cdnjs.cloudflare.com/ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js
104.17.25.14200 OK 1.1 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js
IP 104.17.25.14:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (3309)
Hash 112c8d1b40b3e62e883c743e9d71e0bf
338318e930487b2791a7bcf53ad4601630cc41e2
ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e
GET /ajax/libs/jquery.lazyload/1.9.1/jquery.lazyload.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 1120
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-d35"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 216934
expires: Thu, 17 Oct 2024 18:35:03 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EDiuwRWek8Nkmp%2FVaBFqeun00FN0lfavGQGNVb67XNJne2vWqTsWvqVJLcuPc6vGdjnisrKbs5T5%2BLCmP8sU6dgQ8%2BHNoj%2FXmgX3kitZhO3u7SItUSNOrWupz2jyFBonMBoc5nDZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 81d546c06a6856c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.12.4.min.js
151.101.2.137200 OK 34 kB URL GET HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP 151.101.2.137:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17b8b"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Oct 2023 18:35:03 GMT
age: 3717496
x-served-by: cache-lga21956-LGA, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 232, 276787
x-timer: S1698518103.171855,VS0,VE0
vary: Accept-Encoding
content-length: 33738
X-Firefox-Spdy: h2
vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
151.101.194.217200 OK 8.9 kB URL GET HTTP/2 vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
IP 151.101.194.217:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF0:70:0B:AF:84:8A:AB:25:98:72:B0:E7:EE:F8:2C:2C:6B:58:8E:4E
ValiditySat, 03 Jun 2023 21:48:23 GMT - Thu, 04 Jul 2024 21:48:22 GMT
File type Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Hash 2ff9bb22f0b1789ac170247b0825488f
f2b1471c6b72cef3df20d2b16fed14739c4831f1
3cea9fd4486e2820f34fdeb7970fd29c4fa531e79a285bf58aaab1ecdadfa99a
GET /ie8/1.1.2/videojs-ie8.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2016 20:27:09 GMT
etag: "2ff9bb22f0b1789ac170247b0825488f"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Sat, 28 Oct 2023 18:35:03 GMT
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 10642
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 8924
X-Firefox-Spdy: h2
vjs.zencdn.net/5.8.8/video-js.css
151.101.194.217200 OK 13 kB URL GET HTTP/2 vjs.zencdn.net/5.8.8/video-js.css
IP 151.101.194.217:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF0:70:0B:AF:84:8A:AB:25:98:72:B0:E7:EE:F8:2C:2C:6B:58:8E:4E
ValiditySat, 03 Jun 2023 21:48:23 GMT - Thu, 04 Jul 2024 21:48:22 GMT
File type ASCII text, with very long lines (12483)
Hash 0731897be52a12562dd003d26ae7d5e6
0d96373fb850ea1dacc5fe2e0d8cd078e329a092
6e0eb0592ab2598cff600de9a324911370b7f227f5e67491a87613f2a8c1a589
GET /5.8.8/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2016 17:40:15 GMT
etag: "0731897be52a12562dd003d26ae7d5e6"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Sat, 28 Oct 2023 18:35:03 GMT
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 32
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 13344
X-Firefox-Spdy: h2
code.jquery.com/ui/1.12.1/jquery-ui.js
151.101.2.137200 OK 124 kB URL GET HTTP/2 code.jquery.com/ui/1.12.1/jquery-ui.js
IP 151.101.2.137:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (1002)
Size 124 kB (124434 bytes)
Hash ab5284de5e3d221e53647fd348e5644b
75c20acdc6cbc6334fe2b918ab7afeec007f969e
4f455eb2ddf2094ee969f470f6bfac7adb4c057e8990a374e9da819e943c777d
GET /ui/1.12.1/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-7f20a"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Oct 2023 18:35:03 GMT
age: 3717499
x-served-by: cache-lga21932-LGA, cache-bma1657-BMA
x-cache: HIT, HIT
x-cache-hits: 350, 349772
x-timer: S1698518103.200891,VS0,VE0
vary: Accept-Encoding
content-length: 124434
X-Firefox-Spdy: h2
vjs.zencdn.net/5.8.8/video.js
151.101.194.217200 OK 152 kB URL GET HTTP/2 vjs.zencdn.net/5.8.8/video.js
IP 151.101.194.217:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
FingerprintF0:70:0B:AF:84:8A:AB:25:98:72:B0:E7:EE:F8:2C:2C:6B:58:8E:4E
ValiditySat, 03 Jun 2023 21:48:23 GMT - Thu, 04 Jul 2024 21:48:22 GMT
File type ASCII text, with very long lines (912)
Size 152 kB (151840 bytes)
Hash 565cd42bcee295d6674ef49a022d3767
911eb697c04ad2be82f81591830fe65d19e1c2b0
4eb081b553eedcd0ee1748367d17cc5b93f4bdadc9d3d06bdf74c50c63306d54
GET /5.8.8/video.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2016 17:40:15 GMT
etag: "565cd42bcee295d6674ef49a022d3767"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Sat, 28 Oct 2023 18:35:03 GMT
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 151840
X-Firefox-Spdy: h2
ocsp.buypass.com/
23.33.119.18 1.7 kB IP 23.33.119.18:0
ASN #20940 Akamai International B.V.
Hash 9cdf3292eb229fcafe7e3ccdce1569ca
e7cd8359ce70d213b90ec76a5e14001b289e036d
f8f2612fd57a75463105f1ff085ec5296235f97985f14cacaff9956dfeb1db57
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 9a24a6d6-2a18-4ba5-8cda-d6e43ff298ee
Content-Length: 1704
Date: Sat, 28 Oct 2023 18:35:03 GMT
Connection: keep-alive
dmmzkfd82wayn.cloudfront.net/?kzmmd=920781
143.204.42.115200 OK 70 kB URL GET HTTP/2 dmmzkfd82wayn.cloudfront.net/?kzmmd=920781
IP 143.204.42.115:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15948)
Hash 2d9435257e8eaf68c34afec225eb81ac
6216d5674a5f9fe664066f927da47a9601aaa1fd
aa0af8a655167e9591a9bafb6339a32bad7d2352390a138b6ae51c6e9223efbe
GET /?kzmmd=920781 HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 69459
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fojX8mj2e9B-4re2yyxqoQx1y0oVbnCzdw84Xvn6GmLWIBqs-i-a6g==
X-Firefox-Spdy: h2
en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
188.114.97.1200 OK 54 kB URL User Request GET HTTP/2 en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
IP 188.114.97.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectjav321.com
FingerprintE3:6E:5B:23:37:29:55:0B:81:7B:EB:94:A7:34:E2:41:D5:A6:44:A0
ValidityThu, 07 Sep 2023 04:02:45 GMT - Wed, 06 Dec 2023 04:02:44 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (661)
Hash 4e931fdc3d077af64655f05b6f162f1b
655d7e90eabcdf7fffcaf45b17c2b63f153a449d
4719ddd7637434ca30ad2ffaa5124589f7e09aece8976db05c3a82efd369f32c
GET /searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid HTTP/1.1
Host: en.jav321.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:02 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ABsTsTa%2Fizc8yWrw2R9AXoVW%2FxYC4oOaz70yJHp80bSmxSMkfFaIP8BhHA%2BMpKjmf4t7iZQgf%2FWL4iZseFi%2BQiGUl1w0gF6SWavtp9gcH7tY6pa3kwj1GnsTfIBP0gRv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546b759d856b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
blastcahs.com/solid.gif?z=1808151&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
212.117.190.201200 OK 43 B URL POST HTTP/2 blastcahs.com/solid.gif?z=1808151&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint33:3F:7F:E7:8C:55:B5:08:DB:FF:D8:B3:28:8B:39:9C:4C:5E:A7:3D
ValidityWed, 31 May 2023 12:16:44 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1808151&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1 HTTP/1.1
Host: blastcahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
UID=2310281335a74d0a18eedd4fdfb811dbd62b; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ivedmanyyea.org/UjFTWU99DjAqcgRLFSkAB38+GxlmfDc0dxhpEmh4CHAROA4aaHUtJjYMamt/ZQlifz87VW5oaSFFMi06IQxifyY8VzxkaSQMYnd8Zh9gbWFiFyZkfnRFIzgobwB1KTsmXW5oeWsJZmh3YwFnbH9g
104.21.11.156204 No Content 0 B URL GET HTTP/2 ivedmanyyea.org/UjFTWU99DjAqcgRLFSkAB38+GxlmfDc0dxhpEmh4CHAROA4aaHUtJjYMamt/ZQlifz87VW5oaSFFMi06IQxifyY8VzxkaSQMYnd8Zh9gbWFiFyZkfnRFIzgobwB1KTsmXW5oeWsJZmh3YwFnbH9g
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UjFTWU99DjAqcgRLFSkAB38+GxlmfDc0dxhpEmh4CHAROA4aaHUtJjYMamt/ZQlifz87VW5oaSFFMi06IQxifyY8VzxkaSQMYnd8Zh9gbWFiFyZkfnRFIzgobwB1KTsmXW5oeWsJZmh3YwFnbH9g HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ivcw4RemIzClQTp0DsoMvgoSzSmCbW6%2Fg%2BrcsL%2BDfsS4b5bq%2B9U19Qi2SBV44U3pKb%2Fz1KaR2UtTvuLepNHKeSC7OIFd55FKh51xLYXktc9W%2FwWH%2FJB%2ByaooPuC8SmiPxr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c40e3d56ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
blastcahs.com/get/1808151?zoneid=1808151&jp=_cl5zevhb2kqdwvpikyt073&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
212.117.190.201200 OK 1.8 kB URL GET HTTP/2 blastcahs.com/get/1808151?zoneid=1808151&jp=_cl5zevhb2kqdwvpikyt073&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint33:3F:7F:E7:8C:55:B5:08:DB:FF:D8:B3:28:8B:39:9C:4C:5E:A7:3D
ValidityWed, 31 May 2023 12:16:44 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with very long lines (4227), with no line terminators
Hash 780189f9aff6d7630d79bbb77db3571d
7d41c615127379aa03d80f2508fd8107308668e9
8e1a3c87fce1ca3051e9a2a4bedde26708c276e3007dcb5f04baf148564bcde8
GET /get/1808151?zoneid=1808151&jp=_cl5zevhb2kqdwvpikyt073&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1 HTTP/1.1
Host: blastcahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
UID=231028133538c847777f524483996a7bc013; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ivedmanyyea.org/UmlCYVh9ViESZR8uBFQ6PjwBNg0QMxsgPAA9FBUyE1gULw4/CmQVMTZUe1NqZl56Ryg7DX9SanQaNgAsJxp/UH47ByQOZXQff1F2a0dwT210HH9QfiYZIwZlY08yFSw+VHNXYWpcc1lpYl13V2g
104.21.11.156204 No Content 0 B URL GET HTTP/3 ivedmanyyea.org/UmlCYVh9ViESZR8uBFQ6PjwBNg0QMxsgPAA9FBUyE1gULw4/CmQVMTZUe1NqZl56Ryg7DX9SanQaNgAsJxp/UH47ByQOZXQff1F2a0dwT210HH9QfiYZIwZlY08yFSw+VHNXYWpcc1lpYl13V2g
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UmlCYVh9ViESZR8uBFQ6PjwBNg0QMxsgPAA9FBUyE1gULw4/CmQVMTZUe1NqZl56Ryg7DX9SanQaNgAsJxp/UH47ByQOZXQff1F2a0dwT210HH9QfiYZIwZlY08yFSw+VHNXYWpcc1lpYl13V2g HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F7xkAscz%2BnF7T1yM7ifQbaC1Gzj80NCu1mbjnO5%2BxKUnzyXopaUGuk1VSH0nw5S0LohgxPVEDO0%2FjINDFfjzyRNM5Mg%2BXditCwL7tUa%2B1ZxecnFT55Ov2PcFZzq6%2FOkQ%2Bmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c44c2eb527-OSL
alt-svc: h3=":443"; ma=86400
ivedmanyyea.org/dERDOTRbeyBKCToDGVRlIB0EYVhNdgJOeiMRLWh1NnUJalElFWVNXRB5egsGQHN7H0QdIH4KBlI3N1hAATd+CwREc2VQWhIrfgsSAnlzFw1adm0MEgF5ch9ABCUkBAVSNDdNWEl1dQAMQXV7CARAcXUL
104.21.11.156204 No Content 0 B URL GET HTTP/3 ivedmanyyea.org/dERDOTRbeyBKCToDGVRlIB0EYVhNdgJOeiMRLWh1NnUJalElFWVNXRB5egsGQHN7H0QdIH4KBlI3N1hAATd+CwREc2VQWhIrfgsSAnlzFw1adm0MEgF5ch9ABCUkBAVSNDdNWEl1dQAMQXV7CARAcXUL
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dERDOTRbeyBKCToDGVRlIB0EYVhNdgJOeiMRLWh1NnUJalElFWVNXRB5egsGQHN7H0QdIH4KBlI3N1hAATd+CwREc2VQWhIrfgsSAnlzFw1adm0MEgF5ch9ABCUkBAVSNDdNWEl1dQAMQXV7CARAcXUL HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GlTIcH%2BmAI9lX3pO4Xe332PNssWbXdNettVLNFE%2B7DvqRmgYEas68f2E7YoYTHMDXQLM%2Blvsj5gF7t5XmaL0%2B8Qx8HbIjpYLEMUQPxvhA161505FUYcBC%2BoZ8zqA5ppJ7%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c45c30b527-OSL
alt-svc: h3=":443"; ma=86400
ocsp.buypass.com/
23.33.119.18 1.7 kB IP 23.33.119.18:0
ASN #20940 Akamai International B.V.
Hash 20ff292f34464c094f0e5b0f83c57f69
eadde6975a37e22a42a50ac26dc3f3858cfa3116
c7e6a9122752ac2ed5c31217b9ca9bb3389fce6de768eb62feddded05ec29df2
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 10515691-3b25-4d20-9313-bc4be820823d
Content-Length: 1704
Date: Sat, 28 Oct 2023 18:35:03 GMT
Connection: keep-alive
townrusisedprivat.info/VVA4dTQ0MlsYCzRtWlNBJzwFUAYTdQozUDg9Qh5SMWgKAlUsPhYWWDolXBNGOj5MW1owJB1HchMecBJNA2BMLXJkJ0ARcRQCbhhELBJTHnwPCAgmcT4VDD9hBxZpRwAsEWsZfBQCdhJlFwFSOGIXFnkbcTsGai9iND0JJ3I5FkkQXBwKbh9iZxF+QHwbPmIvcmU3HUd2H2FfL3JnBXY0YgwTWxtfEAV9BVkwOH45Vx0aDTd2BzJ3IQEYCGk3WhgnQDpWAhYdR3IQBUwCVzs7fTZfByldPWIfEVVAWBcWfS1uDSRsPWIQaHI3ch40fyMDFwVfNm47I34tZXgSVjliZRtuD3E+BH5FdRAIVzNnByhWF2ETFnkCEj8jVxtEaCEBDAEEJW4tYG0
54.230.111.78200 OK 1.2 kB URL GET HTTP/2 townrusisedprivat.info/VVA4dTQ0MlsYCzRtWlNBJzwFUAYTdQozUDg9Qh5SMWgKAlUsPhYWWDolXBNGOj5MW1owJB1HchMecBJNA2BMLXJkJ0ARcRQCbhhELBJTHnwPCAgmcT4VDD9hBxZpRwAsEWsZfBQCdhJlFwFSOGIXFnkbcTsGai9iND0JJ3I5FkkQXBwKbh9iZxF+QHwbPmIvcmU3HUd2H2FfL3JnBXY0YgwTWxtfEAV9BVkwOH45Vx0aDTd2BzJ3IQEYCGk3WhgnQDpWAhYdR3IQBUwCVzs7fTZfByldPWIfEVVAWBcWfS1uDSRsPWIQaHI3ch40fyMDFwVfNm47I34tZXgSVjliZRtuD3E+BH5FdRAIVzNnByhWF2ETFnkCEj8jVxtEaCEBDAEEJW4tYG0
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2994), with no line terminators
Hash 5ae32682230b9edbca1a22a621b57e3f
7796ec3abea0ab0fc710073be23a387cf32e98de
cca999d9c48e49faa3e7dd96c615a32f5c1683d5400c86298e230fa29ced5af4
GET /VVA4dTQ0MlsYCzRtWlNBJzwFUAYTdQozUDg9Qh5SMWgKAlUsPhYWWDolXBNGOj5MW1owJB1HchMecBJNA2BMLXJkJ0ARcRQCbhhELBJTHnwPCAgmcT4VDD9hBxZpRwAsEWsZfBQCdhJlFwFSOGIXFnkbcTsGai9iND0JJ3I5FkkQXBwKbh9iZxF+QHwbPmIvcmU3HUd2H2FfL3JnBXY0YgwTWxtfEAV9BVkwOH45Vx0aDTd2BzJ3IQEYCGk3WhgnQDpWAhYdR3IQBUwCVzs7fTZfByldPWIfEVVAWBcWfS1uDSRsPWIQaHI3ch40fyMDFwVfNm47I34tZXgSVjliZRtuD3E+BH5FdRAIVzNnByhWF2ETFnkCEj8jVxtEaCEBDAEEJW4tYG0 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1153
date: Sat, 28 Oct 2023 18:35:03 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bPf7h_IVvRzDeEZS47KyxQ8aZ8yEl-0fQaBx03v8Z-UEOhRDwERlAw==
X-Firefox-Spdy: h2
townrusisedprivat.info/dzhjc1AWWgAebxYFAVUlBVReVmIxHVE1NBpVGRg2EwBRBDEOVk0QPBhNBxUiGFYXXT4STEZBFj1sDjUGIX0EBxQdSxoXKhhxLiQ8D14lNTkVcA8cEw5hVDk6QlshCxZAXRQqKD5CWzUCDn0WPxg5agAJNwdxIik/FFFTFBEaUA8ROU9+LUE8T1khJjw4QS0JFR1PCiM5Jm0tMGRAaCYQNzlgNhkUHgBaORM+eQA0CThdU0o8FGATVmI1azBCPBJvFyAWRH5VFTdHACwZYEVqJBc7OnA5KxMaclsSYT5gACsgUgohNik5QAYEaSZiNEI9EVMLBAoZXxMxFFphRkEWPQoXJxVFYlcVYTFUOSs4UgolIRcTUy8aMyN1Jzo+OVMxHRUZVEZBFiJwFxgyHUwAKRFRUhAcPgcFMTZjQl8HBCc8
54.230.111.78200 OK 1.2 kB URL GET HTTP/2 townrusisedprivat.info/dzhjc1AWWgAebxYFAVUlBVReVmIxHVE1NBpVGRg2EwBRBDEOVk0QPBhNBxUiGFYXXT4STEZBFj1sDjUGIX0EBxQdSxoXKhhxLiQ8D14lNTkVcA8cEw5hVDk6QlshCxZAXRQqKD5CWzUCDn0WPxg5agAJNwdxIik/FFFTFBEaUA8ROU9+LUE8T1khJjw4QS0JFR1PCiM5Jm0tMGRAaCYQNzlgNhkUHgBaORM+eQA0CThdU0o8FGATVmI1azBCPBJvFyAWRH5VFTdHACwZYEVqJBc7OnA5KxMaclsSYT5gACsgUgohNik5QAYEaSZiNEI9EVMLBAoZXxMxFFphRkEWPQoXJxVFYlcVYTFUOSs4UgolIRcTUy8aMyN1Jzo+OVMxHRUZVEZBFiJwFxgyHUwAKRFRUhAcPgcFMTZjQl8HBCc8
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3013), with no line terminators
Hash 8db9e88429a7aaadfc9cea4552c26732
3c594c4df83282387ef521470a52a05dcee25cb8
772961df5c907c5a00a04050469fae1a2269471234fce75e31af08894f52fa39
GET /dzhjc1AWWgAebxYFAVUlBVReVmIxHVE1NBpVGRg2EwBRBDEOVk0QPBhNBxUiGFYXXT4STEZBFj1sDjUGIX0EBxQdSxoXKhhxLiQ8D14lNTkVcA8cEw5hVDk6QlshCxZAXRQqKD5CWzUCDn0WPxg5agAJNwdxIik/FFFTFBEaUA8ROU9+LUE8T1khJjw4QS0JFR1PCiM5Jm0tMGRAaCYQNzlgNhkUHgBaORM+eQA0CThdU0o8FGATVmI1azBCPBJvFyAWRH5VFTdHACwZYEVqJBc7OnA5KxMaclsSYT5gACsgUgohNik5QAYEaSZiNEI9EVMLBAoZXxMxFFphRkEWPQoXJxVFYlcVYTFUOSs4UgolIRcTUy8aMyN1Jzo+OVMxHRUZVEZBFiJwFxgyHUwAKRFRUhAcPgcFMTZjQl8HBCc8 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1169
date: Sat, 28 Oct 2023 18:35:03 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jiUGJlRqUTx0EEd6UslwolDCrpwL1ptq9wlKYgyhgrhm2IOMXWIqaA==
X-Firefox-Spdy: h2
townrusisedprivat.info/MHFOWWZREy00WVFMLH8TQh1zfFR2VHwfAl0cNDIAVEl8LgdJH2A6Cl8EKj8UXx86dwhVBWtrIEglGz01VCkHLC10BhoNMlsEADIOfBd9DwthGj4rKmM0LxEiAUcAHQJxMyQcVn00BxA2ZAIqEFRDCwUbIGAXGRxDAjMIGxFBFCAIN3gye28/ATwaEjVmBx8PNwU/NGkDZAspKShYMBsTJVtCCw83BDsjYT94JS0sNlgaGjguZSQfHx4JKCMbIGcbGGs/ATMMHVR6FhwLUls6HTooZkJ3ai1bQAscCHYcGxwjYCgjGyBxNTowP2QjCj8+BUkcDxJfFRl0L2M3N20VYCcMGCUDJycLI3pIKjQsdSd9YFV+MzkYLXM0dx0wVFR8HydnPwsIVH5CKhgkYBcPfwxDHiApW1YzfBIQVjR+HBxZGR8
54.230.111.78200 OK 1.2 kB URL GET HTTP/2 townrusisedprivat.info/MHFOWWZREy00WVFMLH8TQh1zfFR2VHwfAl0cNDIAVEl8LgdJH2A6Cl8EKj8UXx86dwhVBWtrIEglGz01VCkHLC10BhoNMlsEADIOfBd9DwthGj4rKmM0LxEiAUcAHQJxMyQcVn00BxA2ZAIqEFRDCwUbIGAXGRxDAjMIGxFBFCAIN3gye28/ATwaEjVmBx8PNwU/NGkDZAspKShYMBsTJVtCCw83BDsjYT94JS0sNlgaGjguZSQfHx4JKCMbIGcbGGs/ATMMHVR6FhwLUls6HTooZkJ3ai1bQAscCHYcGxwjYCgjGyBxNTowP2QjCj8+BUkcDxJfFRl0L2M3N20VYCcMGCUDJycLI3pIKjQsdSd9YFV+MzkYLXM0dx0wVFR8HydnPwsIVH5CKhgkYBcPfwxDHiApW1YzfBIQVjR+HBxZGR8
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3021), with no line terminators
Hash 0e0fd88d7f097e23fa948f61134095d3
3ebe0a112213ab6a7d3b3d1e63de5a02af729f21
9bd3527f898fde822cb2aa23522a60c452cab0668cf7e3d713ad2c08931685e6
GET /MHFOWWZREy00WVFMLH8TQh1zfFR2VHwfAl0cNDIAVEl8LgdJH2A6Cl8EKj8UXx86dwhVBWtrIEglGz01VCkHLC10BhoNMlsEADIOfBd9DwthGj4rKmM0LxEiAUcAHQJxMyQcVn00BxA2ZAIqEFRDCwUbIGAXGRxDAjMIGxFBFCAIN3gye28/ATwaEjVmBx8PNwU/NGkDZAspKShYMBsTJVtCCw83BDsjYT94JS0sNlgaGjguZSQfHx4JKCMbIGcbGGs/ATMMHVR6FhwLUls6HTooZkJ3ai1bQAscCHYcGxwjYCgjGyBxNTowP2QjCj8+BUkcDxJfFRl0L2M3N20VYCcMGCUDJycLI3pIKjQsdSd9YFV+MzkYLXM0dx0wVFR8HydnPwsIVH5CKhgkYBcPfwxDHiApW1YzfBIQVjR+HBxZGR8 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1175
date: Sat, 28 Oct 2023 18:35:03 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GCorDAKy-zEO3DG2Mmt-i8hYa8vRMSHQ5G3FbPcE-Sp2tKRybhLN9A==
X-Firefox-Spdy: h2
limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
212.117.190.201200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
UID=23102813351613c5bd6e6141ccbc27a4503c; Path=/; Expires=Sat, 30 Nov 2024 18:35:03 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
wivyiz.com/er?a=1
185.162.85.3200 OK 0 B IP 185.162.85.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectwivyiz.com
FingerprintED:72:F6:28:A2:AF:95:6C:37:2D:EA:F6:3B:C6:BC:EC:A1:51:A6:DF
ValidityThu, 21 Sep 2023 07:58:24 GMT - Wed, 20 Dec 2023 07:58:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /er?a=1 HTTP/1.1
Host: wivyiz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 28 Oct 2023 18:35:03 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
212.117.190.201200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sat, 30 Nov 2024 18:35:04 GMT; HttpOnly; Secure; SameSite=None
UID=2310281335e75f4a7b646d405484c0161028; Path=/; Expires=Sat, 30 Nov 2024 18:35:04 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ivedmanyyea.org/SlRKSW1layk6UBM5Jh08eQYbHDo6ZBsfOxAOeRMuHwJ7Jwh6DWw9BC5pc3tffmNybx0jMHd6X2wnPigZPyd3e116Y2wgAyw7d3tLPGl6Z1RkZmR8Sz9pe28ZOjUtdFxsJD49AXdlfHBVf2VyeF1+Y3t4
104.21.11.156204 No Content 0 B URL POST HTTP/3 ivedmanyyea.org/SlRKSW1layk6UBM5Jh08eQYbHDo6ZBsfOxAOeRMuHwJ7Jwh6DWw9BC5pc3tffmNybx0jMHd6X2wnPigZPyd3e116Y2wgAyw7d3tLPGl6Z1RkZmR8Sz9pe28ZOjUtdFxsJD49AXdlfHBVf2VyeF1+Y3t4
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /SlRKSW1layk6UBM5Jh08eQYbHDo6ZBsfOxAOeRMuHwJ7Jwh6DWw9BC5pc3tffmNybx0jMHd6X2wnPigZPyd3e116Y2wgAyw7d3tLPGl6Z1RkZmR8Sz9pe28ZOjUtdFxsJD49AXdlfHBVf2VyeF1+Y3t4 HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:04 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAnUiubRhT1MfVzfTXLOREHzqwtk1ODnXimHvqHUpnEKTKgZ%2BZjUIRnF0vujIKU3JTXKbUMK2FBmxzxmNtDVpZFCR2vJ3fVF7MH4DXuwUHN1hVCskwnJFOUBv3pXbyJJi7Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c57d59b527-OSL
alt-svc: h3=":443"; ma=86400
limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
212.117.190.201200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
FingerprintB4:97:5A:E0:89:F4:2A:6B:FF:80:77:49:35:55:95:AD:70:3B:79:53
ValidityWed, 31 May 2023 15:31:47 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1808151/?pb=fb7a5761f84b13eb8004a91bb5a1e7201698525303&psp=kjJN0ZiNPJoCP4b72l4YFy60spfWbEddvGNa0WRDxlJnHLiYbc5Vhc0yhfQC6uyWIykLi-NoWHNyOnBu45cNZp1bYWaPTvBcnWeqqM2gD0qgycFZrustO6pvKggTSXCEC0wJtFQMr1XtEwMTWZ1IPWiUJG_zdbiDCzS6AmL0oMpK9ZrEYjL1_E8N9nrDDc2o5rMlmFlrYoSHg9aA5BNcdLitlfWMhTJzj7V9lMaghwld7Pd3A1ucEYN38YsXWQ_RFBt29lmdbh_yyFPhGfhwlC7BzDHcUkacNj-mnf-fg-xCm36cXYY_pqfSq2d2VlUKCCyERKOsqZrQOGHpKT69tdk6iQEaMi5GyiymrzgEumElnM7PUy-4CBM3nbQTC7pN5Zcp59oH00-MeIw9KbL8vHi7-fQvZzuZgsJ14aIKyX1dGb9GPS8F85VMzRnnXSHUfvdoD09M_wfcwKWXt5lE6s3b-H4YW_OveOL3mXa9u8AhTqFYmRG0nd5gNk1GdtVRpDyJH7B5u-fhw2h3_sYciYEenUmDmHDOfJ3zLPatrI7J8NyamipEnMMD2y7Gk4ktMtTqWUHdGKokC8uSGM6TfZqkPd1wKhKLClXy0yHlsYPMFrF64kbsJZop7ecqsAGBk_Z6Fl-CrUofnuMrFdpSuqew90RBcV27quq0yVt3R51FLnCuL9k5Zp9PrfobGzP_5UCAbjs4mY-iozfpefbPcWJHBtTWrzifzY1l594rgILK6P8si_1tp4cbIPIWhUDv1VTIEDRmIT1SWtrrGS2kjJeW1_xtWdIV4pJRYlzqV-Vn6e1P9XlSr3whQ8XLBqDz_SwwKQ5yiR3MAkw53-AG29f1EgmQj57zzgMneCXepHLIK1CA0sZXhEG-zCts4075SZ-csYj7XQ1t5sk5AWxopkw73mAMtD-b-f3M0aAFWND_F2lpb2tKFbRwMcReO4T6TfXzDYz6rKf99EtMbHrNgMuLjyeK6_d6uHgbAyPc6wqG9kkK&im=1&cb=_cl3n8hx9p6w4ynql2ek5sy&nojs=0&abvar=0&febuild=1.0.174&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4051963756477952&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Cookie: CHCK=1; UID=2310281335e75f4a7b646d405484c0161028
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sat, 30 Nov 2024 18:35:04 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8060e63b485a197d3277e3f8eb5f9bf6
95b2258cc1145843bfd03bfb90539c52c7aec2d7
301206c96d1b9ee174afd68e9d2f82384504d22eac1759ee1a483194dee13ef0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Oct 2023 18:35:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8060e63b485a197d3277e3f8eb5f9bf6
95b2258cc1145843bfd03bfb90539c52c7aec2d7
301206c96d1b9ee174afd68e9d2f82384504d22eac1759ee1a483194dee13ef0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Oct 2023 18:35:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
townrusisedprivat.info/utx?cb=e6277AZesNph&top=en.jav321.com&tid=920781
54.230.111.78204 No Content 0 B URL GET HTTP/2 townrusisedprivat.info/utx?cb=e6277AZesNph&top=en.jav321.com&tid=920781
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=e6277AZesNph&top=en.jav321.com&tid=920781 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 28 Oct 2023 18:35:04 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://en.jav321.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sat, 28 Oct 2023 18:36:04 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RN6iS7jnIcIyFXz7lrsSWs4vpYOfptoEv4doDAJrcNU2EaZRRi-SXA==
X-Firefox-Spdy: h2
townrusisedprivat.info/utx?cb=n8fGhlwsjNI4&top=en.jav321.com&tid=922478
54.230.111.78204 No Content 0 B URL GET HTTP/2 townrusisedprivat.info/utx?cb=n8fGhlwsjNI4&top=en.jav321.com&tid=922478
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=n8fGhlwsjNI4&top=en.jav321.com&tid=922478 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 28 Oct 2023 18:35:04 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://en.jav321.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sat, 28 Oct 2023 18:36:04 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kunjZ23Sm-33yo8nw4QxLwQqkGchCSQ0QvCMo8cmU-wdW7TdUWKdPQ==
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint86:7B:0F:9A:A8:81:46:14:E8:56:C2:45:8B:8E:FF:52:DA:1C:F4:18
ValidityMon, 09 Oct 2023 08:11:28 GMT - Mon, 01 Jan 2024 08:11:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:xJiUOYjQ2DnOFq0AhEpnLA0dLJ95QA:PciOu3NHBW4SQlNr; Expires=Mon, 27-Oct-2025 18:35:04 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AVQVeyxKdqrVyXKe4TSocQYWBwWDLqG1ukZeeiWmqqk8eBvwzr0zn8_SIv7hDfPRcLQvtDAQrd29Sw
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-o2qz908OFymEDvbzl2wH2w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmmzkfd82wayn.cloudfront.net/xTUdSdXIuKDwTTTkuNkhLf3VmQkprLSEaHD16NDdABjE0MEIIPTsdI2szKBFPfWE+FBwqenQQHC56Y1MTKSVvQVQ5Nz0eTzgpNhAUJCk3EVQ4Jm8YHTcuPhkTaHUUQFx9YmBFWjV2Y1BBD2JgRR4kKScNV393Kk1EEnFmUEEPYmBFADtiYTRDfX58RVtodW-ISFy4sPVBAC3ViREJ9dmJEV393NBwAKCE9DVd/AWNEQ2N3dABPfA
143.204.42.115200 OK 346 B URL GET HTTP/2 dmmzkfd82wayn.cloudfront.net/xTUdSdXIuKDwTTTkuNkhLf3VmQkprLSEaHD16NDdABjE0MEIIPTsdI2szKBFPfWE+FBwqenQQHC56Y1MTKSVvQVQ5Nz0eTzgpNhAUJCk3EVQ4Jm8YHTcuPhkTaHUUQFx9YmBFWjV2Y1BBD2JgRR4kKScNV393Kk1EEnFmUEEPYmBFADtiYTRDfX58RVtodW-ISFy4sPVBAC3ViREJ9dmJEV393NBwAKCE9DVd/AWNEQ2N3dABPfA
IP 143.204.42.115:443
Requested by https://townrusisedprivat.info/MHFOWWZREy00WVFMLH8TQh1zfFR2VHwfAl0cNDIAVEl8LgdJH2A6Cl8EKj8UXx86dwhVBWtrIEglGz01VCkHLC10BhoNMlsEADIOfBd9DwthGj4rKmM0LxEiAUcAHQJxMyQcVn00BxA2ZAIqEFRDCwUbIGAXGRxDAjMIGxFBFCAIN3gye28/ATwaEjVmBx8PNwU/NGkDZAspKShYMBsTJVtCCw83BDsjYT94JS0sNlgaGjguZSQfHx4JKCMbIGcbGGs/ATMMHVR6FhwLUls6HTooZkJ3ai1bQAscCHYcGxwjYCgjGyBxNTowP2QjCj8+BUkcDxJfFRl0L2M3N20VYCcMGCUDJycLI3pIKjQsdSd9YFV+MzkYLXM0dx0wVFR8HydnPwsIVH5CKhgkYBcPfwxDHiApW1YzfBIQVjR+HBxZGR8
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (445), with no line terminators
Hash e23ec48ab717cefe1b12d75bedad4dbc
a20a1dced924643de1d9e886da2a3d80f89aea83
5910189247f46ebd6f9758596ecc35700a4b8a246f6afd92afd92fd3ea57dfb2
GET /xTUdSdXIuKDwTTTkuNkhLf3VmQkprLSEaHD16NDdABjE0MEIIPTsdI2szKBFPfWE+FBwqenQQHC56Y1MTKSVvQVQ5Nz0eTzgpNhAUJCk3EVQ4Jm8YHTcuPhkTaHUUQFx9YmBFWjV2Y1BBD2JgRR4kKScNV393Kk1EEnFmUEEPYmBFADtiYTRDfX58RVtodW-ISFy4sPVBAC3ViREJ9dmJEV393NBwAKCE9DVd/AWNEQ2N3dABPfA HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://townrusisedprivat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 346
date: Sat, 28 Oct 2023 18:35:04 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WiUpqUPYtvH3ZlOwEsYux2qZseBAZPtc8v1pIErpNJW5C-gAYfXP0A==
X-Firefox-Spdy: h2
dmmzkfd82wayn.cloudfront.net/JTmFVVEgtDjsydzoIMWlxfFFibHloCyY7Jj5cBxF7ewYxIz8FRyEuLHNRczgpIAZoci0gAmhlbi8FN2l8aBUlOyNzEjwiPiQUNC47PEcgNXUjDi89JCIAcGYOe09lcXp+SS1leWtSF3F6fg08Oj02RGdkMHZXCmJ8a1IXcXp+EyNxew9QZW1mfkhwZngpBD-Y/J2tTE2Z4f1FlZXh/RGdkLicTMDInNkRnEnl/UHtkbjtcZA
143.204.42.115 523 B URL dmmzkfd82wayn.cloudfront.net/JTmFVVEgtDjsydzoIMWlxfFFibHloCyY7Jj5cBxF7ewYxIz8FRyEuLHNRczgpIAZoci0gAmhlbi8FN2l8aBUlOyNzEjwiPiQUNC47PEcgNXUjDi89JCIAcGYOe09lcXp+SS1leWtSF3F6fg08Oj02RGdkMHZXCmJ8a1IXcXp+EyNxew9QZW1mfkhwZngpBD-Y/J2tTE2Z4f1FlZXh/RGdkLicTMDInNkRnEnl/UHtkbjtcZA
IP 143.204.42.115:0
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (713), with no line terminators
Hash 39f19eb33a2a0701ba4e03533bff4e40
121b85c91370e7c694dfa5bf5b27c9d2e35a80a6
43ef36a069734dc8162f33b74683b435784224f7c7601ad1bd077adf81cba83f
GET /JTmFVVEgtDjsydzoIMWlxfFFibHloCyY7Jj5cBxF7ewYxIz8FRyEuLHNRczgpIAZoci0gAmhlbi8FN2l8aBUlOyNzEjwiPiQUNC47PEcgNXUjDi89JCIAcGYOe09lcXp+SS1leWtSF3F6fg08Oj02RGdkMHZXCmJ8a1IXcXp+EyNxew9QZW1mfkhwZngpBD-Y/J2tTE2Z4f1FlZXh/RGdkLicTMDInNkRnEnl/UHtkbjtcZA HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://townrusisedprivat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 523
date: Sat, 28 Oct 2023 18:35:04 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5jn-wHzDjhOtNJASIasYOzVDW3qWYyJFumQLdo193qdZoUe1Ro_15A==
X-Firefox-Spdy: h2
dmmzkfd82wayn.cloudfront.net/FNHgyV0tXF1wxdEARVmpyBkkHZX0SEkE4JURFQ24yASlHARNgQBQjMVBFAnEnVRZVam1RFlFqehIZVjV2AF5HNnZZF0g+J1gZF2UNAVYCcnkEUEpmehFLcHJ5BBRbOT5MXQBnMwxObWF/EUtwcnkECkRyeHVJAm5lBFEXZXtTHVE8JBFKdGV7BUgCZnsFXQ-BnLV0KVzEkTF0AEXoFSRxnbUFFAw
143.204.42.115 192 B URL dmmzkfd82wayn.cloudfront.net/FNHgyV0tXF1wxdEARVmpyBkkHZX0SEkE4JURFQ24yASlHARNgQBQjMVBFAnEnVRZVam1RFlFqehIZVjV2AF5HNnZZF0g+J1gZF2UNAVYCcnkEUEpmehFLcHJ5BBRbOT5MXQBnMwxObWF/EUtwcnkECkRyeHVJAm5lBFEXZXtTHVE8JBFKdGV7BUgCZnsFXQ-BnLV0KVzEkTF0AEXoFSRxnbUFFAw
IP 143.204.42.115:0
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash ffc251a8200fd58416a70b3dd384207e
e4b749b1b8119c6acc90a23578b7734e44a9737a
9fc90c4dd4c6c86bb781778b1888cb627b8932654ab21320f4cac6df2b598403
GET /FNHgyV0tXF1wxdEARVmpyBkkHZX0SEkE4JURFQ24yASlHARNgQBQjMVBFAnEnVRZVam1RFlFqehIZVjV2AF5HNnZZF0g+J1gZF2UNAVYCcnkEUEpmehFLcHJ5BBRbOT5MXQBnMwxObWF/EUtwcnkECkRyeHVJAm5lBFEXZXtTHVE8JBFKdGV7BUgCZnsFXQ-BnLV0KVzEkTF0AEXoFSRxnbUFFAw HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://townrusisedprivat.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 192
date: Sat, 28 Oct 2023 18:35:04 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yA7fEFKPTSWFenFAbGsGh_sTu9ZFM9bljXGMM_aTxHtFkhwzzywrlw==
X-Firefox-Spdy: h2
wivyiz.com/cuload?a=1&e=aeyJwaWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsImQiOiJqYXYzMjEuY29tIiwibGkiOjF9&tz=0&if=0&u=aHR0cHM6Ly9lbi5qYXYzMjEuY29tL3NlYXJjaGh0dHBzOi9qYXZkYi5jb20v
185.162.85.3200 OK 142 B URL GET HTTP/2 wivyiz.com/cuload?a=1&e=aeyJwaWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsImQiOiJqYXYzMjEuY29tIiwibGkiOjF9&tz=0&if=0&u=aHR0cHM6Ly9lbi5qYXYzMjEuY29tL3NlYXJjaGh0dHBzOi9qYXZkYi5jb20v
IP 185.162.85.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectwivyiz.com
FingerprintED:72:F6:28:A2:AF:95:6C:37:2D:EA:F6:3B:C6:BC:EC:A1:51:A6:DF
ValidityThu, 21 Sep 2023 07:58:24 GMT - Wed, 20 Dec 2023 07:58:23 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 57fe6e51abeaf9d28e6a29f4178a1b3f
44146a7a156c8b4b9b3d5e7e51f49f12e5629774
ed51ffd8ff8da87a0940f2fe183ef9bdc3a74688e475112f957303f86dc60577
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cuload?a=1&e=aeyJwaWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsImQiOiJqYXYzMjEuY29tIiwibGkiOjF9&tz=0&if=0&u=aHR0cHM6Ly9lbi5qYXYzMjEuY29tL3NlYXJjaGh0dHBzOi9qYXZkYi5jb20v HTTP/1.1
Host: wivyiz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 62a93429f711ff7a6b706fb3cd280910
85c7f5c7f53d951c47bb718d2168451400813a65
81148d389fff641c1145d3bf75b16cd6ebacf3c4cd5464025f98211abdb0add8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Oct 2023 18:35:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AVQVeyxKdqrVyXKe4TSocQYWBwWDLqG1ukZeeiWmqqk8eBvwzr0zn8_SIv7hDfPRcLQvtDAQrd29Sw
142.250.74.109302 Found 400 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AVQVeyxKdqrVyXKe4TSocQYWBwWDLqG1ukZeeiWmqqk8eBvwzr0zn8_SIv7hDfPRcLQvtDAQrd29Sw
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint86:7B:0F:9A:A8:81:46:14:E8:56:C2:45:8B:8E:FF:52:DA:1C:F4:18
ValidityMon, 09 Oct 2023 08:11:28 GMT - Mon, 01 Jan 2024 08:11:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (396)
Hash d5d6974f2564fa22f391ec7b774d5c9c
7e6ca1d57f28ad3c86f5de6fedd4366a465e9389
b658e65f3c97471cecfbda96ff9fc85aeb34342e72a1f57a5ff710d21fa6953a
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AVQVeyxKdqrVyXKe4TSocQYWBwWDLqG1ukZeeiWmqqk8eBvwzr0zn8_SIv7hDfPRcLQvtDAQrd29Sw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:Gx_HkzjiQXMLSGmS2T9ge7m7NaErCg:KcM3Qr8m7FSieVdm;Path=/;Expires=Mon, 27-Oct-2025 18:35:04 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AVQVeywci56lvSI9G8bMlJN3Nqb79bMFVhR2p4L5xSryJLGtxcykL-bDKNOU88Gy9JpYmfRMyK0q1Q&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1928576169%3A1698518104449913&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-ZZ-kRAYKSaadvCZ18Mg0tw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 400
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AVQVeyzmvt8u73B_8pBVOdVtNM1a6wm1bJnq85qiJYUAgYEkLnVz3oVYhUIOXIH1oLJFkD-wJASUnA
142.250.74.109302 Found 406 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AVQVeyzmvt8u73B_8pBVOdVtNM1a6wm1bJnq85qiJYUAgYEkLnVz3oVYhUIOXIH1oLJFkD-wJASUnA
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint86:7B:0F:9A:A8:81:46:14:E8:56:C2:45:8B:8E:FF:52:DA:1C:F4:18
ValidityMon, 09 Oct 2023 08:11:28 GMT - Mon, 01 Jan 2024 08:11:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (399)
Hash c7d559024c0cdef8d4fb095d0d7a27aa
3eb03d2acb39cc37b80520c0cca53411283252b3
62d6a42dc3d6f0cfa88855e348fd35c039c519a435fdea30cb0ddecce53371a9
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AVQVeyzmvt8u73B_8pBVOdVtNM1a6wm1bJnq85qiJYUAgYEkLnVz3oVYhUIOXIH1oLJFkD-wJASUnA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:7elso3GUq_hmDPfPXn6Y_Vp2Io90RA:O1DXXzYRoalJSD3P;Path=/;Expires=Mon, 27-Oct-2025 18:35:04 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AVQVeyzzM8_Eo9htEUsHRxN91fgaqcUUl6UAnYf3TFOIcA2X9BLwl3D14AroAXKUmU4zS_4Mz86-Vw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1829444437%3A1698518104486054&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-BO9Eo1Na_t2smdYzA3IgZg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 406
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
townrusisedprivat.info/floater?cs=dGp2WUVGUk9ucENaQmxzR15CYXc&abt=0&red=1&sm=83&k=&v=0.9.2.5&sts=0&prn=0&emb=0&tid=922478&rxy=1280_1024&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fen.jav321.com%2Fsearchhttps%3A%2Fjavdb.com%2F%3Flocale%3Denhttps%3A%2F%2Ftranslate.google.comiam.us-iso-east-1.c2s.ic.govinvalid&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&aa=oi3_&_SJdq=1698518104713&crc=1
54.230.111.78200 OK 1.9 kB URL GET HTTP/2 townrusisedprivat.info/floater?cs=dGp2WUVGUk9ucENaQmxzR15CYXc&abt=0&red=1&sm=83&k=&v=0.9.2.5&sts=0&prn=0&emb=0&tid=922478&rxy=1280_1024&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fen.jav321.com%2Fsearchhttps%3A%2Fjavdb.com%2F%3Flocale%3Denhttps%3A%2F%2Ftranslate.google.comiam.us-iso-east-1.c2s.ic.govinvalid&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&aa=oi3_&_SJdq=1698518104713&crc=1
IP 54.230.111.78:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subjecttownrusisedprivat.info
Fingerprint71:C6:FA:30:36:13:AF:25:A2:D9:0E:8D:1C:99:A3:26:2D:34:ED:D9
ValidityThu, 12 Oct 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (4079), with no line terminators
Hash 8bdff6741e23c94fd19637319b2eb231
bee2fcac97abb0714c959c33570c86f34f341052
9e7ca5197fb82413676c174a90d0b3f927b0d773a5873cc2f706680e73511a86
GET /floater?cs=dGp2WUVGUk9ucENaQmxzR15CYXc&abt=0&red=1&sm=83&k=&v=0.9.2.5&sts=0&prn=0&emb=0&tid=922478&rxy=1280_1024&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&ref=https%3A%2F%2Fen.jav321.com%2Fsearchhttps%3A%2Fjavdb.com%2F%3Flocale%3Denhttps%3A%2F%2Ftranslate.google.comiam.us-iso-east-1.c2s.ic.govinvalid&jst=0&enr=0&lcua=mozilla%2F5.0%20(x11%3B%20linux%20x86_64%3B%20rv%3A109.0)%20gecko%2F20100101%20firefox%2F111.0&tzd=0&uloc=&if=0&aa=oi3_&_SJdq=1698518104713&crc=1 HTTP/1.1
Host: townrusisedprivat.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 1861
date: Sat, 28 Oct 2023 18:35:04 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://en.jav321.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=a3b63695-cee0-452c-9011-2e2cec2afa5f
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -ppdHslqlYQiimTAcsBP9yZa4ggaYm7S-G6yoylu5GYRGky8uI8lGQ==
X-Firefox-Spdy: h2
wivyiz.com/trt?a=1&t=986
185.162.85.3200 OK 0 B IP 185.162.85.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectwivyiz.com
FingerprintED:72:F6:28:A2:AF:95:6C:37:2D:EA:F6:3B:C6:BC:EC:A1:51:A6:DF
ValidityThu, 21 Sep 2023 07:58:24 GMT - Wed, 20 Dec 2023 07:58:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /trt?a=1&t=986 HTTP/1.1
Host: wivyiz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 28 Oct 2023 18:35:04 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ivedmanyyea.org/QVJHa1dubSQYahM/Ny4FBRR0MzkPKgUjYhIxHyodJQQzWDEQA2EfPiVvfllndmp2TScoNnpacTImJh8iMm90W2dwdC4FMS5vd1tncHQxVmZvYXNFZHV8d00ifGNhHycgNXpacTEmMwdqcGR+U2JwanZbYndndA
104.21.11.156204 No Content 0 B URL POST HTTP/3 ivedmanyyea.org/QVJHa1dubSQYahM/Ny4FBRR0MzkPKgUjYhIxHyodJQQzWDEQA2EfPiVvfllndmp2TScoNnpacTImJh8iMm90W2dwdC4FMS5vd1tncHQxVmZvYXNFZHV8d00ifGNhHycgNXpacTEmMwdqcGR+U2JwanZbYndndA
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /QVJHa1dubSQYahM/Ny4FBRR0MzkPKgUjYhIxHyodJQQzWDEQA2EfPiVvfllndmp2TScoNnpacTImJh8iMm90W2dwdC4FMS5vd1tncHQxVmZvYXNFZHV8d00ifGNhHycgNXpacTEmMwdqcGR+U2JwanZbYndndA HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:04 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r6tgavYsLs8aMpcWizF3MLwMhzR1aKtSWgYpnxEgM4%2Bd4HFOadbz8If4CV6oClmTCCVVfeXP3jbzuUSmJvNbHde5JbZcy0SFIQm8sl7AkoNWrBaGwOPRsJdCzMY24E9t2%2Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546cb4bacb527-OSL
alt-svc: h3=":443"; ma=86400
ivedmanyyea.org/QnpsT2VtRQ88WBE+BAEHBSBaDi0QGDl8XQsfOiM0Jw0UejMEK0o7DCZHVX1Xdk1UaRUrHlF8V2QJGC4RNwlRfVVyT0omCyQVUX1Vckxcf1RxSEl4JioOGD8WZ0ktalcEX14JHS8WQi0MMB5BKAA2Gw4mAWwUCTtAcDwYJxAvGAIuDC5fXwkMZ0koBw4MEhodKTYZIns6cl9eeRVnSSh+U3tCWX5dc0pYYVdwS1l5U2dIWiYIJQ5JfCErGQMhQHU5VXlTekteEFB0SVl+VXpfWwxXdkhdeVRxTV19V3JIXndTcE1ZaRN/SkJ2S3BUWWkQf05VeVdxQlt2VHpPWHlXcVwYPwQlR11pFTYOAHJUdENUelR6S1x4U3pJ
104.21.11.156204 No Content 0 B URL POST HTTP/3 ivedmanyyea.org/QnpsT2VtRQ88WBE+BAEHBSBaDi0QGDl8XQsfOiM0Jw0UejMEK0o7DCZHVX1Xdk1UaRUrHlF8V2QJGC4RNwlRfVVyT0omCyQVUX1Vckxcf1RxSEl4JioOGD8WZ0ktalcEX14JHS8WQi0MMB5BKAA2Gw4mAWwUCTtAcDwYJxAvGAIuDC5fXwkMZ0koBw4MEhodKTYZIns6cl9eeRVnSSh+U3tCWX5dc0pYYVdwS1l5U2dIWiYIJQ5JfCErGQMhQHU5VXlTekteEFB0SVl+VXpfWwxXdkhdeVRxTV19V3JIXndTcE1ZaRN/SkJ2S3BUWWkQf05VeVdxQlt2VHpPWHlXcVwYPwQlR11pFTYOAHJUdENUelR6S1x4U3pJ
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /QnpsT2VtRQ88WBE+BAEHBSBaDi0QGDl8XQsfOiM0Jw0UejMEK0o7DCZHVX1Xdk1UaRUrHlF8V2QJGC4RNwlRfVVyT0omCyQVUX1Vckxcf1RxSEl4JioOGD8WZ0ktalcEX14JHS8WQi0MMB5BKAA2Gw4mAWwUCTtAcDwYJxAvGAIuDC5fXwkMZ0koBw4MEhodKTYZIns6cl9eeRVnSSh+U3tCWX5dc0pYYVdwS1l5U2dIWiYIJQ5JfCErGQMhQHU5VXlTekteEFB0SVl+VXpfWwxXdkhdeVRxTV19V3JIXndTcE1ZaRN/SkJ2S3BUWWkQf05VeVdxQlt2VHpPWHlXcVwYPwQlR11pFTYOAHJUdENUelR6S1x4U3pJ HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:06 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30hwx3rZshGp6H61551Gwy7gw9HZgFM4MSGH4pJocdsa6nuQAviffiQcM4Tcqs2EbNyD%2FQOdWYzBodigspx7knXTlnHqpBvHb760vp4aXzJ96RmkSFmcrBWqaQNm6c84%2FZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546d7deb2b527-OSL
alt-svc: h3=":443"; ma=86400
xml.bird-getabid.net/thumbnail?i=HkNhvRLtcN4_0&p=1698518104.221566&imgt=icon
198.134.116.29302 Found 0 B URL GET HTTP/1.1 xml.bird-getabid.net/thumbnail?i=HkNhvRLtcN4_0&p=1698518104.221566&imgt=icon
IP 198.134.116.29:443
ASN #27257 WEBAIR-INTERNET
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectbird-getabid.net
FingerprintE5:F6:77:5D:45:92:F9:BE:D5:D1:E5:90:11:D7:61:49:C1:01:6F:9A
ValidityMon, 04 Sep 2023 06:38:20 GMT - Sun, 03 Dec 2023 06:38:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thumbnail?i=HkNhvRLtcN4_0&p=1698518104.221566&imgt=icon HTTP/1.1
Host: xml.bird-getabid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 28 Oct 2023 18:35:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Age: 0
Location: https://static.servingserved.com/n337/ad/192x192_IFykbcOE1FlVuFJnBmjE.jpeg
Pragma: no-cache
static.servingserved.com/n337/ad/192x192_IFykbcOE1FlVuFJnBmjE.jpeg
151.139.128.10200 OK 5.5 kB URL GET HTTP/1.1 static.servingserved.com/n337/ad/192x192_IFykbcOE1FlVuFJnBmjE.jpeg
IP 151.139.128.10:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectservingserved.com
Fingerprint52:93:27:F9:89:4A:E6:16:52:73:66:6D:41:30:09:8A:03:75:54:F7
ValidityMon, 04 Sep 2023 06:51:39 GMT - Sun, 03 Dec 2023 06:51:38 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash fe8973fba57f53db7cd1ad01ead54f0f
583cb76fa879d34c75761f5081f253fdf73df7b8
885a89a4e894943c30dba86d37563d421327dc516c19f1ffccb729459ee41516
GET /n337/ad/192x192_IFykbcOE1FlVuFJnBmjE.jpeg HTTP/1.1
Host: static.servingserved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Oct 2023 18:35:07 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 31 Mar 2023 00:15:04 GMT
Accept-Ranges: bytes
ETag: "64262608-1561"
Cache-Control: max-age=86400
Server: fbs
X-HW: 1698518107.cds243.sk1.hn,1698518107.cds263.sk1.c
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 5473
ivedmanyyea.org/ZmdpNzBJWApEDTJXJ3RmMVZQUgMSDj5/WBwDBHVSAC8NBVIwX09DWQJaUAUCUlBREUAPA1QEAkAUHVZEExRUBQBWUk9eXgAIVAUAVlFZBwFVVUwAcw4THUdDQ1QoEgIgQltxSAsLR1VZFANEUFUSBgteVEgJDEMVVCEdX0ULBQdWWQpCWnFZQ1QtQlg3VRF+RwwAWlBvVkJbAUBDVC0GBl9fXAYIV1ddGQJUVlwBBkNVX15dARNMBHQPBAZZFVEkB0JcCkJedAJSVVgBAVVQWAUCVlVbDwZUUFwRRltXRw4eVElcEUVbU1ABAlVfXg4BXlJdAQJVQR1HUQFaWBFAEhMFCgFQXlECAV5WWQ8GUVE
104.21.11.156204 No Content 0 B URL POST HTTP/3 ivedmanyyea.org/ZmdpNzBJWApEDTJXJ3RmMVZQUgMSDj5/WBwDBHVSAC8NBVIwX09DWQJaUAUCUlBREUAPA1QEAkAUHVZEExRUBQBWUk9eXgAIVAUAVlFZBwFVVUwAcw4THUdDQ1QoEgIgQltxSAsLR1VZFANEUFUSBgteVEgJDEMVVCEdX0ULBQdWWQpCWnFZQ1QtQlg3VRF+RwwAWlBvVkJbAUBDVC0GBl9fXAYIV1ddGQJUVlwBBkNVX15dARNMBHQPBAZZFVEkB0JcCkJedAJSVVgBAVVQWAUCVlVbDwZUUFwRRltXRw4eVElcEUVbU1ABAlVfXg4BXlJdAQJVQR1HUQFaWBFAEhMFCgFQXlECAV5WWQ8GUVE
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ZmdpNzBJWApEDTJXJ3RmMVZQUgMSDj5/WBwDBHVSAC8NBVIwX09DWQJaUAUCUlBREUAPA1QEAkAUHVZEExRUBQBWUk9eXgAIVAUAVlFZBwFVVUwAcw4THUdDQ1QoEgIgQltxSAsLR1VZFANEUFUSBgteVEgJDEMVVCEdX0ULBQdWWQpCWnFZQ1QtQlg3VRF+RwwAWlBvVkJbAUBDVC0GBl9fXAYIV1ddGQJUVlwBBkNVX15dARNMBHQPBAZZFVEkB0JcCkJedAJSVVgBAVVQWAUCVlVbDwZUUFwRRltXRw4eVElcEUVbU1ABAlVfXg4BXlJdAQJVQR1HUQFaWBFAEhMFCgFQXlECAV5WWQ8GUVE HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
date: Sat, 28 Oct 2023 18:35:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nvmAb2fO%2BMct9QyKQKu5%2BQMduxFbTSH2EQvZ4LaasOOvsnh9GOepwGfSixO3hOX3wKqsPfpBoYvwoSjWYjYrBvKn6kn3ALChPzvr%2BvtLiwYqFtzvfdSlnr%2B6Y3FUqdUEmbo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546ddfc3eb527-OSL
alt-svc: h3=":443"; ma=86400
xml.bird-getabid.net/thumbnail?i=uhQ2xIwjg3g_0&p=1698518104.221566&imgt=icon
198.134.116.29302 Found 0 B URL GET HTTP/1.1 xml.bird-getabid.net/thumbnail?i=uhQ2xIwjg3g_0&p=1698518104.221566&imgt=icon
IP 198.134.116.29:443
ASN #27257 WEBAIR-INTERNET
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectbird-getabid.net
FingerprintE5:F6:77:5D:45:92:F9:BE:D5:D1:E5:90:11:D7:61:49:C1:01:6F:9A
ValidityMon, 04 Sep 2023 06:38:20 GMT - Sun, 03 Dec 2023 06:38:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thumbnail?i=uhQ2xIwjg3g_0&p=1698518104.221566&imgt=icon HTTP/1.1
Host: xml.bird-getabid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 28 Oct 2023 18:35:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Age: 0
Location: https://static.servingserved.com/n337/ad/192x192_Vy81WBuRiWMm6FbiZyCT.jpeg
Pragma: no-cache
static.servingserved.com/n337/ad/192x192_Vy81WBuRiWMm6FbiZyCT.jpeg
151.139.128.10200 OK 6.2 kB URL GET HTTP/1.1 static.servingserved.com/n337/ad/192x192_Vy81WBuRiWMm6FbiZyCT.jpeg
IP 151.139.128.10:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectservingserved.com
Fingerprint52:93:27:F9:89:4A:E6:16:52:73:66:6D:41:30:09:8A:03:75:54:F7
ValidityMon, 04 Sep 2023 06:51:39 GMT - Sun, 03 Dec 2023 06:51:38 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash def8ec0b011899b785996a39ce60f178
025de0182754e0769c8fef3d830aa056e29a9d3c
bbd2cb9d84fbab17b66599c16be08f3e0847761bae5d0cc15dde62cda079b129
GET /n337/ad/192x192_Vy81WBuRiWMm6FbiZyCT.jpeg HTTP/1.1
Host: static.servingserved.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Oct 2023 18:35:07 GMT
Content-Type: image/jpeg
Last-Modified: Fri, 31 Mar 2023 00:16:12 GMT
Accept-Ranges: bytes
ETag: "6426264c-1825"
Cache-Control: max-age=86400
Server: fbs
X-HW: 1698518107.cds243.sk1.hn,1698518107.cds241.sk1.c
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 6181
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
142.250.74.109302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint86:7B:0F:9A:A8:81:46:14:E8:56:C2:45:8B:8E:FF:52:DA:1C:F4:18
ValidityMon, 09 Oct 2023 08:11:28 GMT - Mon, 01 Jan 2024 08:11:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:P6YVbPef4R6fqYMfERgE3byywlk4bg:7z7J9dtOnnrpfKVA; Expires=Mon, 27-Oct-2025 18:35:04 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AVQVeyzmvt8u73B_8pBVOdVtNM1a6wm1bJnq85qiJYUAgYEkLnVz3oVYhUIOXIH1oLJFkD-wJASUnA
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-crBT11XdF3YmRonKU5kPqg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
104.18.11.207200 OK 37 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/13/2021 20:18:53
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 48135f30fbfcba704628453df5764d8f
cdn-cache: HIT
cf-cache-status: HIT
age: 47680
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 81d546c07b82b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
104.18.11.207200 OK 121 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 104.18.11.207:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-06-08 21:21:23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: f3a3007506374a305b1a96efe5ee1490
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 318029
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 81d546c06b80b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
104.16.132.229200 OK 261 B URL GET HTTP/2 cloudflare.com/cdn-cgi/trace
IP 104.16.132.229:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectcloudflare.com
FingerprintF9:7C:E6:C0:FC:C2:E0:B9:42:D4:AE:EC:25:6D:C9:31:AB:D7:DB:42
ValidityMon, 02 Oct 2023 00:00:00 GMT - Sun, 31 Dec 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 09cf711c8450d62b45b789cdf6a8418d
9de6cdf808e3fccc49905082dc30909fc1a48b27
4ea0506331477e246467881c4d5ad902096d2ecacf7357332652b6d6f3087a45
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 81d546c57fba568d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.132.28200 OK 102 kB IP 172.64.132.28:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://en.jav321.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Sat, 28 Oct 2023 08:18:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XEu5a2vmRH2slRYs46OV4mGdmOF3sBmdli8A3w%2FHszfoNyJf6ktmxQHLU3X69y0NHiD0JGMG6%2FrRW64eeZqd5W%2F0qFNWS2rHoTBQDTUcJ9D7VXaPqQuGuoLG8yPZ58IU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81d546c879d56355-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/
172.64.132.28200 OK 27 B IP 172.64.132.28:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4cae606e50d8e8e574dfb7d70fa1982c
5299cd6a4d5504dd48a5a8c4b28ecbad51d16019
33e3a457d0ca3dac22f0d489f7621683c8e68410750c2be36911598131c3116a
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: text/plain
set-cookie: csu=2154107202011463@1@1698518104; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://en.jav321.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XbHnx8N5P0hqN8Vp3OQaqlXoSxh6ZAecMiGJxKS6bUgNwRdM1m68iUaMSuVhrwwVU9APkr%2FeSdJaKukO8WZeUGCb5d8X5yMKUn9TX4DF%2BcEK9c4UK%2Bhla3HdY6zyMPpg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c869c46355-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.adxadserv.com/js/adp.js
185.76.9.14200 OK 92 kB URL GET HTTP/2 static.adxadserv.com/js/adp.js
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subject1585977359.rsc.cdn77.org
Fingerprint26:4A:39:EC:01:61:D6:23:44:7B:C3:D2:43:10:60:39:D9:E6:7B:CA
ValidityWed, 13 Sep 2023 18:58:11 GMT - Tue, 12 Dec 2023 18:58:10 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/adp.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 23 Jun 2023 13:43:11 GMT
etag: W/"6495a16f-16773"
server: CDN77-Turbo
x-77-nzt: AblMCQ03Nzf/jmwJAA
x-77-nzt-ray: c0a4cc284607c19a57543d65a34a2610
x-accel-expires: @1698937289
x-accel-date: 1697900489
x-cache-lb: HIT
x-age-lb: 617614
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 617614
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AVQVeywci56lvSI9G8bMlJN3Nqb79bMFVhR2p4L5xSryJLGtxcykL-bDKNOU88Gy9JpYmfRMyK0q1Q&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1928576169%3A1698518104449913&theme=glif
142.250.74.109403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AVQVeywci56lvSI9G8bMlJN3Nqb79bMFVhR2p4L5xSryJLGtxcykL-bDKNOU88Gy9JpYmfRMyK0q1Q&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1928576169%3A1698518104449913&theme=glif
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AVQVeywci56lvSI9G8bMlJN3Nqb79bMFVhR2p4L5xSryJLGtxcykL-bDKNOU88Gy9JpYmfRMyK0q1Q&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1928576169%3A1698518104449913&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-rtnrRAJEpqJX2HRxh12xCw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ivedmanyyea.org/ZXFCeW1KTiEKUAcdLjYPLRkYGDUBKxEVVBcXFEAgPSZzTDpVMGQNBAFMe0tcUEN0Xx0MFX9IVUMCNhgZEAJ/SEsMHyQWUEMHf0hDVV9wV1lDBH9ISxEBIx5QVFcyDRkJTHNPVF1Ec0FcVUV3SFk
104.21.11.156204 No Content 0 B URL GET HTTP/2 ivedmanyyea.org/ZXFCeW1KTiEKUAcdLjYPLRkYGDUBKxEVVBcXFEAgPSZzTDpVMGQNBAFMe0tcUEN0Xx0MFX9IVUMCNhgZEAJ/SEsMHyQWUEMHf0hDVV9wV1lDBH9ISxEBIx5QVFcyDRkJTHNPVF1Ec0FcVUV3SFk
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ZXFCeW1KTiEKUAcdLjYPLRkYGDUBKxEVVBcXFEAgPSZzTDpVMGQNBAFMe0tcUEN0Xx0MFX9IVUMCNhgZEAJ/SEsMHyQWUEMHf0hDVV9wV1lDBH9ISxEBIx5QVFcyDRkJTHNPVF1Ec0FcVUV3SFk HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xe%2B11LKQyHQqkMrklvQseJwZ9Zb47a5CvbdjldnsdiK7%2FNZ2pMyJ11SNVA%2BPIjD6bKdGq11cHqKplENNFr7MYJIV44Rk0%2B%2B3ff5tpF07eraoRKRfK59K4cKTIAq19Dzo6Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c41e4d56ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dmmzkfd82wayn.cloudfront.net/?kzmmd=922478
143.204.42.115200 OK 185 kB URL GET HTTP/2 dmmzkfd82wayn.cloudfront.net/?kzmmd=922478
IP 143.204.42.115:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
Size 185 kB (185023 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?kzmmd=922478 HTTP/1.1
Host: dmmzkfd82wayn.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 51634
date: Sat, 28 Oct 2023 18:35:03 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: beRZNtbsD9XruYY3x-EmUz4SoLNLCa-QPG3eHx8kRylBZalPcyus4Q==
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.132.28200 OK 102 kB IP 172.64.132.28:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://en.jav321.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Sat, 28 Oct 2023 08:18:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=btchlXAKd4EE28L45MiNlY%2Fi9F39EoG4Z8p26Pr%2BSF2O3lGw8GeFvNx8t9nAUgoZzJU2B8MMpQbp2dHrJFeWtVX45tUTpicvHIqh7p7gt5GboEMO3OjSvE6EBOHqtTLm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81d546c879ca6355-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/
172.64.132.28200 OK 26 B IP 172.64.132.28:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 445dc8a1fb28ef142357a9d0490aab97
8ddda08f144f5d1bc1f4ddcf7aeb1158252d4a18
a364e449bfafe1e8b9d0cd421e4777d0ac24fce238acbd94823966f22c70b70a
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
Origin: https://en.jav321.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:04 GMT
content-type: text/plain
set-cookie: csu=496238791854623@1@1698518104; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://en.jav321.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hzDbC8W4rzabb9iEufc6BZJ%2FdMylLAyJJ%2F0BUGLQcVQcoZBo2wn0RzrmFLb%2BwV6CugcQjPj62Dz7%2F4wJ3VgOXp7JzgeuShAXi7lK%2F1KV1aJ20rVvE6yySYWV6pZ%2F5pG8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c869c16355-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ajfnee.com/p/waWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsInNyYyI6Mn0=eyJ.js
172.67.161.233200 OK 23 kB URL GET HTTP/2 ajfnee.com/p/waWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsInNyYyI6Mn0=eyJ.js
IP 172.67.161.233:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subject*.ajfnee.com
Fingerprint6A:93:D0:B0:24:DA:CC:65:3C:F7:77:01:61:A5:11:CF:FF:5D:EF:41
ValidityMon, 04 Sep 2023 01:17:57 GMT - Sun, 03 Dec 2023 01:17:56 GMT
File type ASCII text, with very long lines (23350), with no line terminators
Hash 72fb4506f66df795975d71eac388d619
d1f3a148f63117a7d85567d2c98e4b5b0daf196d
823fd303fd3c770dc4b033f387e65ae044410b8f477b9952b8ff06f085d3e5a7
GET /p/waWQiOjEwNzU1MTIsInNpZCI6MTA4MzE3Miwid2lkIjoyOTY2NDEsInNyYyI6Mn0=eyJ.js HTTP/1.1
Host: ajfnee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www.jav321.com
e-tag: f0c24642e4cf320253d1ce3614cd0aca
cache-control: max-age=14400
cf-cache-status: HIT
age: 4282
last-modified: Sat, 28 Oct 2023 17:23:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKC8LY1BtxXC3HCHCQAkd7eMuZ%2Fr%2FJbNtdrBnPBceFiDU%2F4eA%2BQRvVPAXt9kLI68CJepchKbec1QKQS5FQ2qrBue%2B7QDnCYU7etKRWogiVv2L5g9apr9QYtEVhaN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81d546c0dedc56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ivedmanyyea.org/popunder.gif
104.21.11.156200 OK 35 B URL GET HTTP/2 ivedmanyyea.org/popunder.gif
IP 104.21.11.156:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerLet's Encrypt
Subjectivedmanyyea.org
Fingerprint9A:EE:D6:C7:E9:FF:98:B7:22:B4:BF:FA:31:7D:B7:3A:56:51:AC:A5
ValiditySun, 22 Oct 2023 07:30:28 GMT - Sat, 20 Jan 2024 07:30:27 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /popunder.gif HTTP/1.1
Host: ivedmanyyea.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 104533
last-modified: Fri, 27 Oct 2023 13:32:50 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aOCtfyYsonjHZfR0tKKOAXdyAc8Kh%2BkFSSNGJKdlczihWgNZBaaul2auw7UuhtJ4bwwnLc1MHtBRAoW%2FSr%2BXZEurgfbMkJq1e4Gf3B7ulDvY9MLTYkD%2B2RmWKkN9OQttz0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 81d546c41e4956ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AVQVeyzzM8_Eo9htEUsHRxN91fgaqcUUl6UAnYf3TFOIcA2X9BLwl3D14AroAXKUmU4zS_4Mz86-Vw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1829444437%3A1698518104486054&theme=glif
142.250.74.109403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AVQVeyzzM8_Eo9htEUsHRxN91fgaqcUUl6UAnYf3TFOIcA2X9BLwl3D14AroAXKUmU4zS_4Mz86-Vw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1829444437%3A1698518104486054&theme=glif
IP 142.250.74.109:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint71:34:F9:A1:80:2F:AF:05:CB:45:8A:35:D5:48:03:3F:B3:6F:61:30
ValidityMon, 09 Oct 2023 08:04:03 GMT - Mon, 01 Jan 2024 08:04:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AVQVeyzzM8_Eo9htEUsHRxN91fgaqcUUl6UAnYf3TFOIcA2X9BLwl3D14AroAXKUmU4zS_4Mz86-Vw&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S1829444437%3A1698518104486054&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://en.jav321.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 28 Oct 2023 18:35:04 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-jp9HwWdOwvRJXsNaJzLs-A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blastcahs.com/t/9/fret/meow4/1808151/brt.js
212.117.190.201200 OK 89 kB URL GET HTTP/2 blastcahs.com/t/9/fret/meow4/1808151/brt.js
IP 212.117.190.201:443
Requested by https://en.jav321.com/searchhttps:/javdb.com/?locale=enhttps://translate.google.comiam.us-iso-east-1.c2s.ic.govinvalid
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint33:3F:7F:E7:8C:55:B5:08:DB:FF:D8:B3:28:8B:39:9C:4C:5E:A7:3D
ValidityWed, 31 May 2023 12:16:44 GMT - Sun, 26 Nov 2023 22:59:00 GMT
File type ASCII text, with very long lines (65106)
Hash ab790bf31d41d6e75c645c7ca763b2a3
5b0497cda0f78e5d219ee9f102d7906489199b5d
19d850cc7b0c4be4e61c59d8c1ff727d33d4762978fd474150d740a2733dacef
GET /t/9/fret/meow4/1808151/brt.js HTTP/1.1
Host: blastcahs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.jav321.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 28 Oct 2023 18:35:03 GMT
content-type: application/javascript
last-modified: Thu, 26 Oct 2023 09:16:34 GMT
vary: Accept-Encoding
etag: W/"653a2e72-15ad3"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2