Report - nicegirl4u.cyou

Report Overview

Submitted URL
nicegirl4u.cyou
IP
104.21.42.89
ASN
#13335 CLOUDFLARENET
Submitted
2024-10-15 22:30:23
Access
public
Website Title
NICEGIRL4U - Nice Girl For You
Final URL
nicegirl4u.cyou/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
jerseydisplayed.com	unknown	2024-08-12	2024-10-15T12:02:31.188368Z	2024-10-15T12:02:31.188368Z	5.0 kB	14 kB	192.243.61.225
unseenreport.com	unknown	2022-03-30	2022-03-30T16:33:17Z	2024-10-13T02:33:35.333594Z	735 B	495 B	192.243.59.13
fonts.googleapis.com	8877	2005-01-25	2013-06-10T22:14:26Z	2024-10-13T01:30:25.017526Z	485 B	6.8 kB	142.250.74.106
nicegirl4u.cyou	unknown	unknown	2020-07-15T19:31:52Z	2023-01-19T20:59:09Z	26 kB	2.6 MB	188.114.96.1
hikinghourcataract.com	unknown	2024-08-12	2024-10-15T12:25:24.865796Z	2024-10-15T12:25:24.865797Z	488 B	497 B	172.240.127.234
www.effectivecreativeformats.com	unknown	2022-07-15	2022-07-16T03:37:12Z	2024-02-26T11:46:19Z	898 B	24 kB	192.243.59.13
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27T13:27:45Z	2024-10-13T02:33:35.337314Z	414 B	375 B	185.196.197.71
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-10-13T01:49:52.040361Z	2024-10-13T01:49:52.040361Z	910 B	223 kB	45.133.44.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09T02:40:21Z	2024-10-13T01:30:25.857754Z	2.1 kB	80 kB	216.58.207.227
proftrafficcounter.com	unknown	2023-11-16	2023-11-21T09:55:14Z	2024-10-13T01:49:52.083329Z	431 B	422 B	52.29.137.37
recordedthereby.com	unknown	2024-05-08	2024-05-14T07:24:53Z	2024-10-13T02:33:35.329394Z	400 B	86 kB	185.196.197.71
pagead2.googlesyndication.com	101	2003-01-21	2021-02-20T16:52:05Z	2024-10-13T01:57:39.537235Z	458 B	789 B	172.217.21.162
nicegirl4u.disqus.com	unknown	unknown	2022-09-20T05:43:10Z	2022-09-20T05:43:10Z	404 B	1.5 kB	199.232.196.134
clickdescentchristmas.com	unknown	2024-08-19	2024-10-15T22:30:24.197325Z	2024-10-15T22:30:24.197325Z	444 B	34 kB	192.243.61.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-15	medium	jerseydisplayed.com	Sinkholed
2024-10-15	medium	jerseydisplayed.com	Sinkholed
2024-10-15	medium	jerseydisplayed.com	Sinkholed
2024-10-15	medium	unseenreport.com	Sinkholed
2024-10-15	medium	jerseydisplayed.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	recordedthereby.com/sfp.js	85 kB	2024-05-17T16:43:22Z	2024-10-15T23:50:16.359612Z
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.71 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17T16:43:22Z Last Seen2024-10-15T23:50:16.359612Z Times Seen9275 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js	25 kB	2024-10-15T22:30:28.529584Z	2024-10-15T22:30:28.529584Z
Pretty URL www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.529584Z Last Seen2024-10-15T22:30:28.529584Z Times Seen1 Hash 51478a6e0b820831236bdbf060f1aea9 950434edc22643f8808f4d40315f2265379ba209 aab3cd28bd50533f44aaf7283516ae85f5b4d918b800023bfbd13d59a7ea34b0 Loading...

	nicegirl4u.cyou/	66 B	2024-10-15T22:30:28.643303Z	2024-10-15T22:30:28.643303Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.643303Z Last Seen2024-10-15T22:30:28.643303Z Times Seen1 Hash 07ff1bebdc319b77370517b95d899985 1eef5a5a9dc1f26151c25cb8d8a114729eff14b6 8520d25c86a49b27276ac5ad22178edb81ea80376e3200016a4bef85537ad957 Loading...

	nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js	9.0 kB	2024-10-15T22:30:28.646058Z	2024-10-15T22:30:28.646058Z
Pretty URL nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.646058Z Last Seen2024-10-15T22:30:28.646058Z Times Seen1 Hash 44e86672d019e22a2f49154e7fdf4048 5c3b436fcba4763052ca7299cce3597fcffa908b 05ed78c556800ffeb155a1ddea2c78793211d2d078d86bb475876a074f794faf Loading...

	nicegirl4u.cyou/wp-content/cache/minify/a3c21.js	142 kB	2024-10-15T22:30:28.628213Z	2024-10-15T22:30:28.628213Z
Pretty URL nicegirl4u.cyou/wp-content/cache/minify/a3c21.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.628213Z Last Seen2024-10-15T22:30:28.628213Z Times Seen1 Hash 9f1bf82c3d04c8fc681b839f399ca9f5 ec5d8364dcb6c2ca8eabd7cd158c9e852b07315a 3696830cd2907b8503a88a827c12e434cf9e64544703877d3fdcfd3dbe6a7672 Loading...

	nicegirl4u.cyou/	3.3 kB	2024-10-15T22:30:28.649115Z	2024-10-15T22:30:28.649115Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.649115Z Last Seen2024-10-15T22:30:28.649115Z Times Seen1 Hash 9b2f5dd6e341e8f0f45a449f1918d3e6 0b2ac5be4973b0e345a531a37a98fc9f692784ac e47a36005c45dec5109085d816ce2c18d316b17ff8c63e05cca61e1870db65d9 Loading...

	nicegirl4u.cyou/	351 B	2024-10-15T22:30:28.652153Z	2024-10-15T22:30:28.652153Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.652153Z Last Seen2024-10-15T22:30:28.652153Z Times Seen1 Hash 77ab048b81efb85663a3e8330814faf2 d74481427bd033c5cc038a5228574b10838a0515 a91001f62a790881c660d9e1a2c032205006fb9b1d3121704819c2becbfa9a60 Loading...

	nicegirl4u.disqus.com/count.js	1.5 kB	2023-03-07T01:02:18Z	2024-10-15T23:37:35.009716Z
Pretty URL nicegirl4u.disqus.com/count.js IP 199.232.196.134 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07T01:02:18Z Last Seen2024-10-15T23:37:35.009716Z Times Seen2456 Hash 64932a1e2564351aa7642475acdf3fbf c3dd2b7d1d4604e3559c2732fd90d71059dd77d8 3487ef2baf0c08ba660a8a143cdeb8ebeec961eea04bccd7c49096b4eb26b875 Loading...

	nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js	116 kB	2024-10-15T22:30:28.654897Z	2024-10-15T22:30:28.654897Z
Pretty URL nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.654897Z Last Seen2024-10-15T22:30:28.654897Z Times Seen1 Hash 97ccb05dd622a9542f776dd314dece06 318124f1ff09f60e1e122556d692babb2518913c 522c25ce886e197862317f2281c445833e3e3038aebd1b490ee937a347401eb2 Loading...

	unknown	145 B	2024-10-15T22:30:28.657919Z	2024-10-15T22:30:28.657919Z
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.657919Z Last Seen2024-10-15T22:30:28.657919Z Times Seen1 Hash 6a03cf689215339de7d57ea44faf69b9 a491a4428b1b670a558296904aad897338cca379 944957b0baf4167b2e95e7b157d5db77da13d3a50e1b7f6876e7ee8ad3dae5c1 Loading...

