www4.bestjavporn.com/video/ebod-878-decensored/
301 Moved Permanently 0 B URL HTTP/1.1 www4.bestjavporn.com/video/ebod-878-decensored/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/ebod-878-decensored/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 06:05:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Dec 2022 07:05:55 GMT
Location: https://www4.bestjavporn.com/video/ebod-878-decensored/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xz6%2BJTwlMuzMz8N67x4Tunp2qu9HteVyIclcTc%2FD1jstohUrO8sHpC8q6Hyq%2BaLRHh4Eu%2FDxEgsP3QmooPIb6DYqO1%2BqNu1qmhZbvzPPQCemxyAPRUglAfW9MRrxIbmxWtgFr5bo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773a1d086e220b49-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19299
Expires: Sat, 03 Dec 2022 11:27:35 GMT
Date: Sat, 03 Dec 2022 06:05:56 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1445
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Last-Modified: Sat, 03 Dec 2022 05:41:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 05:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2757
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash c597bb5278c285732bfc54c8bf582ce7
68c33faab675a738f9df123028e7c176575525df
714898a2cd9ee94e3397d60952f239d8201f434132136b71f57192b5af8fbd15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5263
Cache-Control: max-age=170907
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Etag: "638acb50-116"
Expires: Mon, 05 Dec 2022 05:34:23 GMT
Last-Modified: Sat, 03 Dec 2022 04:06:40 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13299
Expires: Sat, 03 Dec 2022 09:47:35 GMT
Date: Sat, 03 Dec 2022 06:05:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dKcWfc4PL5jT1/erOqcdP+w32Mm3JH8fJbA5KxTC/0HJOnmK8D3sNR+nfW8zaGM3LxGZaD6K45o=
x-amz-request-id: X9TFJ83Q6YH8YGYN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 05:47:00 GMT
age: 1136
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1425042
expires: Thu, 23 Nov 2023 06:05:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hwwKSwwgE6Cy37Jv6hslIDtrQdHDsCaPwDl8WK6e%2B2xEo3S1vhomBnmh2Yq%2BtZ886bMCFfB%2BbiBNlzOSfNILDqJ8eM%2FnvUiZphq7fuydibbEi3zxbSgSCdoVMIccTbO%2BqDHv%2FBeO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773a1d0c6b82b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
200 OK 5.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
File type ASCII text, with very long lines (17660)
Hash abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15329218
expires: Thu, 23 Nov 2023 06:05:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SBFDmyDp9szUyf8MbIYo0%2FJ8kDU6%2FkWWoJlZza%2FR%2FmGqKB9bScYuD2E9Lqbs95kx816CV14Ymn6nKGt3PrbTxhAfk1POU336MVrYU7Omtjx6sTga%2FG0ftyScyxAePBD12Ou94Ivb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 773a1d0c6c361c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
200 OK 705 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP
Hash 6480e2d116e139bd9068064e2c6d097a
093c662c0b8451ffb0708125cbe97b57e2be6cf8
d5e44db4f45c2010b72bde1a7d0f62357a1a39146493641a6b26c10007d7fb94
GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70362
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ne%2FPO5GdTmKreME90PhEzBcZSO2HL72o4ap1PDqXGdpWkYseVc0F%2BWEcpgb%2B%2FEu4ngO%2Bd1sUecAwV7iU1vXJQDuJJSi12OlImtDTVpy6e%2FI1SWFPBhF%2Bi0k9bFPKFZ7wIZb1f49i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c18cd1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
200 OK 1.1 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP
File type ASCII text, with very long lines (529)
Hash 86e2dda71553e26608cac89ce36add6e
051ce989af40e353b0e3b533e7dc92ab13ec13db
db1b4698b3bb42de4a1ad6908a54a57efa077852775d80ee5a529b02d9a933f2
GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70362
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w2zdum4jcYeEyGbMKkBO92Cg4zFr2usX39F2Vg6e1N56SnMRakdwccJUQJtjvBcVMLpOjXlhfkMOWFS%2FFd%2FPNWN9y7vNniDVfPw428dGI6QBq6MZCLtzyuoK2ait9zQzFfrX9e9a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c18c81c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:36:02 GMT
expires: Thu, 30 Nov 2023 16:36:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 221394
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
200 OK 13 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
IP
File type Unicode text, UTF-8 text, with very long lines (59837), with no line terminators
Hash 2ee70d7c8debc61b34e1f90876d3a450
61a1024a8d84ba6f633d84e82f31af3fe7a9b544
8f68604434907a8b756fb7187595dc3891b0d593f9838edf3cfe8c1c9c15b43f
GET /wp-content/themes/retrotube/style.css?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: text/css
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=84878
etag: W/"6388cd36-14b8e"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/style.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 70363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fzuwnIRMQB1%2FjkzS%2F0NJ7C7Kg8Q9UnE6GXqDavfLr6XkqEGFMA1l83RbmGUHxhd07qMvGXrg8Re5EVcL8a8wr9uJGmTTVrlJkMsxpSJcwqwhPdxGXMEwIJ55CGfa0mFBKUiIJxrg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c08bf1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-124653024-3
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP
File type ASCII text, with very long lines (1921)
Hash 7b49e6523e6989d4d72adcddf446ecfe
77b9d43e6485fa4e9efadc5f1d1926480dfa8355
5d3aae52cc57ce637164ae5fd0b2bd7e6b8c5abcc40994b9ffe33aa7362e1d07
GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 06:05:56 GMT
expires: Sat, 03 Dec 2022 06:05:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43578
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 05:11:17 GMT
cache-control: public,max-age=3600
age: 3279
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 158d67cf93ac0c933a944cc5828889de
6e222f613c1a9e3d59487bf1821bc7cf72a8a38b
2ca11c650cab8680b617a4326b7a99f0d90e7530544d90ee7cf4ea42605d2f9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4075
Cache-Control: max-age=139879
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Etag: "638a56c0-117"
Expires: Sun, 04 Dec 2022 20:57:15 GMT
Last-Modified: Fri, 02 Dec 2022 19:49:20 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 385981
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
theporndude.com/favicon-32x32.png
200 OK 1.6 kB URL HTTP/2 theporndude.com/favicon-32x32.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /favicon-32x32.png HTTP/1.1
Host: theporndude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: image/webp
content-length: 1576
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1823
content-disposition: inline; filename="favicon-32x32.webp"
vary: Accept
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control: public, max-age=31536000
etag: "71f-5dbddefb-94cda11995fd4df4;;;"
expires: Sun, 03 Dec 2023 06:05:56 GMT
last-modified: Sat, 02 Nov 2019 19:54:35 GMT
strict-transport-security: max-age=31536000
x-frame-options: allow-from https://webvisor.com/
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 287887
accept-ranges: bytes
server: cloudflare
cf-ray: 773a1d0e3c3db51b-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 158d67cf93ac0c933a944cc5828889de
6e222f613c1a9e3d59487bf1821bc7cf72a8a38b
2ca11c650cab8680b617a4326b7a99f0d90e7530544d90ee7cf4ea42605d2f9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4075
Cache-Control: max-age=139879
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Etag: "638a56c0-117"
Expires: Sun, 04 Dec 2022 20:57:15 GMT
Last-Modified: Fri, 02 Dec 2022 19:49:20 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1424
Cache-Control: max-age=98681
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:56 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 09:30:37 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash afb32c281d3a6ba61578626128994b5f
ac59ba05c0170ea9eb9734684907d8fc2724eb44
2eb2a74ce312a8eaa5770470fa200fb54a13461dbd7f63100691a2e150ad2217
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 06:05:57 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 20:27:07 GMT
Expires: Fri, 09 Dec 2022 20:27:06 GMT
Etag: "ac59ba05c0170ea9eb9734684907d8fc2724eb44"
