date: Wed, 14 Dec 2022 14:37:30 GMT
Connection: keep-alive
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
185.98.53.17200 OK 811 B URL HTTP/1.1 r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP 185.98.53.17:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (615)
Hash 5625d2f007cfb909ec5acb43bacb2bda
1c34633fcff46aff53833c217ebeae68e5b8d920
1b455c21a4b1f04854d7f4f9f0481be69a47ca5279ae7ef7b3fdc73e0408f052
GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 811
Connection: close
Set-Cookie: uid=B5vPcgEaMH; Path=/; Domain=trwl1.com; Expires=Thu, 15 Dec 2022 14:37:30 GMT; HttpOnly
X-Request-Id: 5809bfc1-9d83-4393-96a1-d18aa7d7fd32
poweredby.jads.co/adshow.php?adzone=784300
185.94.236.245200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=784300
IP 185.94.236.245:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash 2fb281b908ea3590f5025277ba99502f
6c10ccd66fddf8e23c47b08392712074ae060f7f
d5c4b5046353566aaba106880382a149a123e13d95a83428d437386a0d047a29
GET /adshow.php?adzone=784300 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Dec 2022 14:37:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=78e36529439301f4a322d59d8d0c57de; expires=Thu, 14-Dec-2023 14:37:28 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Sat, 17-Dec-2022 14:37:28 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Sat, 17-Dec-2022 14:37:28 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
static.javhd.com/h5/files/video/36-17551-300x250.medium.mp4
185.76.9.26206 Partial Content 254 kB URL HTTP/2 static.javhd.com/h5/files/video/36-17551-300x250.medium.mp4
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 254 kB (253932 bytes)
Hash 2ca9c4663487bc64e0f6551f8a86ee7d
284a85cfc371c6f5eab225753f2fce97b08c7731
260e28dbbcbabe13b04b500856eb126aaf50ee02698457115f11ad447956b37e
GET /h5/files/video/36-17551-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: video/mp4
content-length: 772102
last-modified: Wed, 19 Oct 2022 09:58:33 GMT
etag: "634fca49-bc806"
expires: Sat, 22 Oct 2022 12:04:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1671109522
server: CDN77-Turbo
x-77-nzt: AblMCRTiofz/mBUAAA
x-77-nzt-ray: af585630bf26e2ecaadf9963e297b125
x-cache: HIT
x-age: 5528
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-772101/772102
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
185.76.9.26200 OK 2.0 kB URL HTTP/2 static.javhdhello.com/h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash 5bda0552577a52022dfc26196003358c
00a21defe7460413ccb1684957b17a67c7de0815
8978b0dbdeb18071c8b15ab97bad176953701f60d55a4c172f43961bfa95aaf0
GET /h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: text/html
last-modified: Wed, 19 Oct 2022 09:58:34 GMT
etag: W/"634fca4a-c82"
expires: Sat, 31 Dec 2022 15:25:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672500325
server: CDN77-Turbo
x-77-nzt: AblMCRT4+pzvRRgRAA
x-77-nzt-ray: af585630bf26e2ecaadf9963fe58c023
x-cache: HIT
x-age: 1120325
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
185.76.9.26200 OK 1.7 kB URL HTTP/2 static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash deab55b95c0059c34d9eb4344f9f8cea
886843a787fd9554e890a052aaa382c5ab77f658
aeb675967f9114db21f69192e00d03fb14995ed58e28d3aaf8f8353ff49ae276
GET /h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: text/html
last-modified: Mon, 07 Feb 2022 07:42:09 GMT
etag: W/"6200cd51-c7f"
expires: Sat, 24 Dec 2022 12:53:07 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1671886387
server: CDN77-Turbo
x-77-nzt: AblMCRTMHo//d3YaAA
x-77-nzt-ray: af585630bf26e2ecaadf99637023a934
x-cache: HIT
x-age: 1734263
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/16-overlay.png
185.76.9.26200 OK 4.2 kB URL HTTP/2 static.javhd.com/h5/files/overlay/16-overlay.png
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash d66274c14945df9c552f3f29b2edb39e
ab31d71d26c8486aa6e5662459341e1db4171ecb
eca2a576dcb0e650c0701e96f1d4e7336cd0adc970cedbc7e8a72638ca2aa43e
GET /h5/files/overlay/16-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: image/png
content-length: 4224
last-modified: Tue, 06 Feb 2018 18:15:47 GMT
etag: "5a79f0d3-1080"
expires: Tue, 23 May 2023 11:06:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839960
server: CDN77-Turbo
x-77-nzt: AblMCRS05qv/EnUOAQ
x-77-nzt-ray: af585630bf26e2ecaadf99634bc4fb35
x-cache: HIT
x-age: 17724690
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/button/19-button.png
185.76.9.26200 OK 504 B URL HTTP/2 static.javhd.com/h5/files/button/19-button.png
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b9292b2f016f0dca094f08e98b10e4f
