www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
104.26.2.123301 Moved Permanently 0 B URL HTTP/1.1 www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
IP 104.26.2.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/gas-246-the-best-of-mitsuki-an-8-hours/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 00:42:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 01:42:53 GMT
Location: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y0Z9ObuQ9l791dV85TBHJxBz1W4h9yRb82rkgrMXATFyWhKZu6biRPVxIQNWgOL5ScklZUMl7RXGpW3zpYvWINbU7DNbVGHrKGMxn7OdM1esj9haXK3TdZEgvrAU2u0X8zxNnaT7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773006755ced0b06-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15678
Expires: Fri, 02 Dec 2022 05:04:11 GMT
Date: Fri, 02 Dec 2022 00:42:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1237
Cache-Control: max-age=122936
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:53 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:51:49 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 00:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1383
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13562
Expires: Fri, 02 Dec 2022 04:28:55 GMT
Date: Fri, 02 Dec 2022 00:42:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 265368e993de964422eb9da3847ccf6a
fa451af4ed23bfcdf849ae3df4cdd062faae15ba
493b24d17389bbc18321909d491be8c171e14852e81132992b1cbb440e694ada
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1278
Cache-Control: max-age=99914
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:53 GMT
Etag: "63882859-117"
Expires: Sat, 03 Dec 2022 04:28:07 GMT
Last-Modified: Thu, 01 Dec 2022 04:06:49 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 279
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BlHHqpo4xQOHExMTfmNJoWaNU5L9VcjgD9bwRM4SgHKd9XopMyoWORxjkwRFpp5Fay0jHVtNR+A=
x-amz-request-id: RX461YKMV8G43YJN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 23:46:29 GMT
age: 3385
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.25.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1319260
expires: Wed, 22 Nov 2023 00:42:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkOaUomcAV7Xb4PaPVac8sHyyGsRE7%2FvcHPRJR2DphWVvW3zuwJaL9D3B5Oqz3HdvxH1pKRe8TgjR%2FUHr3fwhHQJ%2F2nwll%2BJTmR6GvLnRfMly9%2FkvJe0j3IgsBnkQa6d2S0ASYQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7730067a2babb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
104.17.25.14200 OK 5.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (17660)
Hash abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15223436
expires: Wed, 22 Nov 2023 00:42:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCG%2BjJNki8ejhUaOsraCBIJuxKMPbdSYRHm%2FFE87crUbj52ftjXi8WxRr5QjaJtdLsEBa6sPPrs12f%2BRxfx%2BhELUCgLlEyPn3LM3IyGJOBy2EYWudL0Hw9THTR5Kbuuh8%2FPXnhf8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7730067a3f12b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
172.67.68.13200 OK 19 kB URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP 172.67.68.13:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d4bdaa135495c2ac42f106958bdddea1
c6ff1b3bae2b8492afad3a7e834bb989158f94dd
9a1e9dc21e1dfadbf251466ae074990d287829cb34b37b3578cc905545a3821b
GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
etag: W/"635fdc6a-11395"
last-modified: Mon, 31 Oct 2022 14:32:10 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 50902
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTFtjy7yO1unFOhGhNVFaOhOowHhy6vDJMXsHLgj1LBUb0pt3Mf2yDjYsXv9HBS1wM3%2B3yrjoMm7NP04LuaR0I4%2BoXGSWCbyP8cCwu6vUTOIuXTVyk9dXTG95ybTn2dmyeOCsJm%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd2cb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
172.67.68.13200 OK 25 kB URL HTTP/2 www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
IP 172.67.68.13:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2090), with CRLF, LF line terminators
Hash f72e6f674ccc94a92d185996428839a9
f0b9ff0ec2316832cf75e5cefc6ef51dea518432
2599e32b128f2068067298bbe12ba6c7eb04cc438a9e0fe9fc38d9feafcb16c7
GET /video/gas-246-the-best-of-mitsuki-an-8-hours/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: text/html; charset=UTF-8
cf-ray: 773006779b7fb500-OSL
cache-control: max-age=3600
last-modified: Thu, 01 Dec 2022 20:07:31 GMT
link: <https://www4.bestjavporn.com/wp-json/>; rel="https://api.w.org/", <https://www4.bestjavporn.com/?p=537187>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: HIT
cf-apo-via: tcache
cf-connecting-ip: 2001:448a:1102:18f1:f136:b4e5:6:d3b9
cf-edge-cache: cache,platform=wordpress
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /index.php
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qdnFcV37%2FhFCi0nvSfwks864LmNmjK935aW31xQImcDiIeU21IUHmERvJNhYOEW7HSlxn6zwqjLNy8tzXEj10Gqg5Bi85WAeFKsk%2BvqvIMWwDkM8lm95TJfcYkbTf1wEDQOY8zfq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP 142.250.74.170:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:36:02 GMT
expires: Thu, 30 Nov 2023 16:36:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 115612
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash be242a973a6686eabfc1550fbadd7198
40e5a0f09942a2042b1586c0c5b87b9c44308142
4c29cd9005fa3a825d2ab09369d714f1056d668f11e9db57fb44e00d732ecd6b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5931
Cache-Control: max-age=157485
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Etag: "6388f710-116"
Expires: Sat, 03 Dec 2022 20:27:39 GMT
Last-Modified: Thu, 01 Dec 2022 18:48:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
www.googletagmanager.com/gtag/js?id=UA-124653024-3
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 7fbdc27367df2d3f76a2ce79e21a28ae
0ceff8a9c0adbe687c34c0da4b46cec30e6cff34
bd7742bceb5187f971aafd3fe0f4ba2af710bef0838a07d803a25c39be92be78
GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 00:42:54 GMT
expires: Fri, 02 Dec 2022 00:42:54 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1265
Cache-Control: max-age=117900
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:27:54 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 00:11:15 GMT
cache-control: public,max-age=3600
age: 1899
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 280199
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 81b9797a490ff448cc91d8582673d21f
c02dcb627555a67b8d3ac839047ca6c5b0fc474c
5c8fdd743dd1130a91e2acfba4169ea9f4b0d3f8fe2f2baeed5d1e8a4d1eb2d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Last-Modified: Fri, 02 Dec 2022 00:02:40 GMT
Server: ECS (amb/6B7E)
X-Cache: HIT
Content-Length: 278
theporndude.com/favicon-32x32.png
104.19.128.100200 OK 1.6 kB URL HTTP/2 theporndude.com/favicon-32x32.png
