datawav.club/male-slave-milking-machines
173.208.199.194301 Moved Permanently 178 B URL HTTP/1.1 datawav.club/male-slave-milking-machines
IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Malware
GET /male-slave-milking-machines HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 12 Nov 2022 09:44:53 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://datawav.club/male-slave-milking-machines
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16345
Expires: Sat, 12 Nov 2022 14:17:18 GMT
Date: Sat, 12 Nov 2022 09:44:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6695
Expires: Sat, 12 Nov 2022 11:36:28 GMT
Date: Sat, 12 Nov 2022 09:44:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4272
Cache-Control: max-age=93466
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:53 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 11:42:39 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oq2YaL/dTAtaMo3oMLV53o82glz+omPh/qPKR4LPLD0PQyak3zhEYpZlPkMRn7PpHDwK6sqaC4U=
x-amz-request-id: F29GS8AD975GP6GY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 09:12:56 GMT
age: 1917
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 09:44:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 52
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 94612fb58ff923fbb52f3a97b12be52c
0ac80a61893c5c7bbbf20f9b298885cce8439076
e4aba926b306d2a9f1202cf312971b5f4ac7222320f8cc0d2f94e4ed7d63d998
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4ABA926B306D2A9F1202CF312971B5F4AC7222320F8CC0D2F94E4ED7D63D998"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19144
Expires: Sat, 12 Nov 2022 15:03:58 GMT
Date: Sat, 12 Nov 2022 09:44:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 09:25:00 GMT
cache-control: public,max-age=3600
age: 1194
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
datawav.club/male-slave-milking-machines
173.208.199.194301 Moved Permanently 0 B URL HTTP/1.1 datawav.club/male-slave-milking-machines
IP 173.208.199.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /male-slave-milking-machines HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 12 Nov 2022 09:44:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://datawav.club/male-slave-milking-machines/
X-Cache-Status: HIT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3990
Cache-Control: max-age=88108
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:54 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:13:22 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
datawav.club/male-slave-milking-machines/
173.208.199.194200 OK 13 kB URL HTTP/1.1 datawav.club/male-slave-milking-machines/
IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash 7ad4703695b8dde884d025c61a7ea797
907adb8b476a4ed42d2428311d5477e1d50edc30
bd34471599d7cdf09c591755c53d8a5585e373eea8c08f00bfbb2554bc65e22c
Analyzer Verdict Alert fortinet Malware
GET /male-slave-milking-machines/ HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://datawav.club/wp-json/>; rel="https://api.w.org/", <https://datawav.club/wp-json/wp/v2/posts/355149>; rel="alternate"; type="application/json", <https://datawav.club/?p=355149>; rel=shortlink
X-ElasticPress-Query: true
Content-Encoding: gzip
X-Cache-Status: HIT
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
datawav.club/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
173.208.199.194200 OK 12 kB URL HTTP/1.1 datawav.club/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (43771)
Hash 88f413500303dc21250157a6aa913a32
ca138ec102d96e6d7b30bf83b7dab60a16f0b5d6
65e072ca8d53bf38d5dde355a039a61f6c7204206a9a58ded75d2d2730cc0999
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:54 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-15b64"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
js.juicyads.com/jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav
54.230.111.12200 OK 94 kB URL HTTP/2 js.juicyads.com/jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav
IP 54.230.111.12:0
File type ASCII text, with very long lines (65533)
Hash 95f2c8ffce4b82277ee24acd25bcd36c
59bff66ec0e61dfdfcdb4bd60be429442f7dced5
e162a46572ebb42d1aa70ebb5e22cae483eb6de2145e70b139901ff83d4a22d5
GET /jp.php?c=446433y2r256r2x2t2f46384&u=https%3A%2F%2Ftorrsexvid.com%2Fgallery.php%23datawav HTTP/1.1
Host: js.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=900
date: Sat, 12 Nov 2022 09:32:07 GMT
expires: Sat, 12 Nov 2022 09:47:07 GMT
pragma: cache
server: nginx
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h_Fd00g4EkjPpbp-FVDjZobCFO9JFokZsdkPRnsU0heJsGbPvjavRQ==
age: 767
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6C8kaLTMC2OEuRMHVWuTQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9ovFnda/MG4CFgjz1CelV8B5wMI=
datawav.club/wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3
173.208.199.194200 OK 585 B URL HTTP/1.1 datawav.club/wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (698)
Hash 4a29f243de4db57d16a28456bf19954a
894346c1a950364903cca4273974e0153dfa3b2d
861c2ef18073d68121f761bcf826617adf97a2d54629efb8b9ef7670a3f7d09c
GET /wp-content/plugins/elasticpress/dist/css/related-posts-block-styles.min.css?ver=3.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:54 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 05:16:11 GMT
Vary: Accept-Encoding
ETag: W/"635f5a1b-399"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/js/navigation.js?ver=20160719
173.208.199.194200 OK 1.6 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/js/navigation.js?ver=20160719
IP 173.208.199.194:0
File type ASCII text, with CRLF line terminators
Hash a73417e3fe8baa2f33f152e3bbc14097
622a93a734e15fc786f8f6887554c2c253028aad
8cb4ff8750d3f21e630c95a3c3ed5fc046e232b8c66c94c4580119bf4ae30c94
GET /wp-content/themes/wellington/js/navigation.js?ver=20160719 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-1538"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/style.css?ver=1.0.6
173.208.199.194200 OK 9.1 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/style.css?ver=1.0.6
IP 173.208.199.194:0
File type ASCII text, with very long lines (355), with CRLF line terminators
Hash dea6095724497c9701e5e96321ea6bd0
a4bd04afdf2ede1b155b87872a34d1c97e443fe2
7ba56aa8ba7a9708aa49cc91cdd1db8a177af6505a735e68fa2f85a7e51b3d4c
GET /wp-content/themes/wellington/style.css?ver=1.0.6 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-c499"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/uomdacwoqbvxwxj.php