	unknown	3.8 kB	2024-10-15T22:30:28.66062Z	2024-10-15T22:30:28.66062Z
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.66062Z Last Seen2024-10-15T22:30:28.66062Z Times Seen1 Hash bfc50b0275712d376c048f5bd06076a8 4d0fd46a860709e9bbc7db274945e9aed6051b4b 4fb0311c4e55f2d546169245207f530f436a16ebeb31f9b8be42947a7977aa55 Loading...

	nicegirl4u.cyou/wp-content/cache/minify/1615d.js	6.3 kB	2023-03-07T01:31:07Z	2024-10-15T22:30:28.662851Z
Pretty URL nicegirl4u.cyou/wp-content/cache/minify/1615d.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07T01:31:07Z Last Seen2024-10-15T22:30:28.662851Z Times Seen63 Hash 6b4f474dd7e9cdb72b1b38f723007883 b882e63a139948e21a3a1bae6747225333276421 3590a50189b749c071460b4b98b86d4231f3fe83c3bac6b8d35f0bcee14e1aec Loading...

	unknown	3.8 kB	2024-10-15T22:30:28.663819Z	2024-10-15T22:30:28.663819Z
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.663819Z Last Seen2024-10-15T22:30:28.663819Z Times Seen1 Hash 38e868b2c21905039d1a04187d74ec64 3484d21db1bf8717356109f05e4f45880d584878 0b87afdafeacc75948f6e975b3d1f30b74a4286b2548291ea424e83e2761e5cf Loading...

	nicegirl4u.cyou/	399 B	2023-03-07T21:34:48Z	2024-10-15T22:30:28.666481Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07T21:34:48Z Last Seen2024-10-15T22:30:28.666481Z Times Seen72 Hash ac9952ab256ddaf0e0b66c5315972b3c 3ce35de068562ea1d8772d1e9570251944451d0c 0bbf1a6a741f8260ecde5090be4fff752d0b4fe608f824371bbe70891ece49fa Loading...

	nicegirl4u.cyou/	77 B	2024-10-15T22:30:28.667669Z	2024-10-15T22:30:28.667669Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.667669Z Last Seen2024-10-15T22:30:28.667669Z Times Seen1 Hash 5b41783fd6c0f0dd1ec5ca89508bbe66 4cdc47f3254e9f7b2eb5ecf3f8c13e5ad31da08d bc2450363abdcbc929f4d2e37703fb59a012ee3dc2678c70995b3d6da6b55f0f Loading...

	nicegirl4u.cyou/	875 B	2024-10-15T22:30:28.670653Z	2024-10-15T22:30:28.670653Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.670653Z Last Seen2024-10-15T22:30:28.670653Z Times Seen1 Hash a8f482811524699e3b9dbeacbbe23328 51d8aa74cc44daf8876b14e588e2b78d8938a395 a3f40d68b85c18bef6039916a0215e397cc4676cdfbac893e889c3269143e5b1 Loading...

	nicegirl4u.cyou/wp-content/cache/minify/efe88.js	90 kB	2024-10-15T22:30:28.673192Z	2024-10-15T22:30:28.673192Z
Pretty URL nicegirl4u.cyou/wp-content/cache/minify/efe88.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.673192Z Last Seen2024-10-15T22:30:28.673192Z Times Seen1 Hash 320dfd8fe4e94b7abcd22c44deac07f0 df3fb3a4d5906f00997c95915aa36ad8f76c1e97 441f942e1bf6d17a0df7fadb543f0bcc62457f57806ee1db7f7dbc34262e5404 Loading...

	nicegirl4u.cyou/	520 B	2024-10-15T22:30:28.676607Z	2024-10-15T22:30:28.676607Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-15T22:30:28.676607Z Last Seen2024-10-15T22:30:28.676607Z Times Seen1 Hash 6f387375956608caad9e6f7349d3c6a0 6833fe4ac805862e95dd6814b6cdd5e66f43e1a4 148c1b7bfaacaaf48d5bdb1e75d2941858e4062d6e1fe6fa8212056c8e31c8bb Loading...

	clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js	95 kB	2024-10-15T22:30:28.5184Z	2024-10-15T22:30:28.5184Z
Pretty URL clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-15T22:30:28.5184Z Last Seen2024-10-15T22:30:28.5184Z Times Seen1 Hash 4c824690e36df2979118a3945fbc63e8 777f457ee1a9364a5e9d3ec0af3067ce993edee8 0bdf780842efe4c899a5e8e9c433e48a88621c0170d1f9d7b9e6508216115f8d Loading...

	nicegirl4u.cyou/	294 B	2023-03-07T01:18:57Z	2024-10-15T22:30:28.679676Z
Pretty URL nicegirl4u.cyou/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07T01:18:57Z Last Seen2024-10-15T22:30:28.679676Z Times Seen937 Hash 6f996f77dbfaf8f8f570a41fe4bc0e66 c6c21cdf9d26daac3c3fa466d46da03c70c2e8b6 e67bb8576493cbde78b6822ce205f837102cad9cf1a8302b9829f167f6158674 Loading...

	nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2	19 kB	2024-03-13T16:02:37Z	2024-10-16T00:12:14.684328Z
Pretty URL nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13T16:02:37Z Last Seen2024-10-16T00:12:14.684328Z Times Seen21482 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	0001-01-01T00:00:00Z	2024-10-16T00:27:26.46367Z
Pretty URL capaciousdrewreligion.com/advertisers.js IP 185.196.197.71 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01T00:00:00Z Last Seen2024-10-16T00:27:26.46367Z Times Seen3225236 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9d210d0757492abffea0fa1f83d84abc	2.2 kB	2024-10-15T22:30:28.680563Z	2024-10-15T22:30:28.680563Z
Pretty Observations First Seen2024-10-15T22:30:28.680563Z Last Seen2024-10-15T22:30:28.680563Z Times Seen1 Hash 9d210d0757492abffea0fa1f83d84abc 706db41be980f4dc1760a54fc23be63da631e533 a4e9effffbd3738354e8564636861684df17a8f283522720b126179bc251a1b6 Loading...

	#2 Eval - 79a3ccd60ae643130c66771c971fb0c9	2.1 kB	2024-10-15T22:30:28.683459Z	2024-10-15T22:30:28.683459Z
Pretty Observations First Seen2024-10-15T22:30:28.683459Z Last Seen2024-10-15T22:30:28.683459Z Times Seen1 Hash 79a3ccd60ae643130c66771c971fb0c9 0cf113b2d93dbbbe03848638d7576a8c713a70f3 363c891717d0554aea0434f0bb877cfaad2f357c96140e6bcddf83a517d7896d Loading...

		Size	First Seen	Last Seen
	#1 Write - 9e57d288bc7edefd5e1157d71587a1b5	130 B	2024-10-15T22:30:28.686494Z	2024-10-15T22:30:28.686494Z
Pretty Observations First Seen2024-10-15T22:30:28.686494Z Last Seen2024-10-15T22:30:28.686494Z Times Seen1 Hash 9e57d288bc7edefd5e1157d71587a1b5 79033fcaff37a1badcac5a64105e51bddee0be57 86c2fb745bd0379245d63556f7ea2720dc0312a5e9f6c145e827cf829e5d57b9 Loading...