032fb37c0956d518c289b727d4f2b1f7d300f9e1
549b9bd0060e105223af22424e20b6dce5b9276b90bda0af13a1b0fc503bd673
GET /h5/files/button/19-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: image/png
content-length: 504
last-modified: Fri, 11 Dec 2015 19:04:22 GMT
etag: "566b1e36-1f8"
expires: Tue, 23 May 2023 11:05:06 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839906
server: CDN77-Turbo
x-77-nzt: AblMCRTPdgH/SHUOAQ
x-77-nzt-ray: af585630bf26e2ecaadf99639ff20836
x-cache: HIT
x-age: 17724744
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.195.193.92200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.193.92:0
File type ASCII text, with no line terminators
Hash 61a068c78320ea713ce88b2efa1f6ade
359a2f36ecc83b5816cbed24ef5188ec7baa24ee
6c9a245e6efc320cb9924785b20504931ab2c3efa757c92c621850c67cd34872
Analyzer Verdict Alert fortinet Malware
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4b18692f876f4f0430c8ea8ba7850af2
d766651809de7dbb6e8b7b548e2750cdab83c3a0
a837c62e974d4debf19668f5ad46beb472050c6bfb6d9384d847e638679fee8a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A837C62E974D4DEBF19668F5AD46BEB472050C6BFB6D9384D847E638679FEE8A"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Wed, 14 Dec 2022 17:10:10 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e33135185a84867e144d1c9d12338b4
dd4a827abab87d711362776584d1092e687dd4d5
ba676d63856dd969c4efb237f85ea82437e535928476cc9b0a4d4fa015696a2f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA676D63856DD969C4EFB237F85EA82437E535928476CC9B0A4D4FA015696A2F"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13022
Expires: Wed, 14 Dec 2022 18:14:33 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16b6c34a504a340ed4817516c8acd71b
1053c04b80fa5404f3108a5ab6293faa8c784724
3585a37f212b56357a8c5b5f9571bcc6e5b677fe0397574e5eb0c0e802d24234
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3585A37F212B56357A8C5B5F9571BCC6E5B677FE0397574E5EB0C0E802D24234"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20138
Expires: Wed, 14 Dec 2022 20:13:09 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4
185.76.9.26206 Partial Content 311 kB URL HTTP/2 static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 311 kB (311242 bytes)
Hash e73f78768aa0c2f4d0bb8094fe23dca5
2fb2e954a875f5db62e3533803c307c51b33fac2
7212507f931371d9d9f5055a8ce2bc043ed89ba9c3eb7890b3054021a33e1b7b
GET /h5/files/video/3189-24876-728x90.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Wed, 14 Dec 2022 14:37:30 GMT
content-type: video/mp4
content-length: 523070
last-modified: Mon, 07 Feb 2022 07:42:08 GMT
etag: "6200cd50-7fb3e"
expires: Tue, 24 May 2022 11:06:09 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1671113285
server: CDN77-Turbo
x-77-nzt: AblMCRTbYxD/5QYAAA
x-77-nzt-ray: af585630bf26e2ecaadf9963162e4b36
x-cache: HIT
x-age: 1765
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-523069/523070
X-Firefox-Spdy: h2
2ab17b21a6.29bb50a69c.com/in/track?data=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
45.133.44.25200 OK 0 B URL HTTP/2 2ab17b21a6.29bb50a69c.com/in/track?data=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
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/track?data=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 HTTP/1.1
Host: 2ab17b21a6.29bb50a69c.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=59555
157.90.84.242200 OK 28 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=59555
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text
Hash e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a
POST /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22285
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Set-Cookie: id=2840869731041867211; Expires=Thu, 14 Dec 2023 14:37:31 GMT; Secure; SameSite=None
Vary: Origin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5f47d0a70ce7727e59cd00a910d87264
56f0a0dea4fc0bd08e38e7ef26333ae7eb40811e
fc2087ab306fea7c6235155fd3bafa0379c7427ac9c91248e4c4a36ce7c93f89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2087AB306FEA7C6235155FD3BAFA0379C7427AC9C91248E4C4A36CE7C93F89"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2371
Expires: Wed, 14 Dec 2022 15:17:02 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
repentbits.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=224906f9-2124-4ab6-a975-f1c801cd5eca%3A3%3A1
173.233.137.60200 OK 4.1 kB URL HTTP/1.1 repentbits.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=224906f9-2124-4ab6-a975-f1c801cd5eca%3A3%3A1
IP 173.233.137.60:0
File type JSON data\012- , ASCII text, with very long lines (5909), with no line terminators
Hash 0b1a94ad17b66621de71b86ddd797ed2
f2b24fae8d7ddcc8926c672d37071773f79824ce
ca3c03da9ce5d5276109c60140a7d4ef1a9f81e65a8dd88e0ec44a4980eb561d
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=224906f9-2124-4ab6-a975-f1c801cd5eca%3A3%3A1 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Thu, 15 Dec 2022 14:37:31 GMT; secure; SameSite=None
uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; expires=Wed, 21 Dec 2022 14:37:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 15 Dec 2022 14:37:31 GMT; secure; SameSite=None
uncs=1; expires=Thu, 15 Dec 2022 14:37:31 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 15 Dec 2022 14:37:31 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 15 Dec 2022 14:37:31 GMT; secure; SameSite=None
slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]; expires=Wed, 14 Dec 2022 14:37:36 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5c1ef9f0bbab7ba74a03608b287f973e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
repentbits.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mx1z%2FTuTnIIxhhZjJuYRHJSqF%2B9W9nqrqaqe3qyp2BQcpx40lvvm00WTYjmKojS8SILwo6I7MHNv6AIOcvsDgx%2Bh%2F6%2B970%2BvPe%2B%2BmKrPCAUJdu%2F%2BKHd1MawhbhNW29c1Zm0lW%2BtXmmFtE1Pta7qbLF7qjWYfFz%2FZEjjNn2z9b4SG3YhoiGlIQ1b57RTiR0sHLLQ%2Bf1e2O7Rdjdqh3EXA%2Fd%2F7MsAngWQ%2FQPyArQcP7X%2B60No0SBLvz%2Br%2FEZh87ffS0vDCuvQlzsfZxuZrTKkszFxAZJsZ%2Fo3rB8T8tUcbLYzdQDb3544ANdjEvwZgmc7U5ng%2FTtHSrmBysDlM6j6DZRpoFkDYW9Cyz0CCInVC8jSu6vWVez6Ecsm7Jgcf%2FIvdDUmx%2F96EVn64IzRg9Zla8pC28xjkNTQgwZ6rUFePkKxGUBXjyCKz6Dlb2ThyXlk6fYFbyy03H8tiro9upj05qMw6s53GV%2BcZ72leD4JxTINhYyVYIcRad1AJw2MGoL5Yyh9gFIHKJMAZR4glfstFvcSSpcSnnQ6y10hRKcjRLy8KGPZ6S4nFKWYeBiiyIcQZgjhbiB3N7Chv9yLX9%2F75C248mf49RpeBvAFQV%2FWqBRB5QkqRlBpgqogqPr1HWl85Ou70viSh9MeTXunHtlibYvdscWayshWfkCen8QXnHj1NjbUfivicll2KA07i2wxkTHlgsdsKekkXRZGCYPXNbSfA%2FMBNvWYHDtxE7kek7lT%2F4CzBt40EPo5sPJlsGq0FFGw9VF3mWIz%2B44rX1xj%2Fdy6rC1sCmlr5MVxFNeDLXNAXjq85Mk%2FVqHELpkWhKuRuxrX9C8Ea%2BbW6JKtyPYlW3ny8EJe6FRvssmVLxesUMG3H6jrlXVy5awffvOOmBCT8f4V5YvzLJM6W%2FPk3hktpXLnrBOK%2FLjiryp%2BsfTrZ0qXlfn5i%2B%2BeW0lzp7zXNmvA9JiQ248h9Jg8%2FeCjwxf8yucdaNfAlTXScqZV20cQ%2BQ34fLbzlsCZGeZ5gKqsRy7is6XRBEbNMOM1vNo9vTv37MoPn8bgavenv4%2B4LX8Lay4AK24iS2v0XY2%2BqcHMEL48Nipyt3v6985hgZtgxI0Ltrlx5vZRuF7vt1Sc0ETRSPGkx5MlRmUv6fY464VqiccsROHH4uvH9%2F4DAAD%2F%2FwEAAP%2F%2FbkBk%2B5kEAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 repentbits.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mx1z%2FTuTnIIxhhZjJuYRHJSqF%2B9W9nqrqaqe3qyp2BQcpx40lvvm00WTYjmKojS8SILwo6I7MHNv6AIOcvsDgx%2Bh%2F6%2B970%2BvPe%2B%2BmKrPCAUJdu%2F%2BKHd1MawhbhNW29c1Zm0lW%2BtXmmFtE1Pta7qbLF7qjWYfFz%2FZEjjNn2z9b4SG3YhoiGlIQ1b57RTiR0sHLLQ%2Bf1e2O7Rdjdqh3EXA%2Fd%2F7MsAngWQ%2FQPyArQcP7X%2B60No0SBLvz%2Br%2FEZh87ffS0vDCuvQlzsfZxuZrTKkszFxAZJsZ%2Fo3rB8T8tUcbLYzdQDb3544ANdjEvwZgmc7U5ng%2FTtHSrmBysDlM6j6DZRpoFkDYW9Cyz0CCInVC8jSu6vWVez6Ecsm7Jgcf%2FIvdDUmx%2F96EVn64IzRg9Zla8pC28xjkNTQgwZ6rUFePkKxGUBXjyCKz6Dlb2ThyXlk6fYFbyy03H8tiro9upj05qMw6s53GV%2BcZ72leD4JxTINhYyVYIcRad1AJw2MGoL5Yyh9gFIHKJMAZR4glfstFvcSSpcSnnQ6y10hRKcjRLy8KGPZ6S4nFKWYeBiiyIcQZgjhbiB3N7Chv9yLX9%2F75C248mf49RpeBvAFQV%2FWqBRB5QkqRlBpgqogqPr1HWl85Ou70viSh9MeTXunHtlibYvdscWayshWfkCen8QXnHj1NjbUfivicll2KA07i2wxkTHlgsdsKekkXRZGCYPXNbSfA%2FMBNvWYHDtxE7kek7lT%2F4CzBt40EPo5sPJlsGq0FFGw9VF3mWIz%2B44rX1xj%2Fdy6rC1sCmlr5MVxFNeDLXNAXjq85Mk%2FVqHELpkWhKuRuxrX9C8Ea%2BbW6JKtyPYlW3ny8EJe6FRvssmVLxesUMG3H6jrlXVy5awffvOOmBCT8f4V5YvzLJM6W%2FPk3hktpXLnrBOK%2FLjiryp%2BsfTrZ0qXlfn5i%2B%2BeW0lzp7zXNmvA9JiQ248h9Jg8%2FeCjwxf8yucdaNfAlTXScqZV20cQ%2BQ34fLbzlsCZGeZ5gKqsRy7is6XRBEbNMOM1vNo9vTv37MoPn8bgavenv4%2B4LX8Lay4AK24iS2v0XY2%2BqcHMEL48Nipyt3v6985hgZtgxI0Ltrlx5vZRuF7vt1Sc0ETRSPGkx5MlRmUv6fY464VqiccsROHH4uvH9%2F4DAAD%2F%2FwEAAP%2F%2FbkBk%2B5kEAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mx1z%2FTuTnIIxhhZjJuYRHJSqF%2B9W9nqrqaqe3qyp2BQcpx40lvvm00WTYjmKojS8SILwo6I7MHNv6AIOcvsDgx%2Bh%2F6%2B970%2BvPe%2B%2BmKrPCAUJdu%2F%2BKHd1MawhbhNW29c1Zm0lW%2BtXmmFtE1Pta7qbLF7qjWYfFz%2FZEjjNn2z9b4SG3YhoiGlIQ1b57RTiR0sHLLQ%2Bf1e2O7Rdjdqh3EXA%2Fd%2F7MsAngWQ%2FQPyArQcP7X%2B60No0SBLvz%2Br%2FEZh87ffS0vDCuvQlzsfZxuZrTKkszFxAZJsZ%2Fo3rB8T8tUcbLYzdQDb3544ANdjEvwZgmc7U5ng%2FTtHSrmBysDlM6j6DZRpoFkDYW9Cyz0CCInVC8jSu6vWVez6Ecsm7Jgcf%2FIvdDUmx%2F96EVn64IzRg9Zla8pC28xjkNTQgwZ6rUFePkKxGUBXjyCKz6Dlb2ThyXlk6fYFbyy03H8tiro9upj05qMw6s53GV%2BcZ72leD4JxTINhYyVYIcRad1AJw2MGoL5Yyh9gFIHKJMAZR4glfstFvcSSpcSnnQ6y10hRKcjRLy8KGPZ6S4nFKWYeBiiyIcQZgjhbiB3N7Chv9yLX9%2F75C248mf49RpeBvAFQV%2FWqBRB5QkqRlBpgqogqPr1HWl85Ou70viSh9MeTXunHtlibYvdscWayshWfkCen8QXnHj1NjbUfivicll2KA07i2wxkTHlgsdsKekkXRZGCYPXNbSfA%2FMBNvWYHDtxE7kek7lT%2F4CzBt40EPo5sPJlsGq0FFGw9VF3mWIz%2B44rX1xj%2Fdy6rC1sCmlr5MVxFNeDLXNAXjq85Mk%2FVqHELpkWhKuRuxrX9C8Ea%2BbW6JKtyPYlW3ny8EJe6FRvssmVLxesUMG3H6jrlXVy5awffvOOmBCT8f4V5YvzLJM6W%2FPk3hktpXLnrBOK%2FLjiryp%2BsfTrZ0qXlfn5i%2B%2BeW0lzp7zXNmvA9JiQ248h9Jg8%2FeCjwxf8yucdaNfAlTXScqZV20cQ%2BQ34fLbzlsCZGeZ5gKqsRy7is6XRBEbNMOM1vNo9vTv37MoPn8bgavenv4%2B4LX8Lay4AK24iS2v0XY2%2BqcHMEL48Nipyt3v6985hgZtgxI0Ltrlx5vZRuF7vt1Sc0ETRSPGkx5MlRmUv6fY464VqiccsROHH4uvH9%2F4DAAD%2F%2FwEAAP%2F%2FbkBk%2B5kEAAA%3D HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 21bfab9992fcce7b456f94b57ec723b8