173.208.199.194200 OK 11 kB URL HTTP/1.1 datawav.club/uomdacwoqbvxwxj.php
IP 173.208.199.194:0
File type ASCII text, with very long lines (10335)
Hash 14abae8a24facdcc57f6490cec8ee3f6
1efbf03ac34f9027ab7acf347027ea6db52ce2d9
4716ecf44bceb9580e15bf0a8452a79a7b4adb11d21611c6a6711b0e5c685e1d
GET /uomdacwoqbvxwxj.php HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421
173.208.199.194200 OK 931 B URL HTTP/1.1 datawav.club/wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421
IP 173.208.199.194:0
File type ASCII text, with CRLF line terminators
Hash 99fddbd49303e57f150b016c8714159d
ed798b602726b08ea1e331d61469aab3138a558c
c2345b323c0571f8d9c95256a1d44ceefd33a0791e786afe4a4a534060e3275f
GET /wp-content/themes/wellington/css/themezee-related-posts.css?ver=20160421 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-1514"
Expires: Tue, 07 Nov 2023 08:22:17 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
173.208.199.194200 OK 4.2 kB URL HTTP/1.1 datawav.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 173.208.199.194:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-2bd8"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1
173.208.199.194200 OK 16 kB URL HTTP/1.1 datawav.club/wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1
IP 173.208.199.194:0
File type ASCII text, with very long lines (18732), with CRLF line terminators
Hash f9330a5b1ff4bb3d35693982b212e4bd
c2c837ab1e60cfec1d60eaf6a1e2ecfcf8c7b884
3019eb8fd0dc294ad6c3cce11f5b7ae2f1bf72fe259dc2b54b625e74af4e33ee
GET /wp-content/themes/wellington/css/genericons/genericons.css?ver=3.4.1 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Apr 2017 08:17:29 GMT
Vary: Accept-Encoding
ETag: W/"58f47a19-6f71"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
173.208.199.194200 OK 5.0 kB URL HTTP/1.1 datawav.club/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 173.208.199.194:0
File type ASCII text, with very long lines (15660)
Hash 1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-48b9"
Expires: Tue, 07 Nov 2023 08:22:14 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
datawav.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
173.208.199.194200 OK 31 kB URL HTTP/1.1 datawav.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 173.208.199.194:0
File type ASCII text, with very long lines (65447)
Hash 7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 06:31:23 GMT
Vary: Accept-Encoding
ETag: W/"630b0bbb-15db1"
Expires: Tue, 07 Nov 2023 08:22:15 GMT
Cache-Control: max-age=31104000
Content-Encoding: gzip
X-Cache-Status: HIT
i2.wp.com/albums193.zbporn.tv/main/9998x9998/36000/36097/867775.jpg
192.0.77.2200 OK 47 kB URL HTTP/2 i2.wp.com/albums193.zbporn.tv/main/9998x9998/36000/36097/867775.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x900, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cd621cc2a52ec9c258e21181a7f61872
ad20e67738f337a92e8b5768bffe4b4aa41066ae
eccb9b0a634844f43d3f9b09df7b8326a013786db8bf4a622c26dc087ad8fc1d
GET /albums193.zbporn.tv/main/9998x9998/36000/36097/867775.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 47254
last-modified: Wed, 09 Nov 2022 23:22:37 GMT
expires: Sat, 09 Nov 2024 11:22:37 GMT
cache-control: public, max-age=63115200
link: <http://albums193.zbporn.tv/main/9998x9998/36000/36097/867775.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ecddf7448e327ad7"
vary: Accept
x-nc: HIT arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/www.bdsm-list.net/gallery/maninpain/1013-zd/sn008.jpg
192.0.77.2200 OK 92 kB URL HTTP/2 i1.wp.com/www.bdsm-list.net/gallery/maninpain/1013-zd/sn008.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 803x1200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c4ac99ed01bf816ac3a28b813a2608f
322af31df7a8aa766fdd6b66816a254d09400d36
8a0657087ea04516b79ef2eeb864f9dabbc0f4bd52d9d4fa291de88bfaa8cd55
GET /www.bdsm-list.net/gallery/maninpain/1013-zd/sn008.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 91954
last-modified: Fri, 21 Oct 2022 10:55:49 GMT
expires: Sun, 20 Oct 2024 22:55:49 GMT
cache-control: public, max-age=63115200
link: <http://www.bdsm-list.net/gallery/maninpain/1013-zd/sn008.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "48dca669db9bec33"
vary: Accept
x-nc: HIT arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/s.smutty.com/media_smutty_2/d/a/n/a/p/danarami-7txrk-0e6006.jpg
192.0.77.2200 OK 24 kB URL HTTP/2 i1.wp.com/s.smutty.com/media_smutty_2/d/a/n/a/p/danarami-7txrk-0e6006.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 620x436, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f5e7d527bce581c9a6492abb397e87a9
4929f16785c192f51409efefdbe2081c59bc08f6
e9f6762b3d088675ebdd429f2d50da7eeba24e599c32dd2e65f65c69b3d23d9b
GET /s.smutty.com/media_smutty_2/d/a/n/a/p/danarami-7txrk-0e6006.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 24002
last-modified: Fri, 16 Sep 2022 13:25:22 GMT
expires: Mon, 16 Sep 2024 01:25:22 GMT
cache-control: public, max-age=63115200
link: <http://s.smutty.com/media_smutty_2/d/a/n/a/p/danarami-7txrk-0e6006.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ff9b39cd4c6e5953"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/www.telemachus12.com/picstories/law_laecamandwinhho_01/law_laecamandwinhho_01_01.jpg
192.0.77.2200 OK 94 kB URL HTTP/2 i1.wp.com/www.telemachus12.com/picstories/law_laecamandwinhho_01/law_laecamandwinhho_01_01.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x750, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8b377e2d4406532ff28da3920439b277
1b885ebefb5ef5750621ffd481799a5bff20af3b
6b87b32e114543d743a14b84052753d765501b2a6b7520985a5aaa1da60b555d
GET /www.telemachus12.com/picstories/law_laecamandwinhho_01/law_laecamandwinhho_01_01.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 93762
last-modified: Thu, 20 Oct 2022 23:03:53 GMT
expires: Sun, 20 Oct 2024 11:03:53 GMT
cache-control: public, max-age=63115200
link: <http://www.telemachus12.com/picstories/law_laecamandwinhho_01/law_laecamandwinhho_01_01.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "71fd7c767eea45f5"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i2.wp.com/www.bdsm-list.net/femdom/domkarin/0167-fm/sn012.jpg
192.0.77.2200 OK 55 kB URL HTTP/2 i2.wp.com/www.bdsm-list.net/femdom/domkarin/0167-fm/sn012.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 900x604, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4f39daea3402bb2e11d011c32e25e3c7
04f1c13acbd7cdc0c1ad6ee797c6f4c6aab9c6c5
c4a95e00966b9fd8ec62fb422da4a798ac7d43cdb090345a4ce648f6caa8b9fe
GET /www.bdsm-list.net/femdom/domkarin/0167-fm/sn012.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 55426
last-modified: Thu, 23 Jun 2022 11:58:08 GMT
expires: Sat, 22 Jun 2024 23:58:08 GMT
cache-control: public, max-age=63115200
link: <http://www.bdsm-list.net/femdom/domkarin/0167-fm/sn012.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d9b436afad3ff574"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/bdsm-list.net/gallery/maninpain/0297-vc/sn014.jpg
192.0.77.2200 OK 49 kB URL HTTP/2 i1.wp.com/bdsm-list.net/gallery/maninpain/0297-vc/sn014.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53ab8ea64a040e27fdcee81907b669cf
ebfcf1b8c1dafc30748f5aba8b61348d6d41e27c
20328b5481be6d4d4e1a1424632714a750621bff16933b4db51105aacb6a4dad
GET /bdsm-list.net/gallery/maninpain/0297-vc/sn014.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 49074
last-modified: Thu, 10 Nov 2022 11:52:52 GMT
expires: Sat, 09 Nov 2024 23:52:52 GMT
cache-control: public, max-age=63115200
link: <http://bdsm-list.net/gallery/maninpain/0297-vc/sn014.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "2cec4866dd1c27ed"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/s.smutty.com/media_smutty_2/o/h/p/m/p/ohpmyn-vsofu-c42f14.jpg
192.0.77.2200 OK 57 kB URL HTTP/2 i0.wp.com/s.smutty.com/media_smutty_2/o/h/p/m/p/ohpmyn-vsofu-c42f14.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 620x850, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e227d7e3e2722d4fe2b05568d4c872f
9d7a30f406f9f4613b8102998d93507f5b3b476d
11be1f8ee4736f7e3979dd9e1564f44d89e88db8074b98052b9e0e6a3457f45f
GET /s.smutty.com/media_smutty_2/o/h/p/m/p/ohpmyn-vsofu-c42f14.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 57056
last-modified: Wed, 09 Nov 2022 07:40:24 GMT
expires: Fri, 08 Nov 2024 19:40:24 GMT
cache-control: public, max-age=63115200
link: <http://s.smutty.com/media_smutty_2/o/h/p/m/p/ohpmyn-vsofu-c42f14.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d455c1b278b8cbfd"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/i.fapality.com/videos_screenshots/2000/2565/preview.mp4.jpg
192.0.77.2200 OK 49 kB URL HTTP/2 i0.wp.com/i.fapality.com/videos_screenshots/2000/2565/preview.mp4.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x576, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6426195bd4932591fe2a9d8f2bab5a01
042110349f87a1a2b7b5a7260a493be2e2daf806
bc62de10b8801a88645478ffc5c122d43ac2587230e971268fc732b7cac58079
GET /i.fapality.com/videos_screenshots/2000/2565/preview.mp4.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 49142
last-modified: Thu, 10 Nov 2022 11:52:51 GMT
expires: Sat, 09 Nov 2024 23:52:51 GMT
cache-control: public, max-age=63115200
link: <http://i.fapality.com/videos_screenshots/2000/2565/preview.mp4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f2fa76b9a3e5e490"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
gnditiklas.com/solid.gif?z=1830123&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 gnditiklas.com/solid.gif?z=1830123&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1830123&abvar=0 HTTP/1.1
Host: gnditiklas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2
216.58.207.195200 OK 9.4 kB URL HTTP/2 fonts.gstatic.com/s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9436, version 1.0\012- data
Hash 267ecd80d0d89a255f676a8b3cce0db0
215515b0a5be67a4d9c980e8926231225b036ef6
c4920b39f85de27baf31e69b334cdf828ec2875ac4ec3a4a2d7a2e52773f7e79
GET /s/magra/v14/uK_w4ruaZus72nbNDycQGvo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 22:16:32 GMT
expires: Wed, 08 Nov 2023 22:16:32 GMT
cache-control: public, max-age=31536000
age: 300503
last-modified: Tue, 26 Apr 2022 15:28:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7908, version 1.0\012- data
Hash 15d9bbcfbc1d668a43c85d156d23262b
c436963710c58453c4ae27e66c051e85c084cd49
6db83475c4b6e3bcd2df60ca7afcedabc5140c3b55c9a6bb0ca636c5b6438e5f
GET /s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 00:23:17 GMT
expires: Sat, 11 Nov 2023 00:23:17 GMT
cache-control: public, max-age=31536000
age: 120098
last-modified: Thu, 21 Apr 2022 16:47:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7920, version 1.0\012- data
Hash 797ad5f8d84a297ab16f9a9c983adfc2
af074543e3bbd78e086cefa983867e0936515c41
e0037277509761be84d1c44b520649c2363df89e00568561ebf015cb3cedc91a
GET /s/gudea/v15/neIIzCqgsI0mp9gz25WBFqw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datawav.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 20:55:23 GMT
expires: Fri, 10 Nov 2023 20:55:23 GMT
cache-control: public, max-age=31536000
age: 132572
last-modified: Thu, 21 Apr 2022 16:51:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 09:44:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i1.wp.com/static1.e621.net/data/7d/92/7d929cfab5db4db0b98b561b1a288d70.jpg
192.0.77.2400 Bad Request 1.7 kB URL HTTP/2 i1.wp.com/static1.e621.net/data/7d/92/7d929cfab5db4db0b98b561b1a288d70.jpg
IP 192.0.77.2:0
Hash 5becdfacbdb51975dfd04dad385c39f4
cebd5b7f91c645d570e3a25783be262738cb58a6
afb3d03a63521d81fa8fb7c1ebfdb6083e143480b08e38cda966164e98881371
GET /static1.e621.net/data/7d/92/7d929cfab5db4db0b98b561b1a288d70.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 6
X-Firefox-Spdy: h2
limurol.com/ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=221112044452ba5c48e1594d18be02d9425d; Path=/; Expires=Sun, 12 Nov 2023 09:44:55 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ca3f2252cea90af4dd61f2436982692f
f85ee05a57049d8c724abfa57d6ca02350b88429
89fe0b9cee38b5e1b0a1ba478f6671cff70de4841ccfbe6634a662acb536c6ab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 00:04:30 GMT
Expires: Thu, 17 Nov 2022 00:04:29 GMT
Etag: "f85ee05a57049d8c724abfa57d6ca02350b88429"
Cache-Control: max-age=396573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768e54f34bc0b503-OSL