IP 104.19.128.100:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /favicon-32x32.png HTTP/1.1
Host: theporndude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/webp
content-length: 1576
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1823
content-disposition: inline; filename="favicon-32x32.webp"
vary: Accept
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control: public, max-age=31536000
etag: "71f-5dbddefb-94cda11995fd4df4;;;"
expires: Sat, 02 Dec 2023 00:42:54 GMT
last-modified: Sat, 02 Nov 2019 19:54:35 GMT
strict-transport-security: max-age=31536000
x-frame-options: allow-from https://webvisor.com/
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 182105
accept-ranges: bytes
server: cloudflare
cf-ray: 7730067c1cd2b51b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 81b9797a490ff448cc91d8582673d21f
c02dcb627555a67b8d3ac839047ca6c5b0fc474c
5c8fdd743dd1130a91e2acfba4169ea9f4b0d3f8fe2f2baeed5d1e8a4d1eb2d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 00:42:54 GMT
Last-Modified: Fri, 02 Dec 2022 00:02:40 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
push.services.mozilla.com/
52.38.139.17101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.139.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tKv7ibD3hzmRn2MIiLmO/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KhViZkERUJ+vUcNve6ExLEflnkM=
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e14645a5d64641f43408392e7bca55a4
84a9309034a7c09084d2a9730e01910c7d3c30ed
d07749fc5c9a5efd92dc1e4abeae29655a57dc120f8700a430176d3acfe22882
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:27:05 GMT
Expires: Tue, 06 Dec 2022 08:27:04 GMT
Etag: "84a9309034a7c09084d2a9730e01910c7d3c30ed"
Cache-Control: max-age=372848,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7730067e7915b511-OSL
asg.phukienthoitranggiare.com/Cqp6VQ5.js
135.181.208.216200 OK 35 kB URL HTTP/2 asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash 8072eb1906e46c78d2da2b9be7b81242
2115fe0c662779eb936951d1c02516f3f3b11822
bf56086829b51cbe86048c555c007affa0b8e779f6b72939968504f24b305651
GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 cb05e10ed4a973b87ff15498c30d269c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: oycx6I-_vsnZok9MO6Ni20WCCrU9g5wK2kLouWhMW0ptjlsKaiUEsg==
age: 3146548
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
185.94.237.101200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP 185.94.237.101:0
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/x-javascript
Last-Modified: Thu, 07 Jul 2022 14:07:12 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"62c6e890-eae"
Content-Encoding: gzip
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 00:41:08 GMT
expires: Fri, 02 Dec 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 107
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img.bestjavporn.net/favicon.ico
104.21.233.138200 OK 2.0 kB URL HTTP/2 img.bestjavporn.net/favicon.ico
IP 104.21.233.138:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 1d06af2b002637650629b120d0650a40
fa3fe01bfbb66e1fd5e047d94a0542ba46f02655
e512f727d0232ab916d25c6561018034fc9a998a01549ef8f6443f737ea8e899
GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2519144
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eyi5Panc0kb7r8a1J7oxDc8el8zkkSSyXOUNeVwym%2FMPHy5M69Z8h8H9G6HpZ3c4tFcoVQaAjtInbnMQI0zIxJ67CEpaMZZQAe7namoIUIVT47V2Kzrr8OUfkjD5W2h20YY0ig0B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300680f803dcf3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 64586ca71bf7c735c714ce8df20f4aea
143dcc8c7fe487ed4bc0051e95b2f903d409ca95
e9d66feec8ce2ba990e0bdb19c11d5de38d99e91f22c0366694f96cfce25ac77
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9D66FEEC8CE2BA990E0BDB19C11D5DE38D99E91F22C0366694F96CFCE25AC77"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2018
Expires: Fri, 02 Dec 2022 01:16:33 GMT
Date: Fri, 02 Dec 2022 00:42:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 32aff9f00966385cd9715591a3b443eb
4808cc7cc6e71aaf75314dc5aecea80c33afdb4e
e320260d17d0b732c980cbebdfddc288016f691b6108693a51406e7f7976efd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E320260D17D0B732C980CBEBDFDDC288016F691B6108693A51406E7F7976EFD8"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6105
Expires: Fri, 02 Dec 2022 02:24:40 GMT
Date: Fri, 02 Dec 2022 00:42:55 GMT
Connection: keep-alive
poweredby.jads.co/adshow.php?adzone=784300
185.94.237.101200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=784300
IP 185.94.237.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash 2fb281b908ea3590f5025277ba99502f
6c10ccd66fddf8e23c47b08392712074ae060f7f
d5c4b5046353566aaba106880382a149a123e13d95a83428d437386a0d047a29
GET /adshow.php?adzone=784300 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; expires=Sat, 02-Dec-2023 00:42:55 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
185.98.53.17200 OK 931 B URL HTTP/1.1 r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP 185.98.53.17:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (735)
Hash 9323e627c0e0effd570263a19c024cc3
1da217f4f83ecd2a46ff93b4be1226605a4d3325
db568108555e4deb3e1038d250c463de02c0c34fbb22f68deb8c092108871748
GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv1=42e39631-71da-11ed-a3c4-e25a5bb9767f&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 931
Connection: close
Set-Cookie: uid=381_QSPtM; Path=/; Domain=trackwilltrk.com; Expires=Sat, 03 Dec 2022 00:42:55 GMT; HttpOnly
X-Request-Id: d762cc2c-ab2d-40cd-bf7d-8a893389eedf
adxadserv.com/ascripts/gcr.js
185.98.53.29200 OK 23 kB URL HTTP/1.1 adxadserv.com/ascripts/gcr.js
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (48738)
Hash 4bcc622fafa6d39f3d41ee9e46b585f5
f4870a326a8c0f449cbcd79673406ac1d5e6f6c8
c7ef60433000d6807163ee4643bd7774e783e4d0711513d134ae008f04f4a8e9
GET /ascripts/gcr.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 16 Dec 2021 16:04:11 GMT
ETag: W/"61bb637b-1434f"
Expires: Wed, 30 Nov 2022 08:33:12 GMT
Cache-Control: max-age=86400, public
X-77-NZT: Abk73hHPsiP/ReMAAA
X-77-NZT-Ray: f4787b27020ff3180f4a8963eae9f737
X-Cache: HIT
X-Age: 58181
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br
adxadserv.com/ascripts/pxl.js
185.98.53.29200 OK 23 kB URL HTTP/1.1 adxadserv.com/ascripts/pxl.js
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (36114)
Hash 72d1139e9f2e6ebe3f51c9193edb4439
cd356eb9eaab433ac792406ba36d4304b6450571
74553d0effe74cd6a4f1424940f7fd133c5457ff1d5c53030e651ec6612bec88
GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: W/"5f6dbe8d-12fee"
Expires: Wed, 30 Nov 2022 08:33:06 GMT
Cache-Control: max-age=86400, public
X-77-NZT: AblMCgEaijH/S+MAAA
X-77-NZT-Ray: 382b0f19a06c1ed30f4a896363c95b38
X-Cache: HIT
X-Age: 58187
X-77-POP: amsterdamNL
X-77-Cache: HIT
Content-Encoding: br
r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
185.98.53.17200 OK 757 B URL HTTP/1.1 r.trackwilltrk.com/s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6=
IP 185.98.53.17:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (561)
Hash 67c2639c11128b581ba0deb3f0990341
5c34528772d5429676bc4b17bcaaf0ecb76d47bf
a00b2bd3868601ed6160bc121e6d4a2802325aadda9c5134841fa46df2962232
GET /s1/4121eca0-ff5a-4c89-9772-768fbbfd1900?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=784300&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 757
Connection: close
Set-Cookie: uid=wqQ_QZPapp; Path=/; Domain=trackwilltrk.com; Expires=Sat, 03 Dec 2022 00:42:56 GMT; HttpOnly
X-Request-Id: de63c400-7de0-4396-9fa8-facb02459242
i.jads.co/1x1.gif
69.16.175.10200 OK 43 B IP 69.16.175.10:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
etag: "1457030838"
cache-control: max-age=17283490
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1669941776.dop225.sk1.t,1669941776.cds259.sk1.hn,1669941776.cds217.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 512683cf227571d627f861cc0f837f87
b33f9fec7ee16507d6f8dc07f5034086ccace3bf
e1398384bb4c5717fbd8474a4e6e61b3251a8ac0f37d6428395f5fd6189e5af5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1398384BB4C5717FBD8474A4E6E61B3251A8AC0F37D6428395F5FD6189E5AF5"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4004
Expires: Fri, 02 Dec 2022 01:49:40 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332
185.98.53.29200 OK 0 B URL HTTP/1.1 adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=0e0dd6d4-d2d7-4014-91c8-536e62305ffd&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=42e39631-71da-11ed-a3c4-e25a5bb9767f&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1669941774161&fpid=&feid_sa=1669941774161&sid_sa=1669941774161&feid=37d68f19b28f7dd2700c8541983bedd7&sid=48f06c9893d7407df752ed751cda1518&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.332 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Length: 0
Connection: keep-alive
static.javhd.com/h5/files/overlay/16-overlay-preview.png
185.76.9.15200 OK 507 B URL HTTP/2 static.javhd.com/h5/files/overlay/16-overlay-preview.png
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash db53e5222242237b3bf9cfa0e57ba892
682eff797b686263d1259a4cb5e56475f6b49abe
90b8ab0ecc1d52738d7f0c0bb413375bd6e2f7d7f22d4adf1b1df004ee5d4d43
GET /h5/files/overlay/16-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 507
last-modified: Tue, 06 Feb 2018 18:18:14 GMT
etag: "5a79f166-1fb"
expires: Tue, 23 May 2023 11:06:53 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684840013
server: CDN77-Turbo
x-77-nzt: AblMCQ1TX1H/Q9/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a896381089709
x-cache: HIT
x-age: 16637763
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/16-overlay.png
185.76.9.15200 OK 4.2 kB URL HTTP/2 static.javhd.com/h5/files/overlay/16-overlay.png
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash d66274c14945df9c552f3f29b2edb39e
ab31d71d26c8486aa6e5662459341e1db4171ecb
eca2a576dcb0e650c0701e96f1d4e7336cd0adc970cedbc7e8a72638ca2aa43e
GET /h5/files/overlay/16-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 4224
last-modified: Tue, 06 Feb 2018 18:15:47 GMT
etag: "5a79f0d3-1080"
expires: Tue, 23 May 2023 11:06:55 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684840015
server: CDN77-Turbo
x-77-nzt: AblMCQ0J4bn/Qd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a89636bdd9a09
x-cache: HIT
x-age: 16637761
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.adxadserv.com/js/adb.js
185.76.9.14200 OK 1.1 kB URL HTTP/2 static.adxadserv.com/js/adb.js
IP 185.76.9.14:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (511), with CRLF line terminators
Hash ec0048861d2d67666b00f86010bf5811
dbcb32be836ebcd25cca91b9e7a16e83e591c753
3aa3e1b500c601610b209d6ee34760c49433f126067be043d3dd1d6e8a35ae20
GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1670929619
server: CDN77-Turbo
x-77-nzt: AblMCQ2rqF7/PL8AAA
x-77-nzt-ray: c0a4cc28b5e490890f4a8963018ebd17
x-cache: HIT
x-age: 48956
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
185.76.9.15200 OK 2.5 kB URL HTTP/2 static.javhdhello.com/h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bc995aa2f3c65c85dee8eb04342e92e6
20b97959906883d8b4947d50af440acade82ba9c
7cafb3a129bc038b5495be3b08e1854795e92bb65107e82aac1b5e79904ec914
GET /h5/files/15540/728x90.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2F71c4b258-85d7-4b68-903c-9b5137533963%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D784300%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzY3NTUsImJoIjo5MCwiYnciOjcyOCwiZiI6MSwibyI6MSwicCI6MSwicyI6MjEwMzR9 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Mon, 07 Feb 2022 07:42:09 GMT
etag: W/"6200cd51-c7f"
expires: Sat, 31 Dec 2022 18:21:37 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672510897
server: CDN77-Turbo
x-77-nzt: AblMCQ3u6BT/X1kAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a896399ac4207
x-cache: HIT
x-age: 22879
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.javhd.com/h5/files/overlay/1602-overlay.png
185.76.9.15200 OK 1.8 kB URL HTTP/2 static.javhd.com/h5/files/overlay/1602-overlay.png
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7
GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ02d7n/wd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a89637169f909
x-cache: HIT
x-age: 16637889
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
185.76.9.15200 OK 1.7 kB URL HTTP/2 static.javhdhello.com/h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c52e0dbbab8062cffa5eba7bc5138c45
d013a144558a847e192638f201625d910bfe761c
66e06d3eabb740f04f405a172506f6ab887dc6e4706c066039306398208c54fa
GET /h5/files/16581/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D42e39631-71da-11ed-a3c4-e25a5bb9767f%26p%3DeyJiIjoyNzg2MDUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Wed, 19 Oct 2022 09:58:18 GMT
etag: W/"634fca3a-c86"
expires: Sun, 01 Jan 2023 00:42:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672533776
server: CDN77-Turbo
x-77-nzt: AblMCQ2LdTyh
x-77-nzt-ray: c0a4cc2851d82a8c104a8963fee4da04
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=794135
185.94.237.101200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=794135
IP 185.94.237.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash 64478814d4ab7cdf89417863e6b57e7c
d5db686e747c9a995d696b14c7b8a8a5e033260a
c78bd751ed51ad1be90ca8e220bc62fe34ef0db9224d1393e5ddcb54bb52ea29
GET /adshow.php?adzone=794135 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=3c1275a056642800a71aa40bdc1cbe59; expires=Sat, 02-Dec-2023 00:42:55 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Mon, 05-Dec-2022 00:42:55 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4
