| clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js | 192.243.61.227 | 200 OK | 34 kB |
URL GET HTTP/1.1clickdescentchristmas.com/5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectclickdescentchristmas.com Fingerprint78:63:AF:9B:EB:5D:BD:15:6A:E4:5C:3E:8E:24:67:48:FD:6D:E6:1B ValidityMon, 19 Aug 2024 21:19:29 GMT - Sun, 17 Nov 2024 21:19:28 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash4c824690e36df2979118a3945fbc63e8 777f457ee1a9364a5e9d3ec0af3067ce993edee8 0bdf780842efe4c899a5e8e9c433e48a88621c0170d1f9d7b9e6508216115f8d
GET /5f/e1/c8/5fe1c86dc35cc5c10e66ed672576a6f9.js HTTP/1.1
Host: clickdescentchristmas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: clickdescentchristmas.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b0c6769689e6e3ae00bb59d56822d468
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 14:01:23 GMT
expires: Sat, 11 Oct 2025 14:01:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 376112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nicegirl4u.cyou/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js | 188.114.96.1 | 200 OK | 17 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJavaScript source, ASCII text, with very long lines (6274) Hashc0dc04a574108028bf6bde0c0e6d8e88 61237ccd1f8af2ae508382ded36af62bd54cb6c2 1a54a1907a6443e3c81608130bfed4546eb0ce5d0c8897e1d7a3b43d89ecc367
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/javascript
last-modified: Sun, 26 May 2024 14:06:51 GMT
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GWCnuTteoPzYtK2hLIcW5JEz%2BqTNhHVJkb9FrNB2qzt3GSn1HNyWJvccKLUuw5k77OwzpBaKXLYiGwMvzzu6TBVztTEHhVg9dRhJOrXxG3txnfpmKnXPhCAro1MdLI0Pi3I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de43712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14892, version 1.0 Hash9ec6deaf6bada919e20b98f9f7b718b1 501d36403ad8205e4644532600019ecb10f5cb0a 7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Oct 2024 07:13:55 GMT
expires: Sun, 12 Oct 2025 07:13:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
age: 314160
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| recordedthereby.com/sfp.js | 185.196.197.71 | 200 OK | 85 kB |
URL GET HTTP/1.1recordedthereby.com/sfp.js IP185.196.197.71:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectrecordedthereby.com FingerprintA6:94:B5:48:61:24:04:47:02:E8:CB:06:9D:21:58:9B:28:B3:E2:F3 ValidityFri, 06 Sep 2024 22:52:34 GMT - Thu, 05 Dec 2024 22:52:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 706f2e3986dd18dba2cbc9bab2510d80
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 12:17:31 GMT
expires: Sat, 11 Oct 2025 12:17:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 382344
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.29.137.37 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.137.37:443
CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash3c5692278632a1c3e98aa6c38976e013 f115efdaed71f88b3f54c6478367364a5725a48d ce95dd8e590552964ffbe189755ec0806d23672ea5be32129b51a41f71a0c6c3
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://nicegirl4u.cyou
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Fri, 13 Oct 2034 22:29:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| hikinghourcataract.com/pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1hikinghourcataract.com/pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70 IP172.240.127.234:443
CertificateIssuerLet's Encrypt Subjecthikinghourcataract.com Fingerprint90:FD:AA:FF:4C:DA:74:7A:94:0D:A3:5E:D9:26:EC:81:C4:65:8C:43 ValiditySat, 12 Oct 2024 07:38:33 GMT - Fri, 10 Jan 2025 07:38:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1689&rd=1689&fd=644&bv=24.8.8162&tmpl=70 HTTP/1.1
Host: hikinghourcataract.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Length: 0
Connection: keep-alive
Host: hikinghourcataract.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js | 192.243.59.13 | 200 OK | 11 kB |
URL GET HTTP/1.1www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjecteffectivecreativeformats.com FingerprintF4:27:75:29:93:C4:D4:33:7D:19:24:B6:8C:8C:8E:5A:07:F9:39:91 ValidityWed, 04 Sep 2024 21:51:25 GMT - Tue, 03 Dec 2024 21:51:24 GMT
File typeJavaScript source, ASCII text, with very long lines (24901), with no line terminators Hash51478a6e0b820831236bdbf060f1aea9 950434edc22643f8808f4d40315f2265379ba209 aab3cd28bd50533f44aaf7283516ae85f5b4d918b800023bfbd13d59a7ea34b0
GET /720c62220b79457808032b84b6f0cbc7/invoke.js HTTP/1.1
Host: www.effectivecreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: www.effectivecreativeformats.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a237449719387051adb7eaa0ed0f4bc3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| nicegirl4u.cyou/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2 | 188.114.96.1 | 200 OK | 79 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79100, version 1.0 Hash5dc01cfcd5336f696cb85da7ce53fa9b 28a1f2fadc35c5343e0280389fe7955e3d1be607 f419ad7a4477f36ce73c74a23dce784150ca38fa5075a8e06109709cbb716903
GET /wp-content/plugins/blockspare/assets/fontawesome/fonts/fa-solid-900.woff2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: font/woff2
content-length: 79100
cache-control: public, max-age=604800
expires: Fri, 18 Oct 2024 12:14:49 GMT
last-modified: Sun, 26 May 2024 14:06:47 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hrp0zEXBPia1GA5ubWxHQ8ABd2ciFcCOq633FWgOU%2Fun1DI11%2F%2By5zmLgsxKjslzbvGF4EoE5nGZ4eOOwjc4fYmgc2VOsmcFd7soUn63a6iVMKlNH%2Bavh1siIvHCOg%2FP%2Bp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33402ede3c712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js | 192.243.59.13 | 200 OK | 11 kB |
URL GET HTTP/1.1www.effectivecreativeformats.com/720c62220b79457808032b84b6f0cbc7/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjecteffectivecreativeformats.com FingerprintF4:27:75:29:93:C4:D4:33:7D:19:24:B6:8C:8C:8E:5A:07:F9:39:91 ValidityWed, 04 Sep 2024 21:51:25 GMT - Tue, 03 Dec 2024 21:51:24 GMT
File typeJavaScript source, ASCII text, with very long lines (24901), with no line terminators Hash51478a6e0b820831236bdbf060f1aea9 950434edc22643f8808f4d40315f2265379ba209 aab3cd28bd50533f44aaf7283516ae85f5b4d918b800023bfbd13d59a7ea34b0