limurol.com/ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1830123/?pb=21c1c80c40b639453b5402e026730aac1668253495&psp=AaWxnLVP7TBHbjJGWxetD2MZetOR-cwGwe6wxzPsEUIb0OCAz0Bsbaf_05RmRMKB1gevhbCbVH3a9PNIUMEWQy3x6K3UWce3l4lPrSf3J1r8GmXrP76gLu2uUmN5F94jeh4b9kbOSxpqfJwo35yg6C3L_72kvK9qLG2Ap9Jqy7v4iCKAC6bJbpDnbWzBNv2_YhFqdrGLXtSc_hko5u7hteYy4H8fntBzhThOttt7ChepqJTkgQAdYXahwbkX3Y7V44zxDJ0XyYKS7J8t5RuGT_lEr9PqMIpyrjcGsKj42zv_9l6O9z3Wo9SBxFJZoQbKvOrQunfY8OEpJN8cv4V6LzyIcmY8JRc2OyOTcPVpGNL8GGnW8BuQFjgNMVhAOTgsuK8eFji358rQ5rysmz7gOzppH8YJj8FxJ4R5DkMVpnW3iVUWInYDH3jJPAc3ck00mXEzMMDm3dlkEH8rBSWaZKYYz5dsydTl0dsPv-XkttaA8Vs7drBGVr5NvZiD5TJXggdgoLGlR44DOa4hNZxcdG-GrQnQ2cmCAs6cVKxLnBnF8rueFtoV3COES5jLe9uM7a-HfGtwPsXfpmPwLLItBKSaMNNpvytUYiWvYxwiI1fHzKnWJ3aSBp5fPXBi6jUfDSV9RJTBSAoQ0hjYn-7umP64PQ1t8iM0UFITVDl_xZAEf1SvXrtqpSPSPjDELXH2fosYBjypYAa0aUiDEh8aNWGWbkx-GuH9oA7owYA4rCSzdy9ZDibQBo6_HX6ElxUEzmnB64CKRXkfGPRymsLTOjv0899vY5YT5GYZjKJcb0ptdn2GAQFYJMUuntaejstHQ3N1KBkrtquCMNAq9A==&cb=_clgaguazyoyuzgcdg6nazc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Cookie: UID=221112044452ba5c48e1594d18be02d9425d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 24 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 1e0cd4016257b566dad21a932f4d25e3
029b92f5f742087465a6e7400cff4338280b508e
d43f15bb4010bb3cfaeb927e9c022098083b95a0534f2c1a228f1dddb8cf0938
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Tue, 13 Dec 2022 09:44:55 GMT
etag: W/"11BCsVfRLqCHC9ZZvH4GUw=="
cf-cache-status: HIT
age: 1953391
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e54f39b660b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://datawav.club
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e54f4797d1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19849
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 09:44:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19849
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 09:44:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19849
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 09:44:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19849
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 09:44:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19849
Expires: Sat, 12 Nov 2022 15:15:44 GMT
Date: Sat, 12 Nov 2022 09:44:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2eaa4311-959b-4a18-8135-b4ce754c0765.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2eaa4311-959b-4a18-8135-b4ce754c0765.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 567bcdef39653e949301b97714168c31
8669185a5f338e34026c48310c88c5a9d8caa1c2
7ecaa9ceaa0a60e608e62571108fbcf49f6fa2b3e77feacbf52d319beda40db1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2eaa4311-959b-4a18-8135-b4ce754c0765.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7533
x-amzn-requestid: 985674ba-be97-4ca3-babb-594c61f8d6c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM8BEqFIAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1e6-3abc6a525f2a2bde14465b7e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DRfYKF1_Z56kxeaprUhH1Ng8MgW0Z6Xx_yWwiO3MnswRFY482udCjg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:43:48 GMT
age: 43267
etag: "8669185a5f338e34026c48310c88c5a9d8caa1c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516f1bfefb1c1a737ea2441f85343b32
0cc22d7bf9092fb30f31e2ca8f242c197b891669
733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:43 GMT
age: 42252
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbae1f7e5-4deb-446b-bef2-d4185563f449.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbae1f7e5-4deb-446b-bef2-d4185563f449.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43e4308988c320212eab6fb4d27c215e
2c2503ca7de1a0c9a4224131f9b0e4b990f7efcd
56efcb5d90ed224301384c850ec2f11317c2426fdc8ed6f88a211bbb75e6871e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbae1f7e5-4deb-446b-bef2-d4185563f449.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12578
x-amzn-requestid: 60fda47c-9518-4ab3-8f94-4e925f0b6773
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM8iHeHoAMFQFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1e9-62597e7b5c0f3b6b1e53bcce;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FSquX2GRcCI4_Onwfi5qm_oBKl5EvL1RZJO84zJgyoEr7tPVTMy9dQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:43:47 GMT
age: 43268
etag: "2c2503ca7de1a0c9a4224131f9b0e4b990f7efcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 701700f42e1b0e528a63c3bd2a4c54e7
a3af603900538ea10e094981d298a0b37d0ab896
c84ac2d3524eb950a433aa01e1226d995d87948452e4e135a4661094923ca465
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4268
x-amzn-requestid: 19d2f4e7-b6c1-4093-b54c-70a9a476ad89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEwYIAMFg7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-6e2f5a6147153e5c32cc4499;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1tbxcsSYcJuquYxeYfqcwaQaHpWmL9jwX31h1ZIyXO6i5A8gIbFQmA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "a3af603900538ea10e094981d298a0b37d0ab896"
content-type: image/jpeg
age: 43183
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
age: 43183
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24ff4e7b-c5dd-4b3d-a4fa-a796e12dfe1e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24ff4e7b-c5dd-4b3d-a4fa-a796e12dfe1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4310f585904aaca1ad065e14621a4e3e
a1a2246415ff47340df17641ed2cf9c701453683
e28b55ff5e6dae8b604426557a56afc39af6ea7560ab0b4c86c0830cd5f7ab23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24ff4e7b-c5dd-4b3d-a4fa-a796e12dfe1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6398
x-amzn-requestid: c86cea6c-2f2f-490d-9187-2f21df615eb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNMGEQbIAMFh2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec24d-23ffe10c6db644e679b581f7;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:44:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8cVG2w6c18kvkBcxD07M71pT6OA6XkvudTUXWdxWtv8S1dEHDvpCYQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:24:15 GMT
age: 40840
etag: "a1a2246415ff47340df17641ed2cf9c701453683"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://datawav.club
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 80ddfea17786bf818b696b4848e1d53c
64bf008a88189effa8e97cb47850182803fd3560
3d7845ce6d0eb6b0907e49e80f961bcc3d9775c4a5c41c3e086a6a4d986d5a67
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D7845CE6D0EB6B0907E49E80F961BCC3D9775C4A5C41C3E086A6A4D986D5A67"
Last-Modified: Thu, 10 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Sat, 12 Nov 2022 12:35:33 GMT
Date: Sat, 12 Nov 2022 09:44:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 19b282704e808f1e2e862afc7da081a3
9f4110b3a821e985e20251be925c802510e18b24
3bc1c0e60a424ae67178184396569e7038c1c93170af218e3721d44c46623b7d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BC1C0E60A424AE67178184396569E7038C1C93170AF218E3721D44C46623B7D"
Last-Modified: Sat, 12 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8506
Expires: Sat, 12 Nov 2022 12:06:42 GMT
Date: Sat, 12 Nov 2022 09:44:56 GMT
Connection: keep-alive
adserver.juicyads.com/js/jads.js
185.94.236.247200 OK 1.7 kB URL HTTP/1.1 adserver.juicyads.com/js/jads.js
IP 185.94.236.247:0
File type ASCII text, with very long lines (3769), with no line terminators
Hash 65b1efdf55163b144c5018b8772765ad
509de5f40450f3cf05e0d8d1b939fed2bbb11cbe
cf23ab637d84de0eb1c1e67764e05ca0aa140e6ee932a60700fc35661644ee48
GET /js/jads.js HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eb9"
Content-Encoding: gzip
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:41:00 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 258245498
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
datawav.club/favicon.ico
173.208.199.194404 Not Found 184 B IP 173.208.199.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 8ea8556770bd53150ab76b23f87936a6
6c615fdc6839c5ed11a30ebc227646ac6aef493b
c4f8c99f5287623d6325502365d07eb6dc33d0c58c1c2def811f9b06ff7d68f0
GET /favicon.ico HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Cookie: a=HCXoyJxTh5T7fQJ6f03UevPgoWesUmOc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5f77c832-f7"
Content-Encoding: gzip
daep6mtsgces.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 daep6mtsgces.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: daep6mtsgces.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adsco.re/p
162.252.214.5200 OK 170 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash c86a1bfc3cac7b2f4ed4266a38cc69d2
c264160b38d00d20d3cf4155d7c610d9039dfd9c
e008fe7b6e6e4038c2fc9ae22b8bfd21926040c6d942eb14aa28df8f792b9a79
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1869
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://datawav.club
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1a019519fa8ac7f2a302e6d579c1598d
af78d40271107d0f4588c62be839995d7ed37f8d
be3fecb037d344878a5bf23fda4a6f687102fbee0a1fe8f3708875d3001fe2f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE3FECB037D344878A5BF23FDA4A6F687102FBEE0A1FE8F3708875D3001FE2F8"
Last-Modified: Thu, 10 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9791
Expires: Sat, 12 Nov 2022 12:28:07 GMT
Date: Sat, 12 Nov 2022 09:44:56 GMT
Connection: keep-alive
s4.histats.com/stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1668246295533&@k0&@l1&@mMale%20Slave%20Milking%20Machines&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163393688&@b3:1668246296&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fmale-slave-milking-machines%2F&@w
192.99.8.28200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1668246295533&@k0&@l1&@mMale%20Slave%20Milking%20Machines&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163393688&@b3:1668246296&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fmale-slave-milking-machines%2F&@w
IP 192.99.8.28:0
File type ASCII text, with no line terminators
Hash a1788b760e0e4c26e32a9005256b47aa
06718eb741a9f949c8fccf75e8b80519b813c0d3
f64a1d7bd68f6a40bf814987e2e83a0b627083bd72c5d48e46de5fca243d0fd1
GET /stats/0.php?3916601&@f16&@g1&@h1&@i1&@j1668246295533&@k0&@l1&@mMale%20Slave%20Milking%20Machines&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-163393688&@b3:1668246296&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fdatawav.club%2Fmale-slave-milking-machines%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash dedac62ee1a38c3d1b978b425e2f0e70
6e01451ecdf96bb1e7d75fe0e58d8e6e457a774a
e046db14fa76e352b3a159dbe52d6164cf106148bcb6339288828958bbb2b878
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 01:12:43 GMT
Expires: Wed, 16 Nov 2022 01:12:42 GMT
Etag: "6e01451ecdf96bb1e7d75fe0e58d8e6e457a774a"
Cache-Control: max-age=314265,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 768e54f959cfb503-OSL
blockadsnot.com/wAboQ.php?_=BAYAY29rGAFjb2sYgAGBAsAAIL8dozBQlIWIiV4rj9gOY2m9-sjlCGI9NCYuyfxFWz_hwQBIMEYCIQDpROlxFxvBjL08iojCh-V5LQ7KWESt49YkA7Dltj2t0gIhAJ4glnja56H5WuIhxGV4v6S_91A2QN8CUrbh7IJGzBVb&v=4&SWmGEziC=1955226&minBid=&KmvYihQy=0,0&lyPEvoqh=&FhWpOeGV=&s=1280,1024,1,1280,1024,0
208.95.112.254200 OK 44 B URL HTTP/2 blockadsnot.com/wAboQ.php?_=BAYAY29rGAFjb2sYgAGBAsAAIL8dozBQlIWIiV4rj9gOY2m9-sjlCGI9NCYuyfxFWz_hwQBIMEYCIQDpROlxFxvBjL08iojCh-V5LQ7KWESt49YkA7Dltj2t0gIhAJ4glnja56H5WuIhxGV4v6S_91A2QN8CUrbh7IJGzBVb&v=4&SWmGEziC=1955226&minBid=&KmvYihQy=0,0&lyPEvoqh=&FhWpOeGV=&s=1280,1024,1,1280,1024,0
IP 208.95.112.254:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /wAboQ.php?_=BAYAY29rGAFjb2sYgAGBAsAAIL8dozBQlIWIiV4rj9gOY2m9-sjlCGI9NCYuyfxFWz_hwQBIMEYCIQDpROlxFxvBjL08iojCh-V5LQ7KWESt49YkA7Dltj2t0gIhAJ4glnja56H5WuIhxGV4v6S_91A2QN8CUrbh7IJGzBVb&v=4&SWmGEziC=1955226&minBid=&KmvYihQy=0,0&lyPEvoqh=&FhWpOeGV=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Sat, 12 Nov 2022 09:44:56 GMT
X-Firefox-Spdy: h2
daep6mtsgces.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 daep6mtsgces.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: daep6mtsgces.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 09:44:56 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adserver.juicyads.com/adshow.php?adzone=593091
185.94.236.247200 OK 1.5 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=593091
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (414), with CRLF, LF line terminators
Hash 7d9a04491fedf4d9dc1e07dd514a569b
19f0fe624140e6281c37af27a57d7f685019e56f
3e22177414ad854b5063476916b04707fa1134b480ab55abf79652304964fba1
GET /adshow.php?adzone=593091 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=4b1440e0240ce1e515e6ce263d1b62f3; expires=Sun, 12-Nov-2023 09:44:56 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps47386=1; expires=Sun, 13-Nov-2022 09:44:56 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjEzMTk2Nzk7aToxNjY4NTA1NDk2O30%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user81419/47386-1642692278-0950151001642692278.gif
69.16.175.42200 OK 131 kB URL HTTP/2 ads.juicyads.me/network/user81419/47386-1642692278-0950151001642692278.gif
IP 69.16.175.42:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 131 kB (130640 bytes)
Hash 96f98a033b3ad783020a5025b13acf2e
cfc5f149793ed9ea5f95c87865316d7b8376e2bf
3aa5120f48e5cadfd2bfd5d5947ef4ecff76bc4928f17281f90f5cac9de4f161
GET /network/user81419/47386-1642692278-0950151001642692278.gif HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:58 GMT
etag: "1642692278"
cache-control: max-age=6034974
content-length: 130640
content-type: image/gif
last-modified: Thu, 20 Jan 2022 15:24:38 GMT
accept-ranges: bytes
x-hw: 1668246298.dop014.sk1.t,1668246298.cds237.sk1.hn,1668246298.cds204.sk1.c
X-Firefox-Spdy: h2
adserver.juicyads.com/adshow.php?adzone=770180
185.94.236.247200 OK 1.7 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=770180
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1386), with CRLF, LF line terminators
Hash 8ac039ea745b4ce780358619c2b9ab12
fc4417dc9a14a53310aef26090495a77b8e4b262
661bdc005efdaec9ba54a09bbcf6e5305815e073a0e303da1bedba88f87c44ca
GET /adshow.php?adzone=770180 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=4b1440e0240ce1e515e6ce263d1b62f3; expires=Sun, 12-Nov-2023 09:44:56 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps47386=1; expires=Sun, 13-Nov-2022 09:44:56 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjEzMTk2ODE7aToxNjY4NTA1NDk2O30%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user81419/47386-1642692298-0664298001642692298.gif
69.16.175.42200 OK 182 kB URL HTTP/2 ads.juicyads.me/network/user81419/47386-1642692298-0664298001642692298.gif
IP 69.16.175.42:0
File type GIF image data, version 89a, 300 x 250\012- data
Size 182 kB (181682 bytes)
Hash 187ee8df9c8da5f9a3883ce16a6fcb63
b1630df50d50217fe759edcce56d48b7830e8684
b68f71323af5e52f3e32c43780eec70ba6fdf9aa643d19b976d13bb91475997a
GET /network/user81419/47386-1642692298-0664298001642692298.gif HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:58 GMT
etag: "1642692298"
cache-control: max-age=31225960
content-length: 181682
content-type: image/gif
last-modified: Thu, 20 Jan 2022 15:24:58 GMT
accept-ranges: bytes
x-hw: 1668246298.dop014.sk1.t,1668246298.cds237.sk1.hn,1668246298.cds202.sk1.c
X-Firefox-Spdy: h2
ads.juicyads.me/1x1.gif
69.16.175.42200 OK 43 B IP 69.16.175.42:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /1x1.gif HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:58 GMT
etag: "1457030838"
cache-control: max-age=18978968
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1668246298.dop014.sk1.t,1668246298.cds237.sk1.hn,1668246298.cds217.sk1.c
X-Firefox-Spdy: h2
adserver.juicyads.com/adshow.php?adzone=593090
185.94.236.247200 OK 1.5 kB URL HTTP/1.1 adserver.juicyads.com/adshow.php?adzone=593090
IP 185.94.236.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (412), with CRLF, LF line terminators
Hash 66fa595da0bfa9b5d96e7d92f227a071
974a452aeefb9b646f8e391a0013055ce62ac914
f03ef7252e4f79fb8660a37c01890f3d72bacac47381e166ce3ff96b17ff8098
GET /adshow.php?adzone=593090 HTTP/1.1
Host: adserver.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=4b1440e0240ce1e515e6ce263d1b62f3; expires=Sun, 12-Nov-2023 09:44:56 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.juicyads.com
imps31838=1; expires=Sun, 13-Nov-2022 09:44:56 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.juicyads.com
juicy_data_1=YToxOntpOjc0NjYwNjtpOjE2Njg1MDU0OTY7fQ%3D%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 15-Nov-2022 09:44:56 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=juicyads.com
Content-Encoding: gzip
ads.juicyads.me/network/user14811/31788-1552226044-0961380001552226044.jpg
69.16.175.42200 OK 24 kB URL HTTP/2 ads.juicyads.me/network/user14811/31788-1552226044-0961380001552226044.jpg
IP 69.16.175.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 728x90, components 3\012- data
Hash a1031b466941f4693e17a238a8c86080
4c24606fd8790060ccd69e92c1303571523c21eb
cd411b9e5f2d64710595232169a4127d1a2461192cca3c240d0e225d91ca1e7f
GET /network/user14811/31788-1552226044-0961380001552226044.jpg HTTP/1.1
Host: ads.juicyads.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adserver.juicyads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:58 GMT
etag: "1552226044"
cache-control: max-age=3737821
content-length: 23557
content-type: image/jpeg
last-modified: Sun, 10 Mar 2019 13:54:04 GMT
accept-ranges: bytes
x-hw: 1668246298.dop014.sk1.t,1668246298.cds237.sk1.hn,1668246298.cds222.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf1baf49270aca0e125ea4ab54decc49
318592e80d93447e0efe5d7bb9615c404482a7bc
ebf8cefac0db8dda566ab0eb3e2f1fb08107c41dd567595b74d73cf68120d21d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBF8CEFAC0DB8DDA566AB0EB3E2F1FB08107C41DD567595B74D73CF68120D21D"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18664
Expires: Sat, 12 Nov 2022 14:56:02 GMT
Date: Sat, 12 Nov 2022 09:44:58 GMT
Connection: keep-alive
d.pssy.xyz/d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1668241335&rfrr=https://datawav.club/manga-giantess-pissing/&iscs=YTJhMzgxZjgyMWNkMDI1ZTI4YzViMWZhNjQ1YjI5ZTQzYzJhZTcwYTE5Njk1YTM5ZDUzMmRmYmY1YzQyNTQyZnwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKExpbnV4OyBBbmRyb2lkIDEwOyBSTVgyMDMwKSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvOTMuMC40NTc3LjgyIE1vYmlsZSBTYWZhcmkvNTM3LjM2fDI4ODE4NXwxNjY4MjQxMzM1fGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdmJXRnVaMkV0WjJsaGJuUmxjM010Y0dsemMybHVaeTg9&width=784&reqc=1&ver=6dc6ced4e90c94d0.1668241335069&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvbWFsZS1zbGF2ZS1taWxraW5nLW1hY2hpbmVzLw==
23.235.244.224200 OK 7.1 kB URL HTTP/1.1 d.pssy.xyz/d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1668241335&rfrr=https://datawav.club/manga-giantess-pissing/&iscs=YTJhMzgxZjgyMWNkMDI1ZTI4YzViMWZhNjQ1YjI5ZTQzYzJhZTcwYTE5Njk1YTM5ZDUzMmRmYmY1YzQyNTQyZnwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKExpbnV4OyBBbmRyb2lkIDEwOyBSTVgyMDMwKSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvOTMuMC40NTc3LjgyIE1vYmlsZSBTYWZhcmkvNTM3LjM2fDI4ODE4NXwxNjY4MjQxMzM1fGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdmJXRnVaMkV0WjJsaGJuUmxjM010Y0dsemMybHVaeTg9&width=784&reqc=1&ver=6dc6ced4e90c94d0.1668241335069&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvbWFsZS1zbGF2ZS1taWxraW5nLW1hY2hpbmVzLw==
IP 23.235.244.224:0
File type JSON data\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31198), with no line terminators
Hash 5df65ba1ad66c2aa053a89c014c3c42d
70a1efefce836a39ada9c7cbbff006f1711bec67
c4d1c6e0b25b9bb73ad8f338ddfb3ebb6209934358134321bc6b5c53d33890c8
Analyzer Verdict Alert quad9 Sinkholed
GET /d/?resource=bundler&nada=1&widgets=1499332:4,1499333:2,1243820:1,1499368:1&isct=1668241335&rfrr=https://datawav.club/manga-giantess-pissing/&iscs=YTJhMzgxZjgyMWNkMDI1ZTI4YzViMWZhNjQ1YjI5ZTQzYzJhZTcwYTE5Njk1YTM5ZDUzMmRmYmY1YzQyNTQyZnwwfDV8MTkyLjE4Ny4xMjcuNjZ8TW96aWxsYS81LjAgKExpbnV4OyBBbmRyb2lkIDEwOyBSTVgyMDMwKSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvOTMuMC40NTc3LjgyIE1vYmlsZSBTYWZhcmkvNTM3LjM2fDI4ODE4NXwxNjY4MjQxMzM1fGliYUhSMGNITTZMeTlrWVhSaGQyRjJMbU5zZFdJdmJXRnVaMkV0WjJsaGJuUmxjM010Y0dsemMybHVaeTg9&width=784&reqc=1&ver=6dc6ced4e90c94d0.1668241335069&page=aHR0cHM6Ly9kYXRhd2F2LmNsdWIvbWFsZS1zbGF2ZS1taWxraW5nLW1hY2hpbmVzLw== HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:59 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
ETag: W/"79e1-swzQ4oym1CeB9fyiPZvwSUc4Pu4"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://datawav.club
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7136286bc110a0e00804c12bcc5efe20
994750c0960e81f4e85d063cfa59c0914ea295c2
53efd03f3f11a04df261952700a83f4a453aaef65285e25a0f602c03492be77f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "53EFD03F3F11A04DF261952700A83F4A453AAEF65285E25A0F602C03492BE77F"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2038
Expires: Sat, 12 Nov 2022 10:18:57 GMT
Date: Sat, 12 Nov 2022 09:44:59 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7136286bc110a0e00804c12bcc5efe20
994750c0960e81f4e85d063cfa59c0914ea295c2
53efd03f3f11a04df261952700a83f4a453aaef65285e25a0f602c03492be77f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "53EFD03F3F11A04DF261952700A83F4A453AAEF65285E25A0F602C03492BE77F"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2038
Expires: Sat, 12 Nov 2022 10:18:57 GMT
Date: Sat, 12 Nov 2022 09:44:59 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7136286bc110a0e00804c12bcc5efe20
994750c0960e81f4e85d063cfa59c0914ea295c2
53efd03f3f11a04df261952700a83f4a453aaef65285e25a0f602c03492be77f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "53EFD03F3F11A04DF261952700A83F4A453AAEF65285E25A0F602C03492BE77F"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2038
Expires: Sat, 12 Nov 2022 10:18:57 GMT
Date: Sat, 12 Nov 2022 09:44:59 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7136286bc110a0e00804c12bcc5efe20
994750c0960e81f4e85d063cfa59c0914ea295c2
53efd03f3f11a04df261952700a83f4a453aaef65285e25a0f602c03492be77f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "53EFD03F3F11A04DF261952700A83F4A453AAEF65285E25A0F602C03492BE77F"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2038
Expires: Sat, 12 Nov 2022 10:18:57 GMT
Date: Sat, 12 Nov 2022 09:44:59 GMT
Connection: keep-alive
s.pssy.xyz/prplugs/0/1144995/240x180.jpg
172.67.206.135200 OK 17 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1144995/240x180.jpg
IP 172.67.206.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash a1aa410843a28e7914a130617de3426e
5c4af4c8fc666a29e5b824b9946c3e1ac8fa0df8
75009adc08f8e54aa012cf62ae380a0bcec4af0631c7744bab8566a4d6eea7f1
Analyzer Verdict Alert quad9 Sinkholed
GET /prplugs/0/1144995/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:59 GMT
content-type: image/jpeg
content-length: 16677
last-modified: Wed, 04 Nov 2020 14:45:53 GMT
etag: "5fa2bea1-4125"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1502
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SufUYg%2FIbUCGLgGeMmzQDydxOk0cmL4IV5p7MC4jjcs2P1xi4h3HEcJvPH1jyMY0AJe7hKHsbH6IUdLcwGPjgSr%2BHMcGGHl8Y9VEaUCk%2FyFMc8Lb434Ka3kEB8PY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e550b7818b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i2.wp.com/www.sxysadist.com/MainSite/wp-content/uploads/Milking-Factory-WIPcolor.jpg
192.0.77.2404 Not Found 18 kB URL HTTP/2 i2.wp.com/www.sxysadist.com/MainSite/wp-content/uploads/Milking-Factory-WIPcolor.jpg
IP 192.0.77.2:0
Hash 0f1664afe771e35da64e68b84e065729
edabad3e80577487a72e8d297cca7f154233f0d8
0731833573c8889b187e0fc374e62a2af1cd2e2e683f58c28b2a418bf7ab2e30
GET /www.sxysadist.com/MainSite/wp-content/uploads/Milking-Factory-WIPcolor.jpg HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: nginx
date: Sat, 12 Nov 2022 09:44:56 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 2
X-Firefox-Spdy: h2
s.pssy.xyz/prplugs/0/1229980/240x180.jpg
172.67.206.135200 OK 21 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1229980/240x180.jpg
IP 172.67.206.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 8c209ad61ea1bbd7f1f85f88154ac7ff
d91bd96fb25c7d7baeafc05fcbf62e2cda2da4bc
b18f71b859e1e279657af61cf635fb26929a7f8e7dbf41c9bf004cc02e0c8d32
Analyzer Verdict Alert quad9 Sinkholed
GET /prplugs/0/1229980/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:59 GMT
content-type: image/jpeg
content-length: 21052
last-modified: Fri, 04 Nov 2022 21:36:24 GMT
etag: "636585d8-523c"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2592
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXCmQKFaLHjpzLutZWASAoqcxoaq5sDGaO%2BgkcttHm11eDgAKsqBhmRqdxqHDQZFz%2BRNKD3xL%2BvHFqanR6f1D47DABekhwXNAJiylVmr9JC%2F2eraX9rWqq7R2Tom"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e550b7816b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.pssy.xyz/prplugs/0/1144691/240x180.jpg
172.67.206.135200 OK 14 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1144691/240x180.jpg
IP 172.67.206.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash 50169479b04a0649888e3dcffedfbd14
35b814508ac546b993037c0e6c9da988728ca41e
6a61f83b6b492b2ffcce1eb35ca1babb02e2476f2513b5dcc43577ab771ae6d5
Analyzer Verdict Alert quad9 Sinkholed
GET /prplugs/0/1144691/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:59 GMT
content-type: image/jpeg
content-length: 13964
last-modified: Tue, 27 Oct 2020 12:06:56 GMT
etag: "5f980d60-368c"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 7045
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KAEoCFvm0fykWqvAWzKnPyUjBucOJ3AlTywkKR%2BbDQCjQdcylWtXHb92i0Sf6XjGgkaoC6RsDkQ4N%2BNIqeXXx2E8wbFK9Yfus%2FWi7DzDnMPvBYZwTi9hb8ogoiAO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e550b8826b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
142.250.74.10200 OK 793 B URL HTTP/2 fonts.googleapis.com/css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 117234a15e009ebb10cd9f42478ba25c
48194037c08f24ef70ba7b23a8574e812e73dc1d
8ee6a85c912248cd76e7f4db8912644e38256e61440723a4d7e1c0bf0dceb834
GET /css?family=Gudea%3A400%2C400italic%2C700%2C700italic%7CMagra%3A400%2C400italic%2C700%2C700italic&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 09:44:54 GMT
date: Sat, 12 Nov 2022 09:44:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55d4524444715e1c31c404295429c44e
b897043a7bac220efcfc3f2d52c691c5e2910a30
a5a5f3d17649524f4c701aa143d4ca8b75b823b66244a1b2dae91f48a233f75e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A5A5F3D17649524F4C701AA143D4CA8B75B823B66244A1B2DAE91F48A233F75E"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19953
Expires: Sat, 12 Nov 2022 15:17:32 GMT
Date: Sat, 12 Nov 2022 09:44:59 GMT
Connection: keep-alive
d.pssy.xyz/d/n/iframe?domain=datawav.club&id=1499368
23.235.244.224200 OK 1.7 kB URL HTTP/1.1 d.pssy.xyz/d/n/iframe?domain=datawav.club&id=1499368
IP 23.235.244.224:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1a14b3685888a1f5b24d1110e6def993
80d6dadf690a536abc2b6d6bad8f41bf72d44a1b
0692061ebc025ab05e3ca738ca97b166636c6b2e3d3e25a83fc6a28967f6ba49
Analyzer Verdict Alert quad9 Sinkholed
GET /d/n/iframe?domain=datawav.club&id=1499368 HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:59 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
ETag: W/"147f-VB2ygA8yDFZ9sZcl65XuNxRxj5I"
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
datawav.club/uomdacwoqbvxwxj.php?sw
173.208.199.194200 OK 11 kB URL HTTP/1.1 datawav.club/uomdacwoqbvxwxj.php?sw
IP 173.208.199.194:0
File type ASCII text, with very long lines (10335)
Hash 14abae8a24facdcc57f6490cec8ee3f6
1efbf03ac34f9027ab7acf347027ea6db52ce2d9
4716ecf44bceb9580e15bf0a8452a79a7b4adb11d21611c6a6711b0e5c685e1d
GET /uomdacwoqbvxwxj.php?sw HTTP/1.1
Host: datawav.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/male-slave-milking-machines/
Cookie: a=HCXoyJxTh5T7fQJ6f03UevPgoWesUmOc; HstCfa3916601=1668246295533; HstCla3916601=1668246295533; HstCmu3916601=1668246295533; HstPn3916601=1; HstPt3916601=1; HstCnv3916601=1; HstCns3916601=1; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BAYAY29rGAFjb2sYgAGBAsAAIL8dozBQlIWIiV4rj9gOY2m9-sjlCGI9NCYuyfxFWz_hwQBIMEYCIQDpROlxFxvBjL08iojCh-V5LQ7KWESt49YkA7Dltj2t0gIhAJ4glnja56H5WuIhxGV4v6S_91A2QN8CUrbh7IJGzBVb; _popprepop=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache-Status: HIT
d.pssy.xyz/t.php
23.235.244.224200 OK 20 B IP 23.235.244.224:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer Verdict Alert quad9 Sinkholed
GET /t.php HTTP/1.1
Host: d.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 12 Nov 2022 09:44:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: guid=a876975f-0c00-4057-9941-5de2eca81b1f; expires=Sun, 12-Nov-2023 09:44:59 GMT; Max-Age=31536000; path=/; domain=pssy.xyz; secure; SameSite=None
Access-Control-Allow-Origin: *
Content-Encoding: gzip
s.pssy.xyz/prplugs/0/1207185/240x180.jpg
172.67.206.135200 OK 16 kB URL HTTP/2 s.pssy.xyz/prplugs/0/1207185/240x180.jpg
IP 172.67.206.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 240x180, components 3\012- data
Hash a927dba8902497deed1f5cb904c2b267
b22ef812bb997c9bb1c6e8add92f8e65c9ac3ec0
ab88f3916b5a8ee75b3198c4142504e0620a1f40f59f8875aab1b7df4967a75a
Analyzer Verdict Alert quad9 Sinkholed
GET /prplugs/0/1207185/240x180.jpg HTTP/1.1
Host: s.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:59 GMT
content-type: image/jpeg
content-length: 15856
last-modified: Sat, 16 Apr 2022 08:50:21 GMT
etag: "625a834d-3df0"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PsQ4KEgomoUnnIZ9HbEXX%2Bwc5pKQSa4uowDWqFO5Uadv3XDnnEB5uigQo67S%2BZAjws0QabFfvtT081fEYt5%2BJfrgl7CUEvrAPnBTPAg3NV4%2BpPTa4Xtt4hb272w4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768e550b7817b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.blockadsnot.com/native.history.min.js
185.76.9.24200 OK 0 B URL HTTP/2 www.blockadsnot.com/native.history.min.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /native.history.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datawav.club
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Fri, 18 Nov 2022 20:59:06 GMT
access-control-allow-origin: *
link: <https://blockadsnot.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1668805146
server: CDN77-Turbo
x-77-nzt: AblMCRQoLNv/fbMAAA
x-77-nzt-ray: ffffffffdf8b545d176b6f6395f39415
x-cache: HIT
x-age: 45949
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
gnditiklas.com/t/9/fret/meow4/1830123/brt.js
62.122.171.6200 OK 0 B URL HTTP/2 gnditiklas.com/t/9/fret/meow4/1830123/brt.js
IP 62.122.171.6:0
GET /t/9/fret/meow4/1830123/brt.js HTTP/1.1
Host: gnditiklas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:54 GMT
content-type: application/javascript
last-modified: Mon, 07 Nov 2022 10:03:15 GMT
vary: Accept-Encoding
etag: W/"6368d7e3-10c94"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
i0.wp.com/static1.e621.net/data/85/1c/851c704af4ee375f37a33af584a5b2e9.jpg
192.0.77.2400 Bad Request 0 B URL HTTP/2 i0.wp.com/static1.e621.net/data/85/1c/851c704af4ee375f37a33af584a5b2e9.jpg
IP 192.0.77.2:0
GET /static1.e621.net/data/85/1c/851c704af4ee375f37a33af584a5b2e9.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 5
X-Firefox-Spdy: h2
i0.wp.com/www.bdsm-list.net/gallery/maninpain/0137-cx/sn004.jpg
192.0.77.2200 OK 0 B URL HTTP/2 i0.wp.com/www.bdsm-list.net/gallery/maninpain/0137-cx/sn004.jpg
IP 192.0.77.2:0
GET /www.bdsm-list.net/gallery/maninpain/0137-cx/sn004.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: image/webp
content-length: 91728
last-modified: Wed, 09 Nov 2022 02:09:38 GMT
expires: Fri, 08 Nov 2024 14:09:38 GMT
cache-control: public, max-age=63115200
link: <http://www.bdsm-list.net/gallery/maninpain/0137-cx/sn004.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8af0d694752c746b"
vary: Accept
x-nc: HIT arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
wankgod.com/links-en.php?&jl=7
104.21.72.209200 OK 0 B URL HTTP/2 wankgod.com/links-en.php?&jl=7
IP 104.21.72.209:0
GET /links-en.php?&jl=7 HTTP/1.1
Host: wankgod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datawav.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 09:44:55 GMT
content-type: application/javascript
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FGOGKCWM8O5pg9VgB%2F9FvsaLmU7AWWsFzFQfTdh0qxyHZKVjD12kXjUHDi4p5TOSnv4I5jC%2B0OBbNFfWTfLGkuIYGCBL1aY96st8M277j%2BRvAU%2FEWQJlFOb6lEnRUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 768e54f239bdb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2