185.76.9.15206 Partial Content 523 kB URL HTTP/2 static.javhd.com/h5/files/video/3189-24876-728x90.medium.mp4
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 523 kB (523070 bytes)
Hash 7afb753a3f506f7a42e47f5cf6f17a09
4687980db9a38006389264a9ae951f962c704f9a
94c347a11aae7ddc48698d16c64cc0b097e210f75115420eb023f25b3830199b
GET /h5/files/video/3189-24876-728x90.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 523070
last-modified: Mon, 07 Feb 2022 07:42:08 GMT
etag: "6200cd50-7fb3e"
expires: Tue, 24 May 2022 11:07:07 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669988818
server: CDN77-Turbo
x-77-nzt: AblMCQ3rsq7/vpkAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a89635f305f10
x-cache: HIT
x-age: 39358
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-523069/523070
X-Firefox-Spdy: h2
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
173.233.137.60200 OK 13 kB URL HTTP/1.1 liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP 173.233.137.60:0
File type ASCII text, with very long lines (37161), with no line terminators
Hash 418491140e73d809e8ddb19fa81550c9
e2280805096fa3c6aa3224dacc8638f653727d91
dabaa43d1cd4aeab56412bf0304b9a888477f5c31249fdbc5080979daba12589
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74c10df83ced355eb853e2d69f39676f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4
185.76.9.15206 Partial Content 551 kB URL HTTP/2 static.javhd.com/h5/files/video/3142-11518-300x250.medium.mp4
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size 551 kB (551282 bytes)
Hash d57f9c72bffb62004a30bd3eb1ad58c0
81866548694b3ff0f7eab36c1224cab49b1dd72a
27a86038b0db14fb8a9df5220317d028dd21ff9b62541184b2feed8af3d47b41
GET /h5/files/video/3142-11518-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 551282
last-modified: Wed, 19 Oct 2022 09:58:17 GMT
etag: "634fca39-86972"
expires: Tue, 22 Nov 2022 14:34:26 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669992006
server: CDN77-Turbo
x-77-nzt: AblMCQ2lamb/So0AAA
x-77-nzt-ray: c0a4cc2851d82a8c104a896349e76410
x-cache: HIT
x-age: 36170
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-551281/551282
X-Firefox-Spdy: h2
adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv
185.98.53.29200 OK 65 B URL HTTP/1.1 adxadserv.com/t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv
IP 185.98.53.29:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash a892e069f556f25c7ce628fb03404dda
7578ab39230faa30ac901ee87f263ab1861cd02a
dd989e206a4e69c4a87aeba0080d68f76ab90c22a2c318c7c211c6b8b16b09ca
GET /t/re/v4?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgas-246-the-best-of-mitsuki-an-8-hours%252F%2526dt%253D1669941773802%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1669941774152&t_i=1669941774161&u_tz=0&u_l=en-US&u_l2=&u_l3=&n_c=&n_s=&pv_uid=f0af221c-cee7-4499-9996-2fae5cb6a628&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&p_tt=desktop&p_l=en&p_z=NONAUTHORIZED&p_u_s=GUEST&fpid_sa=null&fpid=&feid_sa=null&sid_sa=null&feid=80b2653551ad30149e4a12351747324e&sid=ce654894599f73bfa32c7184749899d3&u_adb=0&vn=R-1.0&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&st_d=%7B%7D&e_d=%7B%22spotId%22%3A%2262fe56a361d6e272ea2a6a61%22%2C%22impressionId%22%3A%2242e39631-71da-11ed-a3c4-e25a5bb9767f%22%7D&t_op=0.574&cb=gl.cb.pv HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/javascript
Content-Length: 65
Connection: keep-alive
Set-Cookie: xfeid=b0e9ec0019a27d2961b19b682b11df1f; expires=Tue, 01 Jan 2030 00:00:00 GMT; path=/; domain=.adxadserv.com
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 864000
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3159
Expires: Fri, 02 Dec 2022 01:35:35 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3159
Expires: Fri, 02 Dec 2022 01:35:35 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 9240
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0410d88544fb52c82ed556cf1c103567
bc8bb791cc010ab3d025803d925e7f5fb592c420
0af7dc239e8822d60002423dfa22ead8abdba894cf2aa31572518762316a0e9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AF7DC239E8822D60002423DFA22EAD8ABDBA894CF2AA31572518762316A0E9B"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11014
Expires: Fri, 02 Dec 2022 03:46:30 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JZAFwGz7kAWplsA1qeraQTjirrZb29JTnUPii5BcPg5tzxcBLtt0WA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:24:25 GMT
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
age: 8311
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 62834
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 11289
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 10283
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60ccdde4ce64b4a3fe6fc2a059b3bde1
5ce119089f4a4cd139b523889b6cd84cd79191f4
2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 10445
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f4c94bde9a76bc603150ea8268ef5257
a0bcd3dea7384a387d0d984b99cb5b7b60cdaa84
8ce45b3fdf78e48cf77bb7ed8499a37df26b30827aa2919c061561e28209ef4c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8CE45B3FDF78E48CF77BB7ED8499A37DF26B30827AA2919C061561E28209EF4C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12103
Expires: Fri, 02 Dec 2022 04:04:39 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
185.98.53.17200 OK 749 B URL HTTP/1.1 r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP 185.98.53.17:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (553)
Hash 323f6e863cb97c32f422e2bf2288c36c
abc7c2c4948f4289bde0d8f0998cc3d3da43f232
fa4ce96ff99a60e6082b05e3d753124cada520a7b84b6928e87bf47fc7c3dd4d
GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 749
Connection: close
Set-Cookie: uid=r0LVQSPaMp; Path=/; Domain=trwl1.com; Expires=Sat, 03 Dec 2022 00:42:56 GMT; HttpOnly
X-Request-Id: 54719538-0998-4ba6-bc65-293281ad4749
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1f1beac7928ab3d37cedfb7e9db6de8c
dbec1313a709861142ee3b08c1031e4c297435d0
25faaa716072ce2493633a4252fde0606c5da842936e6f4874eb461c180367de
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "25FAAA716072CE2493633A4252FDE0606C5DA842936E6F4874EB461C180367DE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2957
Expires: Fri, 02 Dec 2022 01:32:13 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 86ccba20424bf990eb3d3dedeecc1f70
f25c365e531305b99f2de451b5a5dccba12abf90
e72ebdf45378915e055ddbd27dba3f34bfcffed4c17d1cef451ec19b00d19a41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E72EBDF45378915E055DDBD27DBA3F34BFCFFED4C17D1CEF451EC19B00D19A41"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4782