Cache-Control: max-age=569468,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773a1d101dea0b41-OSL
asg.phukienthoitranggiare.com/Cqp6VQ5.js
200 OK 35 kB URL HTTP/2 asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP
ASN #24940 Hetzner Online GmbH
Hash 8072eb1906e46c78d2da2b9be7b81242
2115fe0c662779eb936951d1c02516f3f3b11822
bf56086829b51cbe86048c555c007affa0b8e779f6b72939968504f24b305651
GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 978313776816dba934d16309fa2c65c8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: m5MBCMRQANMHGMdmir-ttRxRFk5Hsb0z7TdfGM-Xt4dtPCm5JDjaew==
age: 3269959
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: et43vEal1V93k2dA0gFzWw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +atomHX/VGBHaueaUg61gXhdav4=
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 06:05:57 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 11 Jul 2022 00:36:11 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62cb707b-eae"
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e52305ec271e1b99162b8697454008f4
35e1fd6386c879edd620629f3e1f3b91e774130d
ef70497178d061da3e57b725d9e9e469e5ca02944090b63a6c1db5e9c0384bed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF70497178D061DA3E57B725D9E9E469E5CA02944090B63A6C1DB5E9C0384BED"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12963
Expires: Sat, 03 Dec 2022 09:42:00 GMT
Date: Sat, 03 Dec 2022 06:05:57 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 04:41:08 GMT
expires: Sat, 03 Dec 2022 06:41:08 GMT
cache-control: public, max-age=7200
age: 5089
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.adxadserv.com/js/adb.js
200 OK 2.3 kB URL HTTP/2 static.adxadserv.com/js/adb.js
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (511), with CRLF line terminators
Hash be7b93c1a147300c65f3167d933edef6
6a128354c166699ab63273206e7936254f96b58c
5b0854fd66a526781376b3e8150276f5ef71e7f6752a75ae27904521fdcd710b
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:57 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1670929637
server: CDN77-Turbo
x-77-nzt: AblMCRRsGpv/YFwCAA
x-77-nzt-ray: af5856305099489745e78a63e963fb1c
x-cache: HIT
x-age: 154720
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 058c3add7443e8f8ecadce06c9a28289
847032a32a19160f67bd3a3acf09fb68e8162968
6734b028d4f402b88cfa1af9ef73b0bcbbc004ef036f35518d9334f243df8317
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=162401
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:57 GMT
Etag: "638abea6-118"
Expires: Mon, 05 Dec 2022 03:12:38 GMT
Last-Modified: Sat, 03 Dec 2022 03:12:38 GMT
Server: nginx
Content-Length: 280
adxadserv.com/ascripts/pxl.js
200 OK 23 kB URL HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 72d1139e9f2e6ebe3f51c9193edb4439
cd356eb9eaab433ac792406ba36d4304b6450571
74553d0effe74cd6a4f1424940f7fd133c5457ff1d5c53030e651ec6612bec88
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Wed, 30 Nov 2022 08:33:06 GMT
Cache-Control: max-age=86400, public
X-77-NZT: AblMCgE0OkX/AC8BAA
X-77-NZT-Ray: 382b0f196d79624745e78a6332539736
X-Cache: HIT
X-Age: 77568
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br
ocsp.digicert.com/
200 OK 280 B IP
Hash 058c3add7443e8f8ecadce06c9a28289
847032a32a19160f67bd3a3acf09fb68e8162968
6734b028d4f402b88cfa1af9ef73b0bcbbc004ef036f35518d9334f243df8317
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=162401
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 06:05:58 GMT
Etag: "638abea6-118"
Expires: Mon, 05 Dec 2022 03:12:39 GMT
Last-Modified: Sat, 03 Dec 2022 03:12:38 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec019d9ed0e69d2299497ab245d52073
4cc28add0b7fe5122cfa59ead7bc553977696bc1
3525393affc01beb060c8472261a02623e9971950724e4968f3a2aa4e2750462
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3525393AFFC01BEB060C8472261A02623E9971950724E4968F3A2AA4E2750462"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17659
Expires: Sat, 03 Dec 2022 11:00:17 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Febod-878-decensored%252F%2526dt%253D1670047555529%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670047555805&t_i=1670047555813&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=8de198ca-72d0-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670047555813&fpid=&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.268
200 OK 0 B URL HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Febod-878-decensored%252F%2526dt%253D1670047555529%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670047555805&t_i=1670047555813&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=8de198ca-72d0-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670047555813&fpid=&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.268
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Febod-878-decensored%252F%2526dt%253D1670047555529%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1670047555805&t_i=1670047555813&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=8de198ca-72d0-11ed-add6-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1670047555813&fpid=&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.268 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Length: 0
Connection: keep-alive
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv1=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
200 OK 931 B URL HTTP/1.1 r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv1=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (735)
Hash cf5134533511a61a8550e3d06201e453
c1cff70c22ea35487b2ddc638b41c2f53c1a357e
6ea845bdb254eda3b066ee2660adfc29c5cc2d9039b3baf320c353328e959f14
GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv1=8de198ca-72d0-11ed-add6-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 931
Connection: close
Set-Cookie: uid=xF0Ap3PtpY; Path=/; Domain=trackwilltrk.com; Expires=Sun, 04 Dec 2022 06:05:58 GMT; HttpOnly
X-Request-Id: 9d481eab-d8f8-468c-bd3f-2e4f06dd0a54
poweredby.jads.co/adshow.php?adzone=794135
200 OK 1.5 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=794135
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (352), with CRLF, LF line terminators
Hash bf0832f0fb2242c8588c858d0e2dd6cd
e58bbed1fb3d854235412827a620d17e3185b6a6
80d48912ae79d39a8143e452cbdb449d0ebfe862fe8f56f28739949b89ab4610
GET /adshow.php?adzone=794135 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=62c9c2200054911d25d4e8efb85f0574; expires=Sun, 03-Dec-2023 06:05:57 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Tue, 06-Dec-2022 06:05:57 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 06-Dec-2022 06:05:57 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
200 OK 539 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 050efecfc377dc5a0ee0ac3a5bfdf821
49d5a6644de910c1961866fb59f28bf8db47cc16
f422a8d64955a80d6930a8a89d3b36794287defc7d5b3682090f8ef3c6afb44a
POST /wp-content/themes/retrotube/ajax-view.php HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 49
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
cf-connecting-ip: 91.90.42.154
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/ajax-view.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nqCpTprpxe3i8ZrPm4IWezqOyhEk1EjBELNj8g5AUyYlv8M0ZZ%2BpJEcG%2FAM%2B6e5fxfhV0AU3PPjuTqb0B3nd8kfouV3UZLEw%2FCBBibYMPZeR9tZGVxh4aGG8QnDahTSr7SpOxsGn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d139b281c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/1602-overlay-preview.png
200 OK 1.5 kB URL HTTP/2 static.javhd.com/h5/files/overlay/1602-overlay-preview.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a
GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRRMim//9Xz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a63e6c4ad14
x-cache: HIT
x-age: 16743669
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/1602-overlay.png
200 OK 1.8 kB URL HTTP/2 static.javhd.com/h5/files/overlay/1602-overlay.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7
GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRQxbqH/9Xz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a63b8efb114