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c78a0b584bb6969993901109ee0a2ed
dc6b705b27cdb0508ec1ccdaa2221c21044566b3
2318c5a6bcf145791bb10532395a1e278d784c6e986d32edf0c6f1a41ce088b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2318C5A6BCF145791BB10532395A1E278D784C6E986D32EDF0C6F1A41CE088B0"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15694
Expires: Wed, 14 Dec 2022 18:59:05 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
js.wpadmngr.com/static/adManager.m.js
45.133.44.24200 OK 35 kB URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash bf9f01a82816d61db1b2546fe1e84680
673b2376b99f1c429d2bc1bc959d5080a852b54f
73cd6e0c5c0f2dfaa8f937680018822450203e754f6a74a286d88bdbe783b415
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:29 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 12 Dec 2022 10:14:28 GMT
etag: W/"6396ff04-1880d"
content-encoding: gzip
expires: Wed, 14 Dec 2022 14:42:29 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=137
173.233.137.60200 OK 0 B URL HTTP/1.1 repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=137
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=137 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.33.119.27200 OK 345 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash aa84e06995042e1322075032a2fc727e
69cea844074957e83574ba3ae81a22c14bb0b15c
155e80cfb87e5cb8149276ab3a0fb53e217024f46878dcd3711f1def03d068c2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155E80CFB87E5CB8149276AB3A0FB53E217024F46878DCD3711F1DEF03D068C2"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19264
Expires: Wed, 14 Dec 2022 19:58:35 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
e1.o.lencr.org/
23.33.119.27200 OK 345 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash aa84e06995042e1322075032a2fc727e
69cea844074957e83574ba3ae81a22c14bb0b15c
155e80cfb87e5cb8149276ab3a0fb53e217024f46878dcd3711f1def03d068c2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155E80CFB87E5CB8149276AB3A0FB53E217024F46878DCD3711F1DEF03D068C2"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19264
Expires: Wed, 14 Dec 2022 19:58:35 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
172.64.108.13200 OK 6.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
IP 172.64.108.13:0
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/v2/new/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 05 Jul 2022 10:43:39 GMT
etag: "62c415db-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2508391
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2BFAjR%2FJppH5GcfYbMeRh%2FNMiCP0b7C1gqrGtg13%2B4GNYFLKEu5ITmjnIIy4hauNll7oSvDDh%2FQdrmzb6x5csBTNjPB83b31Qe6KjdCkMjKa2aO2oSRw%2BBZM2hAtriALdX7edPeFvv2Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad91bfa8773d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1539ee38f0f238b949d73be957ae00c4
5e4156fe7a041b3dd70e7b5b834ea713e7454dff
bd6b8efe67fa89082b391209dd5d55bc74632633f3b5fa4e7a6acd933a6b2e3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD6B8EFE67FA89082B391209DD5D55BC74632633F3B5FA4E7A6ACD933A6B2E3B"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Wed, 14 Dec 2022 15:46:08 GMT
Date: Wed, 14 Dec 2022 14:37:31 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
172.64.108.13200 OK 32 kB URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
IP 172.64.108.13:0
File type ASCII text, with very long lines (65451)
Hash 18a7d32440a7459f27636c4a37dd976d
c1906c13a72332bee7760070add8abd077641bbd
c997d9d124aca8a63f8c82c264694d4ccb3494e531102db58f71d76b092a3999
GET /sb/chat/mob/ssp/v2/new/3/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:58 GMT
etag: W/"62ceb706-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2508391
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=80n%2Bia%2B5MyT9UO7c%2FxJk7Asofug8GqxTjjhm7xSSj50ZlVHB0yQYa26QUELHFshFoQbTPcov9%2BgUVqYqDqCGg1TjZiCmwApOyhCHzC3fe7PlEnwsLOq%2FMgRWvIax20sLF7Q2OS2wcqdH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad91af5f773d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=171