GET /720c62220b79457808032b84b6f0cbc7/invoke.js HTTP/1.1
Host: www.effectivecreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: www.effectivecreativeformats.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 3f32775bd38982649cfd165ac1bb4811
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 172.217.21.162 | 200 OK | 0 B |
URL HEAD HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP172.217.21.162:443
CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net Fingerprint23:C2:F9:1D:A0:7F:00:93:89:C3:70:03:98:FF:58:B3:93:04:5B:2A ValidityTue, 24 Sep 2024 02:45:29 GMT - Tue, 17 Dec 2024 02:45:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Tue, 15 Oct 2024 22:29:56 GMT
expires: Tue, 15 Oct 2024 22:29:56 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 14204471204584365473
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 52393
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jerseydisplayed.com/watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 | 192.243.61.225 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1jerseydisplayed.com/watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectjerseydisplayed.com Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.691663839073.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Location: https://jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
Set-Cookie: u_pl17456064=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; expires=Tue, 15 Oct 2024 22:30:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: dd052f45463b328ece23be3c1a5dd312
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| jerseydisplayed.com/watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 | 172.240.108.84 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1jerseydisplayed.com/watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 IP172.240.108.84:443
CertificateIssuerLet's Encrypt Subjectjerseydisplayed.com Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.426936686070.js?key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&tz=0&dev=e&res=14.2071&rb=&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Location: https://jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1
Set-Cookie: u_pl17456064=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; expires=Tue, 15 Oct 2024 22:30:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f5132366d4c5abcdce42e2e200d24ef1
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-150x150.jpg | 188.114.96.1 | 200 OK | 22 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 150x150, components 3 Hash9e1f17bf4ff09281bdd6c988c0b18641 e9606ac945f2884590bacfd6fe503564e601cc47 bb4563aed6303f1449a1257fdd7cb9411f8c54ccd43309a7e91591f8ff6275ea
GET /wp-content/uploads/2024/09/906-3-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 22520
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 09:55:54 GMT
last-modified: Tue, 17 Sep 2024 16:07:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 162452
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zaoJafLRDCiMoCHwXtI0R8o586%2FQCPskhu%2FiuZ5WFBrw1n%2FfsECJtBB1LVyfDKcGt50wAMrK8ygZpcU6mYXyjCdUULnvyyqWw5F5ueTn0w46d%2FJsLf1Ulabp54wGLxcgQJs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c39712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 | 192.243.61.225 | 200 OK | 2.4 kB |
URL GET HTTP/1.1jerseydisplayed.com/watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectjerseydisplayed.com Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (2967) Hashb510824aaf2951ab13904409da368496 97e26fdb3f78edfcfd5bc8e7479487595f31da54 16328ff44e8e746c48d4437e21e17e90f5330f7735013cd2e64df6f3c1534f8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.691663839073.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=1b5787354ae7b67b1bf0b9c1bec7a257719d7ad10f7677d50d399af8a7977434e1d8bc77417a50e96fb9fd1804aaf827dd56863dbf4a6d8062d91084b6a75643e450dcaa267d9ffe1def29b32fd59a37e25848b402c834ed71b7bc&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
Referer: https://nicegirl4u.cyou/
DNT: 1
Connection: keep-alive
Cookie: u_pl17456064=1; ain=eyJhbGciOiJIUzI1NiJ9.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.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Tue, 22 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Wed, 16 Oct 2024 22:29:56 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6ecea33f0c7248a6ffcd80b8248a0241
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg | 188.114.96.1 | 200 OK | 18 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 150x150, components 3 Hash80dd9e4feadc544ea7bdc4b3d8b455c1 bc0a236a253c39075f79e377b60185291dbdc388 b8b203c5b81f91be60ebaf690c0678cd065e586c6da469b70cc040856f46deae
GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 17889
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:28:24 GMT
last-modified: Tue, 17 Sep 2024 16:38:44 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HsYmVwjsTEcH6d4mK7qKugCZ3cfDRcSXFEo8Dj6RGtt6F3Bguo8jp3Dey9D6I%2FMwRYU8qjzuj7%2F5nyYUpZTYAjMjwsVKU%2FFkpZqo%2FelBFymNA150qhWw6CeiWtEX3yRykwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c38712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-150x150.jpg | 188.114.96.1 | 200 OK | 18 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 150x150, components 3 Hashab16abadd37423aebb680f8d403cb837 f8e8f15c144103eaf45cfcd098b4607f9709dbc7 a045b89b5078b3feebd134bc78682325fd4ccf1410a3fa95c034f53fbf3c2693
GET /wp-content/uploads/2024/09/06-36-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 17490
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 12:56:46 GMT
last-modified: Tue, 17 Sep 2024 16:38:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2Bku7xh8FgrFXYJFNDE1T0Ju%2Fkc59ZVLmGLpxsw95cj%2BCHq0f8IC2FqFV81E9TWT8%2FOZr4ZlggLIVm8ZgiJfxGNJ48gx%2FqgbPD4KZam9ZZS1MKNcnHvLjfDypUfRlVIBsd8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c30712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-683x1024.jpg | 188.114.96.1 | 200 OK | 125 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-683x1024.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 683x1024, components 3 Size125 kB (125259 bytes) Hash71a94bf1579520ebb9057909390db3e0 c41aa5a479367680fc342e384b2e9126d8c2e3f5 b6e55de8be94c1cc8bc71a19b2b8832232eae5c1346b2508ab8f27d707553b65
GET /wp-content/uploads/2024/09/06-36-683x1024.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 125259
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 12:42:14 GMT
last-modified: Tue, 17 Sep 2024 16:38:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qJXDt%2BRKr2jchdQ64sVnbjBPktHhw4VATaYeUv%2FYpeJMqqXgVYTN57Cnfv1Rl1laKA%2BeugLYr5tPug6hMEx%2BGIa%2BdpgdflEPEED5q7InxRdWuuwrb4XwUzFsqQB3v8yiXr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c3c712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/160-7-150x150.jpg | 188.114.96.1 | 200 OK | 12 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/160-7-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=6000, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=4000], baseline, precision 8, 150x150, components 3 Hashe82bee7969f9fe6b1839af0fdc5bbd1c 37c067cef8d4254442e7dba52aa8014c8d7b365b 283a897600336e947f6fa1135d38d678356ccea00d66beb11d13537a408e0ddc
GET /wp-content/uploads/2024/09/160-7-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 11560
cache-control: public, max-age=604800
expires: Fri, 18 Oct 2024 08:26:26 GMT
last-modified: Sun, 15 Sep 2024 16:16:59 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a6y0sixopb%2BEjemvJoIoOSDHAknef%2BEwCLtnpvv22Bc9fPRUOKN3Gg97Kff8XbPRfGNWbQJdVYnDuAybF33Qw9E8HmbDVacOiL%2FhwIirjnrIcYZ2aT2SzwBvrFh8WhmhZvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c36712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg | 188.114.96.1 | 200 OK | 8.6 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 225x300, components 3 Hashfb80f639fcbbca4334b3a066c99952e3 d0bac99206f5b8b91c44f324ccfd1ca68a90aee9 9f2920d37510974ea4b75ff7200c78f4f8a9d03e6a050f94e40e78dbcd314dd7
GET /wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-16-101-225x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 8607
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 06:09:02 GMT
last-modified: Sat, 27 Jan 2024 08:25:00 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cyCxYIZRZ%2F%2F9Nb7XBDgL%2B0U9Qj0OW6ww93wPspiNKwn0OXFfKJFpYclczSprcaj1pSM1vUo1Y2Fpsr7gHLJVK2PuHyCAyZOeXwuSvGKLu%2BQ1tgZvga1SLANls4LllhLo5mw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340352c4a712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg | 188.114.96.1 | 200 OK | 76 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 768x512, components 3 Hashcd4ad0fc54075ea0e4bcd37d4919d789 d9d8fb6910dad543135ee58ae3ca06c7f537f5eb 686f9ef3b50d63ad44f9a4f29fbeafe26be04c40fe78126733c101fbd05a9175
GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-768x512.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 75475
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:35:19 GMT
last-modified: Tue, 17 Sep 2024 16:38:45 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HplI%2BXrSG5wSTgIsesFFhePc7CtmDxm7UB4sd1vVkT1dqKb%2FGE9fBPK4%2B1QFMJ2OtILRxfNQvcL5L%2BY3RPBNM7Svo64ZygTgnlnY97ffqCtEjaANyAl%2B8KPr4XH6vNLX1qU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c3b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-683x1024.jpg | 188.114.96.1 | 200 OK | 126 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-683x1024.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 683x1024, components 3 Size126 kB (126404 bytes) Hash3663339c736c5d127876a45436dd01e0 0ec605fe72ad0b5d0ab879a72442a08c5091b340 6fd47065a86178cf0f59419d672fb5fb0fd200bcca934eb1575e21f8c701650e
GET /wp-content/uploads/2024/09/906-3-683x1024.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: image/jpeg
content-length: 126404
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 10:00:11 GMT
last-modified: Tue, 17 Sep 2024 16:07:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bUaKcFxgHbgop7TfeyNNfzJcqQYaMdv%2BLvjcnUreUMN5Djy2jEtnXM6YCOHOKiscF2P%2BhSHLZeteSe%2FhEjTZfLgK6oHRU54cz%2FPAfSXxXTr4RMud86uUUpvO9F38Y1QhgkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340351c3d712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg | 188.114.96.1 | 200 OK | 13 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 188x300, components 3 Hash33199f65035e560e20f66fe991f707e9 e30d408e8a8142eb5a98c16bbe7d888606919809 b20c85c93047c9337b355a8e31388ceea802180875292dd7246b66878dbb5896
GET /wp-content/uploads/2024/01/Dotetinyui-Okada-Yui-%E2%80%93-%E5%B2%A1%E7%94%B0%E3%82%86%E3%81%84-Collection-17-72-188x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 12581
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 21:32:13 GMT
last-modified: Sat, 27 Jan 2024 11:10:31 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=op6ZR3anavor376U1PurObGF78vvMbXK%2FQa84EKV%2FVNMHcCGxfpGrAcgFHSn1cUoAJle%2BL1XXyY359UVSKHM%2FQ7aI6Vdw7F4HrMiL%2BIIP1UZtIT4Jhw%2BlZkxN5VYS6vfzTQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340351c43712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/163-15-150x150.jpg | 188.114.96.1 | 200 OK | 20 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/163-15-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=2940, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=5226], baseline, precision 8, 150x150, components 3 Hashbfdcc86f342144716d561ddf4ab02c54 15cfa8487cf88ba6d911eae3b2d6d66ccbc08672 4f4bd19e37077520ccc2606254b24d91c4992c989c280d8fb76df1fe0ec6752b
GET /wp-content/uploads/2024/09/163-15-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 20193
cache-control: public, max-age=604800
expires: Sat, 19 Oct 2024 10:29:10 GMT
last-modified: Sun, 15 Sep 2024 16:16:45 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K6bJoNQ5TV5mywG8azrID%2FnhVg0z4J8SXfujkfy1yDu3ifmEcjKU5e%2FCyeTVdoOSow9AJqYrB3DLRXjwjnI9IodDB35ZC182croYRbPvrernHaj85pwiTWiDNuHuWoGOoTM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340350c33712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2 | 188.114.96.1 | 200 OK | 7.3 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-includes/js/wp-emoji-release.min.js?ver=6.6.2 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:56 GMT
content-type: text/javascript
last-modified: Wed, 03 Apr 2024 05:50:29 GMT
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eju%2B9TfVBbR2uFUJDlmQpJZsVZajb1cKEhyapYlzh%2F3fEju5%2FWCRLJHr4GcVTxRVFTtCNsF63Ohkoxklp6N5i8PbVTeVXaf%2Bd00GJXt2n18HpOmAvxC%2FFcJ4RzIiSMrsr2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340349bdf712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| capaciousdrewreligion.com/advertisers.js | 185.196.197.71 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP185.196.197.71:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintE3:36:E7:35:50:1D:3D:F0:47:9F:E5:94:90:B5:48:C0:67:A2:2B:8A ValidityTue, 03 Sep 2024 21:28:57 GMT - Mon, 02 Dec 2024 21:28:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:57 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8034bfba7b0271a4ae64a7f6b2837493
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/01/cropped-18.jpg | 188.114.96.1 | 200 OK | 97 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/01/cropped-18.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x598, components 3 Hash5c6adc761f15aa0476ce7a3f5664cdb3 66682041aec3a0d97dccff998ab13de5f1bda5ee 7ea8294830e82ab203fee8039d7051685cd21e4a90f0b20a020c885eb7d19035
GET /wp-content/uploads/2024/01/cropped-18.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/jpeg
content-length: 96877
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 19:19:42 GMT
last-modified: Sun, 02 Jun 2024 08:22:23 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TkybkKGk%2FQktFXuMd1e6UHtjffe%2FwJVvk8n8HzigxTlckWoGDEWM4UoT1du4g%2BlEm%2BKxNxliIrNopuI0l3rQhuKpQJ1Az61JnND77YldLqHhTUEp3jLKHNdmhy8d5bdgZL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340386f80712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png | 188.114.96.1 | 200 OK | 1.4 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typePNG image data, 48 x 48, 8-bit/color RGB, non-interlaced Hash0d9eca144dfd0d692e3a15562e6b627e 0996c4aa4ed7d213e71dd8dc217bce8743c3cb56 73e1dd132f5af8f9d918769a3ca3a0bec08444f7a0c22afdec3918e9c6a3a757
GET /wp-content/uploads/2020/07/Untitled.png HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 1441
cache-control: public, max-age=604800
expires: Tue, 15 Oct 2024 12:29:08 GMT
last-modified: Sat, 18 Jul 2020 19:40:28 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 327276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eUAcDPeAKPz24Ngmj%2Bp5d5DyhtrT31Mco85DsCscnuLAAb9nOundiNPOJ5Ojw0QT4KBlizp7L9CIsHbqmn%2BsqL%2B7wepRvc4gWXrDmu0JUKse%2FVSx9YTdH%2FVXUaRjvg8ehTA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334039a8a4712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png | 188.114.96.1 | 200 OK | 1.4 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2020/07/Untitled.png IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typePNG image data, 48 x 48, 8-bit/color RGB, non-interlaced Hash0d9eca144dfd0d692e3a15562e6b627e 0996c4aa4ed7d213e71dd8dc217bce8743c3cb56 73e1dd132f5af8f9d918769a3ca3a0bec08444f7a0c22afdec3918e9c6a3a757
GET /wp-content/uploads/2020/07/Untitled.png HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 1441
cache-control: public, max-age=604800
expires: Tue, 15 Oct 2024 12:29:08 GMT
last-modified: Sat, 18 Jul 2020 19:40:28 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 327276
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nED2sFDt7z9ijATTWODV3UlG9%2BW%2B79jysPvfiw%2Bn0CeLAXoJ2GInPhL%2FdcUNXi6fS%2FTUExp%2BlwjdwY2M%2FRVWgcx59kdRIQZ7Q3i%2FXDz8mpOjTzWVW7qfrHaiObjmleudrFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334039b8a9712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.disqus.com/count.js | 199.232.196.134 | 200 OK | 871 B |
URL GET HTTP/1.1nicegirl4u.disqus.com/count.js IP199.232.196.134:443
CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (528) Hash64932a1e2564351aa7642475acdf3fbf c3dd2b7d1d4604e3559c2732fd90d71059dd77d8 3487ef2baf0c08ba660a8a143cdeb8ebeec961eea04bccd7c49096b4eb26b875
GET /count.js HTTP/1.1
Host: nicegirl4u.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Tue, 15 Oct 2024 18:17:01 GMT
ETag: "670eb19d-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW3-C1
X-Amz-Cf-Id: OFL5rMqhkaqU2IoJz4xAWvJV8a1fti1aaXwsaAXd3MqLeqLdkHEOSw==
Cache-Control: public, max-age=300
Date: Tue, 15 Oct 2024 22:29:57 GMT
Age: 278
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
|
|
| cdn.storageimagedisplay.com/cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png | 45.133.44.1 | 200 OK | 135 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36 ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Size135 kB (135255 bytes) Hash24d9924e6239ca0da193b09f71fdf7c3 dffcd5b44d22d090ff07b74ae525fc591a6d24e7 0d88e2d0dcdb6ea0ff0d760ca7b7b0831f8bcffa92d6332620b1c5e68f227834
GET /cti/5a/1a/c3/5a1ac3fa7553295b1e98c9905d8db9f1/1708342031.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 135255
server: nginx/1.21.6
last-modified: Mon, 19 Feb 2024 11:27:19 GMT
etag: "65d33b17-21057"
expires: Thu, 17 Oct 2024 22:29:57 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png | 45.133.44.1 | 200 OK | 87 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36 ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Hashaa53b5fd51882682162fe61fd41943c2 431b8b0bc9258f3fa49732f7ea04ee0abe12098b fff56dc9e343291366f83a61571289dcfff978cfdec88756b049d389ea08bd40
GET /cti/a8/20/54/a82054a09aec5177c98467bfa8eceacd/1708342049.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:57 GMT
content-type: image/png
content-length: 87173
server: nginx/1.21.6
last-modified: Mon, 19 Feb 2024 11:27:37 GMT
etag: "65d33b29-15485"
expires: Thu, 17 Oct 2024 22:29:57 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg | 188.114.96.1 | 200 OK | 9.7 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=II*], baseline, precision 8, 300x200, components 3 Hash02ea3e5fb48b07406d36f5b7b7e2824a fb93775295ef848e9faac53deaf9875ce676fe75 95507b149662efa3ea57f0caa3ec87e503dfd3eac4d2b572af949f18d08968b3
GET /wp-content/uploads/2024/01/Tsubaki-Slave-Training-17-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9702
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 22:19:11 GMT
last-modified: Tue, 30 Jan 2024 08:00:05 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lYoB6eiH7NVqdxHxebvBU5QcGI5sSaWzSJDQMhDvI1IJDCMx42IoFsa1SGTLYxSRiWsgkZ06SG5z27fhjNcbpojEyoaNJ419NgtpS30EQx0noozKkBCMzFAwkAivO0BFFBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e6e00712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/01/44-1-200x300.jpg | 188.114.96.1 | 200 OK | 9.2 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/01/44-1-200x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 200x300, components 3 Hash2d55a0459753abf77767d70971ec389d 0cdd43553c9ebe255f40f7fab584b8ada9de6f54 8aee1249b667aac47ca6a9ed6bd14def8020455843078a1a3901db94c236c1ba
GET /wp-content/uploads/2024/01/44-1-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9231
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 10:19:30 GMT
last-modified: Mon, 29 Jan 2024 08:01:56 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMREl1L8Squ4Z9vZm8CzR8ekawGJnlovD8kZJOgph%2FY%2BVrIYFlUxCxhrXPtMVP4HY%2Fzv%2Bd2G4h0pP1lj%2B4fOmdXJRdvO0Fc6j%2F%2FGhuMOhrrG2zKEq53hZzH7RW91Q%2Bu8pWI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e6e02712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css | 188.114.96.1 | 200 OK | 49 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/c3fd8.css IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeASCII text, with very long lines (54381), with no line terminators Hashf36fe59625369997725d074979de3907 914aa67827d80bc3cf3edd8876ed6e6703aba192 a3958af9ccaed0543796a157864890c795a249b7888f7c6683622c681d3e711a
GET /wp-content/cache/minify/c3fd8.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=54384
etag: W/"pub1716732407;gz"
expires: Thu, 03 Jul 2025 16:36:21 GMT
last-modified: Sun, 26 May 2024 14:06:47 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nBNpqs4NA3i7Rwo9ZnmrR97eIZgFJa6N0FFWu75HbWxDoRCStQ4aoyXb3EdQf4ooA%2BkaRulfZLiYKKWP6ee%2B0PezOqXPEh8jt1RE9N1V7msbdfz2drGVO%2Fve3zGEzQZtbcs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de4a712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2023/12/06-300x174.jpg | 188.114.96.1 | 200 OK | 9.1 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2023/12/06-300x174.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x174, components 3 Hash7a7ca3a4da07e0560c29639522317243 fb0f6f3603999839855e078f6996dde5913db45e e98dec9360953574daa7a7bd9445c6581fc14efc6fc1c1159e3615fe15cfb598
GET /wp-content/uploads/2023/12/06-300x174.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 9102
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 19:53:00 GMT
last-modified: Tue, 26 Dec 2023 08:10:11 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7p670CX8z8lM03XRmgFchpc7xY4BdDYdz70Bf4z6PmLckRfhQYOmixdJp5BOd%2BXkWHoaHACKhmwKSo7%2Bfq4Yk9a%2B8CJZxIzKzakDvFjxibwAU8VqQrdCUdTTvt%2BQovewesw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e05712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg | 188.114.96.1 | 200 OK | 11 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=MrCong.com], baseline, precision 8, 202x300, components 3 Hash69b9156b95ccbc6f0d4e840b6d4322cf de3cd623761ba9db303fe2b5a8c4c7d39326c248 3d7cceb649916bb15052eecffb8a465151a8d734d2346867124cb80878fb02d6
GET /wp-content/uploads/2023/12/%E8%BF%87%E6%9C%9F%E7%B1%B3%E7%BA%BF%E7%BA%BF%E5%96%B5-sama31598328-%E5%A5%B3%E4%BB%86%E4%BD%BF%E7%94%A8%E6%89%8B%E5%86%8C-46-202x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 11030
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 19:53:00 GMT
last-modified: Fri, 29 Dec 2023 04:17:55 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pG2Pe3EVk8Ko8vrO5sCUMR3t83RwhUPjnWwxLqcnkr4L8fEAyKROc6rie2kFcZpxPkrz%2BTbEmo%2BrVaZCSYA34cM1bRH1%2F2YkBow6IUcpLYFgSG6DRZydDlZ8XVapjEEEx1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e07712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-200x300.jpg | 188.114.96.1 | 200 OK | 27 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/06-36-200x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2024:09:17 23:32:58], baseline, precision 8, 200x300, components 3 Hasha2ea95017e499a0fde68e6d1aa63541f 4468bbec4e88453d4dcf5a1a3a506a186a8baab5 919388a12e55d49dc395dc71f796a0eb9275839dfe8f3b566665ef55db2b4000
GET /wp-content/uploads/2024/09/06-36-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 26700
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 13:05:31 GMT
last-modified: Tue, 17 Sep 2024 16:38:50 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P7lTDjg81YrS3ve2ZHBIJbqc36Xbaun60L7TzuydZk6koWTIe5l6bMuRi%2Bo3syE8yK0%2F%2F5DUlK2xR4noEnVCcYcQNcYuCOcEZlJU2KXXLipBSOFmkYo7uV56%2B3NCGLm3cc4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e8e18712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg | 188.114.96.1 | 200 OK | 7.5 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3 Hash1f6308aa64deb74a55d55567d7719862 c97ffbda6b9c677f075b7fc1a38f1ffc94a38768 d1238e167d3973cf3192b7454c627616715725adc1b26963b820d65be933c084
GET /wp-content/uploads/2024/03/%E5%B0%91%E5%A5%B3%E6%98%A0%E7%94%BB-Anjou-Naruko-17-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 7490
cache-control: public, max-age=604800
expires: Mon, 21 Oct 2024 10:19:30 GMT
last-modified: Mon, 18 Mar 2024 14:07:24 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJZo5n7p0WEuqWLaIpygz7%2BOFD7vEyn2TTL%2BJlB88thostZTVnXexOJnqDDeRUtnfO3XgPx8V%2Bbg%2FlfndtuL87CiCf66z4tmdK6UKpS%2FdnYVXwKZfpylsso87XUtM9wpKww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e5df5712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-200x300.jpg | 188.114.96.1 | 200 OK | 32 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/906-3-200x300.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=9000, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 200x300, components 3 Hashe5e285a1411011f9db35260fc7c6b6d0 781e499b7ec12bd2b160e4d8b3984ce838c38a86 3be619cfd104c81db886b6276c900962f629f460bcd4c923aa386521f9304542
GET /wp-content/uploads/2024/09/906-3-200x300.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 31662
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 09:59:47 GMT
last-modified: Tue, 17 Sep 2024 16:07:10 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dvmW0mCN0yT4TFQTXS9i49YSVjTPRjtgsWVcS6A7lSuvi9DlwQiluV%2BBJVFWt0vcNiwJmaZJZZmtOV%2FchnMyKCWOpnFUBJS4DWbzO4JSaQyn6Li%2FLxPqm0J1nsTixYGoXZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e8e1d712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| unseenreport.com/pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subject*.unseenreport.com FingerprintF0:98:AC:22:06:CC:50:D7:62:08:A2:F7:67:3A:D3:8D:DA:4B:FE:E6 ValidityThu, 19 Sep 2024 04:18:43 GMT - Wed, 18 Dec 2024 04:18:42 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=1207d76b-44e6-4326-8222-cac22611651a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5fe1c86dc35cc5c10e66ed672576a6f9&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 15 Oct 2024 22:29:58 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 357bb29956eadb212697c3481934cbda
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/157-16-150x150.jpg | 188.114.96.1 | 200 OK | 15 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/157-16-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=5599, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=3733], baseline, precision 8, 150x150, components 3 Hash62007b2fc81e7e3f36b934162dcfa6b0 c20338fb9db209438200fcf53f06fd8c3015f6f3 9150aae13f98af9597140e67027e3bf48dab3e136a2d9f04edb6f1f5ceaaf266
GET /wp-content/uploads/2024/09/157-16-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:30:05 GMT
content-type: image/jpeg
content-length: 14587
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 16:28:37 GMT
last-modified: Sun, 15 Sep 2024 15:52:51 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J91PcX9uuUK3Qt6Aq1rMazLrPU8lN3fARIliR5pnVxF4F0rLBSIpk3WgvSB9FA6gNLu6qSw8Z96dDl739ogk1I34uEZ3V8MXdUy52Rq5zA9E7N6YdqJweQHBHBrTJwKSJys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340671e5b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/165-1-150x150.jpg | 188.114.96.1 | 200 OK | 18 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/165-1-150x150.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3375, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=6000], baseline, precision 8, 150x150, components 3 Hash904a5436a6165104ef6a9d5d791aaa97 bfdd3b0fd941c589a566e25451842d1dcb43b881 81357caa44998c91792e3452678a4243f41bd23a63cfa571a84b8162fb42ccc9
GET /wp-content/uploads/2024/09/165-1-150x150.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:30:11 GMT
content-type: image/jpeg
content-length: 17731
cache-control: public, max-age=604800
expires: Sun, 20 Oct 2024 14:18:29 GMT
last-modified: Sun, 15 Sep 2024 16:57:21 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TKkXSLqsNEnoN2QzcErO4IdDnp%2B97m%2BbWL2C7vEbPZYh8k3MfKogExiv8q6xUepZ9rM6w12S7CuFGYGRGHhYbK%2B%2FVv9NHe6c4fxihywYIYd97Nr0ZaGUhz2AlFxCGoacDao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d3340931934712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg | 188.114.96.1 | 200 OK | 25 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=5504, bps=0, PhotometricInterpretation=RGB, description=nicegirl4u, orientation=upper-left, width=8256], baseline, precision 8, 300x200, components 3 Hash30c24a22a7eea7802969bd5736ddeda6 86abc5e7d3f9d898cdc62828acbf2892ecbb6215 d226b10a9c62e0442fbd697b71232a1bca82e41f25bd9cf8929198789ee026ec
GET /wp-content/uploads/2024/09/%E9%B9%BF%E5%85%AB%E5%B2%81-baby-LuLu-Soccer-Girl-9-300x200.jpg HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1; pp_main_5fe1c86dc35cc5c10e66ed672576a6f9=1; isFTime_720c62220b79457808032b84b6f0cbc7=true; isFTime_720c62220b79457808032b84b6f0cbc7_expiry=Tue, 15 Oct 2024 22:29:55 GMT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:58 GMT
content-type: image/jpeg
content-length: 25445
cache-control: public, max-age=604800
expires: Tue, 22 Oct 2024 14:33:34 GMT
last-modified: Tue, 17 Sep 2024 16:38:43 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zTNc23lfE3ZGs4qZT0%2BaqkseUt3jcahc1zm1BVjvn42Zpxn35ns5ls2Mbz1v%2F3ZKRzYa%2F%2FAN5qeTvAfIDsFd%2Fk09k7LQXtdKiJgaw4YVJBFbA%2BwKQzoH1JB5rv6iq%2BHcFI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33403e7e0b712b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/0e804.css | 188.114.96.1 | 200 OK | 191 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/0e804.css IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size191 kB (191165 bytes) Hashbec6a2f6b4eb0e484c8a93caf111defc 2ad9d70e690a60571ef6561dbbb6b30140b835fe b4e3a5a9d967dba58791b6782243ee1305baaf71c17d937c5d88bce1b30998ce
GET /wp-content/cache/minify/0e804.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=204020
etag: W/"pub1717315699;gz"
expires: Sat, 20 Sep 2025 06:42:52 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TDUj%2B71XtsM1YXXKgF9CrHM%2BNFCZX1rjeBZwO8l57O884%2BZqU0Cef6NWA7BZgC5BE8bW%2FwIbeg%2BSYKz8BPd2o3c3yNoFPV%2Bjx7mqFlQKZt36g3mpF7UDzzB7hEVbPIAfWxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026ee61712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/efe88.js | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/efe88.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/minify/efe88.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=90382
etag: W/"pub1706459073;gz"
expires: Tue, 18 Mar 2025 18:13:24 GMT
last-modified: Sun, 28 Jan 2024 16:24:33 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fhu%2BtmPw8%2F2pUAtNv%2FnLdZoW8hDgHcXuYckO1rLPZWEYn%2B0Z0p3CgmPkviw00hMuDbt1PQN11%2Bho6SDlEjRRgPA9lq81uPU69WFkR%2Fa2kDeyPb3O%2F7dCJ%2FqG9sttWxnRrK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe74712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/1615d.js | 188.114.96.1 | 200 OK | 6.3 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/1615d.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJavaScript source, ASCII text, with very long lines (6422), with no line terminators Hashb786f6ea74a911b1a83c82643c944002 e3b1975042f679614ca0f02a98880cc75bea50c3 3d4a62276371cfd643fb195c9b4c2948b650319a26ef436c947fbb2aac4cc861
GET /wp-content/cache/minify/1615d.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=6275
etag: W/"pub1710700583;gz"
expires: Tue, 18 Mar 2025 17:27:09 GMT
last-modified: Sun, 17 Mar 2024 18:36:23 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZyN4wd0NUOeTc4pxgktdkDtnSusmwcad5y1YhcoI4LCBpjtHNmCXV3WRcp%2FCF0rSVo2uPkCu9iF67MkOdcjCisnJpL2bV2iDQCitQgbK0%2B5iU7uj2K0CHRgfjo3B3K%2Bx4uk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe85712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/82e7e.css | 188.114.96.1 | 200 OK | 623 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/82e7e.css IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
Size623 kB (623103 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/minify/82e7e.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=624330
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 20:48:26 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8qlzjYnqBUXg7uFMHoodUmPehqJ6DrFZcj1%2FZ9khSn1L42BvC33KYTcTL%2FkazaWaKYGW7ZipwIhI1Q8MfG%2FxRYY9qNGDrqGXA3cMzahvt1VscLsqt2Gjgl%2BvUCYfyEuVJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de45712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 | 192.243.61.225 | 200 OK | 3.9 kB |
URL GET HTTP/1.1jerseydisplayed.com/watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectjerseydisplayed.com Fingerprint42:3A:7B:CE:68:21:E7:1A:63:F7:8A:7D:A9:A6:2D:3D:CE:2F:37:8E ValiditySat, 12 Oct 2024 07:52:49 GMT - Fri, 10 Jan 2025 07:52:48 GMT
File typeJavaScript source, ASCII text, with very long lines (3903), with no line terminators Hashba968e3629eb311c3c84266584ab6932 05398fae43bd3f31597529c1036ffa95109c9792 2f6aee76466c9354d4dcaf84ba9dd531263784711f026a890315b074e64e736b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.426936686070.js?dev=e&key=720c62220b79457808032b84b6f0cbc7&kw=%5B%22nicegirl4u%22%2C%22-%22%2C%22nice%22%2C%22girl%22%2C%22for%22%2C%22you%22%5D&pst=1729031456&rb=&refer=https%3A%2F%2Fnicegirl4u.cyou%2F&res=14.2071&rmtc=t&shu=99de72be7f34a92be2b7db3d4a3291586db9c5bdf4251b7bc715f51adb30945b25a2df0adce963b2d31780e8dc97fedb67e417e83f1be3a9e126068bfc79147135d4717b5db6b26617bbacb96316f9641e9074780c3acbbe66e933&tz=0&uuid=1207d76b-44e6-4326-8222-cac22611651a%3A2%3A1 HTTP/1.1
Host: jerseydisplayed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nicegirl4u.cyou
Referer: https://nicegirl4u.cyou/
DNT: 1
Connection: keep-alive
Cookie: u_pl17456064=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzQ1NjA2NCwiayI6IjcyMGM2MjIyMGI3OTQ1NzgwODAzMmI4NGI2ZjBjYmM3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTA5MTA1LCJwaWQiOjQ5NjMwNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyLCJhaWQiOjUsInB0Ijo0LCJwayI6Imd3cjl6OWQyZHMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9uaWNlZ2lybDR1LmN5b3UvIiwiYXIiOltdfX0.hiCZ16ddHZ_ND8gKt5vYCVagonYBJuk-2TMGGcICQ_o; uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 15 Oct 2024 22:29:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nicegirl4u.cyou
Access-Control-Allow-Origin: https://nicegirl4u.cyou
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1207d76b-44e6-4326-8222-cac22611651a:2:1; expires=Tue, 22 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Wed, 16 Oct 2024 22:29:57 GMT; path=/; secure; SameSite=None
Host: jerseydisplayed.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 531b0fcfe68f863151501eb95dd6de13
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext | 142.250.74.106 | 200 OK | 6.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext IP142.250.74.106:443
CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint80:2E:9C:80:BE:20:08:CB:81:6F:92:4C:83:5C:1E:73:D7:6B:F3:27 ValidityTue, 24 Sep 2024 03:17:04 GMT - Tue, 17 Dec 2024 03:17:03 GMT
File typeASCII text, with very long lines (6330), with no line terminators Hash29a1774551846a2d208cc80d0f7f0fa4 6fd3ed6b4333677e7fcc60f6fdaa2e15ba7c00d2 943151424b4acbbadacef7a50f54c9fdb510d46f74d1eb98ff9cc7808a48446d
GET /css?family=Source%20Sans%20Pro:400,700|Lato:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Oct 2024 22:29:54 GMT
date: Tue, 15 Oct 2024 22:29:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2 | 188.114.96.1 | 200 OK | 30 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeASCII text, with very long lines (30542), with no line terminators Hash7af0c89b728f556aa7e08f47cf08fa16 26107b9cfcd2b0bbdab6736089379940f362d891 792521ae526b3a24003163e55414858f22375c4a1d5390d85ac93e7c430c8844
GET /wp-content/plugins/eazy-ad-unblocker/css/themes/redmond/jquery-ui.min.css.php?ver=6.6.2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css;charset=utf-8
set-cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7c%2BltLB5ISLCn60jj6tmSssV8mAPsH3XPyoAN4x5M6n7WHnLOqnlLOH4Qnj3f0L4A4t%2BXk9cMun9aFtNMkOlWpW59ujSdIW1iojE3%2BFJsKgndNIonpTlvWuxTV7P94F4W1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe6e712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/a3c21.js | 188.114.96.1 | 200 OK | 142 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/a3c21.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJavaScript source, ASCII text, with very long lines (3733) Size142 kB (142264 bytes) Hash9f1bf82c3d04c8fc681b839f399ca9f5 ec5d8364dcb6c2ca8eabd7cd158c9e852b07315a 3696830cd2907b8503a88a827c12e434cf9e64544703877d3fdcfd3dbe6a7672
GET /wp-content/cache/minify/a3c21.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=142380
etag: W/"pub1717315699;gz"
expires: Mon, 02 Jun 2025 08:27:58 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HTdnRc%2BTMgbWKcTvbLHBmC66cdsEGqyPgKvV9XNp9degVawp5yLP%2FR5BW5xFfoPhhtgE%2B8WMa7BZVRKwsxMMp%2Fa315nIXdV%2Far8qU7QjstMk2wU3UwLXyyJZMomA5dd7CKU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe82712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint68:2C:2F:8B:6E:2C:E2:87:F4:B9:78:87:69:F9:2B:25:59:0D:2D:5B ValidityTue, 24 Sep 2024 03:16:33 GMT - Tue, 17 Dec 2024 03:16:32 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14712, version 1.0 Hash3afeae0d768769f5e5f30ac9805c5b70 3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d 0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nicegirl4u.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Oct 2024 19:30:01 GMT
expires: Sat, 11 Oct 2025 19:30:01 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
age: 356394
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js | 188.114.96.1 | 200 OK | 116 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/2cdb9.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
Size116 kB (115651 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/minify/2cdb9.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=123213
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 17:27:09 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DWvbgfiaWUoLlr2dkbRi%2Bp46x8ZypPfVmcWFmEwNDS6tuNAozE4cD2MW4jOWwEkHfo%2F33JzUwVzl%2BzthuLzoRfhgNwol6haulCa7v6%2Fwa%2BClqdU0fLlOhT7uklfE7lGp%2Bi4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026ee64712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/a5ff7.css | 188.114.96.1 | 200 OK | 113 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/a5ff7.css IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
Size113 kB (113172 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/minify/a5ff7.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=113364
etag: W/"pub1712123429;gz"
expires: Mon, 02 Jun 2025 08:09:23 GMT
last-modified: Wed, 03 Apr 2024 05:50:29 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=swzh0GsLLUIuFINsX8R6tOJRASMiyU3DdGmcvtFCT4a88zJEQzN%2B0fhq9ycbx1LPo8dV4nUEbj98BiD1YWGzJ5%2F5dCwP7%2FOP59qGnQo3W8JxRoOZpZWPk6TdCqB%2BFQ0TnF4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de47712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| | 188.114.96.1 | 200 OK | 198 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
Size198 kB (198118 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/html; charset=UTF-8
last-modified: Tue, 15 Oct 2024 22:26:50 GMT
pragma: public
cache-control: max-age=3417, public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zBUZSrzLT%2BkL%2B5GFtYvt7piwiuSa%2B7fYDWi2C3lWSDDr0Eq36F%2BS3qX6fKDU0ScqW7BfU8TjKPM6rakvj0PnWN13N9v80v7Jy3mWoGau2NssTHGMmZ3Qpiphne6IvBsZEQc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8d3340210ff056aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js | 188.114.96.1 | 200 OK | 9.0 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/1c2dd.js IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeJavaScript source, ASCII text, with very long lines (9352), with no line terminators Hash68a48352b4c13bdffec0b3a6940e30e7 1e46f40c19b5f55c8fa7dda27944a45bdebb2123 a0d4f49148c7e36517576c1f79c93737c2c154d38bf8b5a179aa38485b3bc03f
GET /wp-content/cache/minify/1c2dd.js HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: application/x-javascript; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
etag: W/"pub1710700578;gz"
expires: Tue, 18 Mar 2025 19:37:41 GMT
last-modified: Sun, 17 Mar 2024 18:36:18 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j74sx%2FPQ%2B1r2q1Bh9dpt7zrBbRhO%2Fa0BiTIj1Wu08cWankAIDwdf3nHHUHxJvzxl%2Bz8xqUiSVWx4LVIcCriTmZLhgHiuuUfmp8ADI%2F8bFsdUfBC5ouWp2gioMgTY%2BUAZ4OM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe72712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12 | 188.114.96.1 | 200 OK | 511 B |
URL GET HTTP/3nicegirl4u.cyou/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeASCII text, with very long lines (548), with no line terminators Hash450c9e1f0eae58a0b5c742eefe768da9 d163941323e5c41d19c9af19ab12697d914245e0 91de61c91ee487e8d26e3763fea815986b0795bb26716521233e4426fb94165a
GET /wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css;charset=utf-8
set-cookie: PHPSESSID=1acec8a1228bb43ccd807d78bf13f5f6; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tsg%2BmS5sS0Vqy%2BrNRrRxRTA5GZ02YbFDMnk0QOubJe1MrpkT0Ddt%2BYBBYMpxWx6SvG3mTTdext%2Fd4wOi9Kle3E9rejV6H%2FWGX0tVrIUg5NtBHYwcOvBHzWYKtA1ccryRzm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026fe70712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2 | 188.114.96.1 | 200 OK | 19 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, aft-icons Hash9883b149dcb4398f73836578fdba4241 c84322c46c889132bf9c3c5d831a4eab94e881b0 f498f4de89f8c27d4d56f4d8dd0988da262875d8e4f1fa71bdf2a391b9050523
GET /wp-content/themes/covernews/assets/icons/fonts/aft-icons.ttf?kiv2u2 HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/wp-content/cache/minify/a1a44.css
Cookie: PHPSESSID=033e2cc9185184a1872d2ccedc39a031
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:55 GMT
content-type: font/ttf
cache-control: public, max-age=604800
expires: Thu, 17 Oct 2024 01:31:40 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
vary: User-Agent, Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3h3DwbzCkdG16ERVHn7P4m1fDySSzbJrM4cayjJg60tEHxbPYLv%2BmoM2wme7pUDZyuFe9dGpHhOkNMXDkQhDaSoTMHkxPTOHvExAYTtxdruWphgbLla2RpdpGKg1MC8E3vQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d33402d9d02712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| nicegirl4u.cyou/wp-content/cache/minify/a1a44.css | 188.114.96.1 | 200 OK | 126 kB |
URL GET HTTP/3nicegirl4u.cyou/wp-content/cache/minify/a1a44.css IP188.114.96.1:443
CertificateIssuerGoogle Trust Services Subjectnicegirl4u.cyou FingerprintD6:05:26:BB:40:76:3F:82:00:80:75:40:C7:28:B5:07:C8:F2:F2:C4 ValiditySun, 29 Sep 2024 06:35:48 GMT - Sat, 28 Dec 2024 06:35:47 GMT
File typeASCII text, with very long lines (60352) Size126 kB (126487 bytes) Hash26ce8b5eb4928726e62efe7a7263abe2 fac3ad14c1691dbb3f877e2393ab1712c08672e4 213967744277c6a5768be2b722348b0e26f9881f4cec2df86768fd076281a6a3
GET /wp-content/cache/minify/a1a44.css HTTP/1.1
Host: nicegirl4u.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nicegirl4u.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 15 Oct 2024 22:29:54 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=126625
etag: W/"pub1717315699;gz"
expires: Sat, 11 Oct 2025 10:51:44 GMT
last-modified: Sun, 02 Jun 2024 08:08:19 GMT
pragma: public
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9c6b9kyJRU6ggPQnxVvLhKVZbnb7xL0tsndiQ0BY1eUtU3W3uhKC4dAMCAZdHpR2UVeTKfZ3BLW7kFm2%2BQ1yi3tAPwjXrqYdATHqGj4JnbBrzbaoqMe63XCCQf5uQZI3I80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d334026de51712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|