HTTP Transactions (61)

URL IP Response Size

clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js

192.243.61.227

200 OK

34 kB

URL GET HTTP/1.1
clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectclickdescentchristmas.com
Fingerprint78:63:AF:9B:EB:5D:BD:15:6A:E4:5C:3E:8E:24:67:48:FD:6D:E6:1B
ValidityMon, 19 Aug 2024 21:19:29 GMT - Sun, 17 Nov 2024 21:19:28 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (33630 bytes)
Hash
4c824690e36df2979118a3945fbc63e8
777f457ee1a9364a5e9d3ec0af3067ce993edee8
0bdf780842efe4c899a5e8e9c433e48a88621c0170d1f9d7b9e6508216115f8d

HTTP Headers

GET /5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js HTTP/1.1
Host: clickdescentchristmas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: clickdescentchristmas.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b0c6769689e6e3ae00bb59d56822d468
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 14:01:23 GMT
expires: Sat, 11 Oct 2025 14:01:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 376112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nicegirl4u.cyou/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js

188.114.96.1

200 OK

17 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6274)
Size
17 kB (17083 bytes)
Hash
c0dc04a574108028bf6bde0c0e6d8e88
61237ccd1f8af2ae508382ded36af62bd54cb6c2
1a54a1907a6443e3c81608130bfed4546eb0ce5d0c8897e1d7a3b43d89ecc367

HTTP Headers

GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/javascript
last-modified: Sun, 26 May 2024 14:06:51 GMT
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GWCnuTteoPzYtK2hLIcW5JEz%2BqTNhHVJkb9FrNB2qzt3GSn1HNyWJvccKLUuw5k77OwzpBaKXLYiGwMvzzu6TBVztTEHhVg9dRhJOrXxG3txnfpmKnXPhCAro1MdLI0Pi3I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de43712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14892, version 1.0
Size
15 kB (14892 bytes)
Hash
9ec6deaf6bada919e20b98f9f7b718b1
501d36403ad8205e4644532600019ecb10f5cb0a
7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762

HTTP Headers

GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 07:13:55 GMT
expires: Sun, 12 Oct 2025 07:13:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
age: 314160
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

recordedthereby.com/sfp.js

185.196.197.71

200 OK

85 kB

URL GET HTTP/1.1
recordedthereby.com/sfp.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
FingerprintA6:94:B5:48:61:24:04:47:02:E8:CB:06:9D:21:58:9B:28:B3:E2:F3
ValidityFri, 06 Sep 2024 22:52:34 GMT - Thu, 05 Dec 2024 22:52:33 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85378 bytes)
Hash
7e3e44049654b6e244c1777e68ffb8e7
8f2a8298666d607afd92a0baa362ef4dc9ccd039
4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 706f2e3986dd18dba2cbc9bab2510d80
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 12:17:31 GMT
expires: Sat, 11 Oct 2025 12:17:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 382344
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

52.29.137.37

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.137.37:443
ASN
#16509 AMAZON-02

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
3c5692278632a1c3e98aa6c38976e013
f115efdaed71f88b3f54c6478367364a5725a48d
ce95dd8e590552964ffbe189755ec0806d23672ea5be32129b51a41f71a0c6c3

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://nicegirl4u.cyou
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Fri, 13 Oct 2034 22:29:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

hikinghourcataract.com/pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
hikinghourcataract.com/pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjecthikinghourcataract.com
Fingerprint90:FD:AA:FF:4C:DA:74:7A:94:0D:A3:5E:D9:26:EC:81:C4:65:8C:43
ValiditySat, 12 Oct 2024 07:38:33 GMT - Fri, 10 Jan 2025 07:38:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70 HTTP/1.1
Host: hikinghourcataract.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Length: 0
Connection: keep-alive
Host: hikinghourcataract.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js

192.243.59.13

200 OK

11 kB

URL GET HTTP/1.1
www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjecteffectivecreativeformats.com
FingerprintF4:27:75:29:93:C4:D4:33:7D:19:24:B6:8C:8C:8E:5A:07:F9:39:91
ValidityWed, 04 Sep 2024 21:51:25 GMT - Tue, 03 Dec 2024 21:51:24 GMT

File type
JavaScript source, ASCII text, with very long lines (24901), with no line terminators
Size
11 kB (11291 bytes)
Hash
51478a6e0b820831236bdbf060f1aea9
950434edc22643f8808f4d40315f2265379ba209
aab3cd28bd50533f44aaf7283516ae85f5b4d918b800023bfbd13d59a7ea34b0

HTTP Headers

GET /720c62220b79457808032b84b6f0cbc7/invoke.js HTTP/1.1
Host: www.effectivecreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: www.effectivecreativeformats.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a237449719387051adb7eaa0ed0f4bc3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

nicegirl4u.cyou/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2

188.114.96.1

200 OK

79 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79100, version 1.0
Size
79 kB (79100 bytes)
Hash
5dc01cfcd5336f696cb85da7ce53fa9b
28a1f2fadc35c5343e0280389fe7955e3d1be607
f419ad7a4477f36ce73c74a23dce784150ca38fa5075a8e06109709cbb716903

HTTP Headers

GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: font/woff2
content-length: 79100
cache-control: public, max-age=604800
expires: Fri, 18 Oct 2024 12:14:49 GMT
last-modified: Sun, 26 May 2024 14:06:47 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hrp0zEXBPia1GA5ubWxHQ8ABd2ciFcCOq633FWgOU%2Fun1DI11%2F%2By5zmLgsxKjslzbvGF4EoE5nGZ4eOOwjc4fYmgc2VOsmcFd7soUn63a6iVMKlNH%2Bavh1siIvHCOg%2FP%2Bp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33402ede3c712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js

192.243.59.13

200 OK

11 kB

URL GET HTTP/1.1
www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjecteffectivecreativeformats.com
FingerprintF4:27:75:29:93:C4:D4:33:7D:19:24:B6:8C:8C:8E:5A:07:F9:39:91
ValidityWed, 04 Sep 2024 21:51:25 GMT - Tue, 03 Dec 2024 21:51:24 GMT

File type
JavaScript source, ASCII text, with very long lines (24901), with no line terminators
Size
11 kB (11291 bytes)
Hash
51478a6e0b820831236bdbf060f1aea9
950434edc22643f8808f4d40315f2265379ba209
aab3cd28bd50533f44aaf7283516ae85f5b4d918b800023bfbd13d59a7ea34b0

HTTP Headers

GET /720c62220b79457808032b84b6f0cbc7/invoke.js HTTP/1.1
Host: www.effectivecreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: www.effectivecreativeformats.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 3f32775bd38982649cfd165ac1bb4811
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

172.217.21.162

200 OK

0 B

URL HEAD HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
172.217.21.162:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint23:C2:F9:1D:A0:7F:00:93:89:C3:70:03:98:FF:58:B3:93:04:5B:2A
ValidityTue, 24 Sep 2024 02:45:29 GMT - Tue, 17 Dec 2024 02:45:28 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 15 Oct 2024 22:29:56 GMT
expires: Tue, 15 Oct 2024 22:29:56 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 14204471204584365473
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52393
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jerseydisplayed.com/watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1

192.243.61.225

307 Temporary Redirect

0 B

URL GET HTTP/1.1
jerseydisplayed.com/watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectjerseydisplayed.com
Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E
ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Location: https://jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
Set-Cookie: u_pl17456064=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzQ1NjA2NCwiayI6IjcyMGM2MjIyMGI3OTQ1NzgwODAzMmI4NGI2ZjBjYmM3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTA5MTA1LCJwaWQiOjQ5NjMwNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyLCJhaWQiOjUsInB0Ijo0LCJwayI6Imd3cjl6OWQyZHMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uaWNlZ2lybDR1LmN5b3UvIiwiYXIiOltdfX0.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; expires=Tue, 15 Oct 2024 22:30:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: dd052f45463b328ece23be3c1a5dd312
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

jerseydisplayed.com/watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1

172.240.108.84

307 Temporary Redirect

0 B

URL GET HTTP/1.1
jerseydisplayed.com/watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectjerseydisplayed.com
Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E
ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Location: https://jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
Set-Cookie: u_pl17456064=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; expires=Tue, 15 Oct 2024 22:30:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f5132366d4c5abcdce42e2e200d24ef1
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-150x150.jpg

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 150x150, components 3
Size
22 kB (22520 bytes)
Hash
9e1f17bf4ff09281bdd6c988c0b18641
e9606ac945f2884590bacfd6fe503564e601cc47
bb4563aed6303f1449a1257fdd7cb9411f8c54ccd43309a7e91591f8ff6275ea

HTTP Headers

GET /wp-content/uploads/2024/09/906-3-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 22520
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 09:55:54 GMT
last-modified: Tue, 17 Sep 2024 16:07:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 162452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zaoJafLRDCiMoCHwXtI0R8o586%2FQCPskhu%2FiuZ5WFBrw1n%2FfsECJtBB1LVyfDKcGt50wAMrK8ygZpcU6mYXyjCdUULnvyyqWw5F5ueTn0w46d%2FJsLf1Ulabp54wGLxcgQJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c39712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1

192.243.61.225

200 OK

2.4 kB

URL GET HTTP/1.1
jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectjerseydisplayed.com
Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E
ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT

File type
JavaScript source, ASCII text, with very long lines (2967)
Size
2.4 kB (2370 bytes)
Hash
b510824aaf2951ab13904409da368496
97e26fdb3f78edfcfd5bc8e7479487595f31da54
16328ff44e8e746c48d4437e21e17e90f5330f7735013cd2e64df6f3c1534f8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
Referer: https://nicegirl4u.cyou/
DNT: 1
Connection: keep-alive
Cookie: u_pl17456064=1; ain=eyJhbGciOiJIUzI1NiJ9.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.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Tue, 22 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6ecea33f0c7248a6ffcd80b8248a0241
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 150x150, components 3
Size
18 kB (17889 bytes)
Hash
80dd9e4feadc544ea7bdc4b3d8b455c1
bc0a236a253c39075f79e377b60185291dbdc388
b8b203c5b81f91be60ebaf690c0678cd065e586c6da469b70cc040856f46deae

HTTP Headers

GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 17889
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:28:24 GMT
last-modified: Tue, 17 Sep 2024 16:38:44 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HsYmVwjsTEcH6d4mK7qKugCZ3cfDRcSXFEo8Dj6RGtt6F3Bguo8jp3Dey9D6I%2FMwRYU8qjzuj7%2F5nyYUpZTYAjMjwsVKU%2FFkpZqo%2FelBFymNA150qhWw6CeiWtEX3yRykwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c38712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-150x150.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 150x150, components 3
Size
18 kB (17490 bytes)
Hash
ab16abadd37423aebb680f8d403cb837
f8e8f15c144103eaf45cfcd098b4607f9709dbc7
a045b89b5078b3feebd134bc78682325fd4ccf1410a3fa95c034f53fbf3c2693

HTTP Headers

GET /wp-content/uploads/2024/09/06-36-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 17490
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 12:56:46 GMT
last-modified: Tue, 17 Sep 2024 16:38:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2Bku7xh8FgrFXYJFNDE1T0Ju%2Fkc59ZVLmGLpxsw95cj%2BCHq0f8IC2FqFV81E9TWT8%2FOZr4ZlggLIVm8ZgiJfxGNJ48gx%2FqgbPD4KZam9ZZS1MKNcnHvLjfDypUfRlVIBsd8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c30712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-683x1024.jpg

188.114.96.1

200 OK

125 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-683x1024.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 683x1024, components 3
Size
125 kB (125259 bytes)
Hash
71a94bf1579520ebb9057909390db3e0
c41aa5a479367680fc342e384b2e9126d8c2e3f5
b6e55de8be94c1cc8bc71a19b2b8832232eae5c1346b2508ab8f27d707553b65

HTTP Headers

GET /wp-content/uploads/2024/09/06-36-683x1024.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 125259
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 12:42:14 GMT
last-modified: Tue, 17 Sep 2024 16:38:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qJXDt%2BRKr2jchdQ64sVnbjBPktHhw4VATaYeUv%2FYpeJMqqXgVYTN57Cnfv1Rl1laKA%2BeugLYr5tPug6hMEx%2BGIa%2BdpgdflEPEED5q7InxRdWuuwrb4XwUzFsqQB3v8yiXr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c3c712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/160-7-150x150.jpg

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/160-7-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=6000, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=4000], baseline, precision 8, 150x150, components 3
Size
12 kB (11560 bytes)
Hash
e82bee7969f9fe6b1839af0fdc5bbd1c
37c067cef8d4254442e7dba52aa8014c8d7b365b
283a897600336e947f6fa1135d38d678356ccea00d66beb11d13537a408e0ddc

HTTP Headers

GET /wp-content/uploads/2024/09/160-7-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 11560
cache-control: public, max-age=604800
expires: Fri, 18 Oct 2024 08:26:26 GMT
last-modified: Sun, 15 Sep 2024 16:16:59 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a6y0sixopb%2BEjemvJoIoOSDHAknef%2BEwCLtnpvv22Bc9fPRUOKN3Gg97Kff8XbPRfGNWbQJdVYnDuAybF33Qw9E8HmbDVacOiL%2FhwIirjnrIcYZ2aT2SzwBvrFh8WhmhZvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c36712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg

188.114.96.1

200 OK

8.6 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 225x300, components 3
Size
8.6 kB (8607 bytes)
Hash
fb80f639fcbbca4334b3a066c99952e3
d0bac99206f5b8b91c44f324ccfd1ca68a90aee9
9f2920d37510974ea4b75ff7200c78f4f8a9d03e6a050f94e40e78dbcd314dd7

HTTP Headers

GET /wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 8607
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 06:09:02 GMT
last-modified: Sat, 27 Jan 2024 08:25:00 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cyCxYIZRZ%2F%2F9Nb7XBDgL%2B0U9Qj0OW6ww93wPspiNKwn0OXFfKJFpYclczSprcaj1pSM1vUo1Y2Fpsr7gHLJVK2PuHyCAyZOeXwuSvGKLu%2BQ1tgZvga1SLANls4LllhLo5mw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340352c4a712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg

188.114.96.1

200 OK

76 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 768x512, components 3
Size
76 kB (75475 bytes)
Hash
cd4ad0fc54075ea0e4bcd37d4919d789
d9d8fb6910dad543135ee58ae3ca06c7f537f5eb
686f9ef3b50d63ad44f9a4f29fbeafe26be04c40fe78126733c101fbd05a9175

HTTP Headers

GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 75475
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:35:19 GMT
last-modified: Tue, 17 Sep 2024 16:38:45 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HplI%2BXrSG5wSTgIsesFFhePc7CtmDxm7UB4sd1vVkT1dqKb%2FGE9fBPK4%2B1QFMJ2OtILRxfNQvcL5L%2BY3RPBNM7Svo64ZygTgnlnY97ffqCtEjaANyAl%2B8KPr4XH6vNLX1qU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c3b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-683x1024.jpg

188.114.96.1

200 OK

126 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-683x1024.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 683x1024, components 3
Size
126 kB (126404 bytes)
Hash
3663339c736c5d127876a45436dd01e0
0ec605fe72ad0b5d0ab879a72442a08c5091b340
6fd47065a86178cf0f59419d672fb5fb0fd200bcca934eb1575e21f8c701650e

HTTP Headers

GET /wp-content/uploads/2024/09/906-3-683x1024.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 126404
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 10:00:11 GMT
last-modified: Tue, 17 Sep 2024 16:07:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bUaKcFxgHbgop7TfeyNNfzJcqQYaMdv%2BLvjcnUreUMN5Djy2jEtnXM6YCOHOKiscF2P%2BhSHLZeteSe%2FhEjTZfLgK6oHRU54cz%2FPAfSXxXTr4RMud86uUUpvO9F38Y1QhgkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340351c3d712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 188x300, components 3
Size
13 kB (12581 bytes)
Hash
33199f65035e560e20f66fe991f707e9
e30d408e8a8142eb5a98c16bbe7d888606919809
b20c85c93047c9337b355a8e31388ceea802180875292dd7246b66878dbb5896