x-cache: HIT
x-age: 16743669
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/button/29-button.png
200 OK 733 B URL HTTP/2 static.javhd.com/h5/files/button/29-button.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 82a66a2d222379716ca9a03ff50d8f42
ae43d917ff791f9172edc527baa6266416182aaa
cc5da7b40e498d30bf5eaae43e59cae32202737076422676489dd8d3030803de
GET /h5/files/button/29-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 733
last-modified: Tue, 22 Dec 2015 18:41:22 GMT
etag: "56799952-2dd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRRobT3/9Xz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a63f382c314
x-cache: HIT
x-age: 16743669
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
200 OK 691 kB URL HTTP/2 static.javhdhello.com/h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size 691 kB (691322 bytes)
Hash 1b9b0a10fbcf10fcb46b80715e6d7755
9dced971572564c128977e8a08922ef7a8cd07be
580babd6c640c2f3a53a4586fff54629d08262ddd25ce76a1d7944e26da11c65
GET /h5/files/16667/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D8de198ca-72d0-11ed-add6-e25a5bb9767f%26p%3DeyJiIjoyNzg4MjIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: text/html
last-modified: Mon, 21 Nov 2022 14:28:13 GMT
etag: W/"637b8afd-c82"
expires: Mon, 02 Jan 2023 06:05:58 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672639558
server: CDN77-Turbo
x-77-nzt: AblMCRRftk6h
x-77-nzt-ray: af585630be9f5d9d46e78a63ba002a0e
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 80996943f0bf0605276fdd618e82dca4
1eebcf29fe3438e380b8fbeae30cccefc0dd1a97
6f66f4598c35775653303a55492697a242f5dad26b24d62951f1503884f8a872
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F66F4598C35775653303A55492697A242F5DAD26B24D62951F1503884F8A872"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Sat, 03 Dec 2022 12:05:33 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
poweredby.jads.co/adshow.php?adzone=784300
200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=784300
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash b9b905aeedeb6e060b0872efc1f9fb12
02daeb16899db5688cc730bf8249bdb1ad32d26c
5ebea9b6bbd4c21ed6946df53898f956738dac4552acefd14ad7655bd36ef5b8
GET /adshow.php?adzone=784300 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=62c9c2200054911d25d4e8efb85f0574; expires=Sun, 03-Dec-2023 06:05:57 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Tue, 06-Dec-2022 06:05:57 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 06-Dec-2022 06:05:57 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
200 OK 13 kB URL HTTP/1.1 liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37122), with no line terminators
Hash 80c728e962d297150bfd1f7a2d0762a4
66ca314af109486b1cf429d3392381b40b6df603
ef37dd0ddeca2913669b48bf9541bc6eb932b0b1a2881c06a94977164284dcef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a349fe12a0c2bb275ca196d2de70153d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
200 OK 754 B URL HTTP/1.1 r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (558)
Hash 3ae2b4b4449c0a2707da664fb111e286
b480edc2f873aec46f3682bb32bea63fbff63774
b557aff78d38470dc55363d70a63a03aa86c9aa94e0711011f6de4fda7e44508
GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 754
Connection: close
Set-Cookie: uid=Q_0AMFgap; Path=/; Domain=trwl1.com; Expires=Sun, 04 Dec 2022 06:05:58 GMT; HttpOnly
X-Request-Id: 2d8bba47-6671-418a-8bbc-b1dceedce680
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11611
Expires: Sat, 03 Dec 2022 09:19:29 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11611
Expires: Sat, 03 Dec 2022 09:19:29 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11613
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11613
Expires: Sat, 03 Dec 2022 09:19:31 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11611
Expires: Sat, 03 Dec 2022 09:19:29 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 18514
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 11:01:04 GMT
age: 68694
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 7958
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe321741e-701a-4c35-a3b4-01889e468ed0.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe321741e-701a-4c35-a3b4-01889e468ed0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e55f401389ff256d779f2e4d12698e2d
f597f539d07205d1268eac93c19997bb01fd6f1a
6265e019379e94234526e09c206ac23aa8cda06cf2f7a4f9d8f180cede3c89b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe321741e-701a-4c35-a3b4-01889e468ed0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6868
x-amzn-requestid: 84f9565b-baa2-4754-942d-4488aad20bc0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSasAGGtIAMF8wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63840b19-1b1a482058019d3e6ba92397;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 01:12:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -x5g9uRGQhPyh8k2NetF1UKV3DRmGRi03I0IOk-9UBAZmEOEiTMLuA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 19:26:39 GMT
age: 38359
etag: "f597f539d07205d1268eac93c19997bb01fd6f1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 3830
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b77186d0d93f7ccfe729edd9d184af3
458aa485b9abef3b72427d308a172d1c24eceabd
8bed5a8e56e8c43fcbdc807245c2b651d014a06368574e57a25b718399a4a701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6966
x-amzn-requestid: 2b40c185-e050-4bfd-9b08-bb70e6f89824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfAb7Ev3oAMFnrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389144c-65301ace20da6f580ed77e82;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 20:53:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBRZ6xulfveO7b5ZY8ApNbQJ1Sz8LbzEAb3YqxOEaZGYem-ZRaar_Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 08:01:16 GMT
age: 79482
etag: "458aa485b9abef3b72427d308a172d1c24eceabd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.jads.co/1x1.gif
200 OK 43 B IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=62c9c2200054911d25d4e8efb85f0574; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
etag: "1457030838"
cache-control: max-age=17177708
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1670047558.dop225.sk1.t,1670047558.cds246.sk1.hn,1670047558.cds217.sk1.c
X-Firefox-Spdy: h2
r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
200 OK 757 B URL HTTP/1.1 r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (561)
Hash a645d6c6ee987a7f4a5c4fa43becc15e
6075414bce22758fa9d0727cd703bd0e3612e8c9
777bc373c3e49cbe1c28f7b7ed3c6e6f01e5cd027d761ea75e80c5a244183b05
GET /s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 757
Connection: close
Set-Cookie: uid=voDeMFPtp; Path=/; Domain=trackwilltrk.com; Expires=Sun, 04 Dec 2022 06:05:58 GMT; HttpOnly
X-Request-Id: d803f289-7fe6-4b26-a183-1453aa36189f
static.javhdhello.com/h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
200 OK 1.3 kB URL HTTP/2 static.javhdhello.com/h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4ebcd203b56ad374c7b6abefc471aa4a
0bace9918b6c1b9b8d7017cac8890298a397e488
6d3a87f01c36ce8b805af934c7141fb17b02cf920b08df4114fa41f67218f909
GET /h5/files/16578/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg2MDIsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: text/html
last-modified: Wed, 19 Oct 2022 09:58:34 GMT
etag: W/"634fca4a-c82"
expires: Sat, 31 Dec 2022 15:25:25 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672500325
server: CDN77-Turbo
x-77-nzt: AblMCRRZ6EH/4R8CAA
x-77-nzt-ray: af585630be9f5d9d46e78a6367129624
x-cache: HIT
x-age: 139233
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/16-overlay-preview.png
200 OK 507 B URL HTTP/2 static.javhd.com/h5/files/overlay/16-overlay-preview.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash db53e5222242237b3bf9cfa0e57ba892
682eff797b686263d1259a4cb5e56475f6b49abe
90b8ab0ecc1d52738d7f0c0bb413375bd6e2f7d7f22d4adf1b1df004ee5d4d43
GET /h5/files/overlay/16-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 507
last-modified: Tue, 06 Feb 2018 18:18:14 GMT