173.233.137.60200 OK 0 B URL HTTP/1.1 repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=171
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=171 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/28/d6/a4/28d6a403173def438ad97dc6687ec5eb/1669910284.png
45.133.44.10200 OK 78 kB URL HTTP/2 cdn.cloudimagesb.com/si/28/d6/a4/28d6a403173def438ad97dc6687ec5eb/1669910284.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash f073aaf0ef05830f8ac9db84fc0dd661
ef3d1adef699a050c829ae76084cf1ce9ae54cd0
8afdd964d1a19e9177174a08456e129ceda215587326ead6bc10b0557859c541
GET /si/28/d6/a4/28d6a403173def438ad97dc6687ec5eb/1669910284.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: image/png
content-length: 77811
server: nginx/1.17.6
last-modified: Thu, 01 Dec 2022 15:58:13 GMT
etag: "6388cf15-12ff3"
expires: Fri, 16 Dec 2022 14:37:31 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=171
173.233.137.60200 OK 0 B URL HTTP/1.1 repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=171
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=171 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=41
173.233.137.60200 OK 0 B URL HTTP/1.1 repentbits.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=41
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fjs%2Fscript.js&l=383&fd=41 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:33:54 GMT
expires: Thu, 07 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 587018
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:13 GMT
expires: Sat, 09 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 435859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
repentbits.com/pixel/sbs?c=1
173.233.137.60200 OK 0 B URL HTTP/1.1 repentbits.com/pixel/sbs?c=1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
repentbits.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mz%2FnB%2FJIRhjZDFuYhLJSaG6qnq2stVdTVX39GRPwaDkOPGkt943myyaEM1VEKXjRRaEHRHZg5t%2FQRFyltkdGPwO%2FX3ve3147331xVZ5QFyUdP%2Fih3pTKkVXorbbeuOqzLiubGvtSstz2%2B6p1lWZdcJTrdHsY4YnPTdqu2%2B23hdsQ6%2F4rue6nuu1zkkjEj1aOWQh8%2Ft9r91326Hf9qIQI%2FN%2FbEsHljrgwwPyAiSfPrX%2B60NI1iBLvz8r7Eah87ffS0tFC20w5DsfZxuZrjKkizExDpJsZ%2F43tJ0S8tUSdLYzdwA93J45QCynxPnTQ5ztzGUiHt45UhoriAwxfwbVsIFQDSRtwPRNSL5HAMaxdgFZendNm4peP2LpjJ2S40%2F%2Bhaym5PhfLyJLH5xRctS6rFVZSJ1ZjJIactRADhrk5SMUmw5k9Qis%2BAyS%2F0ZWnpxHlm5fsEpD8v3XfD%2Fsu52kv%2Bx7frgc0rizTPvdaDnxWM%2F1GI8Eo4cRSdlAJg2UGIPaYyitg1I6KBMHZe4g5fstGvUT1%2B0mcRIEvZAxFgSMRb0Oj3gQ9hIXJZt5GKPIx2BqDGZuIDc3sCG%2F3Ite3%2FvkLZjyZ9j1GpY7sAXBkNeoBEFlCSpKUEmCqiCohvUdrqxv67tc2TL25t2f96Ce6GKwRe%2FoYiAyspUfkOdn8TknXr2NDbHf8mPe44HrekGHdhIeuTGLI9pNgiSknp9QWFlD2iVQ62BTTsmxEzeRyylZOvUPYtrAqgZMPgdavgxaTbq%2BC7o%2BCXsuNrPvYmGLa3SYa5O1mU7BdY28OI7iurOlDshLh5c8%2BccaBNsl8wIzNXJT45r8hWCgbk0u6YpsX9KVJQ8v5IVM5SadXflyQQvhfPuBuF5pw1fP2vE377AZMRvvXxG2OE8zLrOBJffOSM6FOacNE%2BTHVXtVxBdLu36mNFmZn7%2F47rnVNDfCWqmzBlROCbn9GExOydMPPjp8wa98HkCaBqaskZYLrVI%2FAstvwOaLndUERi1wnDuoynpi%2FHixVJJAiQWmcQ0rdk%2FvLj27%2BsOnEWKx%2B9PfR9yWvYWBcUCLm8jSGkNTY6hqUDWGLY9Nitzsnv49OCzEypnEyjjbsTLq9lG4Vu63Ii8UvbjXZZzHgnGv6we9wHV9zsNuX3h9FHbKvn587z8AAAD%2F%2FwEAAP%2F%2FekjqHZkEAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 repentbits.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mz%2FnB%2FJIRhjZDFuYhLJSaG6qnq2stVdTVX39GRPwaDkOPGkt943myyaEM1VEKXjRRaEHRHZg5t%2FQRFyltkdGPwO%2FX3ve3147331xVZ5QFyUdP%2Fih3pTKkVXorbbeuOqzLiubGvtSstz2%2B6p1lWZdcJTrdHsY4YnPTdqu2%2B23hdsQ6%2F4rue6nuu1zkkjEj1aOWQh8%2Ft9r91326Hf9qIQI%2FN%2FbEsHljrgwwPyAiSfPrX%2B60NI1iBLvz8r7Eah87ffS0tFC20w5DsfZxuZrjKkizExDpJsZ%2F43tJ0S8tUSdLYzdwA93J45QCynxPnTQ5ztzGUiHt45UhoriAwxfwbVsIFQDSRtwPRNSL5HAMaxdgFZendNm4peP2LpjJ2S40%2F%2Bhaym5PhfLyJLH5xRctS6rFVZSJ1ZjJIactRADhrk5SMUmw5k9Qis%2BAyS%2F0ZWnpxHlm5fsEpD8v3XfD%2Fsu52kv%2Bx7frgc0rizTPvdaDnxWM%2F1GI8Eo4cRSdlAJg2UGIPaYyitg1I6KBMHZe4g5fstGvUT1%2B0mcRIEvZAxFgSMRb0Oj3gQ9hIXJZt5GKPIx2BqDGZuIDc3sCG%2F3Ite3%2FvkLZjyZ9j1GpY7sAXBkNeoBEFlCSpKUEmCqiCohvUdrqxv67tc2TL25t2f96Ce6GKwRe%2FoYiAyspUfkOdn8TknXr2NDbHf8mPe44HrekGHdhIeuTGLI9pNgiSknp9QWFlD2iVQ62BTTsmxEzeRyylZOvUPYtrAqgZMPgdavgxaTbq%2BC7o%2BCXsuNrPvYmGLa3SYa5O1mU7BdY28OI7iurOlDshLh5c8%2BccaBNsl8wIzNXJT45r8hWCgbk0u6YpsX9KVJQ8v5IVM5SadXflyQQvhfPuBuF5pw1fP2vE377AZMRvvXxG2OE8zLrOBJffOSM6FOacNE%2BTHVXtVxBdLu36mNFmZn7%2F47rnVNDfCWqmzBlROCbn9GExOydMPPjp8wa98HkCaBqaskZYLrVI%2FAstvwOaLndUERi1wnDuoynpi%2FHixVJJAiQWmcQ0rdk%2FvLj27%2BsOnEWKx%2B9PfR9yWvYWBcUCLm8jSGkNTY6hqUDWGLY9Nitzsnv49OCzEypnEyjjbsTLq9lG4Vu63Ii8UvbjXZZzHgnGv6we9wHV9zsNuX3h9FHbKvn587z8AAAD%2F%2FwEAAP%2F%2FekjqHZkEAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRit3sQc1IOKFw%2FiCAqK7mz%2FnB%2FJIRhjZDFuYhLJSaG6qnq2stVdTVX39GRPwaDkOPGkt943myyaEM1VEKXjRRaEHRHZg5t%2FQRFyltkdGPwO%2FX3ve3147331xVZ5QFyUdP%2Fih3pTKkVXorbbeuOqzLiubGvtSstz2%2B6p1lWZdcJTrdHsY4YnPTdqu2%2B23hdsQ6%2F4rue6nuu1zkkjEj1aOWQh8%2Ft9r91326Hf9qIQI%2FN%2FbEsHljrgwwPyAiSfPrX%2B60NI1iBLvz8r7Eah87ffS0tFC20w5DsfZxuZrjKkizExDpJsZ%2F43tJ0S8tUSdLYzdwA93J45QCynxPnTQ5ztzGUiHt45UhoriAwxfwbVsIFQDSRtwPRNSL5HAMaxdgFZendNm4peP2LpjJ2S40%2F%2Bhaym5PhfLyJLH5xRctS6rFVZSJ1ZjJIactRADhrk5SMUmw5k9Qis%2BAyS%2F0ZWnpxHlm5fsEpD8v3XfD%2Fsu52kv%2Bx7frgc0rizTPvdaDnxWM%2F1GI8Eo4cRSdlAJg2UGIPaYyitg1I6KBMHZe4g5fstGvUT1%2B0mcRIEvZAxFgSMRb0Oj3gQ9hIXJZt5GKPIx2BqDGZuIDc3sCG%2F3Ite3%2FvkLZjyZ9j1GpY7sAXBkNeoBEFlCSpKUEmCqiCohvUdrqxv67tc2TL25t2f96Ce6GKwRe%2FoYiAyspUfkOdn8TknXr2NDbHf8mPe44HrekGHdhIeuTGLI9pNgiSknp9QWFlD2iVQ62BTTsmxEzeRyylZOvUPYtrAqgZMPgdavgxaTbq%2BC7o%2BCXsuNrPvYmGLa3SYa5O1mU7BdY28OI7iurOlDshLh5c8%2BccaBNsl8wIzNXJT45r8hWCgbk0u6YpsX9KVJQ8v5IVM5SadXflyQQvhfPuBuF5pw1fP2vE377AZMRvvXxG2OE8zLrOBJffOSM6FOacNE%2BTHVXtVxBdLu36mNFmZn7%2F47rnVNDfCWqmzBlROCbn9GExOydMPPjp8wa98HkCaBqaskZYLrVI%2FAstvwOaLndUERi1wnDuoynpi%2FHixVJJAiQWmcQ0rdk%2FvLj27%2BsOnEWKx%2B9PfR9yWvYWBcUCLm8jSGkNTY6hqUDWGLY9Nitzsnv49OCzEypnEyjjbsTLq9lG4Vu63Ii8UvbjXZZzHgnGv6we9wHV9zsNuX3h9FHbKvn587z8AAAD%2F%2FwEAAP%2F%2FekjqHZkEAAA%3D HTTP/1.1
Host: repentbits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=224906f9-2124-4ab6-a975-f1c801cd5eca:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3855694]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 14 Dec 2022 14:37:32 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c78ec9a27d8d72906f5645471d72bae3
Strict-Transport-Security: max-age=0; includeSubdomains
adxadserv.com/px/heartbeat/v1?pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&t_op=5.311&p_nn=adxad-rtb&fpid_sa=1671028646264&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
185.98.53.29200 OK 0 B URL HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&t_op=5.311&p_nn=adxad-rtb&fpid_sa=1671028646264&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=2e0105dc-d838-46a1-9679-c340c9053122&t_op=5.311&p_nn=adxad-rtb&fpid_sa=1671028646264&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671028646264&sid_sa=1671028646264&feid=233e796959b351b8ad12efaadab8b3f5&sid=59e8032cbd0232f436b0c479f8d5a2e1&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 14 Dec 2022 14:37:34 GMT
Content-Length: 0
Connection: keep-alive
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP 104.26.2.123:0
GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
etag: W/"6388cd36-11395"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 12386
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUpKj3we%2F1N9mABuTfY7cEOvKpMybbZyooiiUBfoa7VtTZDwefQrB5vhy4jDmNreim2S86ApsCzFCymSLd45gPX8EB5t3vDuXaPQxsQRHz%2FGE5%2FD8WNp2G2BgW0Qd9MH7OpgWVOx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad742d06b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
pics.pornfhd.com/s/mono/movie/adult/pppd391/pppd391pl.jpg
104.21.235.64200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/mono/movie/adult/pppd391/pppd391pl.jpg
IP 104.21.235.64:0
GET /s/mono/movie/adult/pppd391/pppd391pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/jpeg
last-modified: Wed, 15 Jul 2015 09:15:10 GMT
vary: Accept-Encoding
etag: W/"55a6249e-92f0"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 728309
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GRSr3tkvTwoHT0KZKBZ0Ckg3bJ8cfkFQYa7cLh%2FwMUr3ZREjI32vrNUEV9iyrnnK3Ut%2FPbFm0Yirdjdi0O%2FBXvw6Jg94e9iRQ6x42b9sxOyMXLGi2m7qtsbW3zTByX8j5boA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad76fe438877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
IP 172.64.108.13:0
GET /sb/chat/mob/ssp/v2/new/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:55 GMT
etag: W/"62ceb703-1229"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1185024
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2BvqNqvc%2B4PGSS7AK4gk4htFXbr%2BYi%2BdyLm7flPLaW%2BiNASsp9nxqkmGHoSer6PUAfmDwoMSu5H5PGatnVoJNGI7hJN%2BaDjH1JP%2B98GVd8btxVYdze39PLza2VqR3i9sj0MVkTIQZ%2BK0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad914dc274f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pics.pornfhd.com/digital/video/pppd00312/pppd00312pl.jpg
104.21.235.64200 OK 0 B URL HTTP/2 pics.pornfhd.com/digital/video/pppd00312/pppd00312pl.jpg
IP 104.21.235.64:0
GET /digital/video/pppd00312/pppd00312pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/jpeg
last-modified: Wed, 13 Aug 2014 07:48:32 GMT
vary: Accept-Encoding
etag: W/"53eb1850-26ed9"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3E%2F2foxPbVS6Sdg6pKIWhUc6eNDGFBEjAdJxSALXMJgjmZw61jznZASFUZyuCX1W1qEbzSnzn9N%2BH59Z2OuBQnU0Q7bdyJIk63DdDpzdkJJt5uaVGX81bgPmtoZ86o9GCs2Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad754bd08877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
IP 104.26.2.123:0
POST /wp-content/themes/retrotube/ajax-view.php HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 48
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:28 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
cf-connecting-ip: 91.90.42.154
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/ajax-view.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B5o5PvvynkaIbvS5b%2FN1Bbj5d%2FoN%2Fe3oi1FcsqUo%2F4AUZh%2F5zsF6Vx0vN2fPHhwu6ML2CCnCkrueyA8LmMDjg%2F4O4uiibiwWPpMe9l40ifaB9aYbEbXJZk2WaAdTqupzf03v%2FTX4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad793af2b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP 104.26.2.123:0
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 13796
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OqQzL427lv5%2BdworGS72Os3%2BclRsGYwvEjQ87bvLCFC4pQSA1q6UPHwHI36saU2Wsja%2FTNIKeHSaoeAm%2F8UFky9yPBpM9U3BybMpTc4tYXjsc1KBBCSRY6U54%2FpRQMhXFsIIDOWG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad742d09b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
img.bestjavporn.net/favicon.ico
104.21.233.138200 OK 0 B URL HTTP/2 img.bestjavporn.net/favicon.ico
IP 104.21.233.138:0
GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:28 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 974742
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eZSHsVoWRm%2BV4kjs5qjK2GlanLenqLcCAhamlJqrveB6wumPgv9KlUJBKGW7ljRcEdsRWJfohJKijOG%2FmMDwe4j%2BEzQuVqhU2tNfB6zVnMJXdfqd5v4J%2FzMgP%2BKBdEwacq%2B3HA9j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad7c09500672-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.26.2.123:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 12:08:17 GMT
etag: W/"639719b1-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0o97kX26PFciRiCvvnHPTtXgbdnDCVWj3t9gB0mWwhGYWPvfYb67ZPXHhTO%2FhKN0GJXuKrNya2rlbBHsemnWw4sIl7SCsoUrEGymbWE4B%2BDbSpSQ7ipA6kNkketLuh49VIgoJoWy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad741ceab4e8-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 16 Dec 2022 14:37:27 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 104.26.2.123:0
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 12727
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RISvlNSIt3NF%2FqvjZAF9uqQNC0j9d8BzKjdJNtNSNXonIvMfjOI23y20sCDEPZuem0RV7Uzm%2FVRxuBqxFkEz%2FiTKx4s4g5zN5qPzBoevqB85jLthYue4%2BgO6ZU8AMHcI2cJLCs0n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad740cddb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
IP 104.26.2.123:0
GET /wp-content/themes/retrotube/style.css?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: text/css
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=84878
etag: W/"6388cd36-14b8e"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/style.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 12727
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fsg%2BsvbwCv0r6JFeS5cUd16wL6dlPzr%2FreMHApyvGS9R74Uv3%2FwUVl%2B%2FZU4fWQAlpLs5Z%2FIfHFqC09GyT4cSO%2BQhHGfmKbg5RajQ2d1mQgN304cRZOmJSQzWsY6rWk%2Fu0S57m%2FB5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad740cdab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17
IP 104.26.2.123:0
GET /wp-includes/js/comment-reply.min.js?ver=5.2.17 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 19:27:31 GMT
vary: Accept-Encoding
etag: W/"607893a3-870"
cf-connecting-ip: 90.224.223.37
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=5.2.17
x-rocket-uri: /wp-includes/js/comment-reply.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 2322
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wpVDYg4NQXN6BZ3Bdqf2LFzvaVuZDHsF%2FQ%2BuJ9vtYDCIB2PqQi3A%2BkW27a%2B4ibJQ3jRtT3%2FYaEJNHk4eAJclB0ouuooRhe0KVHdnlH70nPnGcLg6K8ynptCmzCempbX98lsx%2BLvd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad742d04b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&display=swap
IP 142.250.74.106:0
GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Dec 2022 14:37:27 GMT
date: Wed, 14 Dec 2022 14:37:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP 104.26.2.123:0
GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 13796
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0kTI2rD4QmMAna39g%2Bdp1Gyc367q3EZFTRe8ImQEwgxeVhtZrkb8ZrDcLvgN4CfKrkl0%2F%2Fc1QB0tjqFkRI%2BE5arkjwe48Gvyt07CI%2B%2F%2FbjpOpEJMYLS%2BUY4ez1cwUcKXxxMUtwlD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad742d03b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.capndr.com/popunder-admanager/build.m.js
45.133.44.25200 OK 0 B URL HTTP/2 js.capndr.com/popunder-admanager/build.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 13 Dec 2022 12:10:23 GMT
etag: W/"63986baf-aee3"
content-encoding: gzip
expires: Wed, 14 Dec 2022 14:42:31 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
45.133.44.3200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 13 Jul 2022 12:11:03 GMT
etag: W/"62ceb657-4a6"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 14 Dec 2022 15:37:31 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
104.26.2.123200 OK 0 B URL HTTP/2 www4.bestjavporn.com/video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/
IP 104.26.2.123:0
GET /video/jav-oppai-pppd-312-big-tits-reverse-molester-craves-creampie-julia/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:26 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7797ad721a7cb4e8-OSL
cache-control: max-age=3600
last-modified: Wed, 14 Dec 2022 12:50:20 GMT
link: <https://www4.bestjavporn.com/wp-json/>; rel="https://api.w.org/", <https://www4.bestjavporn.com/?p=41871>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: HIT
cf-apo-via: tcache
cf-connecting-ip: 103.119.66.110
cf-edge-cache: cache,platform=wordpress
x-frame-options: SAMEORIGIN
x-pingback: https://www4.bestjavporn.com/xmlrpc.php
x-rocket-nginx-serving-static: No
x-rocket-uri: /index.php
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FnX30BsgrU6tdravKnd3lp62riUAnWj1AzRUcKh3Fbio%2BL3ZdIFQEs%2BHjcEBnUo0ac7kVpMPPKlFxPLr6BY5ZrqDUe%2BbXB2oeVKkjuTLD5DVj%2BG3m%2FgaTgPRFuHi9LrFxRKPosWr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
pics.pornfhd.com/s/mono/movie/adult/pppd138/pppd138pl.jpg
104.21.235.64200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/mono/movie/adult/pppd138/pppd138pl.jpg
IP 104.21.235.64:0
GET /s/mono/movie/adult/pppd138/pppd138pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/jpeg
last-modified: Mon, 18 Apr 2011 01:05:49 GMT
vary: Accept-Encoding
etag: W/"4dab8e6d-91f3"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2440493
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WKXYjyoVjBWrlZHbV6i8imNKqY4KYLYxIeHacIqE7a2qI%2BRo76%2BrO9sMpLfYuwuC7fUBt2PpszzNCuSovVltzFIGm1o8jgc7W3Yllzjr5nudWU6gTYcH7mSHg7Uqt4LCw1e9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad770e5b8877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pics.pornfhd.com/s/mono/movie/adult/wanz808/wanz808pl.jpg
104.21.235.64200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/mono/movie/adult/wanz808/wanz808pl.jpg
IP 104.21.235.64:0
GET /s/mono/movie/adult/wanz808/wanz808pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:27 GMT
content-type: image/jpeg
last-modified: Sun, 30 Sep 2018 23:33:21 GMT
vary: Accept-Encoding
etag: W/"5bb15d41-ba75"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 983224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RRcgFdjwNePoY7iVlkTkgV18b0HU65kS%2BSlFWSDv97VHRAm4VKJxTdlz%2B4EJ%2Fdhf8kcSzn6ocj1lBHNB0ICSqIAALbzxaZP%2BZ6sviLPMndM9e7QHRheLHFBK9jl6EqSCKvJe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7797ad770e4c8877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
135.181.208.216200 OK 0 B URL HTTP/2 asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=1TrH6jvU9LWnJp4XUhiJ; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
IP 172.64.108.13:0
GET /sb/chat/mob/ssp/v2/new/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2004083
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FRo7NkIhvsFcoSplKlH2bcjp7fQ8a8tDyPCKk0xspelcuoh7hWPE%2FIm4tNvqCDPcukjfTGJE3mLetlHhpfPODgf3OkTB4KyYlmEqX%2Bi3ZiJcL21V1QcKOzDGIc3j1TY0ftSOMbifXmKE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad913dba74f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js
IP 172.64.108.13:0
GET /sb/chat/mob/ssp/v2/new/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 14:37:31 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-17f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2003272
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3c0vn%2BsUZk7%2F6F%2FpMAa16ATjAFe7bx9g01juhUTZnMMFp1wtRnHhmlrGvKH5jimE1P%2BbR4n4EH%2F7inU0eF%2F4foE3yj3wTi7H0iAsxIlYJDublCwPadKcEO29h0Yj0GpGZH2k4dVaGUTq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7797ad923ef774f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2