Expires: Fri, 02 Dec 2022 02:02:38 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
analitits.com/t/xfeid?cb=gl.cb.xf
31.220.24.19200 OK 65 B URL HTTP/1.1 analitits.com/t/xfeid?cb=gl.cb.xf
IP 31.220.24.19:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 5b77b74ba4292a6610d970dfbd0b5379
1b7170ae232b5fe0daca5d2515925d0683b53712
fb0eb7daeae1bdb8ec0bee35a9d30947428f1485616b0e746480957163041fcf
GET /t/xfeid?cb=gl.cb.xf HTTP/1.1
Host: analitits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Fri, 02 Dec 2022 00:42:56 GMT
Content-Type: application/octet-stream
Content-Length: 65
Connection: keep-alive
Set-Cookie: xfeid=f6d1cc60398c3b42621b206b3122e3cc; expires=Tue, 01 Jan 2030 00:00:00 GMT; path=/; domain=.analitits.com
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 864000
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f60f02a95664f3be8fd0b4e614010c6a
bb83d56ac8ae98bff5e9954dffc7f2035b47f63f
eddc54420a811685bfd0c2c14dd13340c9380b529bf1bb8c0426baa0375a67f2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133521
Date: Fri, 02 Dec 2022 00:42:56 GMT
Etag: "6388ac95-1d7"
Expires: Sat, 03 Dec 2022 13:48:17 GMT
Last-Modified: Thu, 01 Dec 2022 13:31:01 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n4sdWUvX1q7qFxrvXiCVWdO9moTohmMhu9yWYIloS1AAC5d4oLwYQw==
Age: 1036
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 57c2e18b74dd22cea36fe060438592a1
9cc0c5f136a2aecb4498d83b7d0ed657387b686b
5176cb780a476c7e7e5b207a68c629af7e8f889d8790583dc1a62cd82785da24
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; expires=Mon, 29 Nov 2032 00:42:56 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1f1beac7928ab3d37cedfb7e9db6de8c
dbec1313a709861142ee3b08c1031e4c297435d0
25faaa716072ce2493633a4252fde0606c5da842936e6f4874eb461c180367de
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "25FAAA716072CE2493633A4252FDE0606C5DA842936E6F4874EB461C180367DE"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2957
Expires: Fri, 02 Dec 2022 01:32:13 GMT
Date: Fri, 02 Dec 2022 00:42:56 GMT
Connection: keep-alive
js.wpadmngr.com/static/adManager.m.js
45.133.44.24200 OK 35 kB URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash d85c43891c2e2652d1303d8aaa4eb203
e87e9df9c0762e8e37ad1a581338c3627102039a
bbcd8ea9c3dd26c5a96d84c92aafdc1ba23ac237bd04b40aa68d6890bc36d392
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 30 Nov 2022 13:10:49 GMT
etag: W/"63875659-17718"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:56 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.202.23200 OK 28 kB URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.202.23:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash d0a284f11b604a8b845db34aefc98ac0
67b89b3c81fc04f557ed3adf93a7a631731dc394
69b49c15ef12f1464e46fb0722233854730db5e3b209b1deb7222a4d73ef6dd1
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 50f0e24e71988aa8f47614f3e4eab3b6
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 02 Dec 2022 00:42:56 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XlgppSGp71iS0g%2B79u077q5uEmm6rb4ocDLnAS1QUymAzO1a3W5Mj%2BIn4%2FxL6rp4exF8XifW8WHN%2F8nH8DwsdclzJ8UpXkcobG%2BSk9%2FE4rgi%2B9h%2FhIynyQWcO%2FXqfarBG9Ew0NU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006874b0d74a5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 57c2e18b74dd22cea36fe060438592a1
9cc0c5f136a2aecb4498d83b7d0ed657387b686b
5176cb780a476c7e7e5b207a68c629af7e8f889d8790583dc1a62cd82785da24
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
na.nawpush.com/tags/59555?version_name=c
45.133.44.24200 OK 1.1 kB URL HTTP/2 na.nawpush.com/tags/59555?version_name=c
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (1089), with no line terminators
Hash f6c0a64ee48aa1d5d1571e0c5fd2dc61
ba486a68574295bbf58cdab39803f91dccb71396
6e7defee93dc0fb707de9c3351c468f03ee1dceb12da10212c253ed55520323e
GET /tags/59555?version_name=c HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/json
content-length: 1089
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 126c46acb90c59f06c0752d0fb9c2d1a
017c2fe50b877c23fb71d27a25cb6bc1b1029849
05eff06efb1ac669dc020afb353645daa96e86ca6489f1a915927a1bf485454f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05EFF06EFB1AC669DC020AFB353645DAA96E86CA6489F1A915927A1BF485454F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14048
Expires: Fri, 02 Dec 2022 04:37:05 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aa434368e2f4378127ff86ea9fba2b1b
28dcc7871640b1103d49965a6df7e8d34ff77e9f
9219b3f3bade5b969822bded87e808423b152210cea6cb3da9bcb84daba1ce46
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9219B3F3BADE5B969822BDED87E808423B152210CEA6CB3DA9BCB84DABA1CE46"
Last-Modified: Thu, 01 Dec 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11503
Expires: Fri, 02 Dec 2022 03:54:40 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
bc5b242f88.86521e18d4.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNDcwNTc5NjI1OTIxMzE1ODAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjE3LjMiLCJ0YWdfaWQiOjU5NTU1LCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjYsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MCwidXNlcl9rZXl3b3JkcyI6IkdBUy0yNDYlMkNUaGUlMkNCZXN0JTJDT2YlMkNNaXRzdWtpJTJDQW4lMkM4JTJDSG91cnMlMkNCZXN0SmF2UG9ybiUyMCJ9
45.133.44.25200 OK 0 B URL HTTP/2 bc5b242f88.86521e18d4.com/in/track?data=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
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/track?data=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 HTTP/1.1
Host: bc5b242f88.86521e18d4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=59555
157.90.84.242204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=59555
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www4.bestjavporn.com/
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a1a125695fbcd312685fe655dedb60d2
c26e91d38e6bbb5dec2c62b73bdea02f9dd39b43
220b199f2775f9b0c86f9e1d85a95983aac4c0f01a1b6e7c60a13d95235e0dfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "220B199F2775F9B0C86F9E1D85A95983AAC4C0F01A1B6E7C60A13D95235E0DFD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6058
Expires: Fri, 02 Dec 2022 02:23:55 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
js.capndr.com/popunder-admanager/build.m.js
45.133.44.24200 OK 16 kB URL HTTP/2 js.capndr.com/popunder-admanager/build.m.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash cb3ec382676442167ac76dfb24126144
ea404d69b763e9f2cc2b02b3360cc734280c068b
f534bb4e7f31b082c7c4d7b79fcf4f83f4b0972e80451c54100ec1d64c92cdd1
GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Dec 2022 09:44:36 GMT
etag: W/"63887784-add7"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:57 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f91cfd55ec303f0077c2bc640275e2b8
70b31027c05ea36c7b253cf9a0b1a8840ab4e55e
08fa1f3a3ba010ec53994869a08542bf0ad3561e99358ffba6c10ec87e916ff2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08FA1F3A3BA010EC53994869A08542BF0AD3561E99358FFBA6C10EC87E916FF2"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4459
Expires: Fri, 02 Dec 2022 01:57:16 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=53493016-0bb3-4819-885b-26d653f966b5&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=2bd8d300136a6fd50bcb5a7f3f4a12fa&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=0 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 90f05a20b2770868e28c0dd6e49484c5
Strict-Transport-Security: max-age=0; includeSubdomains
integrityprinciplesthorough.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1
173.233.137.60200 OK 4.3 kB URL HTTP/1.1 integrityprinciplesthorough.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1
IP 173.233.137.60:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6106), with no line terminators
Hash 5a68e5434822b45ddd991cd03c566a44
8ba70c57c3a88883d31bab0cb355fb048bede681
356c6dc4a23a20c0202879e1be26246a51dce512f9ed051da0ef41794d26dced
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa&uuid=53493016-0bb3-4819-885b-26d653f966b5%3A3%3A1 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; expires=Fri, 09 Dec 2022 00:42:57 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uncs=1; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 03 Dec 2022 00:42:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c803ddaa17c581a0ce46473dfddf2c10
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
integrityprinciplesthorough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 integrityprinciplesthorough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRevzq%2FD93sx4sWD2IKCojtbPT09O5MgizFGojEJSSSgCFZ1Ve9WtrqrqeqenuwpGJB4m3jyx6X3M7tZokET71Hp5KAsKDseZA%2Fuxb9AhJxlNoOLn0O99%2BrzDu%2Fzee%2FjtXKXUJRs5%2Fw7ZlVpzeajFvVfvKwyYSrnn73kB7RFj%2FuXVdbtHPeH08cOjgU0atGX%2FDdlvGLm2zSgNKCBf0pZmZjh%2FB4Lld%2FpB60%2BbXXarSDqYGj%2FW7vSg2MexGCXPAklJoeXf74HFTfI0rsnpVspTP7KG2mpWWEsBmLz3WwlM1WGdD9NrIck25x1w7gJIZ8dgMk2ZwpgButTBeBqQrzfA%2FBsczYm%2BGDj8aRcQ2bg4v%2BoBg2kbqBYg9hchxLbBIgFzp5Dlt46a2zFrj5m2ZSdkEOP%2FoaqJuTQH08hS785odXQv2h0WSiTOQyTGmrYQC01yMsHKFY9qOoB4uIjKPELmX90Blm6fs5pAyV2no%2FCTj%2BkQXeOch7OdXpBf67Xi%2Fhcuyu6UZj0u10e7VmkVAOVNNByBOYOonQeSuWhTDyUuYdU7Pgs6ieULiQ8CcNeJ47jMIzjqNcVkQg7vYSijKcaRijyEWI9QmyvIbfXsKI%2B3Y5e2P7gZdjyR7jlGk54cAXBQNSoJEHlCCpGUCmCqiCoBvWG0K7t6ltCu5IHs9iexbAem2JpjW2YYklmZC3fJUen9nlHnruJFbnjt7noiZDSIOyybiIiymMesYUkTDosaCcMTtVQ7gCY87CqJuTgkevI1YQcOP4XOGvgdINYPQFWPgNWjRfaFGx53OlRrGbfcumKK2yQG5u1YpNCmBp5cQjFVW9N75Kn9zZ57P1fIeOtxZ923fev3t9GbGvktsYV9ZBgSd8YXzAVWb9gKkfuncsLlapVNt3yxYIV8vBXb8urlbHi9Ek3uv1aPCWm6Z1L0hVnWCZUtuTI1yeUENKeMjaW5P5pd1ny86VbPlHarMzPnH%2F91Ok0t9I5ZbIGTG1%2F%2BANiNSH%2FGx3du99ne%2B9B2Qa2rJGWW2QGKNMgzq%2FB5VuLtz%2Bf4gs4Q2D1fg%2FPPVRlPbZtvv%2BpFYGW%2BzXjNZzcWvzurv%2Fwy40%2FweW%2Fdqy5G1iyHlhxHVlaY2BrDHQNpkdw5cFxkdutxd%2FCPYBrb8y19da5tvrmY2ud2vFllNBE0rbkSZ8nC4yKftLpc9YP5AKPWIDCTeJP3jr6DwAAAP%2F%2FAQAA%2F%2F87o6f7lwQAAA%3D%3D HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fb8604719ebf753fe2f276808b3f7a04
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9abc24f39564dc848d6bcdefbcdafc7b
b8c7e8e03ebea34dc55cb1edc5821875ef3b8ced
746046171e16c754f1385bee917d0d771988a6cc69bfef15b30af8d773cad83f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "746046171E16C754F1385BEE917D0D771988A6CC69BFEF15B30AF8D773CAD83F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=863
Expires: Fri, 02 Dec 2022 00:57:20 GMT
Date: Fri, 02 Dec 2022 00:42:57 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12210
Expires: Fri, 02 Dec 2022 04:06:28 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive
integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177
173.233.137.60200 OK 0 B URL HTTP/1.1 integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fef%2F6d%2F9c%2Fef6d9ce2996acaba379ea30acdea20ae%2F1632400430.html&l=1218&fd=177 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0f3fa70c4b85f9af8be81db15f2473b6
e5dadf573bde48707d00993b7a0301f7303f1a73
ede2da5cda82417700a040d95008b37aa7a30c1eeb053993b82c74fabbff65ea
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "EDE2DA5CDA82417700A040D95008B37AA7A30C1EEB053993B82C74FABBFF65EA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12210
Expires: Fri, 02 Dec 2022 04:06:28 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3c0282fb1989711e4a48dce935bf7813
30bed8a42fc820e4feb64bd22ddfefe120889014
81e304f070d6b7aa4dc67c727523578cd18a665a5cfe674a3b1391f3f39fc11a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81E304F070D6B7AA4DC67C727523578CD18A665A5CFE674A3B1391F3F39FC11A"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10827
Expires: Fri, 02 Dec 2022 03:43:25 GMT
Date: Fri, 02 Dec 2022 00:42:58 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/img/close.png
172.64.108.13200 OK 769 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/img/close.png
IP 172.64.108.13:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 13b3b0cc6ce924780c0eec0b24c40c33
53b78225158a60f9327e135be26e365eb842f0df
7907c875d2dd81230f15826dffe1faa695cfb1f385adbb4d9480058d0d0112ad
GET /sb/ssp/vpn/os-box/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: image/png
content-length: 769
last-modified: Tue, 21 Sep 2021 12:06:12 GMT
etag: "6149cab4-301"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1421481
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XWIpfYnE%2BCPSH910G6NZo0%2BDPoSY1FIaL0yOFkMWaHNh9sl%2Bf634e8LALgSEnIaNw9jIfN8f%2BTt2KUQb%2BELJjLdW%2Fb0%2Ft4NGNU9fJLoyisH67ebQ523vzacJhdIXSAi%2BHyMNmeTB1%2BPW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006916b6c76e4-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/css/style.css
172.64.108.13200 OK 1.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/css/style.css
IP 172.64.108.13:0
Hash de6c1dce35c5e01b8c4251aa1fc195c0
99957c8e9c79b2692935c3bae35066bae0d04029
eb97f9baed94ca22d574610473ee98d23bfa16a34bd9bf23e6b283ad80197287
GET /sb/ssp/vpn/os-box/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: text/css
last-modified: Mon, 24 Jan 2022 10:19:55 GMT
etag: W/"61ee7d4b-e58"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 912192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rG4euaZvBqkpoIwUztuZ56D6w2%2FlUgYbhOiGILOSXP4YFqvp%2FpzgGhm57WbC7HXTqaoAL92ixUv3v7xkGwOJ49o8nGftQZnG6a2FX31ULpEgcpR4VpCz3FpjhusUkwrDtvJg%2FxiUIMt2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300690db83e690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png
45.133.44.9200 OK 133 kB URL HTTP/2 cdn.cloudimagesb.com/si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size 133 kB (133206 bytes)
Hash cdfb8db89366e933cc7475f5309eaea6
a310f5e5f738447abf8c43b5df2ba01d0f61d206
eeca6aa074302eecc1294fa1a44297f08adf932abd6c579541a535736a9ec0de
GET /si/11/cf/48/11cf48d4558fb051074d81f264532bb0/1669734286.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: image/png
content-length: 133206
server: nginx/1.17.6
last-modified: Tue, 29 Nov 2022 15:04:55 GMT
etag: "63861f97-20856"
expires: Sun, 04 Dec 2022 00:42:58 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html
45.133.44.4200 OK 5.3 kB URL HTTP/2 cdn.barscreative1.com/sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
Hash bf99eec3262e0377dd9b9454f9aed57e
2442bcaa64e4f8c64b1486f50eaa5f3ebe528736
b74775f19064ff4eda7659e3460d132abfdaf61a41854acf1782ba1fa8f6fe26
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/ef/6d/9c/ef6d9ce2996acaba379ea30acdea20ae/1632400430.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Thu, 23 Sep 2021 12:33:57 GMT
etag: W/"614c7435-4c2"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 02 Dec 2022 01:42:57 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35
173.233.137.60200 OK 0 B URL HTTP/1.1 integrityprinciplesthorough.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fos-box%2Fsmall%2Fjs%2Fscript.js&l=775&fd=35 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 104944
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 104923
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
integrityprinciplesthorough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA
173.233.137.60200 OK 7 B URL HTTP/1.1 integrityprinciplesthorough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzYsc1Rd9la%2FF77cx4saFWIKCotNT1dXVU50ggzFGojEJSSSgCL6vmnmZV%2FWK96q6JrMKBiTuOq782NScnskQDZq4j0olC2VAmXYhs3A2%2FgUiZC09GRw8i3fvfecu7jn3frxa7ZAAFd0%2B%2F45ZUVrT2bgT%2BC9eVrkwtfPPXvLDoBMc9y%2BrvN877i9PHzs8FgZxJ3jJf1PyJTPbDcIgCIPQP6WsTM3y7C4LVdwZhJ1B0Ol1O2Hcw7L9b%2B0qD456EMMd8iSUmBxe%2FPkeFG%2BRZ3dPSrdUmuKVN7JK09JYDMXGu%2FlSbuoc2X6aWg9pvrHXDeMmhHx2ACbf2FMAM1ybKgBTE%2BL9HoLlG3tjgg3XH0%2FKNGQOJv6PethC6haKtuDmOpTYIgAXOHsOeXbrrLE1vfqYpVN2Qg49%2BhuqnpBDfzyFPPvmhFbL%2FkWjq1KZ3GE5baCWW6iFFkX1AOWKB1U%2FAC8%2FghK%2FkNlHZ5Bna%2BecNlBi%2B%2Fk46g2iIOzPBIxFM70kHMwkScxmun3Rj6N00O%2BzeNcipVqotIWWI1B3EJXzUCkPVeqhKjxkYtun8SANgrmUpVGU9DjnUcR5nPRFLKJekgao%2BFTDCGUxAtcjcHsNhb2GJfXpVvzC1gcvw1Y%2Fwi02cMKDKwmGokEtCWpHUFOCWhHUJUE9bNaFdl3X3BLaVSzci929GDVjUy6s0nVTLsicrBY75OjUPu%2FIczexJLf9LhOJiIIgjPq0n4o4YJzFdC6N0h4NuymFUw2UOwDqPKyoCTl45DoKNSEHjv8FRls43YKrJ0CrZ0Dr8Vw3AF0c95IAK%2Fm3TLryCh0WxuYdbjII06AoD6G86q3qHfL07iaPvf8rJN%2Bc%2F2nHff%2Fq%2FS1w26CwDa6ohwQL%2Bsb4gqnJ2gVTO3LvXFGqTK3Q6ZYvlrSUh796W16tjRWnT7rR7df4lJimdy5JV56huVD5giNfn1BCSHvKWC7J%2FdPusmTnK7d4orJ5VZw5%2F%2Fqp01lhpXPK5C2o2vrwB3A1If8bHd2932eT96BsC1s1yKpNsgco04IX1%2BCKzfnbn0%2FxBZwhsHq%2FhxUe6qoZ2y7b%2F9SKQMv9mrIGTm7Of3fXf%2Fjl%2Bp9g8l87Vt0NLFgPtLyOPGswtA2GugHVI7jq4Lgs7Ob8b9EuwLQ3Ztp6a0xbffOxtU5t%2B3HYkwlL5rgQTHIRznWjJAqCrhC9uYEMByjdhH%2Fy1tF%2FAAAA%2F%2F8BAAD%2F%2Fy%2BrKR2XBAAA HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 043cb429368d47707408426d949d889f
Strict-Transport-Security: max-age=0; includeSubdomains
integrityprinciplesthorough.com/pixel/sbs?c=1
192.243.59.12200 OK 0 B URL HTTP/1.1 integrityprinciplesthorough.com/pixel/sbs?c=1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: integrityprinciplesthorough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; uid_id2=53493016-0bb3-4819-885b-26d653f966b5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Dec 2022 00:42:58 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/script.js
172.64.108.13200 OK 308 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/script.js
IP 172.64.108.13:0
Hash 39c765b77d3242fbd6e5bfafd91a8e91
204f654be2fa8046065146ade36783b31822fa79
0e4c14f1eca632cdd5cf98dbd0f4c2f8c0f379ddf12dab2b7145b803952202b7
GET /sb/ssp/vpn/os-box/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:06:14 GMT
etag: W/"6149cab6-307"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 912192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ErkCUPOeQplKJvaz5N5pNFYcb8ZYOQIajXeq8QVfL25NizckFU7ulbiiGVkc06I2VDZiL6A3MVfP%2F0ibwKXhVWTGFluDmaO1aVqkjdIn1nQKFyWrqkvFH0m7T2fBeDFK%2B4GLvZuLs10V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300691cbf2e690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.javhd.com/h5/files/css/style.css
185.76.9.15200 OK 0 B URL HTTP/2 static.javhd.com/h5/files/css/style.css
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /h5/files/css/style.css HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/css
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:47 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839887
server: CDN77-Turbo
x-77-nzt: AblMCQ0LMtn/wd/9AA
x-77-nzt-ray: c0a4cc2851d82a8c104a896370078e09
x-cache: HIT
x-age: 16637889
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.javhd.com/h5/files/video/6684-13625-300x250.medium.mp4
185.76.9.15206 Partial Content 0 B URL HTTP/2 static.javhd.com/h5/files/video/6684-13625-300x250.medium.mp4
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /h5/files/video/6684-13625-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: video/mp4
content-length: 497611
last-modified: Wed, 23 Nov 2022 13:03:02 GMT
etag: "637e1a06-797cb"
expires: Wed, 30 Nov 2022 10:10:53 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1669976085
server: CDN77-Turbo
x-77-nzt: AblMCQ23Bv3/e8sAAA
x-77-nzt-ray: c0a4cc2851d82a8c104a89639ba67425
x-cache: HIT
x-age: 52091
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-497610/497611
X-Firefox-Spdy: h2
pics.pornfhd.com/s/digital/video/13jj00039/13jj00039pl.jpg
104.21.235.63200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/digital/video/13jj00039/13jj00039pl.jpg
IP 104.21.235.63:0
GET /s/digital/video/13jj00039/13jj00039pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/jpeg
last-modified: Fri, 24 Aug 2012 04:13:35 GMT
vary: Accept-Encoding
etag: W/"5036ff6f-9b06"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Neh1uvlIBawDhTaQPmAEdaAtSk1lX8CemJlDNjJ%2B9XB3QbAC%2BEGorPMOi%2FWXgTAOPhFxwuvriYkW2M05AcldXH7FAZIYAGPCh89wyK4mxrDNiwZ333N8jYJunbJVtvUfgU6v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcf73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 29160
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4l6B%2BEVVPXU2BuVYcOuGxshzrMfzxsucm7kVRdaVQXj3TUhGyMVEtG0wWB9Jz%2BYpURlfV%2FqFB8CjghZdIdUDaYdNzgVMtMQ3y6rooz9TELusCUTBW36Gbz56MYtIVktzT4jwfedo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd32b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=
185.98.53.2200 OK 0 B URL HTTP/2 ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags=
IP 185.98.53.2:0
ASN #39572 DataWeb Global Group B.V.
GET /ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/&dt=1669941773802&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
X-Firefox-Spdy: h2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.68.13:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Wed, 30 Nov 2022 18:31:41 GMT
etag: W/"6387a18d-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b2rBfQh9YIlU%2BjCgL5R4UXxn1VCiKGOz0IKArTkb7TayBuQAu%2Ful5w6VeYelqbK7Q8%2FRbq4kNbpg8ottfoMAJJMheWFpeON%2F0x8dWbqNEkwn9xA0BAohclVWy2oSt3waJlTVUMI1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77300679ed1fb500-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 04 Dec 2022 00:42:54 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 212.112.122.245
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 2187
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyDdCPax%2FaEmd3p1t958iiMOcdc%2B6VcIqduolHQSk4uOOSNr8m0dlEzue6V%2BDUxa2whxe%2FuzY8ZWFspf3bLz91iQaiK%2BuK3GZmZNn%2F4QL2cMtZ1LkNYU0l5VxqOnlk0v%2BrEGLiGz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed21b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=51865
etag: W/"635fdc6a-ca99"
last-modified: Mon, 31 Oct 2022 14:32:10 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/main.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eFiQ9VyrWhNdim3jZiHtANh67bB%2B7BRgqyVQMpvrOcIjZA52iZR1UWn8yZTL30V0Xh2gbNQasp%2BqOOmfAEGnt7wW0N9f9cE1%2B9bSBhvi%2Bzlb3Hef622oUaD7M76mJcwX2VLwZc6N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed27b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
pics.pornfhd.com/digital/video/71gas00246/71gas00246pl.jpg
104.21.235.63200 OK 0 B URL HTTP/2 pics.pornfhd.com/digital/video/71gas00246/71gas00246pl.jpg
IP 104.21.235.63:0
GET /digital/video/71gas00246/71gas00246pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Tue, 02 Oct 2012 05:28:01 GMT
vary: Accept-Encoding
etag: W/"506a7b61-2927f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 33037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4xOUen1NsGC53f9hQ33eME2F1WYjjsl6x710y7B9KP888AWrktv3Sso67BnY2yVTiMraqZvp3I9ur%2B3oTIEylbNt%2B6AI9ervvbGIUJHhGo%2BihUnSwo9TorOvVeuyZxJBVkkB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067b4aaa73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP 172.67.68.13:0
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51005
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TwToZWQAWlByEpOZQ9KS4uek6rfod82uCZpyfYm%2FuhbQfMmj4fzxKbovLiymbawJ5FjWPEKOOoHrzQuGUts3NRPqmFdY%2F8yioqv6AUvwxCXcBQw7rqL5Ecq61e%2FKnlLAp99d2tyA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679fd2fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
pics.pornfhd.com/s/digital/video/mbyd00149/mbyd00149pl.jpg
104.21.235.63200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/digital/video/mbyd00149/mbyd00149pl.jpg
IP 104.21.235.63:0
GET /s/digital/video/mbyd00149/mbyd00149pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Fri, 09 Nov 2012 07:00:48 GMT
vary: Accept-Encoding
etag: W/"509caa20-a208"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2584485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KBaynCu7AqFdUw8pCBHIyzlJ7X6tGHr9wAMP%2BJ9T%2BO63AEzOCCyk%2BzI%2F4ESZqswJUSiEJXBjpLrmxivAdy%2F9C7OOTdN4X2nWaBSiXL8Lt0bLTacu%2BYsLty98Ldii3HNfXLyS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcb73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pics.pornfhd.com/s/digital/video/172real00445/172real00445pl.jpg
104.21.235.63200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/digital/video/172real00445/172real00445pl.jpg
IP 104.21.235.63:0
GET /s/digital/video/172real00445/172real00445pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:55 GMT
content-type: image/jpeg
last-modified: Tue, 08 Jan 2013 07:46:59 GMT
vary: Accept-Encoding
etag: W/"50ebcef3-91be"
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfCY%2BgtZKSu3fyuf33dMMyBscPvqInw7J1Vu6kpOcXhKWw7CEFJa62ot%2BQhRtnX1CFqRpi6UiG0LTzKxU8pVURKySjFxH0V%2FZRRBCLYcpipf1ttzqdgVgKMh8%2FuxlFhW5oRY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067cabcd73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
45.133.44.24200 OK 0 B URL HTTP/2 js.wpadmngr.com/static/adManager.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 13 Jul 2022 06:52:04 GMT
etag: W/"62ce6b94-4e2"
content-encoding: gzip
expires: Fri, 02 Dec 2022 00:47:56 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vEpQqYIvxsviIimoyrwuF0kGcgzuXN5d8opvuECV6XhE1yCHtlcSk4BC3%2Bkj0ZNqmSDsVQ63U%2BOVs4u3TPc8GjG%2F4qb4T9y%2FdTzaewV6LkMibgfaPk9TEXleXcHFTJCMH1olC4zl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679dd11b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQCBtZvC21O1CB%2B2GrJcfnay7HzGji3uc05JZuIWOIXfhLQN4%2BskHnESdJHEk%2BcBnQiV2AMUpTuLCTaNDqkcigCtEIcw19yw02TdsWk25bMW7mW5Jf1d74WGIC9qG9SJ%2Fq9MKtrd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed29b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
172.67.68.13200 OK 0 B URL HTTP/2 www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP 172.67.68.13:0
GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gas-246-the-best-of-mitsuki-an-8-hours/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 51006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=exd1wkuLpI7R6ielsNz3DVpJcX6TDyAuXxsJNWNbiLKFjwAj5K%2BV%2FeQo29UMqHry6bRq4EoNhiljkoHE%2BFLAf7%2BIvSV7RN6Lepp5uTRbrx7obDpj9XI07LzGF2L6iwf4z5%2F4vAOv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77300679ed26b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
185.76.9.15200 OK 0 B URL HTTP/2 static.javhd.com/h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /h5/files/16697/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzg4NTksImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:56 GMT
content-type: text/html
last-modified: Wed, 23 Nov 2022 13:03:03 GMT
etag: W/"637e1a07-c86"
expires: Thu, 29 Dec 2022 13:19:53 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1672319993
server: CDN77-Turbo
x-77-nzt: AblMCQ2fNuX/F0MDAA
x-77-nzt-ray: c0a4cc2851d82a8c104a8963169bd020
x-cache: HIT
x-age: 213783
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/os-box/small/js/jquery.min.js
IP 172.64.108.13:0
GET /sb/ssp/vpn/os-box/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:58 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:06:14 GMT
etag: W/"6149cab6-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d53sy3fh4hYm3sfYK%2FtR2uJ0SXfjK1efhET%2F%2BzArCufzy1kgWZdsq7kad7oZHFSpAIIQdePmBu%2Bl6LqIERqKhXLTj5xYyPMBvFwxkpdTzjq%2BWOXjQmUGnEbnO5R0nfwkfOGT%2BNVsO2Zq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773006915b6176e4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&display=swap
IP 142.250.74.106:0
GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 00:42:54 GMT
date: Fri, 02 Dec 2022 00:42:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pics.pornfhd.com/s/digital/video/h_406okas00112/h_406okas00112pl.jpg
104.21.235.63200 OK 0 B URL HTTP/2 pics.pornfhd.com/s/digital/video/h_406okas00112/h_406okas00112pl.jpg
IP 104.21.235.63:0
GET /s/digital/video/h_406okas00112/h_406okas00112pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 00:42:54 GMT
content-type: image/jpeg
last-modified: Tue, 04 Sep 2012 03:32:30 GMT
vary: Accept-Encoding
etag: W/"5045764e-ab7c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2570307
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sR6FeF%2F9Sdv5e8jGr66Aikt6mNCwC3W%2B%2F8XaPO8qHH4TyXWEO32DbykLZ5aIVNl5o5c2Q0J32%2FFKimWxqU3mFhktxb3vxvNtk6p4BtmHS745zsQbSg%2BhGqIilw23O%2FkYfIWE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7730067c9bc873ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
135.181.208.216200 OK 0 B URL HTTP/2 asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid=
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=939&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 00:42:57 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=2cNScfCbgWc7gFmhQKq6; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2