etag: "5a79f166-1fb"
expires: Tue, 23 May 2023 11:06:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839960
server: CDN77-Turbo
x-77-nzt: AblMCRQCLVf/rnz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a63e2ed5b2b
x-cache: HIT
x-age: 16743598
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/16-overlay.png
200 OK 4.2 kB URL HTTP/2 static.javhd.com/h5/files/overlay/16-overlay.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash d66274c14945df9c552f3f29b2edb39e
ab31d71d26c8486aa6e5662459341e1db4171ecb
eca2a576dcb0e650c0701e96f1d4e7336cd0adc970cedbc7e8a72638ca2aa43e
GET /h5/files/overlay/16-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 4224
last-modified: Tue, 06 Feb 2018 18:15:47 GMT
etag: "5a79f0d3-1080"
expires: Tue, 23 May 2023 11:06:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839960
server: CDN77-Turbo
x-77-nzt: AblMCRSxcML/rnz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a63bb45662b
x-cache: HIT
x-age: 16743598
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/button/19-button.png
200 OK 504 B URL HTTP/2 static.javhd.com/h5/files/button/19-button.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b9292b2f016f0dca094f08e98b10e4f
032fb37c0956d518c289b727d4f2b1f7d300f9e1
549b9bd0060e105223af22424e20b6dce5b9276b90bda0af13a1b0fc503bd673
GET /h5/files/button/19-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: image/png
content-length: 504
last-modified: Fri, 11 Dec 2015 19:04:22 GMT
etag: "566b1e36-1f8"
expires: Tue, 23 May 2023 11:05:06 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839906
server: CDN77-Turbo
x-77-nzt: AblMCRQ5VqX/5Hz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a632f9b762b
x-cache: HIT
x-age: 16743652
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/video/1934-18586-728x90.medium.mp4
206 Partial Content 430 kB URL HTTP/2 static.javhd.com/h5/files/video/1934-18586-728x90.medium.mp4
IP
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 430 kB (429648 bytes)
Hash 1b43621d87c60ea606c14ea425205a50
5216be9ada04594ace6a2d719fd641c56b1231fb
f0e48a2bf05f1a29981edc57035ecf4ee7d5e507927d8c3bde0d8c93c237bc04
GET /h5/files/video/1934-18586-728x90.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: video/mp4
content-length: 429648
last-modified: Mon, 07 Feb 2022 07:41:26 GMT
etag: "6200cd26-68e50"
expires: Tue, 24 May 2022 11:15:50 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1670069863
server: CDN77-Turbo
x-77-nzt: AblMCRSe6HL/X/oAAA
x-77-nzt-ray: af585630be9f5d9d46e78a637723bb2b
x-cache: HIT
x-age: 64095
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-429647/429648
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8be4570a1d9d09c7b793e97ee1f6edaf
cb101195afa0dbb473bcd5050ee2ab4a25af825f
b69ece6aab66eec92b6b3bd8c8e6febd027c8dac1a86faaed1b217dec8e784b1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114160
Date: Sat, 03 Dec 2022 06:05:58 GMT
Etag: "6389fe18-1d7"
Expires: Sun, 04 Dec 2022 13:48:38 GMT
Last-Modified: Fri, 02 Dec 2022 13:31:04 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C-dWCxrmmB2l7zYfxKTqknzAVaBIvxeCs-en7SeNMZAfjc3RSMVjMA==
Age: 1054
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f4c94bde9a76bc603150ea8268ef5257
a0bcd3dea7384a387d0d984b99cb5b7b60cdaa84
8ce45b3fdf78e48cf77bb7ed8499a37df26b30827aa2919c061561e28209ef4c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8CE45B3FDF78E48CF77BB7ED8499A37DF26B30827AA2919C061561E28209EF4C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14236
Expires: Sat, 03 Dec 2022 10:03:14 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 2533bfe2f275a8c421176884cfcabda1
cfd854ac017caffea031a1b0aeb308d873af6158
4fab4897b1d3c1614b03db2b7a3f95300783648f0d68130a77269231223b22af
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; expires=Tue, 30 Nov 2032 06:05:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 1f1beac7928ab3d37cedfb7e9db6de8c
dbec1313a709861142ee3b08c1031e4c297435d0
25faaa716072ce2493633a4252fde0606c5da842936e6f4874eb461c180367de
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "25FAAA716072CE2493633A4252FDE0606C5DA842936E6F4874EB461C180367DE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sat, 03 Dec 2022 09:08:57 GMT
Date: Sat, 03 Dec 2022 06:05:58 GMT
Connection: keep-alive
js.wpadmngr.com/npc/sdk/wp-banners.js
200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Sat, 03 Dec 2022 06:10:59 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP
File type ASCII text, with no line terminators
Hash 2533bfe2f275a8c421176884cfcabda1
cfd854ac017caffea031a1b0aeb308d873af6158
4fab4897b1d3c1614b03db2b7a3f95300783648f0d68130a77269231223b22af
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
200 OK 909 B URL HTTP/2 asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
IP
ASN #24940 Hetzner Online GmbH
Hash 4b89c57cef30628b9e28e2b611bff944
4f6dcec5a0270703596d7a61c33deb50105f9b47
1477d494e225ec421f8cba8fedb6ccd40cf85cd270e723fbbfba72bbfc404398
GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 06:05:59 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=39NFan2TKY7yxqwLhFzc; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
na.nawpush.com/tags/59555?version_name=a
200 OK 1.1 kB URL HTTP/2 na.nawpush.com/tags/59555?version_name=a
IP
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (1089), with no line terminators
Hash f6c0a64ee48aa1d5d1571e0c5fd2dc61
ba486a68574295bbf58cdab39803f91dccb71396
6e7defee93dc0fb707de9c3351c468f03ee1dceb12da10212c253ed55520323e
GET /tags/59555?version_name=a HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:59 GMT
content-type: application/json
content-length: 1089
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: EXPIRED
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.javhd.com/h5/files/video/36-17551-300x250.medium.mp4
206 Partial Content 295 kB URL HTTP/2 static.javhd.com/h5/files/video/36-17551-300x250.medium.mp4
IP
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 295 kB (295379 bytes)
Hash e1ffc1172a8d56c677e05f16fdf2d920
740ed9d10623893251dc5e51ae765c0b23f6f0d2
2d75ad1d149557a298907f8b5dd6bed130b73515cfca53e539131c54ad2ac632
GET /h5/files/video/36-17551-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: video/mp4
content-length: 772102
last-modified: Wed, 19 Oct 2022 09:58:33 GMT
etag: "634fca49-bc806"
expires: Sat, 22 Oct 2022 12:04:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1670072237
server: CDN77-Turbo
x-77-nzt: AblMCRTtYxn/GfEAAA
x-77-nzt-ray: af585630be9f5d9d46e78a6355b09726
x-cache: HIT
x-age: 61721
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-772101/772102
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 126c46acb90c59f06c0752d0fb9c2d1a
017c2fe50b877c23fb71d27a25cb6bc1b1029849
05eff06efb1ac669dc020afb353645daa96e86ca6489f1a915927a1bf485454f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05EFF06EFB1AC669DC020AFB353645DAA96E86CA6489F1A915927A1BF485454F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7592
Expires: Sat, 03 Dec 2022 08:12:31 GMT
Date: Sat, 03 Dec 2022 06:05:59 GMT
Connection: keep-alive
fp.metricswpsh.com/fp?tag_id=59555
204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=59555
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www4.bestjavporn.com/
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:59 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
js.capndr.com/popunder-admanager/build.m.js
200 OK 17 kB URL HTTP/2 js.capndr.com/popunder-admanager/build.m.js
IP
ASN #39572 DataWeb Global Group B.V.
Hash 9b1812fbe224a476eb70cbf5d90802aa
94f3a7737f108e9575bcc7ae29f4e2d477f71905
549d3f9fad0d8b0bea1c3acbb7d0101eba3ca57f0875d0c35ba0978c469ba698
GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:59 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Dec 2022 09:44:36 GMT
etag: W/"63887784-add7"
content-encoding: gzip
expires: Sat, 03 Dec 2022 06:10:59 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 27 kB URL HTTP/2 friendshipmale.com/sfp.js
IP
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 249d5bb8f8d5fd948efc1354d88c6817
7c912d3b06643207404fedefff09fafa13366c0d
f3bfe89639b988ecb00f0cfee2f14749541d67e96bd6b6308d6e934031db1352
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4c01a14dff6d5c34fe75eebd823c2b27
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 03 Dec 2022 06:05:58 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0%2BvPEY0TXQt8Q%2B6%2F9p%2F51JKZ6uxrWKt83XR%2FJU2fEpiCSZZqCCOvHlYCEuOp4E5V37crbkoKMkzLIvIZJarQpCQnN8m9UvKqDtTAFqpm%2BjPImO8gU9HLtAoyHTFsR9Uuc26xzg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d19e84b772b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=59555
200 OK 28 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=59555
IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text
Hash e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a
POST /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22285
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:05:59 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Set-Cookie: id=7868579967298343428; Expires=Sun, 03 Dec 2023 06:05:59 GMT; Secure; SameSite=None
Vary: Origin
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 77a6b6638e0ee5ec4eeb988d3d3af050
219272781fc7a6ac331496b257c7976daa7b62de
d3092d8548c448fab08751eb00cce0ffb883786084d77320da1e0a858b70c5cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3092D8548C448FAB08751EB00CCE0FFB883786084D77320DA1E0A858B70C5CB"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3256
Expires: Sat, 03 Dec 2022 07:00:15 GMT
Date: Sat, 03 Dec 2022 06:05:59 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6
200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6
IP
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=6 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sat, 03 Dec 2022 06:05:59 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d3ed8020a5fa695a16ffb8600bad6d69
Strict-Transport-Security: max-age=0; includeSubdomains
handbagcordial.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757%3A3%3A1
200 OK 4.3 kB URL HTTP/1.1 handbagcordial.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757%3A3%3A1
IP
File type JSON data\012- , ASCII text, with very long lines (5941), with no line terminators
Hash f57abfebd155cc27443749a83152d316
e0ca633585123dd833d75a59a6a748df4864deec
95c6b0c510e3a46233e4c93f7a9712de7a23cd6a720c412f9bbb7c9f2e6b6101
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=30a757d9-e0ae-4e5f-8079-e86410bc4757%3A3%3A1 HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:05:59 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Sun, 04 Dec 2022 06:05:59 GMT; secure; SameSite=None
uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; expires=Sat, 10 Dec 2022 06:05:59 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 04 Dec 2022 06:05:59 GMT; secure; SameSite=None
uncs=1; expires=Sun, 04 Dec 2022 06:05:59 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 04 Dec 2022 06:05:59 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 04 Dec 2022 06:05:59 GMT; secure; SameSite=None
slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]; expires=Sat, 03 Dec 2022 06:06:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de9c5e51533cdd8af24de96a1018e1e2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9abc24f39564dc848d6bcdefbcdafc7b
b8c7e8e03ebea34dc55cb1edc5821875ef3b8ced
746046171e16c754f1385bee917d0d771988a6cc69bfef15b30af8d773cad83f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "746046171E16C754F1385BEE917D0D771988A6CC69BFEF15B30AF8D773CAD83F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6788
Expires: Sat, 03 Dec 2022 07:59:08 GMT
Date: Sat, 03 Dec 2022 06:06:00 GMT
Connection: keep-alive
handbagcordial.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRS%2Br78WurGiCwVxBAWLZnLfzLzMTLsI1v6gWNvSVrpycX%2B95Db3vfu89%2F1Ig4tgQYqrVFB05cs3aYNa1P4BFXkVtASETEHJwrh0qwhdy6TB4Fncc879zuJ833c%2BXC22CUXBti68bZe0MWw6atPWq1d0Km3lW%2Bcut0LapsdaV3Q60zvWWpw8rjwa0qhNj7ROK7Fgpzs0pDSkYeuUdiq2i9M7KHR2Zxi2h7Td67TDqIdF9%2F%2FeFwE8CyDLbfI0tBwfnH9wF1o0SJPvTii%2FkNvs9ZNJYVhuHUq5%2Fk66kNoqRbJXxi5AnK7vTsP6MSGf7YNN13cZwJZrEwbgekyC30LwdH13TfDy1uNNuYFKweWTqMoGyjTQrIGw16HlJgGExLnzSJPb56yr2LXHKJugY3Lg0T%2FQ1Zgc%2BP0ZpMk3x41ebF2ypsi1TT0W4xp6sYGea5AV95EvBdDVfYj8A2j5C5l%2BdBZpsnbeGwstt17uUtaP%2BnI4pShTUz0VxVMD2h9OqcFML6Rc9PpRf0cirRvouIFRK2B%2BPwofoNABijhAkQVI5FaLRcOY0n7M42530BNCdLtCRIMZGclubxBTFGLCYQV5tgJhViDcMjK3jAX98Wb0yua7r8EVP8DP1%2FAygM8JSlmjUgSVJ6gYQaUJqpygKutb0viOr29L4wse7ubObu7WI5vPrbJbNp9TKVnNtsnhiXzBoZduYkFttTpcDmSX0rA7w2ZiGVEueMT6cTfusbATM3hdQ%2Ft9YD7Akh6T%2FYeuI9Njsu%2FY3%2BCsgTcNhH4KrHgBrBr1OxRsftQbUCyl33Ll86uszKxL28ImkLZGlh9Afi1YNdvkuR0nj7pnocTG7MPNo399%2But7EK5G5mpc1T8SzJkbo4u2ImsXbeXJ3fNZrhO9xCYuX8pZrg5%2B9Za6Vlknz5zwK1%2B%2BISbApLxzWfn8LEulTuc8%2Bfq4llK5U9YJRe6d8VcUv1D4%2BeOFS4vs7IU3T51JMqe81zZtwPSYkJt%2FQOgxeeKT9s4Fv3jyc2jXwBU1kmKD7Aa0vQ%2BRLcNnG7MPf1r%2B%2BfD7R%2BAtgTN7MzwLUBX1yHX43qfRBEbt9YzX8Gpj9t708198Xz4AV%2F8JsupvYM4FYPl1pEmN0tUoTQ1mVuCL%2FaM8cxuzD7s7AW6CETcuWOPGmZuPxfV6q6WimMaKdhSPhzzuMyqHcW%2FI2TBUfR6xELkfi4%2F%2BPP0vAAAA%2F%2F8BAAD%2F%2F8o%2FSKKZBAAA
200 OK 7 B URL HTTP/1.1 handbagcordial.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRS%2Br78WurGiCwVxBAWLZnLfzLzMTLsI1v6gWNvSVrpycX%2B95Db3vfu89%2F1Ig4tgQYqrVFB05cs3aYNa1P4BFXkVtASETEHJwrh0qwhdy6TB4Fncc879zuJ833c%2BXC22CUXBti68bZe0MWw6atPWq1d0Km3lW%2Bcut0LapsdaV3Q60zvWWpw8rjwa0qhNj7ROK7Fgpzs0pDSkYeuUdiq2i9M7KHR2Zxi2h7Td67TDqIdF9%2F%2FeFwE8CyDLbfI0tBwfnH9wF1o0SJPvTii%2FkNvs9ZNJYVhuHUq5%2Fk66kNoqRbJXxi5AnK7vTsP6MSGf7YNN13cZwJZrEwbgekyC30LwdH13TfDy1uNNuYFKweWTqMoGyjTQrIGw16HlJgGExLnzSJPb56yr2LXHKJugY3Lg0T%2FQ1Zgc%2BP0ZpMk3x41ebF2ypsi1TT0W4xp6sYGea5AV95EvBdDVfYj8A2j5C5l%2BdBZpsnbeGwstt17uUtaP%2BnI4pShTUz0VxVMD2h9OqcFML6Rc9PpRf0cirRvouIFRK2B%2BPwofoNABijhAkQVI5FaLRcOY0n7M42530BNCdLtCRIMZGclubxBTFGLCYQV5tgJhViDcMjK3jAX98Wb0yua7r8EVP8DP1%2FAygM8JSlmjUgSVJ6gYQaUJqpygKutb0viOr29L4wse7ubObu7WI5vPrbJbNp9TKVnNtsnhiXzBoZduYkFttTpcDmSX0rA7w2ZiGVEueMT6cTfusbATM3hdQ%2Ft9YD7Akh6T%2FYeuI9Njsu%2FY3%2BCsgTcNhH4KrHgBrBr1OxRsftQbUCyl33Ll86uszKxL28ImkLZGlh9Afi1YNdvkuR0nj7pnocTG7MPNo399%2But7EK5G5mpc1T8SzJkbo4u2ImsXbeXJ3fNZrhO9xCYuX8pZrg5%2B9Za6Vlknz5zwK1%2B%2BISbApLxzWfn8LEulTuc8%2Bfq4llK5U9YJRe6d8VcUv1D4%2BeOFS4vs7IU3T51JMqe81zZtwPSYkJt%2FQOgxeeKT9s4Fv3jyc2jXwBU1kmKD7Aa0vQ%2BRLcNnG7MPf1r%2B%2BfD7R%2BAtgTN7MzwLUBX1yHX43qfRBEbt9YzX8Gpj9t708198Xz4AV%2F8JsupvYM4FYPl1pEmN0tUoTQ1mVuCL%2FaM8cxuzD7s7AW6CETcuWOPGmZuPxfV6q6WimMaKdhSPhzzuMyqHcW%2FI2TBUfR6xELkfi4%2F%2BPP0vAAAA%2F%2F8BAAD%2F%2F8o%2FSKKZBAAA
IP
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRS%2Br78WurGiCwVxBAWLZnLfzLzMTLsI1v6gWNvSVrpycX%2B95Db3vfu89%2F1Ig4tgQYqrVFB05cs3aYNa1P4BFXkVtASETEHJwrh0qwhdy6TB4Fncc879zuJ833c%2BXC22CUXBti68bZe0MWw6atPWq1d0Km3lW%2Bcut0LapsdaV3Q60zvWWpw8rjwa0qhNj7ROK7Fgpzs0pDSkYeuUdiq2i9M7KHR2Zxi2h7Td67TDqIdF9%2F%2FeFwE8CyDLbfI0tBwfnH9wF1o0SJPvTii%2FkNvs9ZNJYVhuHUq5%2Fk66kNoqRbJXxi5AnK7vTsP6MSGf7YNN13cZwJZrEwbgekyC30LwdH13TfDy1uNNuYFKweWTqMoGyjTQrIGw16HlJgGExLnzSJPb56yr2LXHKJugY3Lg0T%2FQ1Zgc%2BP0ZpMk3x41ebF2ypsi1TT0W4xp6sYGea5AV95EvBdDVfYj8A2j5C5l%2BdBZpsnbeGwstt17uUtaP%2BnI4pShTUz0VxVMD2h9OqcFML6Rc9PpRf0cirRvouIFRK2B%2BPwofoNABijhAkQVI5FaLRcOY0n7M42530BNCdLtCRIMZGclubxBTFGLCYQV5tgJhViDcMjK3jAX98Wb0yua7r8EVP8DP1%2FAygM8JSlmjUgSVJ6gYQaUJqpygKutb0viOr29L4wse7ubObu7WI5vPrbJbNp9TKVnNtsnhiXzBoZduYkFttTpcDmSX0rA7w2ZiGVEueMT6cTfusbATM3hdQ%2Ft9YD7Akh6T%2FYeuI9Njsu%2FY3%2BCsgTcNhH4KrHgBrBr1OxRsftQbUCyl33Ll86uszKxL28ImkLZGlh9Afi1YNdvkuR0nj7pnocTG7MPNo399%2But7EK5G5mpc1T8SzJkbo4u2ImsXbeXJ3fNZrhO9xCYuX8pZrg5%2B9Za6Vlknz5zwK1%2B%2BISbApLxzWfn8LEulTuc8%2Bfq4llK5U9YJRe6d8VcUv1D4%2BeOFS4vs7IU3T51JMqe81zZtwPSYkJt%2FQOgxeeKT9s4Fv3jyc2jXwBU1kmKD7Aa0vQ%2BRLcNnG7MPf1r%2B%2BfD7R%2BAtgTN7MzwLUBX1yHX43qfRBEbt9YzX8Gpj9t708198Xz4AV%2F8JsupvYM4FYPl1pEmN0tUoTQ1mVuCL%2FaM8cxuzD7s7AW6CETcuWOPGmZuPxfV6q6WimMaKdhSPhzzuMyqHcW%2FI2TBUfR6xELkfi4%2F%2BPP0vAAAA%2F%2F8BAAD%2F%2F8o%2FSKKZBAAA HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:05:59 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a4b8b56639fce17643ef745d1dc81d5
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
200 OK 749 B URL HTTP/2 cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
IP
ASN #39572 DataWeb Global Group B.V.
Hash 6e6e4002a127ba5b175ec9db9e4c0797
331d093f61439a4a2248445c737830413872172c
aac394afcf8587a8104679f187d62db56a89bd81b67ba3f924f5fbbe8001689e
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 13 Jul 2022 12:11:03 GMT
etag: W/"62ceb657-4a6"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 03 Dec 2022 07:06:00 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11431
Expires: Sat, 03 Dec 2022 09:16:31 GMT
Date: Sat, 03 Dec 2022 06:06:00 GMT
Connection: keep-alive
handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=123
200 OK 0 B URL HTTP/1.1 handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=123
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fe6%2Fd7%2F97%2Fe6d797a3a7be0e7ec1877d1b33146dfa%2F1657714258.html&l=1190&fd=123 HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:06:00 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
200 OK 6.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
IP
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/v2/new/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 05 Jul 2022 10:43:39 GMT
etag: "62c415db-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1527289
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O75yu4%2BaSPDwholTdXR%2Fq330OIOuMX5cfx24eToXxlWVOff9Kbk5ekrCO6j1xqtSjvvPwsV23VB1RuVTh1XBT4HcsJrU3cJT2QtMSJmSdW386YnueJTV3ZqOI8rBosU800g3awEjfDGo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d238d32e620-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11431
Expires: Sat, 03 Dec 2022 09:16:31 GMT
Date: Sat, 03 Dec 2022 06:06:00 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c0282fb1989711e4a48dce935bf7813
30bed8a42fc820e4feb64bd22ddfefe120889014
81e304f070d6b7aa4dc67c727523578cd18a665a5cfe674a3b1391f3f39fc11a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81E304F070D6B7AA4DC67C727523578CD18A665A5CFE674A3B1391F3F39FC11A"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2334
Expires: Sat, 03 Dec 2022 06:44:54 GMT
Date: Sat, 03 Dec 2022 06:06:00 GMT
Connection: keep-alive
handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=148
200 OK 0 B URL HTTP/1.1 handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=148
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=148 HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:06:00 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/d1/90/26/d190268dee103ee1f2ce0c8843373c8c/1669910386.png
200 OK 70 kB URL HTTP/2 cdn.cloudimagesb.com/si/d1/90/26/d190268dee103ee1f2ce0c8843373c8c/1669910386.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash eafe1a0bfd2db8c1aa79136e4826d19e
1d67e0efb736dfd011ae8cb71440e2301a97dc4e
2bc894548ddaf6375cbd7a7f604d3b27a5b8971a5768d68ac7b6c5ed64d7a3c8
GET /si/d1/90/26/d190268dee103ee1f2ce0c8843373c8c/1669910386.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: image/png
content-length: 69836
server: nginx/1.17.6
last-modified: Thu, 01 Dec 2022 15:59:54 GMT
etag: "6388cf7a-110cc"
expires: Mon, 05 Dec 2022 06:06:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=150
200 OK 0 B URL HTTP/1.1 handbagcordial.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=150
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=150 HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:06:00 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js
200 OK 183 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js
IP
Hash ebb57b91d3c26defb07d8667074cc559
d583650fc9da4671ca6aac8ce31933945f60ee2f
c932991a0eb48241843d089e42218e3ef19efb174615504d3cbab7f348153f02
GET /sb/chat/mob/ssp/v2/new/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-17f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1022181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ga%2FXEMnxer0bhLF84gvFaofKpvSVhyTi63TJPc1Z6Uy2uTBxKhDAXh2%2B1tYAhg9Wb4kIbIVHYROGuZYiBPPlA1%2FSIZ99bPK8Jl6MZWfk6sCHiY5gOjoIOS1Z%2Fs5HVaUw2KYuWY7R8P8L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d23dde57463-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 210726
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 210705
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
handbagcordial.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDXozoQUEcQcGgO1s93b0zkxwWY34QjElIIjl5qK6q3q1sdVdb1T82i4fFgARPG0HRk73fbLKoQc0fEJGOoGFB2Akoe3A9elWEnGU2i4vvUO%2B9%2Bt7hfd%2F3PlwttwlFybYuvG2WlNZsOurSzqtXVCZM7TrnLnd82qXHOldUNhMe6yxOHlsd9WnUpUc6pyVfMNM96lPqU79zSlmZmMXpHRQqvzP0u0PaDXtdPwqxaP%2Ffu9KDYx5EtU2ehhLjg%2FMP7kLxFln63QnpFgqTv34yLTUrjEUl1t%2FJFjJTZ0j3ysR6SLL13WkYNybks30w2fouA5hqbcIAsRoT7zcfcba%2Buybi6tbjTWMNmSEWT6KuWkjdQrEW3FyHEpsE4ALnziNLb58ztmbXHqNsgo7JgUf%2FQNVjcuD3Z5Cl3xzXarFzyeiyUCZzWEwaqMUWaq5FXt5HseRB1ffBiw%2BgxC9k%2BtFZZOnaeacNlNh6OaCsH%2FXFcEpSJqdCGSVTA9ofTsnBTOjTmIf9qL8jkVItVNJCyxUwtx%2Bl81AqD2Xiocw9pGKrw6JhQmk%2FiZMgGISc8yDgPBrMiEgE4SChKPmEwwqKfAVcr4DbZeR2GQvq483olc13X4Mtf4Cbb%2BCEB1cQVKJBLQlqR1AzgloR1AVBXTW3hHY919wW2pWxv5t7uzloRqaYW2W3TDEnM7Kab5PDE%2Fm8Qy%2FdxILc6vRiMRABpX4ww2YSEdGYxxHrJ0ESMr%2BXMDjVQLl9YM7DkhqT%2FYeuI1djsu%2FY34hZC6dbcPUUWPkCWD3q9yjY%2FCgcUCxl38bSFVdZlRubdblJIUyDvDiA4pq3qrfJcztOHrXPQvKN2YebR%2F%2F69Nf3wG2D3Da4qn4kmNM3RhdNTdYumtqRu%2BfzQqVqiU1cvlSwQh786i15rTZWnDnhVr58g0%2BASXnnsnTFWZYJlc058vVxJYS0p4zlktw7467I%2BELp5o%2BXNivzsxfePHUmza10TpmsBVNjQm7%2BAa7G5IlPujsX%2FOLJz6FsC1s2SMsNshtQ5j54vgyXb8w%2B%2FGn558PvH4EzBFbvzcS5h7psRrYX731qRaDlXs%2FiBk5uzN6bfv6L76sHiOV%2Fgqy6G5izHlhxHVnaoLINKt2A6RW4cv%2BoyO3G7MNgJxBrbxRr663F2uqbj8V1aqsT%2BaEcxIM%2BFyKWXPj9XjAIKO0JEfaH0h%2BicGP%2B0Z%2Bn%2FwUAAP%2F%2FAQAA%2F%2F%2FeN8ZEmQQAAA%3D%3D
200 OK 7 B URL HTTP/1.1 handbagcordial.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDXozoQUEcQcGgO1s93b0zkxwWY34QjElIIjl5qK6q3q1sdVdb1T82i4fFgARPG0HRk73fbLKoQc0fEJGOoGFB2Akoe3A9elWEnGU2i4vvUO%2B9%2Bt7hfd%2F3PlwttwlFybYuvG2WlNZsOurSzqtXVCZM7TrnLnd82qXHOldUNhMe6yxOHlsd9WnUpUc6pyVfMNM96lPqU79zSlmZmMXpHRQqvzP0u0PaDXtdPwqxaP%2Ffu9KDYx5EtU2ehhLjg%2FMP7kLxFln63QnpFgqTv34yLTUrjEUl1t%2FJFjJTZ0j3ysR6SLL13WkYNybks30w2fouA5hqbcIAsRoT7zcfcba%2Buybi6tbjTWMNmSEWT6KuWkjdQrEW3FyHEpsE4ALnziNLb58ztmbXHqNsgo7JgUf%2FQNVjcuD3Z5Cl3xzXarFzyeiyUCZzWEwaqMUWaq5FXt5HseRB1ffBiw%2BgxC9k%2BtFZZOnaeacNlNh6OaCsH%2FXFcEpSJqdCGSVTA9ofTsnBTOjTmIf9qL8jkVItVNJCyxUwtx%2Bl81AqD2Xiocw9pGKrw6JhQmk%2FiZMgGISc8yDgPBrMiEgE4SChKPmEwwqKfAVcr4DbZeR2GQvq483olc13X4Mtf4Cbb%2BCEB1cQVKJBLQlqR1AzgloR1AVBXTW3hHY919wW2pWxv5t7uzloRqaYW2W3TDEnM7Kab5PDE%2Fm8Qy%2FdxILc6vRiMRABpX4ww2YSEdGYxxHrJ0ESMr%2BXMDjVQLl9YM7DkhqT%2FYeuI1djsu%2FY34hZC6dbcPUUWPkCWD3q9yjY%2FCgcUCxl38bSFVdZlRubdblJIUyDvDiA4pq3qrfJcztOHrXPQvKN2YebR%2F%2F69Nf3wG2D3Da4qn4kmNM3RhdNTdYumtqRu%2BfzQqVqiU1cvlSwQh786i15rTZWnDnhVr58g0%2BASXnnsnTFWZYJlc058vVxJYS0p4zlktw7467I%2BELp5o%2BXNivzsxfePHUmza10TpmsBVNjQm7%2BAa7G5IlPujsX%2FOLJz6FsC1s2SMsNshtQ5j54vgyXb8w%2B%2FGn558PvH4EzBFbvzcS5h7psRrYX731qRaDlXs%2FiBk5uzN6bfv6L76sHiOV%2Fgqy6G5izHlhxHVnaoLINKt2A6RW4cv%2BoyO3G7MNgJxBrbxRr663F2uqbj8V1aqsT%2BaEcxIM%2BFyKWXPj9XjAIKO0JEfaH0h%2BicGP%2B0Z%2Bn%2FwUAAP%2F%2FAQAA%2F%2F%2FeN8ZEmQQAAA%3D%3D
IP
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDXozoQUEcQcGgO1s93b0zkxwWY34QjElIIjl5qK6q3q1sdVdb1T82i4fFgARPG0HRk73fbLKoQc0fEJGOoGFB2Akoe3A9elWEnGU2i4vvUO%2B9%2Bt7hfd%2F3PlwttwlFybYuvG2WlNZsOurSzqtXVCZM7TrnLnd82qXHOldUNhMe6yxOHlsd9WnUpUc6pyVfMNM96lPqU79zSlmZmMXpHRQqvzP0u0PaDXtdPwqxaP%2Ffu9KDYx5EtU2ehhLjg%2FMP7kLxFln63QnpFgqTv34yLTUrjEUl1t%2FJFjJTZ0j3ysR6SLL13WkYNybks30w2fouA5hqbcIAsRoT7zcfcba%2Buybi6tbjTWMNmSEWT6KuWkjdQrEW3FyHEpsE4ALnziNLb58ztmbXHqNsgo7JgUf%2FQNVjcuD3Z5Cl3xzXarFzyeiyUCZzWEwaqMUWaq5FXt5HseRB1ffBiw%2BgxC9k%2BtFZZOnaeacNlNh6OaCsH%2FXFcEpSJqdCGSVTA9ofTsnBTOjTmIf9qL8jkVItVNJCyxUwtx%2Bl81AqD2Xiocw9pGKrw6JhQmk%2FiZMgGISc8yDgPBrMiEgE4SChKPmEwwqKfAVcr4DbZeR2GQvq483olc13X4Mtf4Cbb%2BCEB1cQVKJBLQlqR1AzgloR1AVBXTW3hHY919wW2pWxv5t7uzloRqaYW2W3TDEnM7Kab5PDE%2Fm8Qy%2FdxILc6vRiMRABpX4ww2YSEdGYxxHrJ0ESMr%2BXMDjVQLl9YM7DkhqT%2FYeuI1djsu%2FY34hZC6dbcPUUWPkCWD3q9yjY%2FCgcUCxl38bSFVdZlRubdblJIUyDvDiA4pq3qrfJcztOHrXPQvKN2YebR%2F%2F69Nf3wG2D3Da4qn4kmNM3RhdNTdYumtqRu%2BfzQqVqiU1cvlSwQh786i15rTZWnDnhVr58g0%2BASXnnsnTFWZYJlc058vVxJYS0p4zlktw7467I%2BELp5o%2BXNivzsxfePHUmza10TpmsBVNjQm7%2BAa7G5IlPujsX%2FOLJz6FsC1s2SMsNshtQ5j54vgyXb8w%2B%2FGn558PvH4EzBFbvzcS5h7psRrYX731qRaDlXs%2FiBk5uzN6bfv6L76sHiOV%2Fgqy6G5izHlhxHVnaoLINKt2A6RW4cv%2BoyO3G7MNgJxBrbxRr663F2uqbj8V1aqsT%2BaEcxIM%2BFyKWXPj9XjAIKO0JEfaH0h%2BicGP%2B0Z%2Bn%2FwUAAP%2F%2FAQAA%2F%2F%2FeN8ZEmQQAAA%3D%3D HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:06:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 478fbd815045353648add561d342c366
Strict-Transport-Security: max-age=0; includeSubdomains
handbagcordial.com/pixel/sbs?c=1
200 OK 0 B URL HTTP/1.1 handbagcordial.com/pixel/sbs?c=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: handbagcordial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=30a757d9-e0ae-4e5f-8079-e86410bc4757:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3830293]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 03 Dec 2022 06:06:00 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
adxadserv.com/px/heartbeat/v1?pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&t_op=5.27&p_nn=adxad-rtb&fpid_sa=1670047555813&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
200 OK 0 B URL HTTP/1.1 adxadserv.com/px/heartbeat/v1?pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&t_op=5.27&p_nn=adxad-rtb&fpid_sa=1670047555813&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /px/heartbeat/v1?pv_uid=f94790ff-2df1-47ee-901d-2f509ddbbab9&t_op=5.27&p_nn=adxad-rtb&fpid_sa=1670047555813&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1670047555813&sid_sa=1670047555813&feid=03f58c928b8c8a2b9037fe01ddc52229&sid=f561851abfe775fc9de5019abee03379&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 03 Dec 2022 06:06:03 GMT
Content-Length: 0
Connection: keep-alive
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
IP
GET /sb/chat/mob/ssp/v2/new/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1022992
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2BnSn72FnYob7r7e%2BA33T1vWYCQ8DkhZhNSWzRszTACGv4S9Og0wlL1cPlCdAopy%2Fy4gKbJoWRPvjo4YR%2FWX4U90gqWkUxDQybxtToSpq4lNvC3Ltr%2BDbh%2BNrBPvgfZdn8PBGRp8QJvf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d231d8c7463-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oJY7E2GT50hFe5hqpPWlHZywrzYTpnDOHl8x8JROj5RmBrIjODlA0bwPOjVcaxSgKgX95K69iEIWmfjV%2F38BPpOEIz8YEY5m9uARP09WYtWq0580h%2BeYf%2FL9c7e%2Bkv%2BiYcAh36c3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d0c18c71c06-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 05 Dec 2022 06:05:56 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
IP
GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=51865
etag: W/"6388cd36-ca99"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/main.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70362
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ZEvnHSxFbOa2h8yHYBh9i%2Fy%2BREKHVryUi7pRbxGOIbMJ9zq0L1ujkewfZC3ar83b1IfPBAHQ7q57jhGqcisdOehC8xk9c5qJga4dkFO8cdoBRROjwJz7C4sUmNfwquD%2BGQ%2FqRcW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c18cb1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP
GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70362
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zQlCtz6d6pu7jAZUDItgpZyOuLkgjnvKLYZjpvt%2Bb8bn0eraG%2BNNHIq%2B8g7a%2Fuk7O3PI91y2G%2BPAJYGFsgZYxu590qF9heTPDIBizbZe5nqKlG9UiJEew%2Bt3CORHf%2BZDnU%2F7mbu1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c18ca1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
pics.pornfhd.com/digital/video/ebod00878/ebod00878pl.jpg
200 OK 0 B URL HTTP/2 pics.pornfhd.com/digital/video/ebod00878/ebod00878pl.jpg
IP
GET /digital/video/ebod00878/ebod00878pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:57 GMT
content-type: image/jpeg
last-modified: Mon, 15 Nov 2021 10:55:26 GMT
vary: Accept-Encoding
etag: W/"61923c9e-29656"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q7pbtBiFDflEFfRMZXBteiCQbsjD35NyHHCRZ3yl8HRlJNXRktgIP3VNmMwWhqNr1yt4BR5YZZ3Tj3MOi5pYI84dRlGklbMynS0kViKqQov6G5bV3Z40vhZz7kzQojK7IzOa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0cee12770d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
IP
GET /sb/chat/mob/ssp/v2/new/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:55 GMT
etag: W/"62ceb703-1229"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 203933
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f4NJeS4I%2BQGihY2MHevSsLx3MNXywH6b3PiV0x%2FbfTDOmhv5n4ygTjG3XuXGCWoihe%2BQd9frgaPTLWajPoHliVvXaRwH5KYbfYIUaNxJNkPCPBaqYNfAxj67i5GHX%2BMGQGElpaypf3w7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d231d8b7463-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
IP
GET /sb/chat/mob/ssp/v2/new/3/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:06:00 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:58 GMT
etag: W/"62ceb706-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1527289
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gX6uADtp%2FquEhYHJHxH915Z5dq22KqUTcTQg7t6x7bGeHakYkuOyL8n5J99YKxyj0UV8usufdLX0Zpmyk7IfWJmKUbPV%2FraYHOgIEAxzs5sYUNXG5AWUZitSz%2BQwC2zxwTLcmrd26jBz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d236d1fe620-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/video/ebod-878-decensored/
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/video/ebod-878-decensored/
IP
GET /video/ebod-878-decensored/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: text/html
cf-ray: 773a1d0a48471c06-OSL
cache-control: max-age=3600
last-modified: Fri, 02 Dec 2022 07:05:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Cookie
cf-cache-status: HIT
cf-apo-via: tcache
cf-edge-cache: cache,platform=wordpress
x-rocket-nginx-serving-static: Yes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IQNZFojQ9sbjcCEOKzcicAOKMUS4C%2FxH0Pi%2BzPm8bqxEFQuJk%2F7SPm1mngTxmntOwl8NnDyguI6MoFqoWqGutKO4XB8P33w7fr6H10pJxBVYv8ahbBPatnJIITYh2ZY6pU9aPrXp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP
GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
etag: W/"6388cd36-11395"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70096
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p7AnWqgQ9bvZaUS8GFB36yXu450hV%2F4MU%2Bhmse0tyaWwNz3CW3H%2B%2FXsfIlCId5Yxy38V37R5BktsJsWqrsMCWRGy9fYg4PT70ujJPm8%2B%2BohmIECPmpOWoKjXGKMOVOdqnA3Ea2Ml"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c18ce1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP
GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 48337
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=taK4eZwalWduuFpQKzsOCKzTc5Sqdt6G1lvewdW7MOBHmn07YQTcP8XX6Y%2F2A%2FLkZ82Yck6UAp3aGdmaXyS%2Fl5Sci8slCe5v8k%2FDV5yLm%2BMUnokX4kURkIt%2BJF4Ds%2FlH0fKpcEoR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c28d01c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
200 OK 0 B URL HTTP/2 js.wpadmngr.com/static/adManager.js
IP
ASN #39572 DataWeb Global Group B.V.
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 13 Jul 2022 06:52:04 GMT
etag: W/"62ce6b94-4e2"
content-encoding: gzip
expires: Sat, 03 Dec 2022 06:10:58 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.m.js
200 OK 0 B URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP
ASN #39572 DataWeb Global Group B.V.
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 30 Nov 2022 13:10:49 GMT
etag: W/"63875659-17718"
content-encoding: gzip
expires: Sat, 03 Dec 2022 06:10:58 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
pics.pornfhd.com/s/digital/video/pppd00973/pppd00973pl.jpg
200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/digital/video/pppd00973/pppd00973pl.jpg
IP
GET /s/digital/video/pppd00973/pppd00973pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: image/jpeg
last-modified: Mon, 18 Oct 2021 12:22:27 GMT
vary: Accept-Encoding
etag: W/"616d6703-983f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 534195
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJwTNDrKiZESY2LX1vltU20sEMh2i9xsebeR1whPomBTUB%2BRTK%2B%2BjmMcQYR4SH%2BaH9U8ymOyNEODekqxNbRtBHKlQ9qObuTdoT9fQKQY8fTtpTbPmnq2%2Bj6%2FRbCo%2Fkg380XG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0ecfb0770d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.javhd.com/h5/files/css/style.css
200 OK 0 B URL HTTP/2 static.javhd.com/h5/files/css/style.css
IP
ASN #60068 Datacamp Limited
GET /h5/files/css/style.css HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: text/css
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRTJwxP/9Xz/AA
x-77-nzt-ray: af585630be9f5d9d46e78a634089a414
x-cache: HIT
x-age: 16743669
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
200 OK 0 B URL HTTP/2 static.javhdhello.com/h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
IP
ASN #60068 Datacamp Limited
GET /h5/files/15541/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTYsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:58 GMT
content-type: text/html
last-modified: Mon, 07 Feb 2022 07:41:28 GMT
etag: W/"6200cd28-c7f"
expires: Sat, 24 Dec 2022 12:06:00 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1671883560
server: CDN77-Turbo
x-77-nzt: AblMCRRW8zP/HokLAA
x-77-nzt-ray: af585630be9f5d9d46e78a638de91a2a
x-cache: HIT
x-age: 755998
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 70363
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l4F0ajEyj3HXC9rTC5fhVJMtRIhDX75t6nBhFULlXnCPeRnXCzmY7bDFAcT3cxGvZFhPl32wu9D3xNDOTyC2Az7jTq55m%2FmrpEO1zevQuexfjv4xHu5WFebuJB7OhM82xMLyRx%2B0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c08c01c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
img.bestjavporn.net/favicon.ico
200 OK 0 B URL HTTP/2 img.bestjavporn.net/favicon.ico
IP
GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:57 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2672778
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZHHlV0SQIlKVjZTpPJH7aomu8wmsDW0gpxhah1Oh6SAN%2F40WxBTgr5O1hytzTPS3A%2FkVIVofz3A8daCNSyUZIapJdKXqNwTFWWXQGpxWIFZ%2BscBuZqwU98BKjzKmePHO0MXfD6R2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773a1d151b0a06ed-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&display=swap
IP
GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 06:05:56 GMT
date: Sat, 03 Dec 2022 06:05:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/ebod-878-decensored/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 06:05:56 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 70362
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvUFBVlhQ2vdJTtOS%2Fbl6v7lczvLBTXMGSWJUCrhE7BcODod0fRZxsyehtQyHX1YKxK3L4kl%2B1DBmyzDOq1P2aYQI0H4Fg0I0RRnXSHZlkJcoK4OBtTa074HfEcM8GGuXVad4hJx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773a1d0c28cf1c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
104.26.3.123
104.17.24.14
135.181.208.216
185.94.236.244
52.28.211.11
185.76.9.22
93.184.220.29
23.36.77.32