HTTP Headers

GET /wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 12581
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 21:32:13 GMT
last-modified: Sat, 27 Jan 2024 11:10:31 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=op6ZR3anavor376U1PurObGF78vvMbXK%2FQa84EKV%2FVNMHcCGxfpGrAcgFHSn1cUoAJle%2BL1XXyY359UVSKHM%2FQ7aI6Vdw7F4HrMiL%2BIIP1UZtIT4Jhw%2BlZkxN5VYS6vfzTQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340351c43712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/163-15-150x150.jpg

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/163-15-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=2940, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=5226], baseline, precision 8, 150x150, components 3
Size
20 kB (20193 bytes)
Hash
bfdcc86f342144716d561ddf4ab02c54
15cfa8487cf88ba6d911eae3b2d6d66ccbc08672
4f4bd19e37077520ccc2606254b24d91c4992c989c280d8fb76df1fe0ec6752b

HTTP Headers

GET /wp-content/uploads/2024/09/163-15-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 20193
cache-control: public, max-age=604800
expires: Sat, 19 Oct 2024 10:29:10 GMT
last-modified: Sun, 15 Sep 2024 16:16:45 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K6bJoNQ5TV5mywG8azrID%2FnhVg0z4J8SXfujkfy1yDu3ifmEcjKU5e%2FCyeTVdoOSow9AJqYrB3DLRXjwjnI9IodDB35ZC182croYRbPvrernHaj85pwiTWiDNuHuWoGOoTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c33712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2

188.114.96.1

200 OK

7.3 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
7.3 kB (7338 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: text/javascript
last-modified: Wed, 03 Apr 2024 05:50:29 GMT
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eju%2B9TfVBbR2uFUJDlmQpJZsVZajb1cKEhyapYlzh%2F3fEju5%2FWCRLJHr4GcVTxRVFTtCNsF63Ohkoxklp6N5i8PbVTeVXaf%2Bd00GJXt2n18HpOmAvxC%2FFcJ4RzIiSMrsr2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340349bdf712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

capaciousdrewreligion.com/advertisers.js

185.196.197.71

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
FingerprintE3:36:E7:35:50:1D:3D:F0:47:9F:E5:94:90:B5:48:C0:67:A2:2B:8A
ValidityTue, 03 Sep 2024 21:28:57 GMT - Mon, 02 Dec 2024 21:28:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:57 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8034bfba7b0271a4ae64a7f6b2837493
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

nicegirl4u.cyou/wp-content/uploads/2024/01/cropped-18.jpg

188.114.96.1

200 OK

97 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/01/cropped-18.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x598, components 3
Size
97 kB (96877 bytes)
Hash
5c6adc761f15aa0476ce7a3f5664cdb3
66682041aec3a0d97dccff998ab13de5f1bda5ee
7ea8294830e82ab203fee8039d7051685cd21e4a90f0b20a020c885eb7d19035

HTTP Headers

GET /wp-content/uploads/2024/01/cropped-18.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 96877
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 19:19:42 GMT
last-modified: Sun, 02 Jun 2024 08:22:23 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TkybkKGk%2FQktFXuMd1e6UHtjffe%2FwJVvk8n8HzigxTlckWoGDEWM4UoT1du4g%2BlEm%2BKxNxliIrNopuI0l3rQhuKpQJ1Az61JnND77YldLqHhTUEp3jLKHNdmhy8d5bdgZL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340386f80712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGB, non-interlaced
Size
1.4 kB (1441 bytes)
Hash
0d9eca144dfd0d692e3a15562e6b627e
0996c4aa4ed7d213e71dd8dc217bce8743c3cb56
73e1dd132f5af8f9d918769a3ca3a0bec08444f7a0c22afdec3918e9c6a3a757

HTTP Headers

GET /wp-content/uploads/2020/07/Untitled.png HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 1441
cache-control: public, max-age=604800
expires: Tue, 15 Oct 2024 12:29:08 GMT
last-modified: Sat, 18 Jul 2020 19:40:28 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 327276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eUAcDPeAKPz24Ngmj%2Bp5d5DyhtrT31Mco85DsCscnuLAAb9nOundiNPOJ5Ojw0QT4KBlizp7L9CIsHbqmn%2BsqL%2B7wepRvc4gWXrDmu0JUKse%2FVSx9YTdH%2FVXUaRjvg8ehTA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334039a8a4712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGB, non-interlaced
Size
1.4 kB (1441 bytes)
Hash
0d9eca144dfd0d692e3a15562e6b627e
0996c4aa4ed7d213e71dd8dc217bce8743c3cb56
73e1dd132f5af8f9d918769a3ca3a0bec08444f7a0c22afdec3918e9c6a3a757

HTTP Headers

GET /wp-content/uploads/2020/07/Untitled.png HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 1441
cache-control: public, max-age=604800
expires: Tue, 15 Oct 2024 12:29:08 GMT
last-modified: Sat, 18 Jul 2020 19:40:28 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 327276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nED2sFDt7z9ijATTWODV3UlG9%2BW%2B79jysPvfiw%2Bn0CeLAXoJ2GInPhL%2FdcUNXi6fS%2FTUExp%2BlwjdwY2M%2FRVWgcx59kdRIQZ7Q3i%2FXDz8mpOjTzWVW7qfrHaiObjmleudrFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334039b8a9712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.disqus.com/count.js

199.232.196.134

200 OK

871 B

URL GET HTTP/1.1
nicegirl4u.disqus.com/count.js
IP
199.232.196.134:443
ASN
#54113 FASTLY

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC
ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (528)
Size
871 B (871 bytes)
Hash
64932a1e2564351aa7642475acdf3fbf
c3dd2b7d1d4604e3559c2732fd90d71059dd77d8
3487ef2baf0c08ba660a8a143cdeb8ebeec961eea04bccd7c49096b4eb26b875

HTTP Headers

GET /count.js HTTP/1.1
Host: nicegirl4u.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Tue, 15 Oct 2024 18:17:01 GMT
ETag: "670eb19d-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW3-C1
X-Amz-Cf-Id: OFL5rMqhkaqU2IoJz4xAWvJV8a1fti1aaXwsaAXd3MqLeqLdkHEOSw==
Cache-Control: public, max-age=300
Date: Tue, 15 Oct 2024 22:29:57 GMT
Age: 278
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect

cdn.storageimagedisplay.com/cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png

45.133.44.1

200 OK

135 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36
ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
135 kB (135255 bytes)
Hash
24d9924e6239ca0da193b09f71fdf7c3
dffcd5b44d22d090ff07b74ae525fc591a6d24e7
0d88e2d0dcdb6ea0ff0d760ca7b7b0831f8bcffa92d6332620b1c5e68f227834

HTTP Headers

GET /cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 135255
server: nginx/1.21.6
last-modified: Mon, 19 Feb 2024 11:27:19 GMT
etag: "65d33b17-21057"
expires: Thu, 17 Oct 2024 22:29:57 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.storageimagedisplay.com/cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png

45.133.44.1

200 OK

87 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36
ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
87 kB (87173 bytes)
Hash
aa53b5fd51882682162fe61fd41943c2
431b8b0bc9258f3fa49732f7ea04ee0abe12098b
fff56dc9e343291366f83a61571289dcfff978cfdec88756b049d389ea08bd40

HTTP Headers

GET /cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 87173
server: nginx/1.21.6
last-modified: Mon, 19 Feb 2024 11:27:37 GMT
etag: "65d33b29-15485"
expires: Thu, 17 Oct 2024 22:29:57 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

nicegirl4u.cyou/wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg

188.114.96.1

200 OK

9.7 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=II*], baseline, precision 8, 300x200, components 3
Size
9.7 kB (9702 bytes)
Hash
02ea3e5fb48b07406d36f5b7b7e2824a
fb93775295ef848e9faac53deaf9875ce676fe75
95507b149662efa3ea57f0caa3ec87e503dfd3eac4d2b572af949f18d08968b3

HTTP Headers

GET /wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9702
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 22:19:11 GMT
last-modified: Tue, 30 Jan 2024 08:00:05 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lYoB6eiH7NVqdxHxebvBU5QcGI5sSaWzSJDQMhDvI1IJDCMx42IoFsa1SGTLYxSRiWsgkZ06SG5z27fhjNcbpojEyoaNJ419NgtpS30EQx0noozKkBCMzFAwkAivO0BFFBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e6e00712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/01/44-1-200x300.jpg

188.114.96.1

200 OK

9.2 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/01/44-1-200x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x300, components 3
Size
9.2 kB (9231 bytes)
Hash
2d55a0459753abf77767d70971ec389d
0cdd43553c9ebe255f40f7fab584b8ada9de6f54
8aee1249b667aac47ca6a9ed6bd14def8020455843078a1a3901db94c236c1ba

HTTP Headers

GET /wp-content/uploads/2024/01/44-1-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9231
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 10:19:30 GMT
last-modified: Mon, 29 Jan 2024 08:01:56 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMREl1L8Squ4Z9vZm8CzR8ekawGJnlovD8kZJOgph%2FY%2BVrIYFlUxCxhrXPtMVP4HY%2Fzv%2Bd2G4h0pP1lj%2B4fOmdXJRdvO0Fc6j%2F%2FGhuMOhrrG2zKEq53hZzH7RW91Q%2Bu8pWI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e6e02712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css

188.114.96.1

200 OK

49 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
ASCII text, with very long lines (54381), with no line terminators
Size
49 kB (49062 bytes)
Hash
f36fe59625369997725d074979de3907
914aa67827d80bc3cf3edd8876ed6e6703aba192
a3958af9ccaed0543796a157864890c795a249b7888f7c6683622c681d3e711a

HTTP Headers

GET /wp-content/cache/minify/c3fd8.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=54384
etag: W/"pub1716732407;gz"
expires: Thu, 03 Jul 2025 16:36:21 GMT
last-modified: Sun, 26 May 2024 14:06:47 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nBNpqs4NA3i7Rwo9ZnmrR97eIZgFJa6N0FFWu75HbWxDoRCStQ4aoyXb3EdQf4ooA%2BkaRulfZLiYKKWP6ee%2B0PezOqXPEh8jt1RE9N1V7msbdfz2drGVO%2Fve3zGEzQZtbcs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de4a712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2023/12/06-300x174.jpg

188.114.96.1

200 OK

9.1 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2023/12/06-300x174.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x174, components 3
Size
9.1 kB (9102 bytes)
Hash
7a7ca3a4da07e0560c29639522317243
fb0f6f3603999839855e078f6996dde5913db45e
e98dec9360953574daa7a7bd9445c6581fc14efc6fc1c1159e3615fe15cfb598

HTTP Headers

GET /wp-content/uploads/2023/12/06-300x174.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9102
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 19:53:00 GMT
last-modified: Tue, 26 Dec 2023 08:10:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7p670CX8z8lM03XRmgFchpc7xY4BdDYdz70Bf4z6PmLckRfhQYOmixdJp5BOd%2BXkWHoaHACKhmwKSo7%2Bfq4Yk9a%2B8CJZxIzKzakDvFjxibwAU8VqQrdCUdTTvt%2BQovewesw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e05712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=MrCong.com], baseline, precision 8, 202x300, components 3
Size
11 kB (11030 bytes)
Hash
69b9156b95ccbc6f0d4e840b6d4322cf
de3cd623761ba9db303fe2b5a8c4c7d39326c248
3d7cceb649916bb15052eecffb8a465151a8d734d2346867124cb80878fb02d6

HTTP Headers

GET /wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 11030
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 19:53:00 GMT
last-modified: Fri, 29 Dec 2023 04:17:55 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pG2Pe3EVk8Ko8vrO5sCUMR3t83RwhUPjnWwxLqcnkr4L8fEAyKROc6rie2kFcZpxPkrz%2BTbEmo%2BrVaZCSYA34cM1bRH1%2F2YkBow6IUcpLYFgSG6DRZydDlZ8XVapjEEEx1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e07712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-200x300.jpg

188.114.96.1

200 OK

27 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-200x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 200x300, components 3
Size
27 kB (26700 bytes)
Hash
a2ea95017e499a0fde68e6d1aa63541f
4468bbec4e88453d4dcf5a1a3a506a186a8baab5
919388a12e55d49dc395dc71f796a0eb9275839dfe8f3b566665ef55db2b4000

HTTP Headers

GET /wp-content/uploads/2024/09/06-36-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 26700
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 13:05:31 GMT
last-modified: Tue, 17 Sep 2024 16:38:50 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P7lTDjg81YrS3ve2ZHBIJbqc36Xbaun60L7TzuydZk6koWTIe5l6bMuRi%2Bo3syE8yK0%2F%2F5DUlK2xR4noEnVCcYcQNcYuCOcEZlJU2KXXLipBSOFmkYo7uV56%2B3NCGLm3cc4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e8e18712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg

188.114.96.1

200 OK

7.5 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3
Size
7.5 kB (7490 bytes)
Hash
1f6308aa64deb74a55d55567d7719862
c97ffbda6b9c677f075b7fc1a38f1ffc94a38768
d1238e167d3973cf3192b7454c627616715725adc1b26963b820d65be933c084

HTTP Headers

GET /wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 7490
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 10:19:30 GMT
last-modified: Mon, 18 Mar 2024 14:07:24 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJZo5n7p0WEuqWLaIpygz7%2BOFD7vEyn2TTL%2BJlB88thostZTVnXexOJnqDDeRUtnfO3XgPx8V%2Bbg%2FlfndtuL87CiCf66z4tmdK6UKpS%2FdnYVXwKZfpylsso87XUtM9wpKww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e5df5712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-200x300.jpg

188.114.96.1

200 OK

32 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-200x300.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 200x300, components 3
Size
32 kB (31662 bytes)
Hash
e5e285a1411011f9db35260fc7c6b6d0
781e499b7ec12bd2b160e4d8b3984ce838c38a86
3be619cfd104c81db886b6276c900962f629f460bcd4c923aa386521f9304542

HTTP Headers

GET /wp-content/uploads/2024/09/906-3-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 31662
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 09:59:47 GMT
last-modified: Tue, 17 Sep 2024 16:07:10 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dvmW0mCN0yT4TFQTXS9i49YSVjTPRjtgsWVcS6A7lSuvi9DlwQiluV%2BBJVFWt0vcNiwJmaZJZZmtOV%2FchnMyKCWOpnFUBJS4DWbzO4JSaQyn6Li%2FLxPqm0J1nsTixYGoXZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e8e1d712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

unseenreport.com/pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

192.243.59.13

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintF0:98:AC:22:06:CC:50:D7:62:08:A2:F7:67:3A:D3:8D:DA:4B:FE:E6
ValidityThu, 19 Sep 2024 04:18:43 GMT - Wed, 18 Dec 2024 04:18:42 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:58 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 357bb29956eadb212697c3481934cbda
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

nicegirl4u.cyou/wp-content/uploads/2024/09/157-16-150x150.jpg

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/157-16-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=5599, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=3733], baseline, precision 8, 150x150, components 3
Size
15 kB (14587 bytes)
Hash
62007b2fc81e7e3f36b934162dcfa6b0
c20338fb9db209438200fcf53f06fd8c3015f6f3
9150aae13f98af9597140e67027e3bf48dab3e136a2d9f04edb6f1f5ceaaf266

HTTP Headers

GET /wp-content/uploads/2024/09/157-16-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:30:05 GMT
content-type: image/jpeg
content-length: 14587
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 16:28:37 GMT
last-modified: Sun, 15 Sep 2024 15:52:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J91PcX9uuUK3Qt6Aq1rMazLrPU8lN3fARIliR5pnVxF4F0rLBSIpk3WgvSB9FA6gNLu6qSw8Z96dDl739ogk1I34uEZ3V8MXdUy52Rq5zA9E7N6YdqJweQHBHBrTJwKSJys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340671e5b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/165-1-150x150.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/165-1-150x150.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3375, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 150x150, components 3
Size
18 kB (17731 bytes)
Hash
904a5436a6165104ef6a9d5d791aaa97
bfdd3b0fd941c589a566e25451842d1dcb43b881
81357caa44998c91792e3452678a4243f41bd23a63cfa571a84b8162fb42ccc9

HTTP Headers

GET /wp-content/uploads/2024/09/165-1-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:30:11 GMT
content-type: image/jpeg
content-length: 17731
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 14:18:29 GMT
last-modified: Sun, 15 Sep 2024 16:57:21 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TKkXSLqsNEnoN2QzcErO4IdDnp%2B97m%2BbWL2C7vEbPZYh8k3MfKogExiv8q6xUepZ9rM6w12S7CuFGYGRGHhYbK%2B%2FVv9NHe6c4fxihywYIYd97Nr0ZaGUhz2AlFxCGoacDao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340931934712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 300x200, components 3
Size
25 kB (25445 bytes)
Hash
30c24a22a7eea7802969bd5736ddeda6
86abc5e7d3f9d898cdc62828acbf2892ecbb6215
d226b10a9c62e0442fbd697b71232a1bca82e41f25bd9cf8929198789ee026ec

HTTP Headers

GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 25445
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:33:34 GMT
last-modified: Tue, 17 Sep 2024 16:38:43 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zTNc23lfE3ZGs4qZT0%2BaqkseUt3jcahc1zm1BVjvn42Zpxn35ns5ls2Mbz1v%2F3ZKRzYa%2F%2FAN5qeTvAfIDsFd%2Fk09k7LQXtdKiJgaw4YVJBFbA%2BwKQzoH1JB5rv6iq%2BHcFI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e0b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/0e804.css

188.114.96.1

200 OK

191 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/0e804.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
191 kB (191165 bytes)
Hash
bec6a2f6b4eb0e484c8a93caf111defc
2ad9d70e690a60571ef6561dbbb6b30140b835fe
b4e3a5a9d967dba58791b6782243ee1305baaf71c17d937c5d88bce1b30998ce

HTTP Headers

GET /wp-content/cache/minify/0e804.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=204020
etag: W/"pub1717315699;gz"
expires: Sat, 20 Sep 2025 06:42:52 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TDUj%2B71XtsM1YXXKgF9CrHM%2BNFCZX1rjeBZwO8l57O884%2BZqU0Cef6NWA7BZgC5BE8bW%2FwIbeg%2BSYKz8BPd2o3c3yNoFPV%2Bjx7mqFlQKZt36g3mpF7UDzzB7hEVbPIAfWxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026ee61712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/efe88.js

188.114.96.1

200 OK

90 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/efe88.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type

Size
90 kB (90206 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/efe88.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=90382
etag: W/"pub1706459073;gz"
expires: Tue, 18 Mar 2025 18:13:24 GMT
last-modified: Sun, 28 Jan 2024 16:24:33 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fhu%2BtmPw8%2F2pUAtNv%2FnLdZoW8hDgHcXuYckO1rLPZWEYn%2B0Z0p3CgmPkviw00hMuDbt1PQN11%2Bho6SDlEjRRgPA9lq81uPU69WFkR%2Fa2kDeyPb3O%2F7dCJ%2FqG9sttWxnRrK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe74712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/1615d.js

188.114.96.1

200 OK

6.3 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/1615d.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JavaScript source, ASCII text, with very long lines (6422), with no line terminators
Size
6.3 kB (6274 bytes)
Hash
b786f6ea74a911b1a83c82643c944002
e3b1975042f679614ca0f02a98880cc75bea50c3
3d4a62276371cfd643fb195c9b4c2948b650319a26ef436c947fbb2aac4cc861

HTTP Headers

GET /wp-content/cache/minify/1615d.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=6275
etag: W/"pub1710700583;gz"
expires: Tue, 18 Mar 2025 17:27:09 GMT
last-modified: Sun, 17 Mar 2024 18:36:23 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZyN4wd0NUOeTc4pxgktdkDtnSusmwcad5y1YhcoI4LCBpjtHNmCXV3WRcp%2FCF0rSVo2uPkCu9iF67MkOdcjCisnJpL2bV2iDQCitQgbK0%2B5iU7uj2K0CHRgfjo3B3K%2Bx4uk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe85712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/82e7e.css

188.114.96.1

200 OK

623 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/82e7e.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type

Size
623 kB (623103 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/82e7e.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=624330
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 20:48:26 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8qlzjYnqBUXg7uFMHoodUmPehqJ6DrFZcj1%2FZ9khSn1L42BvC33KYTcTL%2FkazaWaKYGW7ZipwIhI1Q8MfG%2FxRYY9qNGDrqGXA3cMzahvt1VscLsqt2Gjgl%2BvUCYfyEuVJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de45712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1

192.243.61.225

200 OK

3.9 kB

URL GET HTTP/1.1
jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerLet's Encrypt
Subjectjerseydisplayed.com
Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E
ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT

File type
JavaScript source, ASCII text, with very long lines (3903), with no line terminators
Size
3.9 kB (3875 bytes)
Hash
ba968e3629eb311c3c84266584ab6932
05398fae43bd3f31597529c1036ffa95109c9792
2f6aee76466c9354d4dcaf84ba9dd531263784711f026a890315b074e64e736b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
Referer: https://nicegirl4u.cyou/
DNT: 1
Connection: keep-alive
Cookie: u_pl17456064=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzQ1NjA2NCwiayI6IjcyMGM2MjIyMGI3OTQ1NzgwODAzMmI4NGI2ZjBjYmM3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTA5MTA1LCJwaWQiOjQ5NjMwNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyLCJhaWQiOjUsInB0Ijo0LCJwayI6Imd3cjl6OWQyZHMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uaWNlZ2lybDR1LmN5b3UvIiwiYXIiOltdfX0.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Tue, 22 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 531b0fcfe68f863151501eb95dd6de13
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext

142.250.74.106

200 OK

6.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint80:2E:9C:80:BE:20:08:CB:81:6F:92:4C:83:5C:1E:73:D7:6B:F3:27
ValidityTue, 24 Sep 2024 03:17:04 GMT - Tue, 17 Dec 2024 03:17:03 GMT

File type
ASCII text, with very long lines (6330), with no line terminators
Size
6.2 kB (6186 bytes)
Hash
29a1774551846a2d208cc80d0f7f0fa4
6fd3ed6b4333677e7fcc60f6fdaa2e15ba7c00d2
943151424b4acbbadacef7a50f54c9fdb510d46f74d1eb98ff9cc7808a48446d

HTTP Headers

GET /css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Oct 2024 22:29:54 GMT
date: Tue, 15 Oct 2024 22:29:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2

188.114.96.1

200 OK

30 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
ASCII text, with very long lines (30542), with no line terminators
Size
30 kB (30542 bytes)
Hash
7af0c89b728f556aa7e08f47cf08fa16
26107b9cfcd2b0bbdab6736089379940f362d891
792521ae526b3a24003163e55414858f22375c4a1d5390d85ac93e7c430c8844

HTTP Headers

GET /wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css;charset=utf-8
set-cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7c%2BltLB5ISLCn60jj6tmSssV8mAPsH3XPyoAN4x5M6n7WHnLOqnlLOH4Qnj3f0L4A4t%2BXk9cMun9aFtNMkOlWpW59ujSdIW1iojE3%2BFJsKgndNIonpTlvWuxTV7P94F4W1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe6e712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/a3c21.js

188.114.96.1

200 OK

142 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/a3c21.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JavaScript source, ASCII text, with very long lines (3733)
Size
142 kB (142264 bytes)
Hash
9f1bf82c3d04c8fc681b839f399ca9f5
ec5d8364dcb6c2ca8eabd7cd158c9e852b07315a
3696830cd2907b8503a88a827c12e434cf9e64544703877d3fdcfd3dbe6a7672

HTTP Headers

GET /wp-content/cache/minify/a3c21.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=142380
etag: W/"pub1717315699;gz"
expires: Mon, 02 Jun 2025 08:27:58 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HTdnRc%2BTMgbWKcTvbLHBmC66cdsEGqyPgKvV9XNp9degVawp5yLP%2FR5BW5xFfoPhhtgE%2B8WMa7BZVRKwsxMMp%2Fa315nIXdV%2Far8qU7QjstMk2wU3UwLXyyJZMomA5dd7CKU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe82712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B
ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14712, version 1.0
Size
15 kB (14712 bytes)
Hash
3afeae0d768769f5e5f30ac9805c5b70
3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d
0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce

HTTP Headers

GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 19:30:01 GMT
expires: Sat, 11 Oct 2025 19:30:01 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
age: 356394
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js

188.114.96.1

200 OK

116 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type

Size
116 kB (115651 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/2cdb9.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=123213
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 17:27:09 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DWvbgfiaWUoLlr2dkbRi%2Bp46x8ZypPfVmcWFmEwNDS6tuNAozE4cD2MW4jOWwEkHfo%2F33JzUwVzl%2BzthuLzoRfhgNwol6haulCa7v6%2Fwa%2BClqdU0fLlOhT7uklfE7lGp%2Bi4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026ee64712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/a5ff7.css

188.114.96.1

200 OK

113 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/a5ff7.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type

Size
113 kB (113172 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/a5ff7.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=113364
etag: W/"pub1712123429;gz"
expires: Mon, 02 Jun 2025 08:09:23 GMT
last-modified: Wed, 03 Apr 2024 05:50:29 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=swzh0GsLLUIuFINsX8R6tOJRASMiyU3DdGmcvtFCT4a88zJEQzN%2B0fhq9ycbx1LPo8dV4nUEbj98BiD1YWGzJ5%2F5dCwP7%2FOP59qGnQo3W8JxRoOZpZWPk6TdCqB%2BFQ0TnF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de47712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/

188.114.96.1

200 OK

198 kB

URL User Request GET HTTP/2
nicegirl4u.cyou/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type

Size
198 kB (198118 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/html; charset=UTF-8
last-modified: Tue, 15 Oct 2024 22:26:50 GMT
pragma: public
cache-control: max-age=3417, public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBUZSrzLT%2BkL%2B5GFtYvt7piwiuSa%2B7fYDWi2C3lWSDDr0Eq36F%2BS3qX6fKDU0ScqW7BfU8TjKPM6rakvj0PnWN13N9v80v7Jy3mWoGau2NssTHGMmZ3Qpiphne6IvBsZEQc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8d3340210ff056aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js

188.114.96.1

200 OK

9.0 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
JavaScript source, ASCII text, with very long lines (9352), with no line terminators
Size
9.0 kB (9012 bytes)
Hash
68a48352b4c13bdffec0b3a6940e30e7
1e46f40c19b5f55c8fa7dda27944a45bdebb2123
a0d4f49148c7e36517576c1f79c93737c2c154d38bf8b5a179aa38485b3bc03f

HTTP Headers

GET /wp-content/cache/minify/1c2dd.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 19:37:41 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j74sx%2FPQ%2B1r2q1Bh9dpt7zrBbRhO%2Fa0BiTIj1Wu08cWankAIDwdf3nHHUHxJvzxl%2Bz8xqUiSVWx4LVIcCriTmZLhgHiuuUfmp8ADI%2F8bFsdUfBC5ouWp2gioMgTY%2BUAZ4OM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe72712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12

188.114.96.1

200 OK

511 B

URL GET HTTP/3
nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
ASCII text, with very long lines (548), with no line terminators
Size
511 B (511 bytes)
Hash
450c9e1f0eae58a0b5c742eefe768da9
d163941323e5c41d19c9af19ab12697d914245e0
91de61c91ee487e8d26e3763fea815986b0795bb26716521233e4426fb94165a

HTTP Headers

GET /wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css;charset=utf-8
set-cookie: PHPSESSID=1acec8a1228bb43ccd807d78bf13f5f6; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tsg%2BmS5sS0Vqy%2BrNRrRxRTA5GZ02YbFDMnk0QOubJe1MrpkT0Ddt%2BYBBYMpxWx6SvG3mTTdext%2Fd4wOi9Kle3E9rejV6H%2FWGX0tVrIUg5NtBHYwcOvBHzWYKtA1ccryRzm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe70712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2

188.114.96.1

200 OK

19 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, aft-icons
Size
19 kB (19272 bytes)
Hash
9883b149dcb4398f73836578fdba4241
c84322c46c889132bf9c3c5d831a4eab94e881b0
f498f4de89f8c27d4d56f4d8dd0988da262875d8e4f1fa71bdf2a391b9050523

HTTP Headers

GET /wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/wp-content/cache/minify/a1a44.css
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: font/ttf
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 01:31:40 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3h3DwbzCkdG16ERVHn7P4m1fDySSzbJrM4cayjJg60tEHxbPYLv%2BmoM2wme7pUDZyuFe9dGpHhOkNMXDkQhDaSoTMHkxPTOHvExAYTtxdruWphgbLla2RpdpGKg1MC8E3vQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33402d9d02712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

nicegirl4u.cyou/wp-content/cache/minify/a1a44.css

188.114.96.1

200 OK

126 kB

URL GET HTTP/3
nicegirl4u.cyou/wp-content/cache/minify/a1a44.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://nicegirl4u.cyou/
Certificate
IssuerGoogle Trust Services
Subjectnicegirl4u.cyou
FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4
ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT

File type
ASCII text, with very long lines (60352)
Size
126 kB (126487 bytes)
Hash
26ce8b5eb4928726e62efe7a7263abe2
fac3ad14c1691dbb3f877e2393ab1712c08672e4
213967744277c6a5768be2b722348b0e26f9881f4cec2df86768fd076281a6a3

HTTP Headers

GET /wp-content/cache/minify/a1a44.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=126625
etag: W/"pub1717315699;gz"
expires: Sat, 11 Oct 2025 10:51:44 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9c6b9kyJRU6ggPQnxVvLhKVZbnb7xL0tsndiQ0BY1eUtU3W3uhKC4dAMCAZdHpR2UVeTKfZ3BLW7kFm2%2BQ1yi3tAPwjXrqYdATHqGj4JnbBrzbaoqMe63XCCQf5uQZI3I80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de51712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Mnemonic Secure DNS

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML