Report - www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/

Report Overview

Submitted URL
www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
IP
172.67.68.13
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-02 00:43:05
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	2.1 kB	4.2 kB	142.250.74.131
i.jads.co	46788	2019-12-04T09:50:06Z	2023-03-09T13:30:23Z	513 B	361 B	69.16.175.10
static.adxadserv.com	128146	2018-06-12T15:18:14Z	2023-03-09T04:21:01Z	370 B	1.5 kB	185.76.9.14
bc5b242f88.86521e18d4.com	unknown	2022-11-29T04:30:55Z	2023-01-28T03:01:17Z	914 B	320 B	45.133.44.25
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	1.5 kB	51 kB	216.58.207.227
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	143.204.42.158
unseenreport.com	unknown	2022-03-30T16:33:17Z	2023-03-09T09:20:47Z	718 B	423 B	192.243.61.225
www4.bestjavporn.com	unknown	2022-11-22T04:27:02Z	2023-03-09T06:18:40Z	5.3 kB	54 kB	104.26.2.123
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	34.102.187.140
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-09T13:58:35Z	408 B	35 kB	142.250.74.170
liaisondegreedaughters.com	unknown	2022-10-14T03:47:07Z	2023-03-03T05:27:30Z	411 B	14 kB	173.233.137.60
simplewebanalysis.com	unknown	2022-02-25T05:06:25Z	2023-03-09T11:23:24Z	874 B	702 B	18.185.190.54
fp.metricswpsh.com	unknown	2022-04-22T13:20:32Z	2023-03-09T12:48:14Z	495 B	390 B	157.90.84.242
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	340 B	964 B	172.64.155.188
r.trackwilltrk.com	unknown	2020-04-28T06:48:25Z	2023-03-09T10:57:37Z	1.4 kB	2.3 kB	185.98.53.17
cdn.creative-bars1.com	unknown	2022-11-15T17:46:22Z	2023-03-09T09:20:47Z	1.6 kB	5.5 kB	172.64.108.13
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T12:17:45Z	408 B	746 B	142.250.74.106
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-09T05:09:51Z	930 B	84 kB	104.17.25.14
asg.phukienthoitranggiare.com	277546	2019-12-10T16:28:30Z	2023-03-06T23:45:23Z	834 B	36 kB	135.181.208.216
img.bestjavporn.net	406632	2021-04-25T14:04:12Z	2023-03-03T20:40:02Z	392 B	2.8 kB	104.21.233.138
static.javhd.com	39788	2013-11-18T09:31:48Z	2023-03-09T12:39:36Z	4.3 kB	1.1 MB	185.76.9.15
js.capndr.com	316718	2021-08-30T14:51:01Z	2023-03-09T13:06:05Z	383 B	17 kB	45.133.44.24
integrityprinciplesthorough.com	unknown			6.1 kB	8.3 kB	173.233.137.60
cdn.cloudimagesb.com	23099	2021-02-12T17:15:41Z	2023-03-09T11:23:27Z	401 B	134 kB	45.133.44.9
ads.adxadserv.com	113382	2018-07-07T22:22:47Z	2023-03-09T04:21:02Z	660 B	152 B	185.98.53.2
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	5.4 kB	14 kB	23.36.76.226
poweredby.jads.co	30525	2019-12-04T11:34:12Z	2023-03-09T13:30:21Z	1.4 kB	6.8 kB	185.94.237.101
adxadserv.com	85319	2018-06-29T01:50:00Z	2023-03-09T04:21:02Z	3.4 kB	48 kB	185.98.53.29
static.javhdhello.com	unknown	2022-10-14T10:27:54Z	2023-03-09T15:01:22Z	1.9 kB	5.2 kB	185.76.9.15
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	46 kB	34.120.237.76
r.trwl1.com	34565	2019-07-11T19:32:08Z	2023-03-09T18:27:35Z	614 B	1.1 kB	185.98.53.17
pics.pornfhd.com	unknown	2022-07-25T07:05:24Z	2023-03-09T12:39:36Z	2.0 kB	3.4 kB	104.21.235.63
theporndude.com	45636	2013-12-28T01:22:02Z	2023-03-09T07:28:30Z	394 B	2.3 kB	104.19.128.100
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-09T13:53:17Z	377 B	21 kB	142.250.74.110
js.wpadmngr.com	25762	2021-06-02T16:43:46Z	2023-03-09T06:47:26Z	787 B	35 kB	45.133.44.24
cdn.barscreative1.com	25648	2021-09-16T13:14:42Z	2023-03-09T09:20:46Z	459 B	5.7 kB	45.133.44.4
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	2.0 kB	3.9 kB	93.184.220.29
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	390 B	44 kB	172.217.21.168
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	52.38.139.17
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-09T05:14:34Z	1.4 kB	2.9 kB	23.36.76.226
analitits.com	186712	2016-06-11T20:10:30Z	2023-03-09T10:50:51Z	370 B	499 B	31.220.24.19
friendshipmale.com	unknown	2022-10-21T14:15:25Z	2023-03-09T13:21:36Z	365 B	29 kB	172.64.202.23
na.nawpush.com	38563	2020-12-23T09:18:12Z	2023-03-09T08:50:49Z	414 B	1.3 kB	45.133.44.24

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	Malware
2022-12-02	medium	integrityprinciplesthorough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D	Malware
2022-12-02	medium	cdn.barscreative1.com/sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html	Phishing
2022-12-02	medium	integrityprinciplesthorough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	liaisondegreedaughters.com	Sinkholed
2022-12-02	medium	86521e18d4.com	Sinkholed
2022-12-02	medium	unseenreport.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed
2022-12-02	medium	integrityprinciplesthorough.com	Sinkholed

JavaScript (39)

	URL	Size	First Seen	Last Seen
	static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ	2.0 kB	2023-03-08	2023-03-11
Pretty URL static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:37:12 Last Seen2023-03-11 22:58:24 Times Seen1 Hash 460e411069677a42cc4388d33ca8d709 31b25919e94db5577ac66c00d0d80adb811b4946 88f896022a1c7f7fdcce77c38380a9ccd7a285a6330528dc1740e6450c4bd806 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	146 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen25 Hash 9615ee0aa330a699931e5f7b6e9c1e0c e0a84195adac251741043f7d937add120ef68559 740364edc7a7d4b4f2b4dbdf53f7bcdd6eb05194be8c49a0ed045716102d9ae5 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	116 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash 0be1ea69d1fb993a014af482fc00de04 2a5f51fcc22963fda8f6b4cb71daa63b1a7014f5 2ff5985ddb0e1152aad3b96aa9a46f56dc338928e911591ccd8105c2b98d7cf9 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	63 B	2023-03-07	2023-03-17
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-03-17 11:36:13 Times Seen1 Hash 68b49461696c843d7eb50c3e3bd3d394 4b8bedd664b7bc395ee93416e1bdf11b6a5c482d 9aff9406b53b2576b262de3e45c58bd5220734b74b6a1a24e8d8c58c78787439 Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=	667 B	2023-03-10	2023-03-10
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags= IP 185.98.53.2 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash 25f3ec5ba75c1079ffe0053e5bb164dc fbaeb7ec2efd9ef7b23da35b079efc05613c18c9 a1ca81ea93336c2329498bda1dabfcb7da4dd989d25e3bfb43a3cfee7b7c6853 Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=	561 B	2023-03-10	2023-03-10
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags= IP 185.98.53.2 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash 5d3969654822532d1c6b857167a58ea1 78203c5f14b8bb2b1dc94bf06f079dc8a3037549 13c173a978f9c1c1298e12e0f5107f39449d77e048fba38efd5637bae7dc2f27 Loading...

	www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-11
Pretty URL www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 02:13:00 Times Seen56587 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js	84 kB	2023-03-07	2024-05-11
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js IP 172.64.108.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-11 02:14:17 Times Seen16122 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	http:blank	1.1 kB	2023-03-10	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-11 23:51:24 Times Seen1 Hash 85d92f2e61fef98cbe3ce1646cd9d40b 094a899bc3482177cd361e707799d1df655f6247 bef9f99fb9e0f2326fc78a5307b766fc8fc3c36d8af6212ce16a27b0f1551b3a Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	364 B	2023-03-08	2023-03-11
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-03-11 23:50:59 Times Seen1 Hash 3dab60b81244cbbd3739df47889d2540 b093a6754c8fb99f601949ef7b062bcaee71e97f 1b33287014e0e7faeb5fb9576f22367022ad1f376c77ffc0079cdacda4abcad2 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-10
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-10 19:48:26 Times Seen1646 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9	2.0 kB	2023-03-07	2023-03-17
Pretty URL static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-03-17 12:37:06 Times Seen1 Hash 6f352b876eb39ac510e4c6cc29975cf5 047c5711dd3ef84e5e84765cd975e51d4d6fbbd9 97bab1525236ee1a39d24ae0d3e0ef310fe7064cc4780c60ca4cf012ff821962 Loading...

	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	37 kB	2023-03-10	2023-03-11
Pretty URL liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js IP 173.233.137.60 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-11 23:01:48 Times Seen1 Hash d20828f91563c72ac382dd6e24a1b0ed 4e87eb355b8f7556f554275b38235cfb1f4009de 2944e867a619cc7fb1871770b6725f28d6a046caba62df6f05e7618633dcf342 Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	18 kB	2023-03-07	2024-05-11
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-11 00:58:43 Times Seen2914 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	static.adxadserv.com/js/adb.js	1.3 kB	2023-03-07	2023-04-16
Pretty URL static.adxadserv.com/js/adb.js IP 185.76.9.14 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-04-16 19:00:23 Times Seen28 Hash 6f620fd5ad9850e1117bb73e2326afe5 eb8576e351e8f6ff39ed9ade7a940d8aec66fad1 26ec90d22570d3951bcd6006eefe2d622a85ef89598d75418dda23cbae996dc8 Loading...

	js.wpadmngr.com/static/adManager.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL js.wpadmngr.com/static/adManager.js IP 45.133.44.24 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2023-03-17 12:41:09 Times Seen1 Hash d17122a2baaec1b2ce4e62776349bb2b a732dd7dcf6b3af05e416510b77640dfdb27307f 89ceaf2fba13343764ed6f07696d5b3a49b28daf865c3f6c204c218a4cd62e1e Loading...

	js.capndr.com/popunder-admanager/build.m.js	44 kB	2023-03-08	2023-03-11
Pretty URL js.capndr.com/popunder-admanager/build.m.js IP 45.133.44.24 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:40 Last Seen2023-03-11 23:51:24 Times Seen1 Hash ca0d98a35e28da18e3098db115341862 bdf71b60ba9376923b3ff50505af0dce40712e98 22dfa53579e1b8bea6f9c1451033de0cacda7597d7610ccad1fa4eeb2a906043 Loading...

	static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ	2.0 kB	2023-03-08	2023-03-12
Pretty URL static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ IP 185.76.9.15 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:10:18 Last Seen2023-03-12 06:34:52 Times Seen1 Hash 0ead42a6e2213434b664c393e11b17a1 135b3f381badba3420db0208cf53011e40d14149 b72235b6ae4a9371a6ccbf9b4cbff7c845f7eadbca307929ac05c8452d699910 Loading...

	asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=	567 B	2023-03-10	2023-03-10
Pretty URL asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash 6bfe74c30c9984f9287cb57328c183a8 d8080e7101be9ac23e8aba0252af456b6c927e65 cb9d8ff38fab3de66ed82dfc70ccdd3cc1b108adb12096b3c076df4db5f7247d Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2	70 kB	2023-03-08	2023-05-09
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-05-09 13:30:00 Times Seen4 Hash 25b438bbf0012293c03182fd5c1b2c78 3b315f5f46731ad656322576d3603059f5518ff5 9bb49f7260999e2606151d15fe7c24b8fb9157a9aec2c7912be4fc203839f4e6 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	155 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 02b151f7f8bea6ea1530ad01245fa6cd 380297a64caa6dc209094187f329c61ed6a67dc1 61c58386d48745eb2671d386f65a2097706cfbab8a17103baa29b1159475c41d Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0	1.6 kB	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen38 Hash 0c8e12b6729ea495f40021071c279dbd d4bcfb6be3925b36d01f9ac879c4a86910f7a199 d7b7dc8c56c48930200905378552e435f23e32c2fd159a2176d40a712cd43513 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0	426 B	2023-03-07	2024-05-11
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-11 00:11:59 Times Seen1158 Hash fa2ce987f8db7686a86e81d3407acb43 2c0e064be7f6d1d273749ddaa289d09a0f7470c1 405a5e4943b97243440d632a958bb6e79f1d1929666745000a22ebaa5fa2d819 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	1.6 kB	2023-03-07	2024-05-10
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-10 05:46:17 Times Seen694 Hash 388722716c8c89af1136cef19a98017c 50875c3734cfd73eb9856bef783de97dbb496dae d39b00bf80cd9591e726005002d8084407bdb41ce867ac0e70ede5b7a781c472 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3	3.9 kB	2023-03-08	2023-03-13
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-03-13 17:40:57 Times Seen1 Hash 2d975d9112dedc0e2a9a19db1fca050e 159ddd8e5886340d37fd9c875d9e121d27cab9d5 da4bc148b4fb82f5ad6455617da96f52329944ab6198d049a58cd64b2499854a Loading...

	poweredby.jads.co/js/jads.js	3.8 kB	2023-03-07	2024-05-10
Pretty URL poweredby.jads.co/js/jads.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-05-10 18:47:02 Times Seen8540 Hash bc8141c4650030c41f6a98026b12ce80 af5618f7e467a207d4c64627be580283ab5640cd 5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51 Loading...

	analitits.com/t/xfeid?cb=gl.cb.xf	65 B	2023-03-10	2023-03-10
Pretty URL analitits.com/t/xfeid?cb=gl.cb.xf IP 31.220.24.19 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash 5b77b74ba4292a6610d970dfbd0b5379 1b7170ae232b5fe0daca5d2515925d0683b53712 fb0eb7daeae1bdb8ec0bee35a9d30947428f1485616b0e746480957163041fcf Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4	97 kB	2023-03-07	2024-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-11 03:11:09 Times Seen119374 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	asg.phukienthoitranggiare.com/Cqp6VQ5.js	119 kB	2023-03-08	2023-03-13
Pretty URL asg.phukienthoitranggiare.com/Cqp6VQ5.js IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:25 Last Seen2023-03-13 10:17:46 Times Seen1 Hash 20b1f7c4e40e41c2debfb17cb07134ec f5ba09f282f291f98f69d4829569903c18b5ed57 130e9e584b0c6495952676d31263fab5331788351c9f83078fcc29e2caf7d7a7 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	64 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash f9675ebfcfaedcfc75362b6f6f0b848c 2eb1a3c8f6e600379712d2aa73eb1bf7e52ceb40 6a405d8f6090f493c5dba7eaf7197cfb927fe13919a5bc470ca615c3fd48243a Loading...

	poweredby.jads.co/adshow.php?adzone=784300	1.9 kB	2023-03-07	2023-04-05
Pretty URL poweredby.jads.co/adshow.php?adzone=784300 IP 185.94.237.101 ASN #42567 Mojohost B.v. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2023-04-05 02:10:48 Times Seen259 Hash 5cd62169649c11f1057fd71c875fdd2f 6abb31f47f4927bf56249c39a3ef728c57385b68 1fdcbb5a37d7a7fb4938ab8f8a73fc7b68cadb81aecacdf7ad490525e6aea3fa Loading...

	adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv	65 B	2023-03-10	2023-03-10
Pretty URL adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv IP 185.98.53.29 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash a892e069f556f25c7ce628fb03404dda 7578ab39230faa30ac901ee87f263ab1861cd02a dd989e206a4e69c4a87aeba0080d68f76ab90c22a2c318c7c211c6b8b16b09ca Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=	345 B	2023-03-10	2023-03-10
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags= IP 185.98.53.2 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-10 08:32:44 Times Seen1 Hash e71e24371893bc8173b790b1403cf935 2ac9b004cd96076ae5095e17bf6f28c35a220258 1be8fda422173c457734a8b3fe7726a3241ff67819efaef20a580b00aee4675c Loading...

	adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332	0 B	2023-03-07	2024-05-11
Pretty URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332 IP 185.98.53.29 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 04:15:19 Times Seen37534578 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3	33 kB	2023-03-08	2024-01-06
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-01-06 07:53:05 Times Seen16 Hash 9c087dd00c879aaa39aa54baadb77c07 4a9233ab7ac20e8a415b7f4582d521d25920d21d 87fc1b3826f63e8d1b4f966d122e0c37cd11cf707a52f772c5d80b28c4aa040e Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18	20 kB	2023-03-07	2024-05-01
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:28 Last Seen2024-05-01 09:52:53 Times Seen151 Hash e019a5eef7655ef670c33b1d53387c89 9febd845833a7bb5fc8766c50888d6a55cb6953f 999841f33c1c69bff363d50e357c6f1f2e7af6cacbbaf82302f857894e795d29 Loading...

	www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/	345 B	2023-03-08	2024-02-28
Pretty URL www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/ IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 9e07e1de097e074188c64f54bc89e80d 549f51aa69be92fa441c291adc1fb43b72d7729b 53f0c82f7e25fd9211e8149d2088174e3f73bd867756cd49cf4d9a41e582595f Loading...

	www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js	5.6 kB	2023-03-07	2024-05-06
Pretty URL www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-05-06 08:06:00 Times Seen701 Hash 81a54a116c4b5f257f0c296bb023e915 23167641c90ec1587c30c71625cedaa7f5701a1e 1e3bbf2a6d9503811213baca9f5e309618ca968136199ca532a0a5167c0b0f1c Loading...

	www.googletagmanager.com/gtag/js?id=UA-124653024-3	112 kB	2023-03-10	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-124653024-3 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:32:44 Last Seen2023-03-11 23:51:24 Times Seen1 Hash 77bfcbf67e2caabb4d77615c94a2ee3b 0cda3938d02062ae310bd44819d8e3fe3fd1dc3d 6b585bea027a0ce66fb3a1d3928055ed5f4caaceb21739d79b34257af130902c Loading...

HTTP Transactions (121)

URL IP Response Size

www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/

104.26.2.123

301 Moved Permanently

0 B

URL HTTP/1.1
www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /video/gas-246-the-best-of-mitsuki-an-8-hours/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 00:42:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 01:42:53 GMT
Location: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y0Z9ObuQ9l791dV85TBHJxBz1W4h9yRb82rkgrMXATFyWhKZu6biRPVxIQNWgOL5ScklZUMl7RXGpW3zpYvWINbU7DNbVGHrKGMxn7OdM1esj9haXK3TdZEgvrAU2u0X8zxNnaT7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773006755ced0b06-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15678
Expires: Fri, 02 Dec 2022 05:04:11 GMT
Date: Fri, 02 Dec 2022 00:42:53 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1237
Cache-Control: max-age=122936
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:53 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:51:49 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 00:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1383
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13562
Expires: Fri, 02 Dec 2022 04:28:55 GMT
Date: Fri, 02 Dec 2022 00:42:53 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
265368e993de964422eb9da3847ccf6a
fa451af4ed23bfcdf849ae3df4cdd062faae15ba
493b24d17389bbc18321909d491be8c171e14852e81132992b1cbb440e694ada

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1278
Cache-Control: max-age=99914
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:53 GMT
Etag: "63882859-117"
Expires: Sat, 03 Dec 2022 04:28:07 GMT
Last-Modified: Thu, 01 Dec 2022 04:06:49 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 279

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: BlHHqpo4xQOHExMTfmNJoWaNU5L9VcjgD9bwRM4SgHKd9XopMyoWORxjkwRFpp5Fay0jHVtNR+A=
x-amz-request-id: RX461YKMV8G43YJN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 23:46:29 GMT
age: 3385
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.25.14

200 OK

77 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1319260
expires: Wed, 22 Nov 2023 00:42:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkOaUomcAV7Xb4PaPVac8sHyyGsRE7%2FvcHPRJR2DphWVvW3zuwJaL9D3B5Oqz3HdvxH1pKRe8TgjR%2FUHr3fwhHQJ%2F2nwll%2BJTmR6GvLnRfMly9%2FkvJe0j3IgsBnkQa6d2S0ASYQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7730067a2babb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.25.14

200 OK

5.1 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15223436
expires: Wed, 22 Nov 2023 00:42:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCG%2BjJNki8ejhUaOsraCBIJuxKMPbdSYRHm%2FFE87crUbj52ftjXi8WxRr5QjaJtdLsEBa6sPPrs12f%2BRxfx%2BhELUCgLlEyPn3LM3IyGJOBy2EYWudL0Hw9THTR5Kbuuh8%2FPXnhf8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7730067a3f12b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2

172.67.68.13

200 OK

19 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
19 kB (18830 bytes)
Hash
d4bdaa135495c2ac42f106958bdddea1
c6ff1b3bae2b8492afad3a7e834bb989158f94dd
9a1e9dc21e1dfadbf251466ae074990d287829cb34b37b3578cc905545a3821b

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
etag: W/"635fdc6a-11395"
last-modified: Mon, 31 Oct 2022 14:32:10 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 50902
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTFtjy7yO1unFOhGhNVFaOhOowHhy6vDJMXsHLgj1LBUb0pt3Mf2yDjYsXv9HBS1wM3%2B3yrjoMm7NP04LuaR0I4%2BoXGSWCbyP8cCwu6vUTOIuXTVyk9dXTG95ybTn2dmyeOCsJm%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd2cb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/

172.67.68.13

200 OK

25 kB

URL HTTP/2
www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2090), with CRLF, LF line terminators
Size
25 kB (25194 bytes)
Hash
f72e6f674ccc94a92d185996428839a9
f0b9ff0ec2316832cf75e5cefc6ef51dea518432
2599e32b128f2068067298bbe12ba6c7eb04cc438a9e0fe9fc38d9feafcb16c7

HTTP Headers

GET /video/gas-246-the-best-of-mitsuki-an-8-hours/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: text/html; charset=UTF-8
cf-ray: 773006779b7fb500-OSL
cache-control: max-age=3600
last-modified: Thu, 01 Dec 2022 20:07:31 GMT
link: <https://www4.bestjavporn.com/wp-json/>; rel="https://api.w.org/", <https://www4.bestjavporn.com/?p=537187>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: HIT
cf-apo-via: tcache
cf-connecting-ip: 2001:448a:1102:18f1:f136:b4e5:6:d3b9
cf-edge-cache: cache,platform=wordpress
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /index.php
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qdnFcV37%2FhFCi0nvSfwks864LmNmjK935aW31xQImcDiIeU21IUHmERvJNhYOEW7HSlxn6zwqjLNy8tzXEj10Gqg5Bi85WAeFKsk%2BvqvIMWwDkM8lm95TJfcYkbTf1wEDQOY8zfq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4

142.250.74.170

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:36:02 GMT
expires: Thu, 30 Nov 2023 16:36:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 115612
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
be242a973a6686eabfc1550fbadd7198
40e5a0f09942a2042b1586c0c5b87b9c44308142
4c29cd9005fa3a825d2ab09369d714f1056d668f11e9db57fb44e00d732ecd6b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5931
Cache-Control: max-age=157485
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Etag: "6388f710-116"
Expires: Sat, 03 Dec 2022 20:27:39 GMT
Last-Modified: Thu, 01 Dec 2022 18:48:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

www.googletagmanager.com/gtag/js?id=UA-124653024-3

172.217.21.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43564 bytes)
Hash
7fbdc27367df2d3f76a2ce79e21a28ae
0ceff8a9c0adbe687c34c0da4b46cec30e6cff34
bd7742bceb5187f971aafd3fe0f4ba2af710bef0838a07d803a25c39be92be78

HTTP Headers

GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 00:42:54 GMT
expires: Fri, 02 Dec 2022 00:42:54 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1265
Cache-Control: max-age=117900
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:27:54 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 00:11:15 GMT
cache-control: public,max-age=3600
age: 1899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

216.58.207.227

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 280199
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
81b9797a490ff448cc91d8582673d21f
c02dcb627555a67b8d3ac839047ca6c5b0fc474c
5c8fdd743dd1130a91e2acfba4169ea9f4b0d3f8fe2f2baeed5d1e8a4d1eb2d6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Last-Modified: Fri, 02 Dec 2022 00:02:40 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 278

theporndude.com/favicon-32x32.png

104.19.128.100

200 OK

1.6 kB

URL HTTP/2
theporndude.com/favicon-32x32.png
IP
104.19.128.100:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.6 kB (1576 bytes)
Hash
e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad

HTTP Headers

GET /favicon-32x32.png HTTP/1.1
Host: theporndude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/webp
content-length: 1576
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1823
content-disposition: inline; filename="favicon-32x32.webp"
vary: Accept
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control: public, max-age=31536000
etag: "71f-5dbddefb-94cda11995fd4df4;;;"
expires: Sat, 02 Dec 2023 00:42:54 GMT
last-modified: Sat, 02 Nov 2019 19:54:35 GMT
strict-transport-security: max-age=31536000
x-frame-options: allow-from https://webvisor.com/
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 182105
accept-ranges: bytes
server: cloudflare
cf-ray: 7730067c1cd2b51b-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
81b9797a490ff448cc91d8582673d21f
c02dcb627555a67b8d3ac839047ca6c5b0fc474c
5c8fdd743dd1130a91e2acfba4169ea9f4b0d3f8fe2f2baeed5d1e8a4d1eb2d6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Last-Modified: Fri, 02 Dec 2022 00:02:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278

push.services.mozilla.com/

52.38.139.17

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.139.17:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tKv7ibD3hzmRn2MIiLmO/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KhViZkERUJ+vUcNve6ExLEflnkM=

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e14645a5d64641f43408392e7bca55a4
84a9309034a7c09084d2a9730e01910c7d3c30ed
d07749fc5c9a5efd92dc1e4abeae29655a57dc120f8700a430176d3acfe22882

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:27:05 GMT
Expires: Tue, 06 Dec 2022 08:27:04 GMT
Etag: "84a9309034a7c09084d2a9730e01910c7d3c30ed"
Cache-Control: max-age=372848,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7730067e7915b511-OSL

asg.phukienthoitranggiare.com/Cqp6VQ5.js

135.181.208.216

200 OK

35 kB

URL HTTP/2
asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
35 kB (34930 bytes)
Hash
8072eb1906e46c78d2da2b9be7b81242
2115fe0c662779eb936951d1c02516f3f3b11822
bf56086829b51cbe86048c555c007affa0b8e779f6b72939968504f24b305651

HTTP Headers

GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 cb05e10ed4a973b87ff15498c30d269c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: oycx6I-_vsnZok9MO6Ni20WCCrU9g5wK2kLouWhMW0ptjlsKaiUEsg==
age: 3146548
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

poweredby.jads.co/js/jads2.js

185.94.237.101

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.237.101:0
ASN
#42567 Mojohost B.v.

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/x-javascript
Last-Modified: Thu, 07 Jul 2022 14:07:12 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62c6e890-eae"
Content-Encoding: gzip

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 00:41:08 GMT
expires: Fri, 02 Dec 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 107
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img.bestjavporn.net/favicon.ico

104.21.233.138

200 OK

2.0 kB

URL HTTP/2
img.bestjavporn.net/favicon.ico
IP
104.21.233.138:0
ASN
#13335 CLOUDFLARENET

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
2.0 kB (2043 bytes)
Hash
1d06af2b002637650629b120d0650a40
fa3fe01bfbb66e1fd5e047d94a0542ba46f02655
e512f727d0232ab916d25c6561018034fc9a998a01549ef8f6443f737ea8e899

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2519144
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eyi5Panc0kb7r8a1J7oxDc8el8zkkSSyXOUNeVwym%2FMPHy5M69Z8h8H9G6HpZ3c4tFcoVQaAjtInbnMQI0zIxJ67CEpaMZZQAe7namoIUIVT47V2Kzrr8OUfkjD5W2h20YY0ig0B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300680f803dcf3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
64586ca71bf7c735c714ce8df20f4aea
143dcc8c7fe487ed4bc0051e95b2f903d409ca95
e9d66feec8ce2ba990e0bdb19c11d5de38d99e91f22c0366694f96cfce25ac77

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9D66FEEC8CE2BA990E0BDB19C11D5DE38D99E91F22C0366694F96CFCE25AC77"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2018
Expires: Fri, 02 Dec 2022 01:16:33 GMT
Date: Fri, 02 Dec 2022 00:42:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
32aff9f00966385cd9715591a3b443eb
4808cc7cc6e71aaf75314dc5aecea80c33afdb4e
e320260d17d0b732c980cbebdfddc288016f691b6108693a51406e7f7976efd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E320260D17D0B732C980CBEBDFDDC288016F691B6108693A51406E7F7976EFD8"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6105
Expires: Fri, 02 Dec 2022 02:24:40 GMT
Date: Fri, 02 Dec 2022 00:42:55 GMT
Connection: keep-alive

poweredby.jads.co/adshow.php?adzone=784300

185.94.237.101

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/adshow.php?adzone=784300
IP
185.94.237.101:0
ASN
#42567 Mojohost B.v.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1710 bytes)
Hash
2fb281b908ea3590f5025277ba99502f
6c10ccd66fddf8e23c47b08392712074ae060f7f
d5c4b5046353566aaba106880382a149a123e13d95a83428d437386a0d047a29

HTTP Headers

GET /adshow.php?adzone=784300 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; expires=Sat, 02-Dec-2023 00:42:55 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61

185.98.53.17

200 OK

931 B

URL HTTP/1.1
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (735)
Size
931 B (931 bytes)
Hash
9323e627c0e0effd570263a19c024cc3
1da217f4f83ecd2a46ff93b4be1226605a4d3325
db568108555e4deb3e1038d250c463de02c0c34fbb22f68deb8c092108871748

HTTP Headers

GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 931
Connection: close
Set-Cookie: uid=381_QSPtM; Path=/; Domain=trackwilltrk.com; Expires=Sat, 03 Dec 2022 00:42:55 GMT; HttpOnly
X-Request-Id: d762cc2c-ab2d-40cd-bf7d-8a893389eedf

adxadserv.com/ascripts/gcr.js

185.98.53.29

200 OK

23 kB

URL HTTP/1.1
adxadserv.com/ascripts/gcr.js
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (48738)
Size
23 kB (23241 bytes)
Hash
4bcc622fafa6d39f3d41ee9e46b585f5
f4870a326a8c0f449cbcd79673406ac1d5e6f6c8
c7ef60433000d6807163ee4643bd7774e783e4d0711513d134ae008f04f4a8e9

HTTP Headers

GET /ascripts/gcr.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 16 Dec 2021 16:04:11 GMT
ETag: W/"61bb637b-1434f"
Expires: Wed, 30 Nov 2022 08:33:12 GMT
Cache-Control: max-age=86400, public
X-77-NZT: Abk73hHPsiP/ReMAAA
X-77-NZT-Ray: f4787b27020ff3180f4a8963eae9f737
X-Cache: HIT
X-Age: 58181
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br

adxadserv.com/ascripts/pxl.js

185.98.53.29

200 OK

23 kB

URL HTTP/1.1
adxadserv.com/ascripts/pxl.js
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (36114)
Size
23 kB (23098 bytes)
Hash
72d1139e9f2e6ebe3f51c9193edb4439
cd356eb9eaab433ac792406ba36d4304b6450571
74553d0effe74cd6a4f1424940f7fd133c5457ff1d5c53030e651ec6612bec88

HTTP Headers

GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Wed, 30 Nov 2022 08:33:06 GMT
Cache-Control: max-age=86400, public
X-77-NZT: AblMCgEaijH/S+MAAA
X-77-NZT-Ray: 382b0f19a06c1ed30f4a896363c95b38
X-Cache: HIT
X-Age: 58187
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br

r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=

185.98.53.17

200 OK

757 B

URL HTTP/1.1
r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (561)
Size
757 B (757 bytes)
Hash
67c2639c11128b581ba0deb3f0990341
5c34528772d5429676bc4b17bcaaf0ecb76d47bf
a00b2bd3868601ed6160bc121e6d4a2802325aadda9c5134841fa46df2962232

HTTP Headers

GET /s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 757
Connection: close
Set-Cookie: uid=wqQ_QZPapp; Path=/; Domain=trackwilltrk.com; Expires=Sat, 03 Dec 2022 00:42:56 GMT; HttpOnly
X-Request-Id: de63c400-7de0-4396-9fa8-facb02459242

i.jads.co/1x1.gif

69.16.175.10

200 OK

43 B

URL HTTP/2
i.jads.co/1x1.gif
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

HTTP Headers

GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
etag: "1457030838"
cache-control: max-age=17283490
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1669941776.dop225.sk1.t,1669941776.cds259.sk1.hn,1669941776.cds217.sk1.c
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
512683cf227571d627f861cc0f837f87
b33f9fec7ee16507d6f8dc07f5034086ccace3bf
e1398384bb4c5717fbd8474a4e6e61b3251a8ac0f37d6428395f5fd6189e5af5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1398384BB4C5717FBD8474A4E6E61B3251A8AC0F37D6428395F5FD6189E5AF5"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4004
Expires: Fri, 02 Dec 2022 01:49:40 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332

185.98.53.29

200 OK

0 B

URL HTTP/1.1
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Length: 0
Connection: keep-alive

static.javhd.com/h5/files/overlay/16-overlay-preview.png

185.76.9.15

200 OK

507 B

URL HTTP/2
static.javhd.com/h5/files/overlay/16-overlay-preview.png
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
507 B (507 bytes)
Hash
db53e5222242237b3bf9cfa0e57ba892
682eff797b686263d1259a4cb5e56475f6b49abe
90b8ab0ecc1d52738d7f0c0bb413375bd6e2f7d7f22d4adf1b1df004ee5d4d43

HTTP Headers

GET /h5/files/overlay/16-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 507
last-modified: Tue, 06 Feb 2018 18:18:14 GMT
etag: "5a79f166-1fb"
expires: Tue, 23 May 2023 11:06:53 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684840013
server: CDN77-Turbo
x-77-nzt: AblMCQ1TX1H/Q9/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a896381089709
x-cache: HIT
x-age: 16637763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhd.com/h5/files/overlay/16-overlay.png

185.76.9.15

200 OK

4.2 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/16-overlay.png
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4224 bytes)
Hash
d66274c14945df9c552f3f29b2edb39e
ab31d71d26c8486aa6e5662459341e1db4171ecb
eca2a576dcb0e650c0701e96f1d4e7336cd0adc970cedbc7e8a72638ca2aa43e

HTTP Headers

GET /h5/files/overlay/16-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 4224
last-modified: Tue, 06 Feb 2018 18:15:47 GMT
etag: "5a79f0d3-1080"
expires: Tue, 23 May 2023 11:06:55 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684840015
server: CDN77-Turbo
x-77-nzt: AblMCQ0J4bn/Qd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a89636bdd9a09
x-cache: HIT
x-age: 16637761
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.adxadserv.com/js/adb.js

185.76.9.14

200 OK

1.1 kB

URL HTTP/2
static.adxadserv.com/js/adb.js
IP
185.76.9.14:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (511), with CRLF line terminators
Size
1.1 kB (1105 bytes)
Hash
ec0048861d2d67666b00f86010bf5811
dbcb32be836ebcd25cca91b9e7a16e83e591c753
3aa3e1b500c601610b209d6ee34760c49433f126067be043d3dd1d6e8a35ae20

HTTP Headers

GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1670929619
server: CDN77-Turbo
x-77-nzt: AblMCQ2rqF7/PL8AAA
x-77-nzt-ray: c0a4cc28b5e490890f4a8963018ebd17
x-cache: HIT
x-age: 48956
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9

185.76.9.15

200 OK

2.5 kB

URL HTTP/2
static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.5 kB (2518 bytes)
Hash
bc995aa2f3c65c85dee8eb04342e92e6
20b97959906883d8b4947d50af440acade82ba9c
7cafb3a129bc038b5495be3b08e1854795e92bb65107e82aac1b5e79904ec914

HTTP Headers

GET /h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Mon, 07 Feb 2022 07:42:09 GMT
etag: W/"6200cd51-c7f"
expires: Sat, 31 Dec 2022 18:21:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672510897
server: CDN77-Turbo
x-77-nzt: AblMCQ3u6BT/X1kAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a896399ac4207
x-cache: HIT
x-age: 22879
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/overlay/1602-overlay.png

185.76.9.15

200 OK

1.8 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/1602-overlay.png
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1839 bytes)
Hash
f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7

HTTP Headers

GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ02d7n/wd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a89637169f909
x-cache: HIT
x-age: 16637889
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ

185.76.9.15

200 OK

1.7 kB

URL HTTP/2
static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.7 kB (1708 bytes)
Hash
c52e0dbbab8062cffa5eba7bc5138c45
d013a144558a847e192638f201625d910bfe761c
66e06d3eabb740f04f405a172506f6ab887dc6e4706c066039306398208c54fa

HTTP Headers

GET /h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Wed, 19 Oct 2022 09:58:18 GMT
etag: W/"634fca3a-c86"
expires: Sun, 01 Jan 2023 00:42:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672533776
server: CDN77-Turbo
x-77-nzt: AblMCQ2LdTyh
x-77-nzt-ray: c0a4cc2851d82a8c104a8963fee4da04
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2

poweredby.jads.co/adshow.php?adzone=794135

185.94.237.101

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/adshow.php?adzone=794135
IP
185.94.237.101:0
ASN
#42567 Mojohost B.v.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Size
1.7 kB (1695 bytes)
Hash
64478814d4ab7cdf89417863e6b57e7c
d5db686e747c9a995d696b14c7b8a8a5e033260a
c78bd751ed51ad1be90ca8e220bc62fe34ef0db9224d1393e5ddcb54bb52ea29

HTTP Headers

GET /adshow.php?adzone=794135 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; expires=Sat, 02-Dec-2023 00:42:55 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip

static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4

185.76.9.15

206 Partial Content

523 kB

URL HTTP/2
static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
523 kB (523070 bytes)
Hash
7afb753a3f506f7a42e47f5cf6f17a09
4687980db9a38006389264a9ae951f962c704f9a
94c347a11aae7ddc48698d16c64cc0b097e210f75115420eb023f25b3830199b

HTTP Headers

GET /h5/files/video/3189-24876-728x90.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 523070
last-modified: Mon, 07 Feb 2022 07:42:08 GMT
etag: "6200cd50-7fb3e"
expires: Tue, 24 May 2022 11:07:07 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669988818
server: CDN77-Turbo
x-77-nzt: AblMCQ3rsq7/vpkAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a89635f305f10
x-cache: HIT
x-age: 39358
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-523069/523070
X-Firefox-Spdy: h2

liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js

173.233.137.60

200 OK

13 kB

URL HTTP/1.1
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with very long lines (37161), with no line terminators
Size
13 kB (13424 bytes)
Hash
418491140e73d809e8ddb19fa81550c9
e2280805096fa3c6aa3224dacc8638f653727d91
dabaa43d1cd4aeab56412bf0304b9a888477f5c31249fdbc5080979daba12589

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74c10df83ced355eb853e2d69f39676f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4

185.76.9.15

206 Partial Content

551 kB

URL HTTP/2
static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
551 kB (551282 bytes)
Hash
d57f9c72bffb62004a30bd3eb1ad58c0
81866548694b3ff0f7eab36c1224cab49b1dd72a
27a86038b0db14fb8a9df5220317d028dd21ff9b62541184b2feed8af3d47b41

HTTP Headers

GET /h5/files/video/3142-11518-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 551282
last-modified: Wed, 19 Oct 2022 09:58:17 GMT
etag: "634fca39-86972"
expires: Tue, 22 Nov 2022 14:34:26 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669992006
server: CDN77-Turbo
x-77-nzt: AblMCQ2lamb/So0AAA
x-77-nzt-ray: c0a4cc2851d82a8c104a896349e76410
x-cache: HIT
x-age: 36170
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-551281/551282
X-Firefox-Spdy: h2

adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv

185.98.53.29

200 OK

65 B

URL HTTP/1.1
adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
a892e069f556f25c7ce628fb03404dda
7578ab39230faa30ac901ee87f263ab1861cd02a
dd989e206a4e69c4a87aeba0080d68f76ab90c22a2c318c7c211c6b8b16b09ca

HTTP Headers

GET /t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/javascript
Content-Length: 65
Connection: keep-alive
Set-Cookie: xfeid=b0e9ec0019a27d2961b19b682b11df1f; expires=Tue, 01 Jan 2030 00:00:00 GMT; path=/; domain=.adxadserv.com
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 864000

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3159
Expires: Fri, 02 Dec 2022 01:35:35 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3159
Expires: Fri, 02 Dec 2022 01:35:35 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7591 bytes)
Hash
d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 9240
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0410d88544fb52c82ed556cf1c103567
bc8bb791cc010ab3d025803d925e7f5fb592c420
0af7dc239e8822d60002423dfa22ead8abdba894cf2aa31572518762316a0e9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AF7DC239E8822D60002423DFA22EAD8ABDBA894CF2AA31572518762316A0E9B"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11014
Expires: Fri, 02 Dec 2022 03:46:30 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6752 bytes)
Hash
f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JZAFwGz7kAWplsA1qeraQTjirrZb29JTnUPii5BcPg5tzxcBLtt0WA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:24:25 GMT
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
age: 8311
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 62834
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 11289
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11402 bytes)
Hash
1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 10283
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4840 bytes)
Hash
60ccdde4ce64b4a3fe6fc2a059b3bde1
5ce119089f4a4cd139b523889b6cd84cd79191f4
2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 10445
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f4c94bde9a76bc603150ea8268ef5257
a0bcd3dea7384a387d0d984b99cb5b7b60cdaa84
8ce45b3fdf78e48cf77bb7ed8499a37df26b30827aa2919c061561e28209ef4c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8CE45B3FDF78E48CF77BB7ED8499A37DF26B30827AA2919C061561E28209EF4C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12103
Expires: Fri, 02 Dec 2022 04:04:39 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=

185.98.53.17

200 OK

749 B

URL HTTP/1.1
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (553)
Size
749 B (749 bytes)
Hash
323f6e863cb97c32f422e2bf2288c36c
abc7c2c4948f4289bde0d8f0998cc3d3da43f232
fa4ce96ff99a60e6082b05e3d753124cada520a7b84b6928e87bf47fc7c3dd4d

HTTP Headers

GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 749
Connection: close
Set-Cookie: uid=r0LVQSPaMp; Path=/; Domain=trwl1.com; Expires=Sat, 03 Dec 2022 00:42:56 GMT; HttpOnly
X-Request-Id: 54719538-0998-4ba6-bc65-293281ad4749

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
1f1beac7928ab3d37cedfb7e9db6de8c
dbec1313a709861142ee3b08c1031e4c297435d0
25faaa716072ce2493633a4252fde0606c5da842936e6f4874eb461c180367de

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "25FAAA716072CE2493633A4252FDE0606C5DA842936E6F4874EB461C180367DE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2957
Expires: Fri, 02 Dec 2022 01:32:13 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
86ccba20424bf990eb3d3dedeecc1f70
f25c365e531305b99f2de451b5a5dccba12abf90
e72ebdf45378915e055ddbd27dba3f34bfcffed4c17d1cef451ec19b00d19a41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E72EBDF45378915E055DDBD27DBA3F34BFCFFED4C17D1CEF451EC19B00D19A41"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4782
Expires: Fri, 02 Dec 2022 02:02:38 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

analitits.com/t/xfeid?cb=gl.cb.xf

31.220.24.19

200 OK

65 B

URL HTTP/1.1
analitits.com/t/xfeid?cb=gl.cb.xf
IP
31.220.24.19:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
5b77b74ba4292a6610d970dfbd0b5379
1b7170ae232b5fe0daca5d2515925d0683b53712
fb0eb7daeae1bdb8ec0bee35a9d30947428f1485616b0e746480957163041fcf

HTTP Headers

GET /t/xfeid?cb=gl.cb.xf HTTP/1.1
Host: analitits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: application/octet-stream
Content-Length: 65
Connection: keep-alive
Set-Cookie: xfeid=f6d1cc60398c3b42621b206b3122e3cc; expires=Tue, 01 Jan 2030 00:00:00 GMT; path=/; domain=.analitits.com
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 864000

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f60f02a95664f3be8fd0b4e614010c6a
bb83d56ac8ae98bff5e9954dffc7f2035b47f63f
eddc54420a811685bfd0c2c14dd13340c9380b529bf1bb8c0426baa0375a67f2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133521
Date: Fri, 02 Dec 2022 00:42:56 GMT
Etag: "6388ac95-1d7"
Expires: Sat, 03 Dec 2022 13:48:17 GMT
Last-Modified: Thu, 01 Dec 2022 13:31:01 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n4sdWUvX1q7qFxrvXiCVWdO9moTohmMhu9yWYIloS1AAC5d4oLwYQw==
Age: 1036

simplewebanalysis.com/stats

18.185.190.54

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.185.190.54:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
57c2e18b74dd22cea36fe060438592a1
9cc0c5f136a2aecb4498d83b7d0ed657387b686b
5176cb780a476c7e7e5b207a68c629af7e8f889d8790583dc1a62cd82785da24

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; expires=Mon, 29 Nov 2032 00:42:56 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
1f1beac7928ab3d37cedfb7e9db6de8c
dbec1313a709861142ee3b08c1031e4c297435d0
25faaa716072ce2493633a4252fde0606c5da842936e6f4874eb461c180367de

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "25FAAA716072CE2493633A4252FDE0606C5DA842936E6F4874EB461C180367DE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2957
Expires: Fri, 02 Dec 2022 01:32:13 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive

js.wpadmngr.com/static/adManager.m.js

45.133.44.24

200 OK

35 kB

URL HTTP/2
js.wpadmngr.com/static/adManager.m.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
35 kB (34682 bytes)
Hash
d85c43891c2e2652d1303d8aaa4eb203
e87e9df9c0762e8e37ad1a581338c3627102039a
bbcd8ea9c3dd26c5a96d84c92aafdc1ba23ac237bd04b40aa68d6890bc36d392

HTTP Headers

GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 30 Nov 2022 13:10:49 GMT
etag: W/"63875659-17718"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:56 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.202.23

200 OK

28 kB

URL HTTP/2
friendshipmale.com/sfp.js
IP
172.64.202.23:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27622 bytes)
Hash
d0a284f11b604a8b845db34aefc98ac0
67b89b3c81fc04f557ed3adf93a7a631731dc394
69b49c15ef12f1464e46fb0722233854730db5e3b209b1deb7222a4d73ef6dd1

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 50f0e24e71988aa8f47614f3e4eab3b6
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 02 Dec 2022 00:42:56 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XlgppSGp71iS0g%2B79u077q5uEmm6rb4ocDLnAS1QUymAzO1a3W5Mj%2BIn4%2FxL6rp4exF8XifW8WHN%2F8nH8DwsdclzJ8UpXkcobG%2BSk9%2FE4rgi%2B9h%2FhIynyQWcO%2FXqfarBG9Ew0NU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006874b0d74a5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

18.185.190.54

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.185.190.54:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
57c2e18b74dd22cea36fe060438592a1
9cc0c5f136a2aecb4498d83b7d0ed657387b686b
5176cb780a476c7e7e5b207a68c629af7e8f889d8790583dc1a62cd82785da24

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2

na.nawpush.com/tags/59555?version_name=c

45.133.44.24

200 OK

1.1 kB

URL HTTP/2
na.nawpush.com/tags/59555?version_name=c
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (1089), with no line terminators
Size
1.1 kB (1089 bytes)
Hash
f6c0a64ee48aa1d5d1571e0c5fd2dc61
ba486a68574295bbf58cdab39803f91dccb71396
6e7defee93dc0fb707de9c3351c468f03ee1dceb12da10212c253ed55520323e

HTTP Headers

GET /tags/59555?version_name=c HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/json
content-length: 1089
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
126c46acb90c59f06c0752d0fb9c2d1a
017c2fe50b877c23fb71d27a25cb6bc1b1029849
05eff06efb1ac669dc020afb353645daa96e86ca6489f1a915927a1bf485454f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05EFF06EFB1AC669DC020AFB353645DAA96E86CA6489F1A915927A1BF485454F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14048
Expires: Fri, 02 Dec 2022 04:37:05 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aa434368e2f4378127ff86ea9fba2b1b
28dcc7871640b1103d49965a6df7e8d34ff77e9f
9219b3f3bade5b969822bded87e808423b152210cea6cb3da9bcb84daba1ce46

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9219B3F3BADE5B969822BDED87E808423B152210CEA6CB3DA9BCB84DABA1CE46"
Last-Modified: Thu, 01 Dec 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11503
Expires: Fri, 02 Dec 2022 03:54:40 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive

bc5b242f88.86521e18d4.com/in/track?data=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

45.133.44.25

200 OK

0 B

URL HTTP/2
bc5b242f88.86521e18d4.com/in/track?data=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
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /in/track?data=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 HTTP/1.1
Host: bc5b242f88.86521e18d4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=59555

157.90.84.242

204 No Content

0 B

URL HTTP/1.1
fp.metricswpsh.com/fp?tag_id=59555
IP
157.90.84.242:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www4.bestjavporn.com/
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a1a125695fbcd312685fe655dedb60d2
c26e91d38e6bbb5dec2c62b73bdea02f9dd39b43
220b199f2775f9b0c86f9e1d85a95983aac4c0f01a1b6e7c60a13d95235e0dfd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "220B199F2775F9B0C86F9E1D85A95983AAC4C0F01A1B6E7C60A13D95235E0DFD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6058
Expires: Fri, 02 Dec 2022 02:23:55 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive

js.capndr.com/popunder-admanager/build.m.js

45.133.44.24

200 OK

16 kB

URL HTTP/2
js.capndr.com/popunder-admanager/build.m.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
16 kB (16357 bytes)
Hash
cb3ec382676442167ac76dfb24126144
ea404d69b763e9f2cc2b02b3360cc734280c068b
f534bb4e7f31b082c7c4d7b79fcf4f83f4b0972e80451c54100ec1d64c92cdd1

HTTP Headers

GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Dec 2022 09:44:36 GMT
etag: W/"63887784-add7"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:57 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f91cfd55ec303f0077c2bc640275e2b8
70b31027c05ea36c7b253cf9a0b1a8840ab4e55e
08fa1f3a3ba010ec53994869a08542bf0ad3561e99358ffba6c10ec87e916ff2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08FA1F3A3BA010EC53994869A08542BF0AD3561E99358FFBA6C10EC87E916FF2"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4459
Expires: Fri, 02 Dec 2022 01:57:16 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive

unseenreport.com/pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0

192.243.61.225

200 OK

1 B

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 90f05a20b2770868e28c0dd6e49484c5
Strict-Transport-Security: max-age=0; includeSubdomains

integrityprinciplesthorough.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1

173.233.137.60

200 OK

4.3 kB

URL HTTP/1.1
integrityprinciplesthorough.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (6106), with no line terminators
Size
4.3 kB (4333 bytes)
Hash
5a68e5434822b45ddd991cd03c566a44
8ba70c57c3a88883d31bab0cb355fb048bede681
356c6dc4a23a20c0202879e1be26246a51dce512f9ed051da0ef41794d26dced

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; expires=Fri, 09 Dec 2022 00:42:57 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uncs=1; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c803ddaa17c581a0ce46473dfddf2c10
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

integrityprinciplesthorough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D

173.233.137.60

200 OK

7 B

URL HTTP/1.1
integrityprinciplesthorough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fb8604719ebf753fe2f276808b3f7a04
Strict-Transport-Security: max-age=0; includeSubdomains

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9abc24f39564dc848d6bcdefbcdafc7b
b8c7e8e03ebea34dc55cb1edc5821875ef3b8ced
746046171e16c754f1385bee917d0d771988a6cc69bfef15b30af8d773cad83f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "746046171E16C754F1385BEE917D0D771988A6CC69BFEF15B30AF8D773CAD83F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=863
Expires: Fri, 02 Dec 2022 00:57:20 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12210
Expires: Fri, 02 Dec 2022 04:06:28 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive

integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177

173.233.137.60

200 OK

0 B

URL HTTP/1.1
integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12210
Expires: Fri, 02 Dec 2022 04:06:28 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3c0282fb1989711e4a48dce935bf7813
30bed8a42fc820e4feb64bd22ddfefe120889014
81e304f070d6b7aa4dc67c727523578cd18a665a5cfe674a3b1391f3f39fc11a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81E304F070D6B7AA4DC67C727523578CD18A665A5CFE674A3B1391F3F39FC11A"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10827
Expires: Fri, 02 Dec 2022 03:43:25 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive

cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/img/close.png

172.64.108.13

200 OK

769 B

URL HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/img/close.png
IP
172.64.108.13:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
769 B (769 bytes)
Hash
13b3b0cc6ce924780c0eec0b24c40c33
53b78225158a60f9327e135be26e365eb842f0df
7907c875d2dd81230f15826dffe1faa695cfb1f385adbb4d9480058d0d0112ad

HTTP Headers

GET /sb/ssp/vpn/os-box/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: image/png
content-length: 769
last-modified: Tue, 21 Sep 2021 12:06:12 GMT
etag: "6149cab4-301"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1421481
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWIpfYnE%2BCPSH910G6NZo0%2BDPoSY1FIaL0yOFkMWaHNh9sl%2Bf634e8LALgSEnIaNw9jIfN8f%2BTt2KUQb%2BELJjLdW%2Fb0%2Ft4NGNU9fJLoyisH67ebQ523vzacJhdIXSAi%2BHyMNmeTB1%2BPW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006916b6c76e4-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/css/style.css

172.64.108.13

200 OK

1.0 kB

URL HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/css/style.css
IP
172.64.108.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.0 kB (1020 bytes)
Hash
de6c1dce35c5e01b8c4251aa1fc195c0
99957c8e9c79b2692935c3bae35066bae0d04029
eb97f9baed94ca22d574610473ee98d23bfa16a34bd9bf23e6b283ad80197287

HTTP Headers

GET /sb/ssp/vpn/os-box/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: text/css
last-modified: Mon, 24 Jan 2022 10:19:55 GMT
etag: W/"61ee7d4b-e58"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 912192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rG4euaZvBqkpoIwUztuZ56D6w2%2FlUgYbhOiGILOSXP4YFqvp%2FpzgGhm57WbC7HXTqaoAL92ixUv3v7xkGwOJ49o8nGftQZnG6a2FX31ULpEgcpR4VpCz3FpjhusUkwrDtvJg%2FxiUIMt2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300690db83e690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png

45.133.44.9

200 OK

133 kB

URL HTTP/2
cdn.cloudimagesb.com/si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
133 kB (133206 bytes)
Hash
cdfb8db89366e933cc7475f5309eaea6
a310f5e5f738447abf8c43b5df2ba01d0f61d206
eeca6aa074302eecc1294fa1a44297f08adf932abd6c579541a535736a9ec0de

HTTP Headers

GET /si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: image/png
content-length: 133206
server: nginx/1.17.6
last-modified: Tue, 29 Nov 2022 15:04:55 GMT
etag: "63861f97-20856"
expires: Sun, 04 Dec 2022 00:42:58 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html

45.133.44.4

200 OK

5.3 kB

URL HTTP/2
cdn.barscreative1.com/sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html
IP
45.133.44.4:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
5.3 kB (5288 bytes)
Hash
bf99eec3262e0377dd9b9454f9aed57e
2442bcaa64e4f8c64b1486f50eaa5f3ebe528736
b74775f19064ff4eda7659e3460d132abfdaf61a41854acf1782ba1fa8f6fe26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Thu, 23 Sep 2021 12:33:57 GMT
etag: W/"614c7435-4c2"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 02 Dec 2022 01:42:57 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35

173.233.137.60

200 OK

0 B

URL HTTP/1.1
integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 104944
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 104923
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

integrityprinciplesthorough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA

173.233.137.60

200 OK

7 B

URL HTTP/1.1
integrityprinciplesthorough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 043cb429368d47707408426d949d889f
Strict-Transport-Security: max-age=0; includeSubdomains

integrityprinciplesthorough.com/pixel/sbs?c=1

192.243.59.12

200 OK

0 B

URL HTTP/1.1
integrityprinciplesthorough.com/pixel/sbs?c=1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/script.js

172.64.108.13

200 OK

308 B

URL HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/script.js
IP
172.64.108.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
308 B (308 bytes)
Hash
39c765b77d3242fbd6e5bfafd91a8e91
204f654be2fa8046065146ade36783b31822fa79
0e4c14f1eca632cdd5cf98dbd0f4c2f8c0f379ddf12dab2b7145b803952202b7

HTTP Headers

GET /sb/ssp/vpn/os-box/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:06:14 GMT
etag: W/"6149cab6-307"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 912192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ErkCUPOeQplKJvaz5N5pNFYcb8ZYOQIajXeq8QVfL25NizckFU7ulbiiGVkc06I2VDZiL6A3MVfP%2F0ibwKXhVWTGFluDmaO1aVqkjdIn1nQKFyWrqkvFH0m7T2fBeDFK%2B4GLvZuLs10V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300691cbf2e690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.javhd.com/h5/files/css/style.css

185.76.9.15

200 OK

0 B

URL HTTP/2
static.javhd.com/h5/files/css/style.css
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/css/style.css HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/css
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ0LMtn/wd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a896370078e09
x-cache: HIT
x-age: 16637889
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/video/6684-13625-300x250.medium.mp4

185.76.9.15

206 Partial Content

0 B

URL HTTP/2
static.javhd.com/h5/files/video/6684-13625-300x250.medium.mp4
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/video/6684-13625-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 497611
last-modified: Wed, 23 Nov 2022 13:03:02 GMT
etag: "637e1a06-797cb"
expires: Wed, 30 Nov 2022 10:10:53 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669976085
server: CDN77-Turbo
x-77-nzt: AblMCQ23Bv3/e8sAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a89639ba67425
x-cache: HIT
x-age: 52091
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-497610/497611
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/13jj00039/13jj00039pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/13jj00039/13jj00039pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/13jj00039/13jj00039pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/jpeg
last-modified: Fri, 24 Aug 2012 04:13:35 GMT
vary: Accept-Encoding
etag: W/"5036ff6f-9b06"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Neh1uvlIBawDhTaQPmAEdaAtSk1lX8CemJlDNjJ%2B9XB3QbAC%2BEGorPMOi%2FWXgTAOPhFxwuvriYkW2M05AcldXH7FAZIYAGPCh89wyK4mxrDNiwZ333N8jYJunbJVtvUfgU6v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcf73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 29160
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4l6B%2BEVVPXU2BuVYcOuGxshzrMfzxsucm7kVRdaVQXj3TUhGyMVEtG0wWB9Jz%2BYpURlfV%2FqFB8CjghZdIdUDaYdNzgVMtMQ3y6rooz9TELusCUTBW36Gbz56MYtIVktzT4jwfedo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd32b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=

185.98.53.2

200 OK

0 B

URL HTTP/2
ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=
IP
185.98.53.2:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
X-Firefox-Spdy: h2

www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b2rBfQh9YIlU%2BjCgL5R4UXxn1VCiKGOz0IKArTkb7TayBuQAu%2Ful5w6VeYelqbK7Q8%2FRbq4kNbpg8ottfoMAJJMheWFpeON%2F0x8dWbqNEkwn9xA0BAohclVWy2oSt3waJlTVUMI1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300679ed1fb500-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 04 Dec 2022 00:42:54 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 212.112.122.245
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 2187
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyDdCPax%2FaEmd3p1t958iiMOcdc%2B6VcIqduolHQSk4uOOSNr8m0dlEzue6V%2BDUxa2whxe%2FuzY8ZWFspf3bLz91iQaiK%2BuK3GZmZNn%2F4QL2cMtZ1LkNYU0l5VxqOnlk0v%2BrEGLiGz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed21b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=51865
etag: W/"635fdc6a-ca99"
last-modified: Mon, 31 Oct 2022 14:32:10 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/main.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eFiQ9VyrWhNdim3jZiHtANh67bB%2B7BRgqyVQMpvrOcIjZA52iZR1UWn8yZTL30V0Xh2gbNQasp%2BqOOmfAEGnt7wW0N9f9cE1%2B9bSBhvi%2Bzlb3Hef622oUaD7M76mJcwX2VLwZc6N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed27b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

pics.pornfhd.com/digital/video/71gas00246/71gas00246pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/digital/video/71gas00246/71gas00246pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /digital/video/71gas00246/71gas00246pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Tue, 02 Oct 2012 05:28:01 GMT
vary: Accept-Encoding
etag: W/"506a7b61-2927f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 33037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4xOUen1NsGC53f9hQ33eME2F1WYjjsl6x710y7B9KP888AWrktv3Sso67BnY2yVTiMraqZvp3I9ur%2B3oTIEylbNt%2B6AI9ervvbGIUJHhGo%2BihUnSwo9TorOvVeuyZxJBVkkB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067b4aaa73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51005
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TwToZWQAWlByEpOZQ9KS4uek6rfod82uCZpyfYm%2FuhbQfMmj4fzxKbovLiymbawJ5FjWPEKOOoHrzQuGUts3NRPqmFdY%2F8yioqv6AUvwxCXcBQw7rqL5Ecq61e%2FKnlLAp99d2tyA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd2fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/mbyd00149/mbyd00149pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/mbyd00149/mbyd00149pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/mbyd00149/mbyd00149pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Fri, 09 Nov 2012 07:00:48 GMT
vary: Accept-Encoding
etag: W/"509caa20-a208"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2584485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KBaynCu7AqFdUw8pCBHIyzlJ7X6tGHr9wAMP%2BJ9T%2BO63AEzOCCyk%2BzI%2F4ESZqswJUSiEJXBjpLrmxivAdy%2F9C7OOTdN4X2nWaBSiXL8Lt0bLTacu%2BYsLty98Ldii3HNfXLyS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcb73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/172real00445/172real00445pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/172real00445/172real00445pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/172real00445/172real00445pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/jpeg
last-modified: Tue, 08 Jan 2013 07:46:59 GMT
vary: Accept-Encoding
etag: W/"50ebcef3-91be"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfCY%2BgtZKSu3fyuf33dMMyBscPvqInw7J1Vu6kpOcXhKWw7CEFJa62ot%2BQhRtnX1CFqRpi6UiG0LTzKxU8pVURKySjFxH0V%2FZRRBCLYcpipf1ttzqdgVgKMh8%2FuxlFhW5oRY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcd73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

js.wpadmngr.com/static/adManager.js

45.133.44.24

200 OK

0 B

URL HTTP/2
js.wpadmngr.com/static/adManager.js
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 13 Jul 2022 06:52:04 GMT
etag: W/"62ce6b94-4e2"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:56 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vEpQqYIvxsviIimoyrwuF0kGcgzuXN5d8opvuECV6XhE1yCHtlcSk4BC3%2Bkj0ZNqmSDsVQ63U%2BOVs4u3TPc8GjG%2F4qb4T9y%2FdTzaewV6LkMibgfaPk9TEXleXcHFTJCMH1olC4zl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679dd11b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQCBtZvC21O1CB%2B2GrJcfnay7HzGji3uc05JZuIWOIXfhLQN4%2BskHnESdJHEk%2BcBnQiV2AMUpTuLCTaNDqkcigCtEIcw19yw02TdsWk25bMW7mW5Jf1d74WGIC9qG9SJ%2Fq9MKtrd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed29b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18

172.67.68.13

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=exd1wkuLpI7R6ielsNz3DVpJcX6TDyAuXxsJNWNbiLKFjwAj5K%2BV%2FeQo29UMqHry6bRq4EoNhiljkoHE%2BFLAf7%2BIvSV7RN6Lepp5uTRbrx7obDpj9XI07LzGF2L6iwf4z5%2F4vAOv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed26b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ

185.76.9.15

200 OK

0 B

URL HTTP/2
static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP
185.76.9.15:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Wed, 23 Nov 2022 13:03:03 GMT
etag: W/"637e1a07-c86"
expires: Thu, 29 Dec 2022 13:19:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672319993
server: CDN77-Turbo
x-77-nzt: AblMCQ2fNuX/F0MDAA
x-77-nzt-ray: c0a4cc2851d82a8c104a8963169bd020
x-cache: HIT
x-age: 213783
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js

172.64.108.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js
IP
172.64.108.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/ssp/vpn/os-box/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:06:14 GMT
etag: W/"6149cab6-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d53sy3fh4hYm3sfYK%2FtR2uJ0SXfjK1efhET%2F%2BzArCufzy1kgWZdsq7kad7oZHFSpAIIQdePmBu%2Bl6LqIERqKhXLTj5xYyPMBvFwxkpdTzjq%2BWOXjQmUGnEbnO5R0nfwkfOGT%2BNVsO2Zq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006915b6176e4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 00:42:54 GMT
date: Fri, 02 Dec 2022 00:42:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/h_406okas00112/h_406okas00112pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/h_406okas00112/h_406okas00112pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/h_406okas00112/h_406okas00112pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Tue, 04 Sep 2012 03:32:30 GMT
vary: Accept-Encoding
etag: W/"5045764e-ab7c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2570307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sR6FeF%2F9Sdv5e8jGr66Aikt6mNCwC3W%2B%2F8XaPO8qHH4TyXWEO32DbykLZ5aIVNl5o5c2Q0J32%2FFKimWxqU3mFhktxb3vxvNtk6p4BtmHS745zsQbSg%2BhGqIilw23O%2FkYfIWE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067c9bc873ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=

135.181.208.216

200 OK

0 B

URL HTTP/2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=2cNScfCbgWc7gFmhQKq6; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations