r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15519
Expires: Sun, 05 Feb 2023 03:00:07 GMT
Date: Sat, 04 Feb 2023 22:41:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19841
Expires: Sun, 05 Feb 2023 04:12:09 GMT
Date: Sat, 04 Feb 2023 22:41:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 21:43:39 GMT
content-type: application/json
age: 3469
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8057
Expires: Sun, 05 Feb 2023 00:55:45 GMT
Date: Sat, 04 Feb 2023 22:41:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QtsY+lWuEnoyH0Eozxx5pUDRNdwTh4aFaRCLsK2ujvlUGk3ljYG/+Wv8fSGGpdbmxESM1ENjOac=
x-amz-request-id: 0ZDX9TGAWZZ25BQW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 22:24:12 GMT
age: 1036
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 22:41:28 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 22:07:19 GMT
age: 2049
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10485
Expires: Sun, 05 Feb 2023 01:36:14 GMT
Date: Sat, 04 Feb 2023 22:41:29 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.70.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.70.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /LQ7zfbQPq2i6AsESVsw9Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1tHv/o6N9mwRAYPRkTt/dSulPt8=
javgg.club/jav/ofje-353/
188.114.96.1200 OK 19 kB IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65155), with no line terminators
Hash 01b0f336d7fd9020650ddb8ee3ba7ee6
9e09bda139ea88d10d0f553941629fd66da61925
31da07a7637fb9d7f5576c821761d27ee7240055f6d718ef3f4b10fa8136d723
GET /jav/ofje-353/ HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f; expires=Sun, 04-Feb-2024 22:36:54 GMT; Max-Age=31536000; path=/
Link: <https://javgg.club/wp-json/>; rel="https://api.w.org/", <https://javgg.club/?p=80787>; rel=shortlink
Last-Modified: Sat, 04 Feb 2023 22:36:55 GMT
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pm4FCsMKHk3P7tICQQclzcvS2ssBTC6RacQAcxegHTAkbUxhtO63aHNK%2BosXXGB3KAJoykaz4g9%2FxapXmGj4JXmnJAnKLjruxah5%2BtCT6pCAs82qwPzoJm2T6wrE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946e9f6b92efac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/lib/lazyload.js?ver=2.5.2
188.114.96.1200 OK 3.7 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/lazyload.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (7862)
Hash 672b50705cf423d1141fb60fd78d91fa
49e3388f6987026ae4a7b123357a3f1d1f6847ea
b1e9a48ccc20becdfca3b538b4baf4ba4b9b19cf876d4ae62d747ae463af7534
GET /wp-content/themes/javggnet/assets/js/lib/lazyload.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 21 Oct 2022 09:50:44 GMT
Vary: Accept-Encoding
ETag: W/"63526b74-1ed1"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QLBsNbOqDO1hcLDG0BahqTNtwz9cswA2lR9BRoqxmuOEHqIWWvk%2B5l5s3MTR9cr0%2F7jvd2fsM3AepgF43jTqCBE7Uk58gUHnVCOeGV7%2B7LqPbrVrPv77vrFULhMC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea034d06b4f7-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/lib/idtabs.js?ver=2.5.2
188.114.96.1200 OK 716 B URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/idtabs.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (1541), with CRLF line terminators
Hash 56a4b77e4c27af1c45cd3c2ff2927a90
42800a02a4720599368165110ae6396a461aec4f
0d3c3d2257e797c9a3a7035032195a0d3d3576f9dde4ab7f7633957dd28b9dff
GET /wp-content/themes/javggnet/assets/js/lib/idtabs.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-607"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f7NIYhEqU8Ua4yseTddW%2FD7NFo9LUAWhg9singHQFZ4YJ%2Bj9g%2B8TFLEsCXQbQGcHGahgnxIwMc8N4oVMTp9UxDu04%2Fld3pcQjqUzbItu9KVc4CIJVABvAIxHR10m"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea034958b4ee-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
188.114.96.1200 OK 4.5 kB URL HTTP/1.1 javgg.club/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (11126)
Hash 3c98a700dc2b35784e3ab92b69fa12dd
ae262106bb9bccf5aa3637162370b3fe7b8d65a7
7c27d01e97b0c938adce205848bef132e082cb71eba36eb4ff68b919dbb18422
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Dec 2020 04:26:24 GMT
Vary: Accept-Encoding
ETag: W/"5fd051f0-2bd8"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oCtAwEL1mgvMc52BBsIPmqGTfCKaJw2yUo8a9rfjwuSZIm3lCn2EqgG%2FRYsxA9yKi1I669%2FLNATCGmq59XST854FuuULyKyTiKYAveXLL8XV3zhzfoMF3nNc4fCT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea034ba3b50f-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/lib/owlcarousel.js?ver=2.5.2
188.114.96.1200 OK 7.3 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/owlcarousel.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (635), with CRLF line terminators
Hash d670687ca1649dce51f29c697c2542e9
d9e17ac045f341657c4a030c8914fff58bfad5fd
fa9aa09f5250087ecd4df7055cc7e2990caa8cfa605356762deb7af912101979
GET /wp-content/themes/javggnet/assets/js/lib/owlcarousel.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-5d82"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kNvJRlZ%2FJZ5DmjiOBIPE3aMST%2FX6WJnDrD6OqECPrrCXuqHbEaRjKmt5Bq67vxGKCuuFpUNt%2FM4339XxYAJRh9nW%2BDH1Na1ksns7BQ7bLhBOl5Fw7XOPONa6SWxw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea034abd1c12-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
188.114.96.1200 OK 35 kB URL HTTP/1.1 javgg.club/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 188.114.96.1:0
File type ASCII text, with very long lines (65447)
Hash 697e1e15f6290274b58f7c1ae568de7d
cab3b74764f7cce03bc6fa37ae793840a48d2d75
ac809b797323a6cf133812cd7d76539143406865ea6157b92ca920bf088e6c09
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Nov 2022 08:50:48 GMT
Vary: Accept-Encoding
ETag: W/"6364d268-15e54"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6aox6DNS%2BW34oiT8KCRAgNlDKfka%2BUptig5eF04s%2FG6X7yLFPU7AAcbvYWf1jrPr15EtGC%2FYHkEhKcQwsb7HFjsbQB2WIkVSXcfChIUkAg2ENPhMrdHolCm6INKG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea03496bfac0-OSL
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash dfd879be7ff3cc6aca411df5976aff47
1913c9fc2ba736fa8c190341837775ef5577b253
9f97b63ec3f9c3eee0c2cf782dfbd9aab8e058c4d2c6feef3c17c1fdae270677
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 14:30:26 GMT
Expires: Fri, 10 Feb 2023 14:30:25 GMT
Etag: "1913c9fc2ba736fa8c190341837775ef5577b253"
Cache-Control: max-age=488334,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7946ea03ca6ab4e8-OSL
javgg.club/wp-content/themes/javggnet/assets/js/lib/pwsscrollbar.js?ver=2.5.2
188.114.96.1200 OK 14 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/pwsscrollbar.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (45007)
Hash f7eb5de5d58e8ce001c13801fd60b225
6f604c038bbd2f9cc8b50c99c8a29f55ebbf3acc
885c332e14fc102c7d4d62d3184595f157119501a48cbbed2ca30daeb6781475
GET /wp-content/themes/javggnet/assets/js/lib/pwsscrollbar.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 04 Jan 2021 04:40:18 GMT
Vary: Accept-Encoding
ETag: W/"5ff29c32-afd0"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lfZiu%2FctRj4r8YnJ9%2BivWJNScZu%2F7%2BP6Ul6lFkbswfOs5z0kUBs%2Btyk8HEg1JUg3V7qssVvmA3H0A8%2BQ1AdktiVd%2BFDAJ%2BUkoCz148n%2FY2NQ%2FfTTJgf7vNp38EOE"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea034ebab4fa-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/front.ajax.min.js?ver=2.5.2
188.114.96.1200 OK 3.9 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/front.ajax.min.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (15442), with no line terminators
Hash dc32402bd027aea4ed3c3155cfb3bbc0
348c2af9d582aad1664e7f8a5117c7bd600a191f
ae08d74ec9cbf1981a9739e5d2576400e38cd78d9d82b8dab955a33addd923ba
GET /wp-content/themes/javggnet/assets/js/front.ajax.min.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 05 Mar 2021 18:57:22 GMT
Vary: Accept-Encoding
ETag: W/"60427f12-3c52"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sVX9INS8AK%2BfY%2BKD8n%2Fl8E7QR7y%2BwtDEuMm%2FqKyBjtUOd2bP2OT%2BcNBrkRRg7Vy%2BVmyUDYfdGck3Sq0%2FxMPlQIDvm3tsolVWScEYQxmOiyMOquqS%2BzUGnwfvOro7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea03d9e9b4ee-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/lib/isrepeater.js?ver=2.5.2
188.114.96.1200 OK 3.3 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/isrepeater.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (10378), with CRLF line terminators
Hash 7907546682c90972b414f59b5cafa4b1
c45b6f1618ff6263f1906af227bf8a62c6901e4b
f7c4a598d756e88512b583c078d4b43f6fb29538c892cd5b5491483b9ae63dd6
GET /wp-content/themes/javggnet/assets/js/lib/isrepeater.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-288c"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HuXFqK92gnrPJms47DfsOgu%2F88hw2bTPXhQWt9YNg2uByVAoSMpPQNk2jTedjPZymtStizZgqEgx3MlJqQle1RXW6w0bCZi4KdZE3%2FpaYtzVF2haVLNnUkDT0fxz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea03dd93b4f7-OSL
alt-svc: h2=":443"; ma=60
javgg.club/wp-content/themes/javggnet/assets/js/lib/starstruck.raty.js?ver=2.5.2
188.114.96.1200 OK 3.7 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/starstruck.raty.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (10362), with CRLF line terminators
Hash 649bf56fa710de57aa7290f2c99d0766
3014fc283dc083c6665cd434f93380ea0d05891d
31334bb9d2d9c7e4ea2e2ddbe282e6d55c28b8eb733a6d54fa2dc17361276f93
GET /wp-content/themes/javggnet/assets/js/lib/starstruck.raty.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-287c"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B7XnpXZVJvsrsrheGRkyojFszEYfmjJHt69CZfZmM1A%2Bxmr8SwY7B64jhhB5QE7u6dCqUNkmsmQeTAM3WHiCzJEbnEA2VQ%2BO1HmATMKl6k9%2F9akuUjZblaOLbyQV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea03eb4b1c12-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 22:41:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 22:41:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
javgg.club/wp-content/themes/javggnet/assets/js/lib/starstruck.js?ver=2.5.2
188.114.96.1200 OK 607 B URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/starstruck.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (1309), with CRLF line terminators
Hash c00996c8f316aaefa4019b4123b6f90d
cfa1575eb754ff82455a52488f04a551604fc3e9
1b0424ecba7ee4f4d48c11d6491fba3531be9a648500b3892cda818c736d95a5
GET /wp-content/themes/javggnet/assets/js/lib/starstruck.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-51f"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3eQQKOBzJ5u0K2uFUNHFJMKDCZz4%2FHemQnnmWRn%2BvywXc4JogKSDijcJdciPJInLCzHtToN96HsR5GwJqJBLGi2yKkilz%2BKpENdYCinxSBv2IOHuXfw9zpBl4xPK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea041a00fac0-OSL
alt-svc: h2=":443"; ma=60
www.googletagmanager.com/gtag/js?id=UA-203711014-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-203711014-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 89779256fa5fe125cc03506cfb2069f5
aa25d897b672e4caa7d9a6c3986372aece4dc5b4
36ed6ccb7a200c232d0b87f0dddb04ce41d5384aeb266aad2e6f5efc9a18b16a
GET /gtag/js?id=UA-203711014-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 22:41:30 GMT
expires: Sat, 04 Feb 2023 22:41:30 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43934
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
javgg.club/wp-content/themes/javggnet/assets/js/front.scripts.min.js?ver=2.5.2
188.114.96.1200 OK 1.7 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/front.scripts.min.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (4817), with no line terminators
Hash 1f7d289a2d948ec87bb1f37e319bb62a
dd399530541f002ed455dc7683ec062504095b8e
c0e2cf3a0b7d2aedf96fb01a76877868cc09e3565b61ad8dea6a5e041e94d938
GET /wp-content/themes/javggnet/assets/js/front.scripts.min.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 05 Mar 2021 18:57:40 GMT
Vary: Accept-Encoding
ETag: W/"60427f24-12d1"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JYixHWLSajDgQRVp0ObZCD7uXRT%2FHFow2pY5trKzaJKc%2FVIw1157ZZ%2FhijL%2FoMzttbT%2FyQ0SuAdCY5%2Bji0ue4UGNPRWT7kZeIH%2FU5QwqP6QFrEMFEQaJFOSL0BTl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea042fb1b4fa-OSL
alt-svc: h2=":443"; ma=60
avgle.com.7mmtv.top/6J8hfA6.js
135.181.208.216200 OK 38 kB URL HTTP/1.1 avgle.com.7mmtv.top/6J8hfA6.js
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash 43979a3a5c285ccf21f58ce16f4f0113
a8eb086e0f998b93da065fcad280ea112ef6d812
2f141fba080d0bd1803052811352129a765773b34be129ecbcb7eb233a34633c
Analyzer Verdict Alert quad9 Sinkholed
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET /6J8hfA6.js HTTP/1.1
Host: avgle.com.7mmtv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 11:45:01 GMT
ETag: W/"63dba23d-1dd6d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e6df4fdec76c527da827cfa84260c772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: 5TYx3eB9fcKES78LaxWf_L7BwpPskV0ANY2-V85-05HFfXAZBkoxtA==
Age: 196
Content-Encoding: gzip
ipx.7mmtv.top/8YE7Uw5.js
135.181.208.216200 OK 52 kB IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash 4b5b61e0860975731f4e96c1bc4edffa
3162851aac08bb174dd954d3314f58f76dafec4c
2baf6123217cb85eea50bd1844bbba4bfe0712834919569871ea78f138df2b84
Analyzer Verdict Alert quad9 Sinkholed
GET /8YE7Uw5.js HTTP/1.1
Host: ipx.7mmtv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 11:45:01 GMT
ETag: W/"63dba23d-2a581"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 990c1aa70667fe4e8f93d88ac8400fc4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: Ek6UgNfuohJEdD8FpCc2lxiYjWT3ahdh_TSWLB6BxXJGhVRHtnpIWg==
Age: 206
Content-Encoding: gzip
javgg.club/wp-content/themes/javggnet/assets/js/front.livesearch.min.js?ver=2.5.2
188.114.96.1200 OK 1.7 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/front.livesearch.min.js?ver=2.5.2
IP 188.114.96.1:0
File type HTML document, ASCII text, with very long lines (4898), with no line terminators
Hash 649513ee65bd930a5022203f29eaa1e0
d3af358b3d2dac29489c9d546a1a54540e54756c
99823ff173a7adad85ef3d896f443dbe21b956dd16df13ae8dab6b0a0805c3d5
GET /wp-content/themes/javggnet/assets/js/front.livesearch.min.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 05 Mar 2021 18:57:36 GMT
Vary: Accept-Encoding
ETag: W/"60427f20-1322"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0N%2FzL9gU6Fnr4Z5nrD5kMRuzD5Ra8qNaj%2F6v2qUEqh1s4e%2BTgoOqwuON1XTLCqnN8epccbJFCVPqJB48eCDfQb4%2B2JAEu4tWO0tf3u8qyRrA0GcOptD1VVmTlhft"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea046aa8b4ee-OSL
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash dfd879be7ff3cc6aca411df5976aff47
1913c9fc2ba736fa8c190341837775ef5577b253
9f97b63ec3f9c3eee0c2cf782dfbd9aab8e058c4d2c6feef3c17c1fdae270677
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 14:30:26 GMT
Expires: Fri, 10 Feb 2023 14:30:25 GMT
Etag: "1913c9fc2ba736fa8c190341837775ef5577b253"
Cache-Control: max-age=488334,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7946ea04885bb51b-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 22:41:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
javgg.club/wp-includes/js/comment-reply.min.js?ver=6.1.1
188.114.96.1200 OK 471 B URL HTTP/1.1 javgg.club/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 188.114.96.1:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 May 2022 01:04:21 GMT
Vary: Accept-Encoding
ETag: W/"628d8095-ba5"
Expires: Mon, 06 Mar 2023 22:36:55 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vcpYtGX7i9w1GHfU0sF2LTaRk%2B8At2KmZqwXLR24VvP380i98Q4v%2F1BqZxturgNGn5rh3jfSrGADT6V5bctzVQVobhIt1hefTiPgmd%2BGX6eVWwOeZfa9RhYCFY8t"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea046e6ab4f7-OSL
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash dfd879be7ff3cc6aca411df5976aff47
1913c9fc2ba736fa8c190341837775ef5577b253
9f97b63ec3f9c3eee0c2cf782dfbd9aab8e058c4d2c6feef3c17c1fdae270677
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 14:30:26 GMT
Expires: Fri, 10 Feb 2023 14:30:25 GMT
Etag: "1913c9fc2ba736fa8c190341837775ef5577b253"
Cache-Control: max-age=488334,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7946ea047b34b4e8-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14145
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 22:41:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14145
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 22:41:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14145
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 22:41:30 GMT
Connection: keep-alive
cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.mobile.min.css?ver=2.5.2
194.242.11.186200 OK 3.2 kB URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.mobile.min.css?ver=2.5.2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (9177), with no line terminators
Hash d1bf1e162ec3975e99a909da89be5dd9
6928d0a3235b0391080128ea74bbae47beeaf4cb
8881801c72246d572f384d71e97feea9af8ebb690d2d4c63ba7987c160dd8337
GET /wp-content/themes/javggnet/assets/css/front.mobile.min.css?ver=2.5.2 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-207
x-downloadsize: 9177
x-bo-origindownloadtime: 19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: bf3cdbf11829271c73b4ba3fc95f0718
cdn-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14145
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 22:41:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1f3df5bbad5048923e29c0767d703d3
48c408d37a7bd7f96653174359178eed46ddf298
c8bae041c3d64334964b2aa771a07bc2709ced4c497e1795f864d9416fed728f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b593b5-5093-4504-8ab7-492c62b14ca7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5801
x-amzn-requestid: 441284a8-923a-4b22-b39f-95dec713c292
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fjj9jHu_IAMFZ-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d7b389-788174a773fcd695540cc95e;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 12:09:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DgvqiQwdytO2caPNzg2OhGcv8ly9N_YeQTzpuf6iwAVt8AQZEXRLqw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:52 GMT
age: 3458
etag: "48c408d37a7bd7f96653174359178eed46ddf298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a85f9ff-45f7-4467-9bcf-99adfc764c87.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a85f9ff-45f7-4467-9bcf-99adfc764c87.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e011d457dc1153c2be3958161c109d4c
7579fae4b76a48eba7acd8f8572db91191db0c19
03156808efbab06a9a28138dd185c7870a1144f758b9743878f480de863eb884
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a85f9ff-45f7-4467-9bcf-99adfc764c87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4493
x-amzn-requestid: 36c0c96d-9e8f-4acd-a10b-e2ff8252d62a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsdDBHAcIAMFaVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db4213-1e55f43267ecaba247c2b963;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 04:54:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NPR9b5py6BzkCiWXJYNpRrkapxpGeAuk4BqrkUIpx-Oir8zxmcb5cg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 08:05:24 GMT
age: 52566
etag: "7579fae4b76a48eba7acd8f8572db91191db0c19"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f28ffcf384ce958b6302d05b6690c088
e5d4cbfc7482d35ee2ca03a7178426f3e2e97010
725d42a020d496f596074794cc2abdaca8a9b821e1a3502eee26056d0f528506
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7665
x-amzn-requestid: 001ba86d-ebc8-4819-89f7-1604bc059cd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGibFeqIAMFqMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8475-076d982b5fccf2b931a05976;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gnkjykHYcMthJkIb-A1P1rRw9FZieh3TmoTT3qVaceWw03TQNX8qfQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:32:24 GMT
age: 546
etag: "e5d4cbfc7482d35ee2ca03a7178426f3e2e97010"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 13:05:46 GMT
age: 34544
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a38348b-ed70-4e2f-80ce-d13e44fefcfc.webp
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a38348b-ed70-4e2f-80ce-d13e44fefcfc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b596a8e984911df703e15c72d25d513
a1fa1355f4de6f246d35bed9f128e13fc9dc4e72
aba708124199ec6b0ce86ac14c6c18d233ff405071a7f22522217c2fcb0aa9b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a38348b-ed70-4e2f-80ce-d13e44fefcfc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13557
x-amzn-requestid: 981a0f31-e874-4392-a81d-12d667020700
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH8-JGEsoAMFhZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca85a-7398031f2676734c65447e5b;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:07:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3dw5Oj2su-_kCvpC1jDJsyAEUPzaexgTzhAC9yAYSyXTFRVge2FR6Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:43 GMT
age: 1847
etag: "a1fa1355f4de6f246d35bed9f128e13fc9dc4e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e7140400336984afc6093c1246f863
59e0b21cdf4cfdac3f1ea05badd007727939ac42
4d927e74922159db5d07b9947fa1021cff74bb7b55759960cb3941d05c1e8f11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98423c35-aa11-41c0-8f4f-52bec4c9eaa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9579
x-amzn-requestid: c474008d-a6a9-409b-88e2-c55062044575
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzQtnFGhoAMF5Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddfb23-54dd67257ba25ad24e977a9c;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 06:28:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0Of3BK3VqVMGQGDIODQthVmi7BC8Ney4zgGCpVuzYc1j6D8RRP-AxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 11:55:41 GMT
age: 38749
etag: "59e0b21cdf4cfdac3f1ea05badd007727939ac42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
javgg.club/wp-content/themes/javggnet/assets/js/lib/blueimp.js?ver=2.5.2
188.114.96.1200 OK 10 kB URL HTTP/1.1 javgg.club/wp-content/themes/javggnet/assets/js/lib/blueimp.js?ver=2.5.2
IP 188.114.96.1:0
File type ASCII text, with very long lines (32032), with CRLF line terminators
Hash 9f3d585b679a96863dc83dc50d312818
622c4c247f29beee7f0bb49d771695da4d10aca4
d5318fa3cae38213b3b6708a12ea2f00f8757fa0a79b9d70b2cc44a1e2edc28d
GET /wp-content/themes/javggnet/assets/js/lib/blueimp.js?ver=2.5.2 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/jav/ofje-353/
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 18 Mar 2019 13:37:30 GMT
Vary: Accept-Encoding
ETag: W/"5c8f9f1a-80c4"
Expires: Mon, 06 Mar 2023 22:36:56 GMT
Cache-Control: max-age=16070400
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VsEGMh6i%2BxgP4M8TplGK98Ya9X3HoASqU3KQp3%2FydgiDYg11mSfvbotJUYhDFD%2Ba5Rho3XfvMDH6W54lNlgB2twLM7aqm1KVYqiscPn%2BeQ2dskU7hRQKgRQxN536"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea03dc4fb50f-OSL
alt-svc: h2=":443"; ma=60
i.imgur.com/sHexJQK.png
151.101.244.193200 OK 2.8 kB IP 151.101.244.193:0
File type PNG image data, 223 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash b44ac29a19e593ad44e2029ce2335348
55c7c2e04c912facac7b8edbb29559f1d17c0d29
ae1d62406b3159dbdc21ee17f22a31ee9e494927ec8ab7f03360da593b13e54d
GET /sHexJQK.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 07:00:20 GMT
etag: "b44ac29a19e593ad44e2029ce2335348"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Sat, 04 Feb 2023 22:41:31 GMT
age: 3150958
x-served-by: cache-iad-kcgs7200100-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 553, 1
x-timer: S1675550491.397591,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2774
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 376ce34b1339e9b7baa539b0bc7bdc91
7343e69022844556a2f4e05b242865f7b36e26f2
bb6d6b2084684a1c10ea5fbd05e4ee07828d6f25201e280f14c5ef1b7ccdba17
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BB6D6B2084684A1C10EA5FBD05E4EE07828D6F25201E280F14C5EF1B7CCDBA17"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8521
Expires: Sun, 05 Feb 2023 01:03:32 GMT
Date: Sat, 04 Feb 2023 22:41:31 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 376ce34b1339e9b7baa539b0bc7bdc91
7343e69022844556a2f4e05b242865f7b36e26f2
bb6d6b2084684a1c10ea5fbd05e4ee07828d6f25201e280f14c5ef1b7ccdba17
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BB6D6B2084684A1C10EA5FBD05E4EE07828D6F25201E280F14C5EF1B7CCDBA17"
Last-Modified: Thu, 02 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8521
Expires: Sun, 05 Feb 2023 01:03:32 GMT
Date: Sat, 04 Feb 2023 22:41:31 GMT
Connection: keep-alive
images.javgg.net/wp-content/themes/javggnet/assets/img/javplay.png
104.26.3.82200 OK 1.0 kB URL HTTP/2 images.javgg.net/wp-content/themes/javggnet/assets/img/javplay.png
IP 104.26.3.82:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 02379a2356d44203efcd1fa59cda916e
3736b98e091e6d361242df1233fe83189923811f
64eacb972b0fa91c1d9c29748eac3d80f516bdf421ea6f6430e2293edd5bd97b
GET /wp-content/themes/javggnet/assets/img/javplay.png HTTP/1.1
Host: images.javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/webp
content-length: 1036
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1209
content-disposition: inline; filename="javplay.webp"
vary: Accept
etag: "607f4364-4b9"
expires: Mon, 06 Mar 2023 19:53:26 GMT
last-modified: Tue, 20 Apr 2021 21:11:00 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 9932
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oEuvBfTDDjHVCTuIhu50K0zP9zz82prMtJI9Spl5uuJK5KvXnhMrT60ssTNNZhHToIuyHgVFvdqkMSY2GFO48cwmnxfpLA0JrmYqVBy1VLbbk69sHJkbliv53czgjv6o7%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea0b7fa9b505-OSL
X-Firefox-Spdy: h2
avgle.com.7mmtv.top/api/spots/322939?s1=%25subid1%25
135.181.208.216200 OK 142 kB URL HTTP/2 avgle.com.7mmtv.top/api/spots/322939?s1=%25subid1%25
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Size 142 kB (142165 bytes)
Hash 6a94b500696f3191e51656731c7d634e
23e79750aa499a2ae164f8c6c3f92189bc8eb741
98c0a7dc458814e40cd08f394af699bbfb3daa420f471bc4f410aa6e23db127d
Analyzer Verdict Alert quad9 Sinkholed
GET /api/spots/322939?s1=%25subid1%25 HTTP/1.1
Host: avgle.com.7mmtv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=ZRiymteLI32AtuQtdCPv; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 22 kB IP 142.250.74.131:0
Hash 2e56d74b1c1b710bed5be078b75e5e79
d423b1ff90d89979dc6e26b2ca529dee4213a2b9
43d2fc50871ddb687577efd495883a35f929c1445e1df87af076170a3e551667
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 22:41:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 22:41:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://javgg.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 520771
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
javgg.club/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675540800
188.114.96.1200 OK 17 kB URL HTTP/1.1 javgg.club/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675540800
IP 188.114.96.1:0
File type ASCII text, with very long lines (35527), with no line terminators
Hash 9a5fb5f43e9a8819ce7358f6cbdd884d
159d75b6d01023a3f5d5c4c274fcb99e991670d5
0dad44de09fc6728465153835e26f3198661c0a5e8eaf0b7ce4e66c2db338d61
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675540800 HTTP/1.1
Host: javgg.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: starstruck_562301a083ce596b9d385d58aa8476ed=27e8b3c8cb0ad421192de3fa294e007f
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:31 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
x-control-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FLW4rCcP9K%2Blcq7tOxGbm0IOWTBkN0w5ZiQa6nHMIfHWqCgMeLwBdy5YA3Y%2FW1G6SAtf2R3QqAYVbD%2F1%2B4gGND0oZ7rIeNloApFrzbEBlIg0N9HFkbNf8uYwqwP%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea0c187bb4fa-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://javgg.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 312572
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://javgg.club
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 379945
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/02/ofje353pl.jpg
104.26.2.82200 OK 471 B URL HTTP/2 javgg.net/wp-content/uploads/2022/02/ofje353pl.jpg
IP 104.26.2.82:0
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
GET /wp-content/uploads/2022/02/ofje353pl.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 211137
last-modified: Tue, 22 Feb 2022 07:13:30 GMT
etag: "62148d1a-338c1"
expires: Mon, 06 Mar 2023 22:41:31 GMT
cache-control: max-age=2678400
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GFBrXEY%2FoHjgwOPzXe3cdap2pUItc4VG%2FfTl1n1Ul8toiVEySZuMf3jBIa5J6W3NA%2FGql2p9WbVt1EtPxoNUPMD7ivjCdhpUsVX%2F9twBJjD4jTEAuH203s04Zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0b78ad0b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2021/11/1svdvd887pl-300x170.jpg
104.26.2.82200 OK 28 kB URL HTTP/2 javgg.net/wp-content/uploads/2021/11/1svdvd887pl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 6c9343fc76e2d50e7b98ea76b4fa51ba
679478141a7607334e5693645f8e78c4c72395d1
3ca50725f0e081eb8c222911c896fd711ae4c14710282f50600e990ca76a14d8
GET /wp-content/uploads/2021/11/1svdvd887pl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 27469
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=30640, status=webp_bigger
etag: "618d2e51-77b0"
expires: Mon, 06 Mar 2023 19:53:32 GMT
last-modified: Thu, 11 Nov 2021 14:53:05 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NCYKwlT2IPpeRq%2Fvh2a%2FxW1XZMOdUnysraMAHuU7EG6pE%2FGbt8lswzOCmvZbh1FrbvfPmWge41JfE4NO8ouTYSE0y2Gmav1mF6pl1xAiMIqDQWjz3dJJr6Ed9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0d5c110b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2023/02/URLH-019-%20javgg.net-300x170.jpg
104.26.2.82200 OK 18 kB URL HTTP/2 javgg.net/wp-content/uploads/2023/02/URLH-019-%20javgg.net-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 739740a58cc1d929ddc981ac263d9946
04c9a6af6d0109279b28b8fa7d9f034b73e32672
1c2863e8695e4626aaa26131c0e435f02ed1d769e26b76c07e6722e5969c8c6f
GET /wp-content/uploads/2023/02/URLH-019-%20javgg.net-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 18019
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=18693, status=webp_bigger
etag: "63dbda1b-4905"
expires: Mon, 06 Mar 2023 19:53:31 GMT
last-modified: Thu, 02 Feb 2023 15:43:23 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rzl4vmnQl7%2FRdsPmll2Wanh410SuyyRbQ%2FaTW4xsPAjUVmgrXDpywuxKNu2ToUrz%2BlQvoA1jfWl6a2ySKyssybLyAVL748EU5qm6vRXWikBadB0TbZss0HYwkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0d5c100b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/08/504ibw883zpl-300x170.jpg
104.26.2.82200 OK 18 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/08/504ibw883zpl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 334c1031160940683ffb40c3df6cde85
0eaeaca2b568ebb736a028ecd767b835d393e99f
1982cdd43ccbe990e1e4ed40137b2287440dba2d05c82540cf73bf832d28c0d4
GET /wp-content/uploads/2022/08/504ibw883zpl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 18426
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=19337, status=webp_bigger
etag: "6308cf28-4b89"
expires: Mon, 06 Mar 2023 19:53:31 GMT
last-modified: Fri, 26 Aug 2022 13:48:24 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h%2Buu1YzqzdN1EFgeMvWoXwaAbLcJ0nW0MCd5dBXv827NWIflWDafDt9uKny8BI%2F%2BtuDd62%2BM90ck0%2F2Jt7YIMlRXm8XTtZ8T2n97NU3shD1IaJlMNgDGufDzLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0d5c0f0b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2021/01/1dvdes809pl-300x170.jpg
104.26.2.82200 OK 21 kB URL HTTP/2 javgg.net/wp-content/uploads/2021/01/1dvdes809pl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 3653aaea2797f94fdd287092b04e8270
ccacf48d8c82c3351e2078a4a87c7d88fec9babc
57921e1df1e110a6024ccbaece35864b0bc5043816e6ab82e23581a7ab056a7f
GET /wp-content/uploads/2021/01/1dvdes809pl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 21092
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=23323, status=webp_bigger
etag: "6012e268-5b1b"
expires: Mon, 06 Mar 2023 19:53:31 GMT
last-modified: Thu, 28 Jan 2021 16:12:24 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pxbLq6CvXljDzp5AqUbKQiwThUxpHtELYFXm5O7UwYen8FtmFJFVRmum3BzrwH1rhcT5DyYINm1wIoN0KGF6FqpFhJQCsX1570JVa9Lf2wSuSPdy01AFjKx8JA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0d5c120b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/12/IPX-976-%20javgg.net-300x170.jpg
104.26.2.82200 OK 17 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/12/IPX-976-%20javgg.net-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash c0d7f11e02d82f1b43d316011d2cab32
8dc264ce088a65c651e33d22e87d62ce93fc595c
9e810ecfcc0c89db4dc8d5c773d7ec5a016c6ed445be771b3293b5f9f7ca6abe
GET /wp-content/uploads/2022/12/IPX-976-%20javgg.net-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 17280
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=22505, status=webp_bigger
etag: "639a0911-57e9"
expires: Mon, 06 Mar 2023 19:53:31 GMT
last-modified: Wed, 14 Dec 2022 17:34:09 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8N%2B9cn2FCnd4NpvcG1NGIWw53NgW3eyWmwdha7VZbdGuqQre1lpmx96fDnSb4OkK6wylSfilA1t7fYD%2BdP4sld2o4hfKIIk3lgi9ZIwppARVTXLqb9wNwbDQvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea0d5c130b31-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
104.17.25.14200 OK 5.7 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (17660)
Hash 9a538e2f36bf0785eaa231b2cefed7e7
4c5850eb43a0bd5a443ce14ecaa1d9d1b6b0a3d6
809a94d5924bbc182af1a40429fdfd0c9fb25f6192ee009b7658b38a5406bb8f
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:31 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 5719
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03faa-45f4"
Last-Modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 9945163
Expires: Thu, 25 Jan 2024 22:41:31 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T2pX9bzMg%2FkRMOI8eRp1bWU3aCoHYVlFnMzKHIES2NiQpPVMX6Lrngzvliv0KsWz1VuZQuU4IL21fBoztOuOyAi5La0GmRJ32sAcErdTcM5p2KMwuBBemqwzlLk%2BmjPN%2F%2FXYfpd6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7946ea0d9e69b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 7f14376e57d8eeae2476baf13764b33f
f7a611c2a4e826bde18efa33a9a3e31546008331
7e4829a8779eb5881358a17e765f6326b06a19e4b17843ebca85e7c5b667dd18
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:57:21 GMT
ETag: "f7a611c2a4e826bde18efa33a9a3e31546008331"
Last-Modified: Sat, 04 Feb 2023 18:57:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3534
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7946ea0e18ed0afe-OSL
syndication.realsrv.com/v1/api.php
95.211.229.247200 OK 1.9 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.247:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (2963), with no line terminators
Hash 218d4eb702c4cfff6e49630f306a6f9d
f16b7027afa92d32349e5d37eef2a80d1f070c2a
2b6b540305de5452c6b6a10d405e417346bbb65df4510e9edd03e739ecfdc4fa
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 320
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 22:41:31 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://javgg.club
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263dedf1b91d387.517814391462330301%22%3B%7D; expires=Mon, 03-Feb-2025 22:41:31 GMT; Max-Age=63072000; path=/; domain=realsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 766a6fdd090edee8009b0bff43218a59
65db763709927f3736ef92b5873e8c8b601e8a16
413bb29ba3d71743bb625efd445aa2fdb45249e2b0e52211ecb6c1b38f4c9549
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "413BB29BA3D71743BB625EFD445AA2FDB45249E2B0E52211ECB6C1B38F4C9549"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7664
Expires: Sun, 05 Feb 2023 00:49:15 GMT
Date: Sat, 04 Feb 2023 22:41:31 GMT
Connection: keep-alive
js.wpadmngr.com/npc/sdk/wp-banners.js
45.133.44.24200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Sat, 04 Feb 2023 22:46:32 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-1.jpg
103.254.145.148200 OK 4.5 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-1.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash 15aa42ddd8ae914bf13504f8b57fca1c
fa61b6bc14540e76ebe9fe88ae32a022dfe41a09
a4a4f27c58a498d3e86dbf8a6314790f2c10c8c34259e37c00f6ed406752c5ee
GET /digital/video/ofje00353/ofje00353-1.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: image/jpeg
content-length: 4523
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-11ab"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xtSWSl8LKHzAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OS05DMQy8Chd4T/7GcdewBamoB0jSl0oIdcNHRfLhyQsC4VnYsmfGQ0C8AC0gd2gHwQNjOK4Oq9CKKvH4dAzBeCmfl8t63d5DKIF6mIlxDmdXhxA1FU/hHmJZnVOYIwlSDoHggAFSFtmnFYDZCTM7ZJDBhTg938fD6Ri4Qjb9a0MLcEOAwBlld5set+nYzv2cNDfs5rWJkTbbtpa6pao49IP0E729ftSZYv43sHGj38XAgrONgphTefu6toh/lB06RRKS90QhzIk6p96KikkvtXCFUnKrbTv3/g25B3paXwEAAA==
95.211.229.247200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OS05DMQy8Chd4T/7GcdewBamoB0jSl0oIdcNHRfLhyQsC4VnYsmfGQ0C8AC0gd2gHwQNjOK4Oq9CKKvH4dAzBeCmfl8t63d5DKIF6mIlxDmdXhxA1FU/hHmJZnVOYIwlSDoHggAFSFtmnFYDZCTM7ZJDBhTg938fD6Ri4Qjb9a0MLcEOAwBlld5set+nYzv2cNDfs5rWJkTbbtpa6pao49IP0E729ftSZYv43sHGj38XAgrONgphTefu6toh/lB06RRKS90QhzIk6p96KikkvtXCFUnKrbTv3/g25B3paXwEAAA==
IP 95.211.229.247:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OS05DMQy8Chd4T/7GcdewBamoB0jSl0oIdcNHRfLhyQsC4VnYsmfGQ0C8AC0gd2gHwQNjOK4Oq9CKKvH4dAzBeCmfl8t63d5DKIF6mIlxDmdXhxA1FU/hHmJZnVOYIwlSDoHggAFSFtmnFYDZCTM7ZJDBhTg938fD6Ri4Qjb9a0MLcEOAwBlld5set+nYzv2cNDfs5rWJkTbbtpa6pao49IP0E729ftSZYv43sHGj38XAgrONgphTefu6toh/lB06RRKS90QhzIk6p96KikkvtXCFUnKrbTv3/g25B3paXwEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 22:41:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://javgg.club
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Mon, 03 Feb 2025 22:41:32 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8b540beb903efa34f940ff77e7872ef1
81fb965067f8fadc84a5df74653ccc83d5d79a8b
2eff1a3555daaa5e16edab7dfcb34e66a7a2d38dd7381f69346fd721a82de6d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EFF1A3555DAAA5E16EDAB7DFCB34E66A7A2D38DD7381F69346FD721A82DE6D1"
Last-Modified: Sat, 04 Feb 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8428
Expires: Sun, 05 Feb 2023 01:02:00 GMT
Date: Sat, 04 Feb 2023 22:41:32 GMT
Connection: keep-alive
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01P22oEMQj9lf7ABDUax33ucxda+gEzmWShlH3phV3w42tCC81BNHiORwkoL0AL8APqifGU0Q2TQWJKKOxP52dn9Lft+3JJ1/bpzCsLuiprXt2yiYGzqAiAC0ZQsYLFVZCZcjTBs0OAJDOPKgHEBPDXl8cZOBAsgBvGFJyuTiEd7NvU1qMfRdaKXW2vrCRVW6ula9kFJUTwu2V9/9qn33DKmKNFf//AgjPFA5/V9nG/Vvd/lAGZIvY4Ymzk1FTNwLDUxpt2stK47X09kCpo+wEFNKLYSgEAAA==
95.211.229.247200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01P22oEMQj9lf7ABDUax33ucxda+gEzmWShlH3phV3w42tCC81BNHiORwkoL0AL8APqifGU0Q2TQWJKKOxP52dn9Lft+3JJ1/bpzCsLuiprXt2yiYGzqAiAC0ZQsYLFVZCZcjTBs0OAJDOPKgHEBPDXl8cZOBAsgBvGFJyuTiEd7NvU1qMfRdaKXW2vrCRVW6ula9kFJUTwu2V9/9qn33DKmKNFf//AgjPFA5/V9nG/Vvd/lAGZIvY4Ymzk1FTNwLDUxpt2stK47X09kCpo+wEFNKLYSgEAAA==
IP 95.211.229.247:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01P22oEMQj9lf7ABDUax33ucxda+gEzmWShlH3phV3w42tCC81BNHiORwkoL0AL8APqifGU0Q2TQWJKKOxP52dn9Lft+3JJ1/bpzCsLuiprXt2yiYGzqAiAC0ZQsYLFVZCZcjTBs0OAJDOPKgHEBPDXl8cZOBAsgBvGFJyuTiEd7NvU1qMfRdaKXW2vrCRVW6ula9kFJUTwu2V9/9qn33DKmKNFf//AgjPFA5/V9nG/Vvd/lAGZIvY4Ymzk1FTNwLDUxpt2stK47X09kCpo+wEFNKLYSgEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 22:41:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://javgg.club
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22510.0199%22%7D; expires=Mon, 03 Feb 2025 22:41:32 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
na.nawpush.com/tags/9321?version_name=c
45.133.44.24200 OK 1.5 kB URL HTTP/2 na.nawpush.com/tags/9321?version_name=c
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (1547), with no line terminators
Hash 37861c225425e1c5913d4e401dfbcb15
2d0ee14ff76e74a9b2848b47a4e7027c39ef12d7
2c22b2619cd5cbbf33dfd16bb279f515936c8e9d222728d9ed195929ec855a4c
GET /tags/9321?version_name=c HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: application/json
content-length: 1547
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/448451/8ef3894784f1f3467b73910ccd33bb9099b5e2bc.webp
185.76.9.17200 OK 2.9 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/library/448451/8ef3894784f1f3467b73910ccd33bb9099b5e2bc.webp
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ab8bbb20fd4ab8b9f2345bc1bbc0a9fe
8ef3894784f1f3467b73910ccd33bb9099b5e2bc
72999b890831e46253dd0b1b023c86bf0753e0b473a5c5bff14ab325e62686a4
GET /library/448451/8ef3894784f1f3467b73910ccd33bb9099b5e2bc.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:32 GMT
Content-Type: image/webp
Content-Length: 2904
Connection: keep-alive
Last-Modified: Tue, 09 Aug 2022 11:14:50 GMT
ETag: "62f241aa-b58"
Expires: Wed, 09 Aug 2023 11:37:56 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1691581342
Server: CDN77-Turbo
X-Robots-Tag: noindex, follow
X-77-NZT: AblMCQ0Kp+j//pbsAA
X-77-NZT-Ray: c0a4cc2850077bdc1cdfde6373b1240f
X-Cache: HIT
X-Age: 15505150
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
s3t3d2y8.afcdn.net/library/426059/d264f62e1e4a683f059cbba5f12adb7bea1fa0fe.mp4
185.76.9.17206 Partial Content 33 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/library/426059/d264f62e1e4a683f059cbba5f12adb7bea1fa0fe.mp4
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash e75db63120250960e26fcc721dfe1306
d264f62e1e4a683f059cbba5f12adb7bea1fa0fe
e2ce0d3d8cb63a589c89a86005fe2a810b80a266513019045fd37c8231c2a3f2
GET /library/426059/d264f62e1e4a683f059cbba5f12adb7bea1fa0fe.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://javgg.club/
HTTP/1.1 206 Partial Content
Date: Sat, 04 Feb 2023 22:41:32 GMT
Content-Type: video/mp4
Content-Length: 32594
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 16:24:17 GMT
ETag: "63da9231-7f52"
Expires: Thu, 01 Feb 2024 17:29:05 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Robots-Tag: noindex, follow
X-Cache-OP: HIT
X-Accel-Expires: @1706808549
Server: CDN77-Turbo
X-77-NZT: AblMCQ1zVz//tz0EAA
X-77-NZT-Ray: c0a4cc28cc077cdc1cdfde63420a270f
X-Cache: HIT
X-Age: 277943
X-77-POP: stockholmSE
X-77-Cache: HIT
Content-Range: bytes 0-32593/32594
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-2.jpg
103.254.145.148200 OK 4.2 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-2.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash d9fa9f479cfee505cd769fd0716a361d
7dfe009aa09993bbac0043bb43abd3957ea022a7
595d3a16b9b90055d4bfdcbb80ea20e4f48a06561590905d4541bddb3b3bcede
GET /digital/video/ofje00353/ofje00353-2.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 4153
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-1039"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xxSWSl8LKIRAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-6.jpg
103.254.145.148200 OK 4.0 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-6.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash 7c40cc3ea6e78dbdf9a84d623748aae5
2402251e3e8067e8edb8d9dc220b15c61b207e62
6736240dc269e89d27c4b43bc59b3d50a4366431b33b09e320ea9341487a158e
GET /digital/video/ofje00353/ofje00353-6.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 4003
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-fa3"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xxSWSl8LKISAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-3.jpg
103.254.145.148200 OK 4.9 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-3.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash 7c6c51e7aba0888cf348ccfc5a11f536
18ea4fa51f04edb2c9f1fae1dde480f3122d16c3
866febe28cb94754059aa84851c64685a24a01dc3c6e5aa55d89ec5faeca1989
GET /digital/video/ofje00353/ofje00353-3.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 4923
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-133b"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xxSWSl8LKITAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-4.jpg
103.254.145.148200 OK 4.2 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-4.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash b37affe5755a282ebe1ff5fefa424b4f
922e1bc51ae9c569ee15e748b0a3ec2ac5dba738
67d291a2e7af3980ab8d3a82c5c6b7a8c5be6fd600123901ce4c434883db7111
GET /digital/video/ofje00353/ofje00353-4.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 4230
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-1086"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xxSWSl8LKIUAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
pics.dmm.co.jp/digital/video/ofje00353/ofje00353-5.jpg
103.254.145.148200 OK 5.4 kB URL HTTP/2 pics.dmm.co.jp/digital/video/ofje00353/ofje00353-5.jpg
IP 103.254.145.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 120x90, components 3\012- data
Hash 8860f9273483db9b60f5a9e034a6f6ac
bd2ba9ea31b9f3c8313851c201a9ecb2ecb4c339
11de2ead9bb5041877bcf8aa7b2877cb0d9223deb2bc25e7b74eb311dc162f7e
GET /digital/video/ofje00353/ofje00353-5.jpg HTTP/1.1
Host: pics.dmm.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 5350
last-modified: Mon, 07 Feb 2022 12:46:43 GMT
etag: "620114b3-14e6"
x-pics-origin: digital-master
x-cache-status: HIT
set-cookie: app_uid=Z/6RlGPe3xxSWSl8LKIVAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dmm.co.jp; path=/
accept-ranges: bytes
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/12/NXGS-006-%20javgg.net-300x170.jpg
104.26.2.82200 OK 22 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/12/NXGS-006-%20javgg.net-300x170.jpg
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x170, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7ccabc25ad2e22ada2bf435d0e7d101a
3e13c8fd67934b91b4fa066408355b47738f2497
74829e11850aaeee3efe3d1c4c8eb5c686f94dc52e2dd9cb93f1e99ed392856d
GET /wp-content/uploads/2022/12/NXGS-006-%20javgg.net-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 22034
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=25784
content-disposition: inline; filename="NXGS-006-%20javgg.webp"
vary: Accept
etag: "63a1f033-64b8"
expires: Mon, 06 Mar 2023 19:53:32 GMT
last-modified: Tue, 20 Dec 2022 17:26:11 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A0MQUitzkIsym5kLFLhMpg6akuv7ru5Xr5ajnyRLtJ7f%2BTCkHWabZO%2FDHgahstsGeKc2T6HqjRqD4m3EesjroXL4NOEgWicUOV6kaFCCBvgiMw3vdQQS6tipWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea1128580b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2020/07/dasd00683pl-300x170.jpg
104.26.2.82200 OK 20 kB URL HTTP/2 javgg.net/wp-content/uploads/2020/07/dasd00683pl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash d3edd8814b910bdeba486f107e360b4c
c7c04397fb8dfbfaf97ac683b8a89c737ab13890
9e2d5cda44252b8001a9aa8bcbcc54bf74cf88c7a13dfb9d3129b7412e88c1f5
GET /wp-content/uploads/2020/07/dasd00683pl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 19473
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=20579, status=webp_bigger
etag: "61f922ef-5063"
expires: Mon, 06 Mar 2023 19:53:32 GMT
last-modified: Tue, 01 Feb 2022 12:09:19 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vtgOZ%2F0qiLxIzDcnK6Lf9pOhnTiPfJ7436kBUWgquE7%2B%2BchU7azhf9QAmwoyKZBHHzZJf1EoqA39HeXufyQJBEsrO0%2FgHwZhUbnJCJG7Z8Rck4tdD7jBFgyAVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea1128590b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/06/dass030pl-300x170.jpg
104.26.2.82200 OK 18 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/06/dass030pl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 2515d31f398658e65c63474250a5cb0b
27597e7dad6ece810145cec2958da2e154cbb435
ebd533a086416512dc15dc5b0eca8df08fe9e520352750127bab47ef14262e02
GET /wp-content/uploads/2022/06/dass030pl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 17490
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=18339, status=webp_bigger
etag: "62b86341-47a3"
expires: Mon, 06 Mar 2023 19:53:33 GMT
last-modified: Sun, 26 Jun 2022 13:46:41 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aZzIiVQNOYq1OfSLVWpkOKPdK7z6xuE0hHB3r21%2F4AAgAPmrdvpyIUpRl3udi0Fwr88BdZyg7I2ZozYBE6ctuwMwb8ZtCHTtma0%2Fk8ZeJjxCTgLIjG6IaYEKww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea1138600b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/12/HUNTB-434-%20javgg.net-300x170.jpg
104.26.2.82200 OK 23 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/12/HUNTB-434-%20javgg.net-300x170.jpg
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x170, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f13351c059cc12ccf703f3b609833e18
e551a0a11489bbfa994d0cf55f2d55c27ccad543
b3a5d495c19b38a8f2394ee05a991d39db1a56f3f7de51e285432ddb1a7abd83
GET /wp-content/uploads/2022/12/HUNTB-434-%20javgg.net-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 22758
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=27362
content-disposition: inline; filename="HUNTB-434-%20javgg.webp"
vary: Accept
etag: "63a5cf2c-6ae2"
expires: Mon, 06 Mar 2023 19:53:55 GMT
last-modified: Fri, 23 Dec 2022 15:54:20 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1NtiqnhPpLLcRHdFMZtwrTgczhDSka8S3MOp4GD%2Bkege7s8jvEErbc74mfyiDAbaKABF1uNjhkpaQsj4aAVPDfA%2Fm1sXfKOn%2Bhbq4NhSECRCFWQNCxpEl26tMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea1138610b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2020/09/meyd616pl-300x170.jpg
104.26.2.82200 OK 18 kB URL HTTP/2 javgg.net/wp-content/uploads/2020/09/meyd616pl-300x170.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x170, components 3\012- data
Hash 97b698d9290d0a6e0b9d3241e6bd4248
117db2257ee6c01ac704c393868bdaa283099141
073a2e058d40b1705871566e9d9fb17e711c253052d044d0b59c8622407b1089
GET /wp-content/uploads/2020/09/meyd616pl-300x170.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 18249
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=19203, status=webp_bigger
etag: "61fcab32-4b03"
expires: Mon, 06 Mar 2023 21:25:42 GMT
last-modified: Fri, 04 Feb 2022 04:27:30 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yNDUjS9JVxKT6DGbuRr8ox07OUiaiiNlk95SK9La8Z9wdZNz67tEeZ7WyJf1Tqruk9jZgZSvgYw%2BmRjcy1YpfSiCoSJNnEcxCxrb6d5cvMhOd5XzhUMW1K9AYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea1138620b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2020/07/140_Gg_logo_logos-512.png
104.26.2.82200 OK 1.3 kB URL HTTP/2 javgg.net/wp-content/uploads/2020/07/140_Gg_logo_logos-512.png
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2ef0c03c5cf9d345f34a683ebe225edc
b66c819b6b33baaf2af6a4032f2a53b5cbd15ff1
ea23aa416c911cb9090481e9a0a05e5601e1626e0b14ebd08a525a1b9a648162
GET /wp-content/uploads/2020/07/140_Gg_logo_logos-512.png HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 1338
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2026
content-disposition: inline; filename="140_Gg_logo_logos-512.webp"
vary: Accept
etag: "61f924d6-7ea"
expires: Mon, 06 Mar 2023 19:53:27 GMT
last-modified: Tue, 01 Feb 2022 12:17:26 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 5255
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m2IhktG%2BObTVLEzYPqg%2FT%2FiKZsxELrW20WBDeyyQB%2BBBxFhIP7hDljTSNauo0YOftXbjbPu0qlnvSIWeqtMK6VnDdT26IfnvvNMbrIEx7NzykBxKuXA7E1%2BYew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea1188a60b31-OSL
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 21:44:08 GMT
expires: Sat, 04 Feb 2023 23:44:08 GMT
cache-control: public, max-age=7200
age: 3444
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2020/12/venu984pl-380x538.jpg
104.26.2.82200 OK 39 kB URL HTTP/2 javgg.net/wp-content/uploads/2020/12/venu984pl-380x538.jpg
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 380x538, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 416da3c1b57f9fda32f0e8839e78a6c6
711885248160e0ab4e34407807f299e28c6b50b4
17fbe014d80c86c2f59613b6a3cfc370fa773411aacc7f48378acf2a439c42a2
GET /wp-content/uploads/2020/12/venu984pl-380x538.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 38692
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=44324
content-disposition: inline; filename="venu984pl-380x538.webp"
vary: Accept
etag: "5fcf7fc1-ad24"
expires: Mon, 06 Mar 2023 20:22:48 GMT
last-modified: Tue, 08 Dec 2020 13:29:37 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SncBzwD1It18b3toUGOJ8o0f2XD7Bl%2Fsi%2FaBjbyhV9WJzpuikYygeJTO23hZtLv%2FoKE4IiqZxx0EYo1j28M1YjsyNtaLOurmIqL38Stev%2Bc1imGmlOYN20mlQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea1289860b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/02/suji152pl-380x538.jpg
104.26.2.82200 OK 63 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/02/suji152pl-380x538.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 380x538, components 3\012- data
Hash e1a05f0c0a7068228576c0ed75be457c
be5a36484f095eaa5770c6d9095ac5bc2aafdff8
eb46e4818164ca2ee7b01cd128f92f45288889b591a385f0c05175c3fb62c1c8
GET /wp-content/uploads/2022/02/suji152pl-380x538.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 62629
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=66628, status=webp_bigger
etag: "6208ecce-10444"
expires: Mon, 06 Mar 2023 20:30:08 GMT
last-modified: Sun, 13 Feb 2022 11:34:38 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kLY1VOAxrN3lyHE5nfLKN1RM8zR2eGkrSHJaqZvLNeeCZa38TPUiJmLPyHRLWbjxmAkE70gk3N6KSh7mFuE2PF51SozsMr%2BDRUDXG1VA4nMxnLPp4rd9UcnzVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea1289830b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/03/dvdms785sopl-380x538.jpg
104.26.2.82200 OK 73 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/03/dvdms785sopl-380x538.jpg
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 380x538, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d91fa186a46217d4905012c7bdc09a4b
fde55e4721143d77886f44b71ed1d21392973365
85ec0a846756c7fa0d7300c69d877e0d10e4ec6975f88abe7da041ef442d731d
GET /wp-content/uploads/2022/03/dvdms785sopl-380x538.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 72774
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=89741
content-disposition: inline; filename="dvdms785sopl-380x538.webp"
vary: Accept
etag: "622c0e25-15e8d"
expires: Mon, 06 Mar 2023 20:30:56 GMT
last-modified: Sat, 12 Mar 2022 03:06:13 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QQSbFS9FxzM%2BcjGe8dmRCnRwPurTG2okp5kx5%2FBGekSoDJGQfQjIWe1PncST6XtUe5773qRiIxmcXBQlzv20wFFy7vbQ1pWGaF8JHx%2BwHW4aeIOeEnrfUEVOeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea1289840b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2022/07/sinn028pl-380x538.jpg
104.26.2.82200 OK 54 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/07/sinn028pl-380x538.jpg
IP 104.26.2.82:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 380x538, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fdad05b285f10f8a8acbaaeae21ad30f
8afbd89e0ced06ae922989daf163023e3a36f001
43bbce6a04443a6de81fc729b58f2d45c43978ad64c4cb6aebde4c50937216a8
GET /wp-content/uploads/2022/07/sinn028pl-380x538.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/webp
content-length: 53480
cache-control: max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=58584
content-disposition: inline; filename="sinn028pl-380x538.webp"
vary: Accept
etag: "62e28277-e4d8"
expires: Mon, 06 Mar 2023 21:19:36 GMT
last-modified: Thu, 28 Jul 2022 12:35:03 GMT
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jM%2F6EoEP8KdZOJvvwVBacEvLOHcqgIc4WPcquQmcB4p1usQ%2FIMLmpCEQB1IMj9D8xHJh6DJObu%2FfVS87nFgUtIg4lQ1rjrBt0EpsYBNipjByU0WcFZo72ZDv5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7946ea12998b0b31-OSL
X-Firefox-Spdy: h2
javgg.net/wp-content/uploads/2021/08/genm088pl-380x538.jpg
104.26.2.82200 OK 51 kB URL HTTP/2 javgg.net/wp-content/uploads/2021/08/genm088pl-380x538.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 380x538, components 3\012- data
Hash 756f68e52d62236464d863236486c91c
349b8d9002355e18340c62ffa3a97ff4e809f87f
5d4e67400d693de89075fe2f976fe34d8b176c1c2420be1e09ab0b09374d5711
GET /wp-content/uploads/2021/08/genm088pl-380x538.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: image/jpeg
content-length: 50562
last-modified: Sun, 22 Aug 2021 05:28:30 GMT
etag: "6121e07e-c582"
expires: Mon, 06 Mar 2023 22:41:32 GMT
cache-control: max-age=2678400
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wrCLWG3Y0o37yYfUee%2FYefyt8o%2Fn%2Fn6IqZXLxNqFS6qYfddyZNK7jwS7KDTPtTA1EHv5IonweTuF8R2Cb1lBg%2FIxn2N3ZsnFjQqJ5UJlQeH%2Bou5KvKgX3VRZ7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea12998f0b31-OSL
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=9321
157.90.84.242204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=9321
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=9321 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://javgg.club/
Origin: http://javgg.club
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 04 Feb 2023 22:41:32 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: http://javgg.club
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
ipx.7mmtv.top/api/spots/310148?host=javgg.club&ev=204&wh=939&ww=1280&uuid=&s1=%25subid1%25
135.181.208.216200 OK 66 kB URL HTTP/2 ipx.7mmtv.top/api/spots/310148?host=javgg.club&ev=204&wh=939&ww=1280&uuid=&s1=%25subid1%25
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash 0ab65b1a92b10f862cf4eb431869a042
23a5d0e93eb9641e8e6bce9e8f387c5352915bbe
538ab64cc6f691b473ae860d571491e90fb917dd1e4d2906a289b16e1679cbf6
Analyzer Verdict Alert quad9 Sinkholed
GET /api/spots/310148?host=javgg.club&ev=204&wh=939&ww=1280&uuid=&s1=%25subid1%25 HTTP/1.1
Host: ipx.7mmtv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=xefhVhqqV9e8zB7deMXW; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=9321
157.90.84.242200 OK 28 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=9321
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text
Hash e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a
POST /fp?tag_id=9321 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22286
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 04 Feb 2023 22:41:32 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://javgg.club
Set-Cookie: id=2552385399705532373; Expires=Sun, 04 Feb 2024 22:41:32 GMT; Secure; SameSite=None
Vary: Origin
notification.tubecup.net/tags?tag_id=9321&timezone_olson=UTC&version_name=c
94.130.197.138200 OK 2.2 kB URL HTTP/2 notification.tubecup.net/tags?tag_id=9321&timezone_olson=UTC&version_name=c
IP 94.130.197.138:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (2242), with no line terminators
Hash 171827bcbe4cd1ee357d0126099ce20a
48b873702456ca4cc94aff4a6d0b5b7a2947b8a2
ce8d61a125dade668ad5053f55f0d20081d847ad3601e02d052ffb64c94a806d
GET /tags?tag_id=9321&timezone_olson=UTC&version_name=c HTTP/1.1
Host: notification.tubecup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:32 GMT
content-type: application/json
content-length: 2242
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ca06843895744c102d075d461d4fbc4d
06f9b4a67e5404b84e115c56258b1025b2c3bcbf
dd2f6b004ba9206be9e59249f7c8053a0cc3dd4ffe454bf29b5c0b6833d25634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD2F6B004BA9206BE9E59249F7C8053A0CC3DD4FFE454BF29B5C0B6833D25634"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9043
Expires: Sun, 05 Feb 2023 01:12:16 GMT
Date: Sat, 04 Feb 2023 22:41:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 432ad98dbf8c7946f52c81cabae207a5
7151595ad3eb2537f87c50cc90af16912a8caf6f
092c9e60e842cde263990268eae55f697b243da43e93c8ec5a4bc4b9bd5d3451
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "092C9E60E842CDE263990268EAE55F697B243DA43E93C8EC5A4BC4B9BD5D3451"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6472
Expires: Sun, 05 Feb 2023 00:29:25 GMT
Date: Sat, 04 Feb 2023 22:41:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e1dea8de10c6567ec82cd38792e1bd9
f6ca8a298cfb0909cc1aaf5e340fcf5c1b360368
a40a9693c77eb0dff2e2a8fca1f355f0c5a6124afe30ad79f47999f064f4fa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A40A9693C77EB0DFF2E2A8FCA1F355F0C5A6124AFE30AD79F47999F064F4FA2A"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15904
Expires: Sun, 05 Feb 2023 03:06:37 GMT
Date: Sat, 04 Feb 2023 22:41:33 GMT
Connection: keep-alive
e69cf83721.56efa4d7b7.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI1MTQwMTQ3Nzk5NjQxMjI5MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMjIuMCIsInRhZ19pZCI6OTMyMSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjg2LCJpc192MiI6MSwiaXNfdjJfZW1wdHkiOm51bGwsInVzZXJfa2V5d29yZHMiOiJPRkpFLTM1MyUyQ0luJTJDVGhlJTJDQ291bnRyeXNpZGUlMkNUaGVyZSUyQ0lzJTJDTm8lMkNZLiUyQyUyQ0phdkdHLmNsdWIlMkNPRkpFLTM1MyUyQ0pBViUyQ0luJTJDVGhlJTJDQ291bnRyeXNpZGUlMkNUaGVyZSUyQ0lzJTJDTm8lMkNZYWwlMkNBbGwlMkNZZWFyJTJDUm91bmQlMkNBbmQlMkNJJTJDR2V0JTJDT24lMkNUaGUlMkNUZW1wdGF0aW9uJTJDUzElMkNOTy4xJTJDU1RZTEUlMkNSZWxlYXNlJTJDTWFyY2glMkM4JTJDMjAyMiJ9
45.133.44.24200 OK 0 B URL HTTP/2 e69cf83721.56efa4d7b7.com/in/track?data=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
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/track?data=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 HTTP/1.1
Host: e69cf83721.56efa4d7b7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:33 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 652453a9a8e63cc2b96e8d3cc54bc693
59facf5454ca879f5cf1dc038d739434d3b5f846
5018bd617e70a47dfeb75954d1719d91ec92ea35efa4cf468e89b570d0fb4b4a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5018BD617E70A47DFEB75954D1719D91EC92EA35EFA4CF468E89B570D0FB4B4A"
Last-Modified: Fri, 03 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14809
Expires: Sun, 05 Feb 2023 02:48:22 GMT
Date: Sat, 04 Feb 2023 22:41:33 GMT
Connection: keep-alive
js.wpadmngr.com/static/adManager.m.js
45.133.44.24200 OK 36 kB URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash f3ad1d0c9a841ed4809b4c4657bd00e2
110fd928a3d723d9d8cdbd7d58d329944daf18d7
08bd59a130d40f548ba65204587dcf469b31f4a2b66a574b012726b9430af715
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 02 Feb 2023 09:20:02 GMT
etag: W/"63db8042-18c39"
content-encoding: gzip
expires: Sat, 04 Feb 2023 22:46:31 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpushsdk.com/npc/sdk/wpu/npush.m.js
45.133.44.25200 OK 80 kB URL HTTP/2 js.wpushsdk.com/npc/sdk/wpu/npush.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4fe62a46bf100b51736c55b86a85cdfd
4593d0f17d94a44a8edd3b93ffb2b6db9c14f714
f86c3e12d1c36e7b390d43b13e61fb7db336dc39e0dcffab8ee1ec81ac1c76b2
GET /npc/sdk/wpu/npush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:33 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Fri, 03 Feb 2023 12:56:56 GMT
etag: W/"63dd0498-4fa40"
content-encoding: gzip
expires: Sat, 04 Feb 2023 22:46:33 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
1d64fb6441.0ec78e0509.com/in/multy
168.119.25.22204 No Content 0 B URL HTTP/2 1d64fb6441.0ec78e0509.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /in/multy HTTP/1.1
Host: 1d64fb6441.0ec78e0509.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://javgg.club/
Origin: http://javgg.club
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:33 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
1d64fb6441.0ec78e0509.com/in/multy
168.119.25.22200 OK 21 kB URL HTTP/2 1d64fb6441.0ec78e0509.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (20810), with no line terminators
Hash 93474e02c81953c17a90233a412d1d9c
0483941021b0241902d0ff43bdefd0f701bc7f50
1290a7a180dfff717fa97a042ab3d8b9310066f70bc4938557b6f0f99da3cc48
POST /in/multy HTTP/1.1
Host: 1d64fb6441.0ec78e0509.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1433
Origin: http://javgg.club
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:34 GMT
content-type: application/json
content-length: 20821
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
1d64fb6441.0ec78e0509.com/in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=2766&price=0.0005949050569534301&is_cpm=0&cpm=0&ecpm=0.0076781776162966045&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1675636893&created_at=2023-02-04&is_native=2&auction_queue=0&burl=wKzsdKZ3M4g8i9DptTD8HCXMzz3113snbhiO6fMvrdMPUGN2FDbZuQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=318005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.005985316140722704&placement_type_id=&skin_test=0&verify_hash=f7fc5ba85e527cf25de6b5cc37718d8f&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0005949050569534301&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=wBAFTiI5gvtbiR4TnH2Y266P9h_K0Bf8_rkK3IGuEVUQEgMbkzTBJAWRebbbn02CD7CEWxSgNKURvKOSzpfPtWyzk7j1pv60A9FTDhB0OJyTlOvJ6LU7Ga30jgo0e5vTRI5-Y0oV8Xbgrih3zjmG0qiOVpMS5yHWQH1dmAubqVMfV03dGA&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=30&vertical_id=0&real_bid=0.0005649813325886725&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=89,4,0&conditions=dch_ip,tz_offset,all&need_redirect_show=0&mlf=1&cpa=73170409-c583-4149-8d89-ce8e88b4deff&mlc=1&format=gambling-slide-b_r-body
168.119.25.22200 OK 0 B URL HTTP/2 1d64fb6441.0ec78e0509.com/in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=2766&price=0.0005949050569534301&is_cpm=0&cpm=0&ecpm=0.0076781776162966045&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1675636893&created_at=2023-02-04&is_native=2&auction_queue=0&burl=wKzsdKZ3M4g8i9DptTD8HCXMzz3113snbhiO6fMvrdMPUGN2FDbZuQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=318005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.005985316140722704&placement_type_id=&skin_test=0&verify_hash=f7fc5ba85e527cf25de6b5cc37718d8f&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0005949050569534301&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=wBAFTiI5gvtbiR4TnH2Y266P9h_K0Bf8_rkK3IGuEVUQEgMbkzTBJAWRebbbn02CD7CEWxSgNKURvKOSzpfPtWyzk7j1pv60A9FTDhB0OJyTlOvJ6LU7Ga30jgo0e5vTRI5-Y0oV8Xbgrih3zjmG0qiOVpMS5yHWQH1dmAubqVMfV03dGA&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=30&vertical_id=0&real_bid=0.0005649813325886725&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=89,4,0&conditions=dch_ip,tz_offset,all&need_redirect_show=0&mlf=1&cpa=73170409-c583-4149-8d89-ce8e88b4deff&mlc=1&format=gambling-slide-b_r-body
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=2766&price=0.0005949050569534301&is_cpm=0&cpm=0&ecpm=0.0076781776162966045&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1675636893&created_at=2023-02-04&is_native=2&auction_queue=0&burl=wKzsdKZ3M4g8i9DptTD8HCXMzz3113snbhiO6fMvrdMPUGN2FDbZuQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=318005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.005985316140722704&placement_type_id=&skin_test=0&verify_hash=f7fc5ba85e527cf25de6b5cc37718d8f&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0005949050569534301&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=wBAFTiI5gvtbiR4TnH2Y266P9h_K0Bf8_rkK3IGuEVUQEgMbkzTBJAWRebbbn02CD7CEWxSgNKURvKOSzpfPtWyzk7j1pv60A9FTDhB0OJyTlOvJ6LU7Ga30jgo0e5vTRI5-Y0oV8Xbgrih3zjmG0qiOVpMS5yHWQH1dmAubqVMfV03dGA&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=30&vertical_id=0&real_bid=0.0005649813325886725&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=89,4,0&conditions=dch_ip,tz_offset,all&need_redirect_show=0&mlf=1&cpa=73170409-c583-4149-8d89-ce8e88b4deff&mlc=1&format=gambling-slide-b_r-body HTTP/1.1
Host: 1d64fb6441.0ec78e0509.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
1d64fb6441.0ec78e0509.com/in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=13803&price=0.0838&is_cpm=0&cpm=0&ecpm=0.07300118974342028&crid=&crtid=17d43f81cc073548090aad9c92420bae&tcid=0&out_id=0&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=2023-02-04&is_native=1&auction_queue=0&burl=9cbpJXFixZ1YhIfE6xbINrgVJ5weqHApkO686gC08_qGyBWnEmvSqQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=738005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.00043847103078048&placement_type_id=&skin_test=0&verify_hash=1b89e1f77cdfbf09e58ae0acd433c7b9&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0838&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=WL1Wf4s1ws2IQZKXm9wq3YuTvOT9us3gcsh47l3_h7TcluJd5sMNPHiaxT6sZ5K-DWPmbLRtvySCbU3s3HAl3R-1nYX01ADR0jj0wFisEaIzthIdADZ5EpK7vmnMxh3nk3mcfvALfYlsOrrUN70TBUOmm8npaoBnIhqWYKCbMS5niOUOMFm7RpxEEMPEdW-OCBb0TWn9mJxagD_IpRC6ruE2GvyeBZ-VxBgZhRe1dYf2-ctcbvJ8Ca2P2FYM_lWggvBdHKTumEYbssgoWjoJxpMdt1j-5nozlsGt8G0OjWtMklGWb-QwvzeXF5VBBtoGirgj-u-7WvImfFN6g0HWscZpLqMa2Bpa1fGm7duARjjuUEyWdKgLDXM6ky_NHpuzIyjdVdYDDSWptrWNV3e7kwTaY9oV88-kFU4qJLxJkKLfl1CimzgTeK0GBudh09GuFyqNdvhFV9NF9ufUQSyDHOEra5KWcUaUh1k6lUj7Yf-ZnE86ENiU4CVn_OtcgHOKaQ0uNcEe8mHXKlw6j9kOxYwoYm2atepj2CVbLVkIB4KH7VEU92WxFFcc-naSoGu8EMOVamTN1HrI-E0m0wdrBhZazP6L_iN_3AiLEV5757ju52LIQJWn9CJ2nejCnGArXjCLF8bgsXvVHWzdWCSCtNZCVk3R9D-iOfErWkucNFRx6aIq2cLzT6xth-oEHUShX3xt48uSuo8eBNLcNu_ISySJXIp6oHUuFi3-RpY2HM-BvG4bek20-buYDT1ZOxIvBmmrApMXo4DdHTQqoQBwtHZm_2_U4ns1dPUscaSxFQuacu-1WtUgcX5wdYz1DYOjTJTNTe8&image_url=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fim%3Fauth%3Dkj7u89%26c%3Dk_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb&skin_id=30&vertical_id=15&real_bid=0.073325&pr=&user_keywords=&auc_type=1&aid=3335&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=15,4,83,90&conditions=dch_ip,tz_offset,all&need_redirect_show=0&cpa=6897bb9d-11ae-46c9-a93f-311786b14730&format=gambling-slide-b_r-body
168.119.25.22200 OK 0 B URL HTTP/2 1d64fb6441.0ec78e0509.com/in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=13803&price=0.0838&is_cpm=0&cpm=0&ecpm=0.07300118974342028&crid=&crtid=17d43f81cc073548090aad9c92420bae&tcid=0&out_id=0&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=2023-02-04&is_native=1&auction_queue=0&burl=9cbpJXFixZ1YhIfE6xbINrgVJ5weqHApkO686gC08_qGyBWnEmvSqQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=738005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.00043847103078048&placement_type_id=&skin_test=0&verify_hash=1b89e1f77cdfbf09e58ae0acd433c7b9&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0838&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=WL1Wf4s1ws2IQZKXm9wq3YuTvOT9us3gcsh47l3_h7TcluJd5sMNPHiaxT6sZ5K-DWPmbLRtvySCbU3s3HAl3R-1nYX01ADR0jj0wFisEaIzthIdADZ5EpK7vmnMxh3nk3mcfvALfYlsOrrUN70TBUOmm8npaoBnIhqWYKCbMS5niOUOMFm7RpxEEMPEdW-OCBb0TWn9mJxagD_IpRC6ruE2GvyeBZ-VxBgZhRe1dYf2-ctcbvJ8Ca2P2FYM_lWggvBdHKTumEYbssgoWjoJxpMdt1j-5nozlsGt8G0OjWtMklGWb-QwvzeXF5VBBtoGirgj-u-7WvImfFN6g0HWscZpLqMa2Bpa1fGm7duARjjuUEyWdKgLDXM6ky_NHpuzIyjdVdYDDSWptrWNV3e7kwTaY9oV88-kFU4qJLxJkKLfl1CimzgTeK0GBudh09GuFyqNdvhFV9NF9ufUQSyDHOEra5KWcUaUh1k6lUj7Yf-ZnE86ENiU4CVn_OtcgHOKaQ0uNcEe8mHXKlw6j9kOxYwoYm2atepj2CVbLVkIB4KH7VEU92WxFFcc-naSoGu8EMOVamTN1HrI-E0m0wdrBhZazP6L_iN_3AiLEV5757ju52LIQJWn9CJ2nejCnGArXjCLF8bgsXvVHWzdWCSCtNZCVk3R9D-iOfErWkucNFRx6aIq2cLzT6xth-oEHUShX3xt48uSuo8eBNLcNu_ISySJXIp6oHUuFi3-RpY2HM-BvG4bek20-buYDT1ZOxIvBmmrApMXo4DdHTQqoQBwtHZm_2_U4ns1dPUscaSxFQuacu-1WtUgcX5wdYz1DYOjTJTNTe8&image_url=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fim%3Fauth%3Dkj7u89%26c%3Dk_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb&skin_id=30&vertical_id=15&real_bid=0.073325&pr=&user_keywords=&auc_type=1&aid=3335&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=15,4,83,90&conditions=dch_ip,tz_offset,all&need_redirect_show=0&cpa=6897bb9d-11ae-46c9-a93f-311786b14730&format=gambling-slide-b_r-body
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/show/?mid=8995813828760856669&pid=0&site=native-push-adult&sc=NO&usage_type=DCH&subid=1824673469&sid=1858162758&cid=13803&price=0.0838&is_cpm=0&cpm=0&ecpm=0.07300118974342028&crid=&crtid=17d43f81cc073548090aad9c92420bae&tcid=0&out_id=0&ver=8.24.1&ver_c=&refdom=javgg.club&hostname=auc-inpage-hz-7-c&site_id=318005&spot_id=8005&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=2023-02-04&is_native=1&auction_queue=0&burl=9cbpJXFixZ1YhIfE6xbINrgVJ5weqHApkO686gC08_qGyBWnEmvSqQ&pop_winurl=&ip=91.90.42.154&testab=0&px_id=738005&adblock=0&auction_host=apply&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB25-3&min_cpm=0.00043847103078048&placement_type_id=&skin_test=0&verify_hash=1b89e1f77cdfbf09e58ae0acd433c7b9&score=77.36609427977942&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1824673469%26spot_id%3D8005%26is_adult%3D1%26p%3Dhttp%253A%252F%252Fjavgg.club%252F%26idzone%3D0%26sid%3D1886&ml=&tag_ab=c&original_bid=0.0838&user_fp=0&v2=1&v2_track=1&is_pop_cpc=0&applied_features=main-skins-settings&url=WL1Wf4s1ws2IQZKXm9wq3YuTvOT9us3gcsh47l3_h7TcluJd5sMNPHiaxT6sZ5K-DWPmbLRtvySCbU3s3HAl3R-1nYX01ADR0jj0wFisEaIzthIdADZ5EpK7vmnMxh3nk3mcfvALfYlsOrrUN70TBUOmm8npaoBnIhqWYKCbMS5niOUOMFm7RpxEEMPEdW-OCBb0TWn9mJxagD_IpRC6ruE2GvyeBZ-VxBgZhRe1dYf2-ctcbvJ8Ca2P2FYM_lWggvBdHKTumEYbssgoWjoJxpMdt1j-5nozlsGt8G0OjWtMklGWb-QwvzeXF5VBBtoGirgj-u-7WvImfFN6g0HWscZpLqMa2Bpa1fGm7duARjjuUEyWdKgLDXM6ky_NHpuzIyjdVdYDDSWptrWNV3e7kwTaY9oV88-kFU4qJLxJkKLfl1CimzgTeK0GBudh09GuFyqNdvhFV9NF9ufUQSyDHOEra5KWcUaUh1k6lUj7Yf-ZnE86ENiU4CVn_OtcgHOKaQ0uNcEe8mHXKlw6j9kOxYwoYm2atepj2CVbLVkIB4KH7VEU92WxFFcc-naSoGu8EMOVamTN1HrI-E0m0wdrBhZazP6L_iN_3AiLEV5757ju52LIQJWn9CJ2nejCnGArXjCLF8bgsXvVHWzdWCSCtNZCVk3R9D-iOfErWkucNFRx6aIq2cLzT6xth-oEHUShX3xt48uSuo8eBNLcNu_ISySJXIp6oHUuFi3-RpY2HM-BvG4bek20-buYDT1ZOxIvBmmrApMXo4DdHTQqoQBwtHZm_2_U4ns1dPUscaSxFQuacu-1WtUgcX5wdYz1DYOjTJTNTe8&image_url=https%3A%2F%2Ftrack.trackingtraffo.com%2Fpush%2Fim%3Fauth%3Dkj7u89%26c%3Dk_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb&skin_id=30&vertical_id=15&real_bid=0.073325&pr=&user_keywords=&auc_type=1&aid=3335&ext_cid=0&device_theme=light&keywords=Japanese&label_ids=15,4,83,90&conditions=dch_ip,tz_offset,all&need_redirect_show=0&cpa=6897bb9d-11ae-46c9-a93f-311786b14730&format=gambling-slide-b_r-body HTTP/1.1
Host: 1d64fb6441.0ec78e0509.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:34 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?mlf=1&cpa=93d71b19-5d91-416f-a39c-0c892a7ebadf&mlc=1&format=gambling-slide-b_r-body
88.198.186.112200 OK 790 B URL HTTP/2 static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?mlf=1&cpa=93d71b19-5d91-416f-a39c-0c892a7ebadf&mlc=1&format=gambling-slide-b_r-body
IP 88.198.186.112:0
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65156a660e465299370ebd90d84aa461
12ff60b17f579a77e42a8be7b6b1892fc71be33d
e3b2784385cd128d5a6dfdec7f4be2147d6b57fa66c1a36c61c085aaf27f9e18
GET /creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp?mlf=1&cpa=93d71b19-5d91-416f-a39c-0c892a7ebadf&mlc=1&format=gambling-slide-b_r-body HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:34 GMT
content-type: image/webp
content-length: 790
last-modified: Tue, 24 Nov 2020 14:20:43 GMT
etag: "5fbd16bb-316"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
88.198.186.112200 OK 790 B URL HTTP/2 static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
IP 88.198.186.112:0
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65156a660e465299370ebd90d84aa461
12ff60b17f579a77e42a8be7b6b1892fc71be33d
e3b2784385cd128d5a6dfdec7f4be2147d6b57fa66c1a36c61c085aaf27f9e18
GET /creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:34 GMT
content-type: image/webp
content-length: 790
last-modified: Tue, 24 Nov 2020 14:20:43 GMT
etag: "5fbd16bb-316"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 50f52293e1b9386e2617ce890b226aa0
dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a
3b2aef917a90a806f8ba3eb16a82beec567f146a22b1f2a1ae04d6e08cb2d202
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 18:28:18 GMT
Expires: Sat, 11 Feb 2023 18:28:17 GMT
Etag: "dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a"
Cache-Control: max-age=589002,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7946ea208b73b51b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 50f52293e1b9386e2617ce890b226aa0
dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a
3b2aef917a90a806f8ba3eb16a82beec567f146a22b1f2a1ae04d6e08cb2d202
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 22:41:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 18:28:18 GMT
Expires: Sat, 11 Feb 2023 18:28:17 GMT
Etag: "dfd88d17dfcc3fe0877f0eaa1dfa368625985b6a"
Cache-Control: max-age=589002,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7946ea209c32b4e8-OSL
javgg.net/wp-content/uploads/2022/03/gvh391sopl-380x536.jpg
104.26.2.82200 OK 60 kB URL HTTP/2 javgg.net/wp-content/uploads/2022/03/gvh391sopl-380x536.jpg
IP 104.26.2.82:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 380x536, components 3\012- data
Hash b73517939a536c24256704c853f67eaa
08616a478ee719b386fbf26a44ce1062182132a9
f6405b3a15270c52772cde40317d2be25ec1920176852dd087a2847df105714f
GET /wp-content/uploads/2022/03/gvh391sopl-380x536.jpg HTTP/1.1
Host: javgg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:34 GMT
content-type: image/jpeg
content-length: 60366
last-modified: Mon, 21 Mar 2022 09:11:38 GMT
etag: "6238414a-ebce"
expires: Mon, 06 Mar 2023 22:41:34 GMT
cache-control: max-age=2678400
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hjzwN8m251%2FLLNoIXm6FzGO25PYOE4zAAwlR2ExuqH%2FHzIT%2FpwsrF8na2Rqrgscsvla8RvNWax9cHsRxjnFiwjbuCsWhQpwoBaZ%2BnS3oMq90LRZ0xj67v8qoXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7946ea2138fc0b31-OSL
X-Firefox-Spdy: h2
track.trackingtraffo.com/push/ic?auth=kj7u89&c=05va3N9Gy863y-mi3HDNgdEkES0ZGeLug6LsURh4ULhrgWJW752ioErSEj7hWzT4rorGkN04tlojcwaptOvy7FfqE7CRF_F0Wazspz4fNkyXraj8zqa7-Z8joQJe5PuNGX0vFVTD9d9IJqo81-RVpAeCnsWLIVPwiKB299F_HGVFy91RW347R0lRa6-SpT8vjcsG0pPv80zFZ-8Bs-0i8f5fbn5NdwLso0G4GBkCG4JLqtQlN5vbO4z0I2sEGvsAv7ac4dbENmwe_7iYYgUBuPqa79yROfjEI5ynp9iZ-01D9F9nXxeeQXGXduu-tNmxjUDQI5Zd4dtHlMBRBa6ThTRsdAsmWHqv3NiYL2cflpV-15ePZZNfvHrKcW8u0cjl7iKSz7oMYmT3fpG2mN2HxYW9pdxCWBdXG4Dbr-8W_z_M1BK9F--Fu32SZF0_hjAiGylFV-xKcpvmBu-DlBE9_VuGCNwqp-6wafjq5OfPvpv1atSzhR4rnElXAz6qJkXbFMtqa4JEgqekCDaN7gm7xQ&cpa=04019949-5256-4f64-8ae2-2bcb5894e270&format=gambling-slide-b_r-body
88.214.205.55302 Found 0 B URL HTTP/1.1 track.trackingtraffo.com/push/ic?auth=kj7u89&c=05va3N9Gy863y-mi3HDNgdEkES0ZGeLug6LsURh4ULhrgWJW752ioErSEj7hWzT4rorGkN04tlojcwaptOvy7FfqE7CRF_F0Wazspz4fNkyXraj8zqa7-Z8joQJe5PuNGX0vFVTD9d9IJqo81-RVpAeCnsWLIVPwiKB299F_HGVFy91RW347R0lRa6-SpT8vjcsG0pPv80zFZ-8Bs-0i8f5fbn5NdwLso0G4GBkCG4JLqtQlN5vbO4z0I2sEGvsAv7ac4dbENmwe_7iYYgUBuPqa79yROfjEI5ynp9iZ-01D9F9nXxeeQXGXduu-tNmxjUDQI5Zd4dtHlMBRBa6ThTRsdAsmWHqv3NiYL2cflpV-15ePZZNfvHrKcW8u0cjl7iKSz7oMYmT3fpG2mN2HxYW9pdxCWBdXG4Dbr-8W_z_M1BK9F--Fu32SZF0_hjAiGylFV-xKcpvmBu-DlBE9_VuGCNwqp-6wafjq5OfPvpv1atSzhR4rnElXAz6qJkXbFMtqa4JEgqekCDaN7gm7xQ&cpa=04019949-5256-4f64-8ae2-2bcb5894e270&format=gambling-slide-b_r-body
IP 88.214.205.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/ic?auth=kj7u89&c=05va3N9Gy863y-mi3HDNgdEkES0ZGeLug6LsURh4ULhrgWJW752ioErSEj7hWzT4rorGkN04tlojcwaptOvy7FfqE7CRF_F0Wazspz4fNkyXraj8zqa7-Z8joQJe5PuNGX0vFVTD9d9IJqo81-RVpAeCnsWLIVPwiKB299F_HGVFy91RW347R0lRa6-SpT8vjcsG0pPv80zFZ-8Bs-0i8f5fbn5NdwLso0G4GBkCG4JLqtQlN5vbO4z0I2sEGvsAv7ac4dbENmwe_7iYYgUBuPqa79yROfjEI5ynp9iZ-01D9F9nXxeeQXGXduu-tNmxjUDQI5Zd4dtHlMBRBa6ThTRsdAsmWHqv3NiYL2cflpV-15ePZZNfvHrKcW8u0cjl7iKSz7oMYmT3fpG2mN2HxYW9pdxCWBdXG4Dbr-8W_z_M1BK9F--Fu32SZF0_hjAiGylFV-xKcpvmBu-DlBE9_VuGCNwqp-6wafjq5OfPvpv1atSzhR4rnElXAz6qJkXbFMtqa4JEgqekCDaN7gm7xQ&cpa=04019949-5256-4f64-8ae2-2bcb5894e270&format=gambling-slide-b_r-body HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 22:41:34 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National Casino black.png
track.trackingtraffo.com/push/im?auth=kj7u89&c=k_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb
88.214.205.55302 Found 0 B URL HTTP/1.1 track.trackingtraffo.com/push/im?auth=kj7u89&c=k_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb
IP 88.214.205.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push/im?auth=kj7u89&c=k_xQ62rgSyvUXhSQ-bxPs7h9Oy9uu3THm9qTJzp5S9Gt4ZXF3L426WTcleK00Ky7DljPQuI2e8yUuzNDo2CrISCeenprNk-kkYDD5VGCOL2kd8APJh3e_ka3YYHSeSCtn6dfceSIy0DcwNotLylx7dWbiR_BJpyucaf9JhWNNX9BYdTbaxw1vY63V3t3WcPn3SJZiy0eAUEYxDxtOdrH_pv7tumJAAQx0iacKTkIhUnRJ7gFmuod7igr6oMrKqMR28gg2evZGvd592paGj1jH6KG6eTQOCspaDfMd9Xblt3DJC6YpepZTOO_-woMZk5MjKcETzymoNFLVwlxht1gsQdIiJz6FYn-O3v_ChNyZBJAPeG_e67PEiu4Ssvi5tmei7nJbIOjXlfsedy9Cmnk5IdvHsXhO3F-b3R8hMXEGn63SwKhk-9qVc4IfuBRjl3ZfRtAe_7DaMOSWMky_9hcsZIK03dIymGTeUtIwlJ4vlT8HYyagcYbu6goKWIOV9IrmqX-DYg9f2m1FIIb HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 22:41:34 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995125-national-casino.png
ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png
5.9.105.245200 OK 4.5 kB URL HTTP/1.1 ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png
IP 5.9.105.245:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 58be17b22d6e1178a54c92cf862c817e
b821bc2f016751647df49e49863077e927a70322
9cc4f3f40313b08baf54c956685ac7a21ac8a3573908b9763865c6f613ce1b5f
GET /creatives/k1qy286gxmd5g3dpr397nw5v/1659514995116-National%20Casino%20black.png HTTP/1.1
Host: ads.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 22:41:35 GMT
Content-Type: image/png
Content-Length: 4456
Last-Modified: Wed, 18 Jan 2023 15:38:44 GMT
Connection: keep-alive
ETag: "63c81284-1168"
Accept-Ranges: bytes
ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995125-national-casino.png
5.9.105.245200 OK 4.6 kB URL HTTP/1.1 ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1659514995125-national-casino.png
IP 5.9.105.245:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 433 x 176, 8-bit colormap, non-interlaced\012- data
Hash edffdc6a4138205965ac7c1440fbfb50
9cff09cdfdc1e054c431e6cbf4c12e4ec681e601
83ff002a01d8c1668fc4a851cc3eb1c24b929c4aced7ff7eb32b9ae3711c7498
GET /creatives/k1qy286gxmd5g3dpr397nw5v/1659514995125-national-casino.png HTTP/1.1
Host: ads.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 Feb 2023 22:41:35 GMT
Content-Type: image/png
Content-Length: 4596
Last-Modified: Wed, 18 Jan 2023 15:38:20 GMT
Connection: keep-alive
ETag: "63c8126c-11f4"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 97bee714179dc065a6d4a51d893cdd4a
f99f14e1c48b9c07ed41c7083a4659872ea8606d
76ead6a21ce01e6ac33b1884dd19ef51081d4df24bb9d7c5c52b7622dfb6db60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "76EAD6A21CE01E6AC33B1884DD19EF51081D4DF24BB9D7C5C52B7622DFB6DB60"
Last-Modified: Fri, 03 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2677
Expires: Sat, 04 Feb 2023 23:26:13 GMT
Date: Sat, 04 Feb 2023 22:41:36 GMT
Connection: keep-alive
381ec8ead3.994f2de162.com/health/
159.69.163.6200 OK 0 B URL HTTP/2 381ec8ead3.994f2de162.com/health/
IP 159.69.163.6:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /health/ HTTP/1.1
Host: 381ec8ead3.994f2de162.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:36 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
381ec8ead3.994f2de162.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MCwiZXh0Ijp7InRhZ19hYiI6ImMiLCJtdWx0aSI6ZmFsc2UsInVzZXJfa2V5d29yZHMiOiIiLCJpZCI6MTY5NSwic3BhY2VpZCI6MTY5NSwidHlwZSI6InBvcCIsImlkem9uZSI6bnVsbCwiYWRfdGFncyI6Ik9GSkUtMzUzJTJDSW4lMkNUaGUlMkNDb3VudHJ5c2lkZSUyQ1RoZXJlJTJDSXMlMkNObyUyQ1kuJTJDJTJDSmF2R0cuY2x1YiUyQ09GSkUtMzUzJTJDSkFWJTJDSW4lMkNUaGUlMkNDb3VudHJ5c2lkZSUyQ1RoZXJlJTJDSXMlMkNObyUyQ1lhbCUyQ0FsbCUyQ1llYXIlMkNSb3VuZCUyQ0FuZCUyQ0klMkNHZXQlMkNPbiUyQ1RoZSUyQ1RlbXB0YXRpb24lMkNTMSUyQ05PLjElMkNTVFlMRSUyQ1JlbGVhc2UlMkNNYXJjaCUyQzglMkMyMDIyLCIsImxhYmVscyI6IiIsImFsbG93ZWRfbGFiZWxzIjoiIiwidGl0bGUiOiIiLCJzdWJpZCI6IjE4MjIxNjUwMDkiLCJyZWZyZXNoIjoxLCJ1dG0xIjoiIiwidXRtMiI6IiIsInV0bTQiOiIiLCJzcG90X2lkIjoxMjk2OSwibXVsdGlwbGUiOmZhbHNlLCJpc19pZnJhbWUiOmZhbHNlLCJyZWZkb21haW4iOiIiLCJwbCI6MCwic3RyYXRhZ2VtIjoibmxhYmVsLWEiLCJneXIiOjAsImFjY2VsIjowLCJzc3AiOjM5NzIsImJ0eXBlIjowLCJ2MiI6MSwicmNoYW5nZSI6ZmFsc2V9LCJiYW5uZXIiOnsidyI6MSwiaCI6MX19XSwic2l0ZSI6eyJpZCI6IjEyOTY5IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwOi8vamF2Z2cuY2x1Yi9qYXYvb2ZqZS0zNTMvIn0sImRldmljZSI6eyJ3IjoxMjgwLCJoIjoxMDI0fSwidXNlciI6eyJpZCI6IjllNDk0N2YzNTc1MTQ2NTQxMWZkMWE0ZjVjMzU4Yzc4IiwiZnAiOm51bGx9LCJleHQiOnsiZHQiOjE2NzU1NTA1MzM4ODF9fQ==
159.69.163.6302 Found 0 B URL HTTP/2 381ec8ead3.994f2de162.com/get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MCwiZXh0Ijp7InRhZ19hYiI6ImMiLCJtdWx0aSI6ZmFsc2UsInVzZXJfa2V5d29yZHMiOiIiLCJpZCI6MTY5NSwic3BhY2VpZCI6MTY5NSwidHlwZSI6InBvcCIsImlkem9uZSI6bnVsbCwiYWRfdGFncyI6Ik9GSkUtMzUzJTJDSW4lMkNUaGUlMkNDb3VudHJ5c2lkZSUyQ1RoZXJlJTJDSXMlMkNObyUyQ1kuJTJDJTJDSmF2R0cuY2x1YiUyQ09GSkUtMzUzJTJDSkFWJTJDSW4lMkNUaGUlMkNDb3VudHJ5c2lkZSUyQ1RoZXJlJTJDSXMlMkNObyUyQ1lhbCUyQ0FsbCUyQ1llYXIlMkNSb3VuZCUyQ0FuZCUyQ0klMkNHZXQlMkNPbiUyQ1RoZSUyQ1RlbXB0YXRpb24lMkNTMSUyQ05PLjElMkNTVFlMRSUyQ1JlbGVhc2UlMkNNYXJjaCUyQzglMkMyMDIyLCIsImxhYmVscyI6IiIsImFsbG93ZWRfbGFiZWxzIjoiIiwidGl0bGUiOiIiLCJzdWJpZCI6IjE4MjIxNjUwMDkiLCJyZWZyZXNoIjoxLCJ1dG0xIjoiIiwidXRtMiI6IiIsInV0bTQiOiIiLCJzcG90X2lkIjoxMjk2OSwibXVsdGlwbGUiOmZhbHNlLCJpc19pZnJhbWUiOmZhbHNlLCJyZWZkb21haW4iOiIiLCJwbCI6MCwic3RyYXRhZ2VtIjoibmxhYmVsLWEiLCJneXIiOjAsImFjY2VsIjowLCJzc3AiOjM5NzIsImJ0eXBlIjowLCJ2MiI6MSwicmNoYW5nZSI6ZmFsc2V9LCJiYW5uZXIiOnsidyI6MSwiaCI6MX19XSwic2l0ZSI6eyJpZCI6IjEyOTY5IiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwOi8vamF2Z2cuY2x1Yi9qYXYvb2ZqZS0zNTMvIn0sImRldmljZSI6eyJ3IjoxMjgwLCJoIjoxMDI0fSwidXNlciI6eyJpZCI6IjllNDk0N2YzNTc1MTQ2NTQxMWZkMWE0ZjVjMzU4Yzc4IiwiZnAiOm51bGx9LCJleHQiOnsiZHQiOjE2NzU1NTA1MzM4ODF9fQ==
IP 159.69.163.6:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /get/?go=1&data=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 HTTP/1.1
Host: 381ec8ead3.994f2de162.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Sat, 04 Feb 2023 22:41:36 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://rtbrennab.com/banner/in/show/?mid=7966719604005107219&pid=0&site=12969&sc=NO&usage_type=DCH&subid=1822165009&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=javgg.club&hostname=auc-banner-hz-3&site_id=0&spot_id=12969&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=23.267455152330925&ml=&tag_ab=c&v2=1&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D12969%26source%3D1822165009%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D12969%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DOFJE-353%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CY.%252C%252CJavGG.club%252COFJE-353%252CJAV%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CYal%252CAll%252CYear%252CRound%252CAnd%252CI%252CGet%252COn%252CThe%252CTemptation%252CS1%252CNO.1%252CSTYLE%252CRelease%252CMarch%252C8%252C2022%2C%26spot_id%3D12969%26p%3Dhttp%253A%252F%252Fjavgg.club%252Fjav%252Fofje-353%252F%26katds_labels%3D%26btype%3D0%26score%3D23.267455152330925%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&stratagem=nlabel-a&ssp=3972&refresh=1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b45aced3f9f05f1f4da20f8b6ea21d30
bd28ecb25ce9fb326fd8914316142aec4e70d84b
af3a035d682dd50f81039ee0b356e4a60fba24e7db5fd0e74329bd12178839b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AF3A035D682DD50F81039EE0B356E4A60FBA24E7DB5FD0E74329BD12178839B0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11707
Expires: Sun, 05 Feb 2023 01:56:43 GMT
Date: Sat, 04 Feb 2023 22:41:36 GMT
Connection: keep-alive
rtbrennab.com/banner/in/show/?mid=7966719604005107219&pid=0&site=12969&sc=NO&usage_type=DCH&subid=1822165009&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=javgg.club&hostname=auc-banner-hz-3&site_id=0&spot_id=12969&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=23.267455152330925&ml=&tag_ab=c&v2=1&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D12969%26source%3D1822165009%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D12969%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DOFJE-353%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CY.%252C%252CJavGG.club%252COFJE-353%252CJAV%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CYal%252CAll%252CYear%252CRound%252CAnd%252CI%252CGet%252COn%252CThe%252CTemptation%252CS1%252CNO.1%252CSTYLE%252CRelease%252CMarch%252C8%252C2022%2C%26spot_id%3D12969%26p%3Dhttp%253A%252F%252Fjavgg.club%252Fjav%252Fofje-353%252F%26katds_labels%3D%26btype%3D0%26score%3D23.267455152330925%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&stratagem=nlabel-a&ssp=3972&refresh=1
162.55.139.130302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=7966719604005107219&pid=0&site=12969&sc=NO&usage_type=DCH&subid=1822165009&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=javgg.club&hostname=auc-banner-hz-3&site_id=0&spot_id=12969&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=23.267455152330925&ml=&tag_ab=c&v2=1&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D12969%26source%3D1822165009%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D12969%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DOFJE-353%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CY.%252C%252CJavGG.club%252COFJE-353%252CJAV%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CYal%252CAll%252CYear%252CRound%252CAnd%252CI%252CGet%252COn%252CThe%252CTemptation%252CS1%252CNO.1%252CSTYLE%252CRelease%252CMarch%252C8%252C2022%2C%26spot_id%3D12969%26p%3Dhttp%253A%252F%252Fjavgg.club%252Fjav%252Fofje-353%252F%26katds_labels%3D%26btype%3D0%26score%3D23.267455152330925%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&stratagem=nlabel-a&ssp=3972&refresh=1
IP 162.55.139.130:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=7966719604005107219&pid=0&site=12969&sc=NO&usage_type=DCH&subid=1822165009&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=javgg.club&hostname=auc-banner-hz-3&site_id=0&spot_id=12969&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=23.267455152330925&ml=&tag_ab=c&v2=1&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D12969%26source%3D1822165009%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D12969%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3DOFJE-353%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CY.%252C%252CJavGG.club%252COFJE-353%252CJAV%252CIn%252CThe%252CCountryside%252CThere%252CIs%252CNo%252CYal%252CAll%252CYear%252CRound%252CAnd%252CI%252CGet%252COn%252CThe%252CTemptation%252CS1%252CNO.1%252CSTYLE%252CRelease%252CMarch%252C8%252C2022%2C%26spot_id%3D12969%26p%3Dhttp%253A%252F%252Fjavgg.club%252Fjav%252Fofje-353%252F%26katds_labels%3D%26btype%3D0%26score%3D23.267455152330925%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&stratagem=nlabel-a&ssp=3972&refresh=1 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://javgg.club/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.16.0
date: Sat, 04 Feb 2023 22:41:36 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=12969&source=1822165009&idzone=0&w=1&h=1&mo=&ve=&site_id=12969&utm1=&utm2=&utm3=&utm4=&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&spot_id=12969&p=http%3A%2F%2Fjavgg.club%2Fjav%2Fofje-353%2F&katds_labels=&btype=0&score=23.267455152330925&bf=0.0001
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b400c2c20802db300f72333da4ffa8aa
935b74452ae52ed54ca87df749586b6a667eca4d
6224e48de708a4119b097cebca9656f6d91527aa84f8c5eef00b6210696c2d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6224E48DE708A4119B097CEBCA9656F6D91527AA84F8C5EEF00B6210696C2D5A"
Last-Modified: Fri, 03 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6500
Expires: Sun, 05 Feb 2023 00:29:56 GMT
Date: Sat, 04 Feb 2023 22:41:36 GMT
Connection: keep-alive
btds.zog.link/in/912/?sid=12969&source=1822165009&idzone=0&w=1&h=1&mo=&ve=&site_id=12969&utm1=&utm2=&utm3=&utm4=&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&spot_id=12969&p=http%3A%2F%2Fjavgg.club%2Fjav%2Fofje-353%2F&katds_labels=&btype=0&score=23.267455152330925&bf=0.0001
109.206.163.116302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=12969&source=1822165009&idzone=0&w=1&h=1&mo=&ve=&site_id=12969&utm1=&utm2=&utm3=&utm4=&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&spot_id=12969&p=http%3A%2F%2Fjavgg.club%2Fjav%2Fofje-353%2F&katds_labels=&btype=0&score=23.267455152330925&bf=0.0001
IP 109.206.163.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=12969&source=1822165009&idzone=0&w=1&h=1&mo=&ve=&site_id=12969&utm1=&utm2=&utm3=&utm4=&ad_tags=OFJE-353%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CY.%2C%2CJavGG.club%2COFJE-353%2CJAV%2CIn%2CThe%2CCountryside%2CThere%2CIs%2CNo%2CYal%2CAll%2CYear%2CRound%2CAnd%2CI%2CGet%2COn%2CThe%2CTemptation%2CS1%2CNO.1%2CSTYLE%2CRelease%2CMarch%2C8%2C2022,&spot_id=12969&p=http%3A%2F%2Fjavgg.club%2Fjav%2Fofje-353%2F&katds_labels=&btype=0&score=23.267455152330925&bf=0.0001 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://javgg.club/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.20.1
date: Sat, 04 Feb 2023 22:41:35 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://cdn.1vag.com/1x1.png
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Sun, 05 Feb 2023 22:41:37 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5714dae27d6972774d3a73c8419365d9
3588cd04f19dfc75fdb4e91aa22ad5639e11fcfa
0312964ee2442aa66c2a8aaeaa0f3277ca9c30edf32dc7d0a2cf036938afb628
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0312964EE2442AA66C2A8AAEAA0F3277CA9C30EDF32DC7D0A2CF036938AFB628"
Last-Modified: Fri, 03 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10418
Expires: Sun, 05 Feb 2023 01:35:14 GMT
Date: Sat, 04 Feb 2023 22:41:36 GMT
Connection: keep-alive
cdn.1vag.com/1x1.png
45.133.44.24200 OK 68 B IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /1x1.png HTTP/1.1
Host: cdn.1vag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://javgg.club/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:36 GMT
content-type: image/png
content-length: 68
server: nginx/1.20.1
last-modified: Wed, 15 Apr 2020 13:30:15 GMT
etag: "5e970c67-44"
cache-control: max-age=3600
x-request-id: 28eea0836f6cd5562d41ccabe8fa4a5b
expires: Sat, 04 Feb 2023 23:41:36 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
avgle.com.7mmtv.top/api/settings/322939
135.181.208.216200 OK 0 B URL HTTP/2 avgle.com.7mmtv.top/api/settings/322939
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
GET /api/settings/322939 HTTP/1.1
Host: avgle.com.7mmtv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://javgg.club/
Origin: http://javgg.club
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Sat, 04 Feb 2023 15:55:53 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-193
x-downloadsize: 94889
x-bo-origindownloadtime: 136
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 23d108221e747d409ca43ebe64d1492f
cdn-cache: MISS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700&display=swap
IP 142.250.74.74:0
GET /css?family=Roboto%3A300%2C400%2C500%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 22:41:30 GMT
date: Sat, 04 Feb 2023 22:41:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.cabnnr.com/banner-admanager/build.m.js
45.133.44.25200 OK 0 B URL HTTP/2 js.cabnnr.com/banner-admanager/build.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
GET /banner-admanager/build.m.js HTTP/1.1
Host: js.cabnnr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:33 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Fri, 27 Jan 2023 07:04:13 GMT
etag: W/"63d3776d-d174"
content-encoding: gzip
expires: Sat, 04 Feb 2023 22:46:33 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/colors.dark.min.css?ver=2.5.2
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/colors.dark.min.css?ver=2.5.2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-content/themes/javggnet/assets/css/colors.dark.min.css?ver=2.5.2 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-207
x-downloadsize: 40118
x-bo-origindownloadtime: 111
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 80747914d0b045ee04176e140163b263
cdn-cache: MISS
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-includes/css/classic-themes.min.css?ver=1
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-includes/css/classic-themes.min.css?ver=1
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-197
x-downloadsize: 217
x-bo-origindownloadtime: 105
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1808b78d06f27e6612d5b61c18c47848
cdn-cache: MISS
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
45.133.44.24200 OK 0 B URL HTTP/2 js.wpadmngr.com/static/adManager.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:31 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 05 Dec 2022 13:37:26 GMT
etag: W/"638df416-4dd"
content-encoding: gzip
expires: Sat, 04 Feb 2023 22:46:31 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.crollbar.min.css?ver=2.5.2
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.crollbar.min.css?ver=2.5.2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-content/themes/javggnet/assets/css/front.crollbar.min.css?ver=2.5.2 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/03/2023 14:40:31
x-bo-server: ASB-209
x-downloadsize: 7194
x-bo-origindownloadtime: 118
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2917af5f63a80597b20cc6ef6dedfe13
cdn-cache: HIT
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.owl.min.css?ver=2.5.2
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.owl.min.css?ver=2.5.2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-content/themes/javggnet/assets/css/front.owl.min.css?ver=2.5.2 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-204
x-downloadsize: 2299
x-bo-origindownloadtime: 26
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 551917890e2f95c0e6b8c4ae61139547
cdn-cache: MISS
X-Firefox-Spdy: h2
a.realsrv.com/ad-provider.js
185.76.9.15200 OK 0 B URL HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: application/javascript
etag: W/"e2bbca1c479226a45392909d6a4"
expires: Thu, 02 Feb 2023 18:45:33 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1675558018
server: CDN77-Turbo
x-77-nzt: AblMCQ3L72//yAwAAA
x-77-nzt-ray: c0a4cc284804e2cb1adfde636184810c
x-cache: HIT
x-age: 3272
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-content/cache/min/1/wp-content/themes/javggnet/assets/fontawesome/css/all.min.css?ver=1675107434
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/cache/min/1/wp-content/themes/javggnet/assets/fontawesome/css/all.min.css?ver=1675107434
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-content/cache/min/1/wp-content/themes/javggnet/assets/fontawesome/css/all.min.css?ver=1675107434 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Sat, 04 Feb 2023 15:55:53 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-198
x-downloadsize: 176098
x-bo-origindownloadtime: 161
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0415c99d95b4d65928739031e3a9e6ce
cdn-cache: MISS
X-Firefox-Spdy: h2
cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.gallery.min.css?ver=2.5.2
194.242.11.186200 OK 0 B URL HTTP/2 cdnmaboi.b-cdn.net/wp-content/themes/javggnet/assets/css/front.gallery.min.css?ver=2.5.2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /wp-content/themes/javggnet/assets/css/front.gallery.min.css?ver=2.5.2 HTTP/1.1
Host: cdnmaboi.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://javgg.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 22:41:30 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1141420
cdn-uid: bad9d4e9-1ac4-4ad9-8b23-15cb991669b4
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Mon, 30 Jan 2023 16:01:31 GMT
cdn-cachedat: 02/04/2023 22:41:30
x-bo-server: ASB-198
x-downloadsize: 4256
x-bo-origindownloadtime: 121
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c5748176dd594fdfb16edf8b91c75260
cdn-cache: MISS
X-Firefox-Spdy: h2