301 Moved Permanently 162 B URL User Request GET HTTP/2 IP
ASN #44676 Perviy TSOD LLC
Certificate IssuerLet's Encrypt
Subjectmangarawjp.com
Fingerprint65:C5:BA:87:05:E6:F2:F8:28:FF:F5:B6:1E:F1:B1:CB:60:14:48:37
ValidityWed, 27 Sep 2023 00:26:10 GMT - Tue, 26 Dec 2023 00:26:09 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: mangarawjp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: text/html
content-length: 162
location: https://mangarawjp.io/
X-Firefox-Spdy: h2
GET mangarawjp.io/images/logo.png
200 OK 21 kB URL GET HTTP/2 mangarawjp.io/images/logo.png
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type PNG image data, 402 x 108, 8-bit/color RGBA, non-interlaced
- data
Hash b9a226309c9fc7aea7ae9cd1bb05551a
ee99d9cdebf9c413b21a91587597273b7b4bc30d
3f1807546621bea0812b9eeec9265cbec300ffecf126a30725795e4df25eaba7
GET /images/logo.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: image/png
content-length: 21243
last-modified: Tue, 24 May 2022 15:03:32 GMT
etag: "628cf3c4-52fb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET code.jquery.com/jquery-3.6.0.min.js
200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:58:59 GMT
age: 1797722
x-served-by: cache-lga21931-LGA, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 286655
x-timer: S1702400340.743492,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
GET libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js
200 OK 2.1 kB URL GET HTTP/2 libcdnjs.com/lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectlibcdnjs.com
Fingerprint92:43:86:E7:A2:6F:88:99:96:74:55:F2:36:29:D8:47:2D:33:3D:1F
ValiditySat, 25 Nov 2023 08:32:05 GMT - Fri, 23 Feb 2024 08:32:04 GMT
File type ASCII text, with very long lines (4087), with no line terminators
Hash 5cc9c38134a67a83eaf64bac28af6ad8
b9b1eb9282538b309fbd510b9fce589422ffe241
64c123cb30024e1c2c17887e4038c9242d486e2972fb949af1730fcc51b428c2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /lib/vanilla-back-to-top@7.2.2/vanilla-back-to-top.min.js HTTP/1.1
Host: libcdnjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Nov 2023 20:07:04 GMT
etag: W/"65440168-ff7"
expires: Wed, 27 Dec 2023 04:21:57 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1341422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mXENqUuHxdyWNIP8y6ZtuwCu2IxY41SPBMJ9Ct%2FsUzNlb0HaRqfoATcib117%2FscNqXKSL3Uv6dkO%2BnRUBfw02SX7ud5n2wRrpvLQrLqlliUIU4O4cye3f%2Fw0EBBBxj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783eb2c03568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET mangarawjp.io/js/jquery.min.js?ver=3.6.0
200 OK 33 kB URL GET HTTP/2 mangarawjp.io/js/jquery.min.js?ver=3.6.0
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type gzip compressed data, from Unix
- data
Hash e312df1e0a583a2ab6581aa070a79cd6
d722ede0850df1e1c1f1b723ca5d61d3e25696bf
cced25679ba139ba35496c1b4db3cbc8981c00836e39d2d32e0ee1f49aa811ac
GET /js/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 23 Apr 2022 06:37:40 GMT
vary: Accept-Encoding
etag: W/"62639eb4-15db1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css
200 OK 10 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/css/all.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (59158)
Hash c4af24ce595437830af0a401897698b2
06b7f92dd894a9edb0aeb9d040b489460ecff593
d1fb8d8337cd22568295b0ed998c85c58f0b4cd083af0b0db21cb0af80002f2d
GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: text/css; charset=utf-8
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1681860
expires: Sun, 01 Dec 2024 16:58:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=554tHwcRUEd8suMt23HIh2NYzo5pST9NDvcZzUdGkPODwUn%2BcEnhwp8fkjGPBYwAERVxN9hXpr%2FeNl1LicerzCfy3%2BrmDg6sqLmYG%2F7MIgQpzF6fjINltpYL40GNzZPErMQx5KTz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 834783ec7b1cb500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:58:59 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET mangarawjp.io/js/lazyload.min.js
200 OK 3.5 kB URL GET HTTP/2 mangarawjp.io/js/lazyload.min.js
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type gzip compressed data, from Unix
- data
Hash 3640007b03ea9205ae782bca4cab29fe
5b9f44befe113f02d9661ace33d2ab1efbb50f37
fa07faf3d68985e87e4c8da6cdb2c0a003a4af29bcec03f5e82442dd14874e43
GET /js/lazyload.min.js HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 09 Mar 2022 01:49:35 GMT
vary: Accept-Encoding
etag: W/"622807af-2064"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css
200 OK 928 B URL GET HTTP/2 cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick-theme.css
IP
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Hash f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a
GET /npm/slick-carousel@1.8.1/slick/slick-theme.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"c49-gaQ0+U8rESTzIyu4bylE+C+yOsA"
content-encoding: br
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:58:59 GMT
age: 7839396
x-served-by: cache-fra-eddf8230023-FRA, cache-bma1669-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 928
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2
200 OK 80 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327
- data
Hash 9ae050d1876ac1763eb6afe4264e6d5a
72344eab2e7431eec313caa21f266cbfda7caf60
6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2
GET /ajax/libs/font-awesome/5.15.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 80252
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5fff7432-1397c"
last-modified: Wed, 13 Jan 2021 22:29:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1428869
expires: Sun, 01 Dec 2024 16:59:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QC5xDIP0rBRP5FavhHSP55DQcvi0Qpei3b9dwgJkK7B5NMsk8Vw2OyncMiqowNuq6DTAyiED4iYpxbHrruDc%2FPJ0I4wu9w%2BY4JRolr0TH3%2BVr2lTXUjxDYiUzct5UZobpl76Rzvg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 834783ef4964568d-OSL
alt-svc: h3=":443"; ma=86400
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 475286
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 436355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET fonts.googleapis.com/css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap
200 OK 61 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
File type gzip compressed data, max compression
- data
Hash 41076c6721e261203d8469b7502ac8f9
75841f5492ed6263a5b0c751d01ab5c319b1984b
3adbc515d46f6591c638cc782e6f657c519112735d8cb1ead858f4187788590a
GET /css?family=Roboto:400,700|M+PLUS+1p:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 12 Dec 2023 16:59:00 GMT
date: Tue, 12 Dec 2023 16:59:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET poweredby.jads.co/adshow.php?adzone=986714
200 OK 1.4 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=986714
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 14f54cf9f7811d8665c8afb594510101
4389cdde5401043678c0a3b3a579269db098e302
491cffd2953bd9942418dcbc6c07fc6a4207bf5dfe1b5d273e16c17cbd75e355
GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b6445220b20d64661a58cdb51a52013e; expires=Wed, 11-Dec-2024 16:59:00 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
GET poweredby.jads.co/adshow.php?adzone=986722
200 OK 1.5 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=986722
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (309), with CRLF, LF line terminators
Hash cfdced93cc5d6f30068e3790e1749086
7a39d82f7cef4b9b58430da2465652289de5f5b6
cd583c00d0a3013e40486e0956707ace3a20ae9d71b6a9f731130acb14ea6cbc
GET /adshow.php?adzone=986722 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b6445220b20d64661a58cdb51a52013e; expires=Wed, 11-Dec-2024 16:59:00 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
GET poweredby.jads.co/adshow.php?adzone=986714
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=986714
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash 0742291696e2a4f79af6536483634e98
0760f818ac018b889fecbce14647a5fc49dfdff3
3ba07a501020a3053f63d758921bfbb55ec3fcc64ac9ddcf767747cc16daa33d
GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b6445220b20d64661a58cdb51a52013e; expires=Wed, 11-Dec-2024 16:59:00 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
POST libcdnjs.com/api/event
202 Accepted 2 B IP
Certificate IssuerGoogle Trust Services LLC
Subjectlibcdnjs.com
Fingerprint92:43:86:E7:A2:6F:88:99:96:74:55:F2:36:29:D8:47:2D:33:3D:1F
ValiditySat, 25 Nov 2023 08:32:05 GMT - Fri, 23 Feb 2024 08:32:04 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /api/event HTTP/1.1
Host: libcdnjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 83
Origin: https://mangarawjp.io
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 202 Accepted
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: F6AkFxYSNACSM-9vUlME
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nmNOHGGYvGOmQpo3qJYxUeF93gOryeHNcdq7OENj7ql2W8oNxsY0jxa6L7MCbM%2FpaWA8gtVfWYcZHvNSracSGj0Y6CQMFH6wzeQXiqbEmotqNeRaZgIvnrhp1Q7athQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834783f0fc5356ba-OSL
alt-svc: h3=":443"; ma=86400
GET mangarawjp.io/images/covers/51018.jpg
200 OK 32 kB URL GET HTTP/2 mangarawjp.io/images/covers/51018.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x184, components 3
- data
Hash c12da57ed4426fbfc6e2b506d179f19e
4900c62523c7565e0f6b7666c4467fe9f4641989
da7869f1d2617378638f6481a0a8539e5caf611f7049abf37532efc02ad90f1e
GET /images/covers/51018.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 31520
last-modified: Thu, 14 Jul 2022 13:01:41 GMT
etag: "62d013b5-7b20"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mangarawjp.io/images/covers/58602.jpg
200 OK 29 kB URL GET HTTP/2 mangarawjp.io/images/covers/58602.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 428x265, components 3
- data
Hash 81b42deb02f7333a20fe631c49657581
34c3dd900520d963d52782fb717fba7c004be772
2c824bc6efe32d4d9de86339f389ef3eec3cd7b5f1dac78a165754a1b74b8d05
GET /images/covers/58602.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 28799
last-modified: Mon, 11 Dec 2023 16:29:26 GMT
etag: "657738e6-707f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mangarawjp.io/images/covers/50674.jpg
200 OK 39 kB URL GET HTTP/2 mangarawjp.io/images/covers/50674.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x180, components 3
- data
Hash dec638af5bf0e074c2e4e837e4761ff3
6c84267d7c76963cd26585563038ed72d1ee5e8d
27a7c5621d710235b45c85f9fc2aa22da1f9ecf286a35b04eee280c508e0d303
GET /images/covers/50674.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 39395
last-modified: Wed, 22 Jun 2022 10:41:53 GMT
etag: "62b2f1f1-99e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET poweredby.jads.co/adshow.php?adzone=986714
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=986714
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash 534e929400efef326fd873bfdec0091c
475296a02986fd728db392ddb9177e5b09c76aa5
32918f284819adccad1537bb9089c7ddc2d3d9351fe4acb3d2fca3cd51a22355
GET /adshow.php?adzone=986714 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b6445220b20d64661a58cdb51a52013e; expires=Wed, 11-Dec-2024 16:59:00 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
GET mangarawjp.io/images/covers/50591.jpg
200 OK 40 kB URL GET HTTP/2 mangarawjp.io/images/covers/50591.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3
- data
Hash 86b57dc88c5132dd76da14771dd47cbd
de6727bd03a47b36bd672369865405ad53b8cb6a
2102a350ed6ab6181410e02dd5257bc114971b9e4ae3a67897c90ae57579e9bf
GET /images/covers/50591.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 39925
last-modified: Wed, 29 Jun 2022 15:31:49 GMT
etag: "62bc7065-9bf5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mangarawjp.io/images/covers/58608.jpg
200 OK 30 kB URL GET HTTP/2 mangarawjp.io/images/covers/58608.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 428x265, components 3
- data
Hash 4a52f7b62952f690e30f632d6a1e30e1
456c086850640acf5162f19ddc2d3135f3e43b90
080efd848dbcd42b7cc4b4b740acf4122c75313ade3541d5b4b446e98b7826f8
GET /images/covers/58608.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 29660
last-modified: Tue, 12 Dec 2023 16:54:15 GMT
etag: "65789037-73dc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mangarawjp.io/images/covers/58607.jpg
200 OK 30 kB URL GET HTTP/2 mangarawjp.io/images/covers/58607.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 428x266, components 3
- data
Hash 66f1430ac0b0d82c0d577c362a15fc5f
ca12084a9928393c52cb8141786b4c32874a115a
e7c801a95e00aff86fe65763d7c192533b4c72a0590b0a5b986cbc1952e6f5f5
GET /images/covers/58607.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 29703
last-modified: Tue, 12 Dec 2023 16:40:45 GMT
etag: "65788d0d-7407"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET poweredby.jads.co/adshow.php?adzone=986722
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=986722
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (1332), with CRLF, LF line terminators
Hash b7015fd1eb878e1d7af9ab66f0fa20d5
0f949b0cad15d13155fe3af5d3a88770b65f77cc
40c0b2cd8c4fa501d2ad1a8d0f68b40259ba7f4abc8aa874f472d994522150e1
GET /adshow.php?adzone=986722 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=b6445220b20d64661a58cdb51a52013e; expires=Wed, 11-Dec-2024 16:59:00 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTowOnt9; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:00 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET mangarawjp.io/images/covers/54014.jpg
200 OK 35 kB URL GET HTTP/2 mangarawjp.io/images/covers/54014.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 320x184, components 3
- data
Hash f4456ad807b6b7598a30876cde1fb1e4
db5615bcfdcb1b145cf97b5fef175197b9d945d3
5d376b47a3685eb8f450844bcbd0754f68769f2072fcedb2f700495ab8878743
GET /images/covers/54014.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 34614
last-modified: Wed, 04 May 2022 09:10:19 GMT
etag: "627242fb-8736"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET mangarawjp.io/images/covers/54006.jpg
200 OK 71 kB URL GET HTTP/2 mangarawjp.io/images/covers/54006.jpg
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x184, components 3
- data
Hash af25b7b557ee1e4d8e0d80165733431a
e28f05b21f4612caf5dc2290f50ae4703f2dbc03
10cd17134b1b272d6a18fb56999d8a13dde7fed3f2ad9cd4d4a0ab01a39061f3
GET /images/covers/54006.jpg HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: image/jpeg
content-length: 70599
last-modified: Wed, 04 May 2022 09:10:13 GMT
etag: "627242f5-113c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:00 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mangarawjp.io/
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET i.jads.co/1x1.gif
200 OK 28 kB IP
Requested by https://poweredby.jads.co/adshow.php?adzone=986722
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3
- data
Hash 2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:01 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=17877355
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1702400341.dop219.sk1.t,1702400341.cds252.sk1.shn,1702400341.dop219.sk1.t,1702400341.cds217.sk1.c
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET i.jads.co/1x1.gif
200 OK 28 kB IP
Requested by https://poweredby.jads.co/adshow.php?adzone=986722
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3
- data
Hash 2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:01 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=17877355
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1702400341.dop219.sk1.t,1702400341.cds252.sk1.shn,1702400341.dop219.sk1.t,1702400341.cds217.sk1.c
GET mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios.png
200 OK 6.4 kB URL GET HTTP/2 mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios.png
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
- data
Hash 73309e4dc8f3d13b87016f8fcc834f15
833cdda051c2bccb31ad49ef7fcbce889fbe915e
8d8fdce39b541e0b02f89c4af26211265b4fd28b969aa7a71dfe29df8ac3a831
GET /images/manga-rock-pro-logo-tachiyomi-for-ios.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Cookie: bnState_2005529={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: image/png
content-length: 6361
last-modified: Tue, 24 May 2022 07:43:00 GMT
etag: "628c8c84-18d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
GET i.jads.co/1x1.gif
200 OK 28 kB IP
Requested by https://poweredby.jads.co/adshow.php?adzone=986722
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x250, components 3
- data
Hash 2acfb73fd2df022a7dad5595adef5bda
939b803ea641bd427b7599f92a816262e7a5bf48
3d4610a2ab69d08e54685d0d3cfcf03ec663bacff8cc89a1e0a2904a7769e641
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:01 GMT
Connection: Keep-Alive
ETag: "1478208967"
Cache-Control: max-age=17877355
Content-Length: 27460
Content-Type: image/jpeg
Last-Modified: Thu, 03 Nov 2016 21:36:07 GMT
Accept-Ranges: bytes
X-HW: 1702400341.dop219.sk1.t,1702400341.cds252.sk1.shn,1702400341.dop219.sk1.t,1702400341.cds217.sk1.c
GET mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png
200 OK 974 B URL GET HTTP/2 mangarawjp.io/images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
- data
Hash caee055281e349e7724207248e2a3b25
9e1c1c7bf10653ef6340a093c61b365d727c8f88
17c164642977d40473479eaab38630fab071321b8a9d4bed5dec1031465a2353
GET /images/manga-rock-pro-logo-tachiyomi-for-ios-150x150.png HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Cookie: bnState_2005529={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: image/png
content-length: 974
last-modified: Tue, 24 May 2022 07:43:00 GMT
etag: "628c8c84-3ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
727 B URL zerossl.ocsp.sectigo.com/
IP
Hash 2a195b0ba7f547024a235a8977214b22
39611b4b68b82cf255c3944a8e1c7608e0812f35
bc0eb9a4643ab45cb5acf68fdcf3246fd52672216349a0525bfc561dabadf269
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 12 Dec 2023 13:31:50 GMT
Expires: Tue, 19 Dec 2023 13:31:49 GMT
Etag: "39611b4b68b82cf255c3944a8e1c7608e0812f35"
Cache-Control: max-age=591821,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 834783f4aad30b06-OSL
GET r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
200 OK 827 B URL GET HTTP/1.1 r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://poweredby.jads.co/adshow.php?adzone=986714
Certificate IssuerLet's Encrypt
Subjectr.trackwilltrk.com
FingerprintB8:9A:77:3D:8D:51:37:65:84:11:DE:0D:07:D7:13:C4:FC:C4:B2:99
ValidityTue, 14 Nov 2023 15:17:13 GMT - Mon, 12 Feb 2024 15:17:12 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document, ASCII text, with very long lines (631)
Hash 828dbc503cea9630e86b2ace0e0d3b18
4485e05cc6d63a49776175d39f545dd314d23bae
f5c1a2ba651db468ff867fb0c35dc1b1b63802340c1ab63d3352ce7966d79d6b
GET /s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6= HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 827
Connection: close
Set-Cookie: uid=SrKez5n-Mp; Path=/; Domain=trackwilltrk.com; Expires=Wed, 13 Dec 2023 16:59:01 GMT; HttpOnly
X-Request-Id: e07e810b-3cde-4d57-90e0-2dced945496f
GET poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2
200 OK 334 kB URL GET HTTP/2 mangarawjp.io/js/jquery-migrate.min.js?ver=3.3.2
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type gzip compressed data, from Unix
- data
Size 334 kB (333694 bytes)
Hash 9860a49f6ecb616623baa578ce739b03
f82a5adae9a9c2a16f8453c50675e621b5a3bebf
979c5f82a735e714a196934a4e0a5d81e5f54c486c982ea0c2e302070ef5ca6c
GET /js/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 23 Apr 2022 06:37:44 GMT
vary: Accept-Encoding
etag: W/"62639eb8-2bd8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
GET creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
200 OK 2.0 kB URL GET HTTP/2 creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=986722
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text
Hash 5a7d6a3dcecc86c20df96ad76551eabe
22fb972b12c5d0417e9cc13bae81be9afa62157d
7338bffe285f0e5c3d6197ea825580d1c59b4210b028acce0c7872751fafdeb2
GET /widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: text/html
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
expires: Tue, 12 Dec 2023 16:58:57 GMT
cache-control: max-age=10
strict-transport-security: max-age=15768000
pragma: public
report-to: { "endpoints":[{ "url": "https://go.stripchat.com/report" }], "group": "default", "max_age": 1048576 }
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: HIT
age: 9
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f4b9f6569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
Fingerprint02:C1:75:9D:DD:6A:66:20:9E:A3:46:1B:5E:A4:87:83:5A:09:92:93
ValiditySun, 02 Jul 2023 00:00:00 GMT - Mon, 01 Jul 2024 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: eOt3YX0Nm2YrsRFghHjY+ldPpZhMsRS8Tg9HXo+sQY2MfQ8piotah5MMqRgsIwcNTLmVbQ2iqoU=
x-amz-request-id: Y49M74J1R1NSP1TJ
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 619
expires: Tue, 12 Dec 2023 20:59:01 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f76cf10b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poweredby.jads.co/adshow.php?adzone=986714
DNT: 1
Connection: keep-alive
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YTowOnt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:01 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
GET go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
200 OK 1.7 kB URL GET HTTP/3 go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash d9a0ee2a095761b73a6ddb498b6ea65c
4b54c28855ac698539ea3ebf6727394ca44ccad9
2d42d2425518b6769cf816f43d5c921e006b98e41480a14d1c355338fa8785a0
GET /config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:54:13 GMT
cf-cache-status: HIT
age: 288
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f738fc067b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
200 OK 57 kB URL GET HTTP/3 go.mnaspm.com/config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash d9a0ee2a095761b73a6ddb498b6ea65c
4b54c28855ac698539ea3ebf6727394ca44ccad9
2d42d2425518b6769cf816f43d5c921e006b98e41480a14d1c355338fa8785a0
GET /config?url=https%3A%2F%2Fcreative.mnaspm.com%2Fwidgets%2Fv4%2FUniversal%3FsourceId%3Dmangaraw_300x100%26modelsCountry%3Djp%252Ccn%26modelsLanguage%3Dja%26userId%3Da3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:54:13 GMT
cf-cache-status: HIT
age: 288
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f92fe1569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png
200 OK 1.5 kB URL GET HTTP/2 static.javhdhello.com/h5/files/overlay/1602-overlay-preview.png
IP
ASN #60068 Datacamp Limited
Requested by https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
- data
Hash 7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a
GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3gfMLAQ
x-77-nzt-ray: af585630363f094b5691786535a9a603
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17560449
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17560449
accept-ranges: bytes
X-Firefox-Spdy: h2
GET static.javhdhello.com/h5/files/overlay/1602-overlay.png
200 OK 1.8 kB URL GET HTTP/2 static.javhdhello.com/h5/files/overlay/1602-overlay.png
IP
ASN #60068 Datacamp Limited
Requested by https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
- data
Hash f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7
GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3gfMLAQ
x-77-nzt-ray: af585630363f094b569178654214ab03
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17560449
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17560449
accept-ranges: bytes
X-Firefox-Spdy: h2
GET static.javhdhello.com/h5/files/button/29-button.png
200 OK 733 B URL GET HTTP/2 static.javhdhello.com/h5/files/button/29-button.png
IP
ASN #60068 Datacamp Limited
Requested by https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
- data
Hash 82a66a2d222379716ca9a03ff50d8f42
ae43d917ff791f9172edc527baa6266416182aaa
cc5da7b40e498d30bf5eaae43e59cae32202737076422676489dd8d3030803de
GET /h5/files/button/29-button.png HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/png
content-length: 733
last-modified: Tue, 22 Dec 2015 18:41:22 GMT
etag: "56799952-2dd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3gfMLAQ
x-77-nzt-ray: af585630363f094b5691786589acdf03
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17560449
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17560449
accept-ranges: bytes
X-Firefox-Spdy: h2
GET static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
200 OK 2.9 kB URL GET HTTP/2 static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
IP
ASN #60068 Datacamp Limited
Requested by https://r.trackwilltrk.com/s1/c5164ed3-3959-4e9c-8d8a-1a1375342df1?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=171854&cv4=280475&cv5=986714&cv6=
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document, ASCII text, with very long lines (471), with CRLF, LF line terminators
Hash 6c80f4d7021a14c3c884b54ed916e62f
8881766b1d86f98d65e306ed509a758f6741b20d
bc8ed2ea639e5b026296c24eb615bfe3184e91b25d9dce74be4a548a91216f38
GET /h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 27 Nov 2023 10:25:57 GMT
etag: W/"65646eb5-d2a"
expires: Thu, 11 Jan 2024 16:59:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-77-nzt: EwgBuUwJFAFBCAG5TAoJAUEIASUTwigBQQ
x-77-nzt-ray: af585630363f094b55917865ba8df62a
x-77-cache: MISS
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: MISS, MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A670%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A174%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A149%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A981%2C%22duration%22%3A0%7D%5D&mh=-883060251
200 OK 103 B URL GET HTTP/3 go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A670%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A174%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A149%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A981%2C%22duration%22%3A0%7D%5D&mh=-883060251
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A670%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A174%2C%22transferSize%22%3A80913%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A365%2C%22duration%22%3A149%2C%22transferSize%22%3A4625%7D%2C%7B%22type%22%3A%22first-contentful-paint%22%2C%22startTime%22%3A981%2C%22duration%22%3A0%7D%5D&mh=-883060251 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Cookie: __cflb=0H28upDCGznfDm9XVD3SofQ5NjJpXSeb877YUtkDi7v
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 834783fa5946569d-OSL
alt-svc: h3=":443"; ma=86400
GET static.javhdhello.com/h5/files/css/style.css
200 OK 8.6 kB URL GET HTTP/2 static.javhdhello.com/h5/files/css/style.css
IP
ASN #60068 Datacamp Limited
Requested by https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type gzip compressed data, from Unix
- data
Hash b8ccc2d93f1fac35ff0b4ef0d1eedc75
c1246b9a43ac9addede6ab1453ed6bf605acbad6
d2f502d190e81909827d5aaea2a2a35ac8005d953ca1f0c28be8586d28519a31
GET /h5/files/css/style.css HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3gfMLAQ
x-77-nzt-ray: af585630363f094b56917865b9849f03
x-accel-expires: @1716375893
x-accel-date: 1684839893
x-cache-lb: HIT
x-age-lb: 17560449
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 17560449
content-encoding: gzip
X-Firefox-Spdy: h2
GET go.mnaspm.com/api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
200 OK 15 kB URL GET HTTP/3 go.mnaspm.com/api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type JSON data
- , ASCII text, with very long lines (3061), with no line terminators
Hash 061e5282aa910f1c301b2a261d00ba8a
38fd071a3ff5bfa8b51862c2f88d97511a849644
506ccd58b5368d53bbb8521ae3bd0404dd4ec89381b54bb81ca6e576a70566f5
GET /api/models?modelsCountry=jp%2Ccn&modelsLanguage=ja&forceClient=1&stripcashR=0&limit=2&usePreroll&webp=1 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Cookie: __cflb=0H28upDCGznfDm9XVD3SofQ5NjJpXSeb877YUtkDi7v
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
last-modified: Tue, 12 Dec 2023 16:55:47 GMT
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 834783fa18ef569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
200 OK 136 kB URL GET HTTP/3 creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.js
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type Unicode text, UTF-8 text, with very long lines (32011), with LF, NEL line terminators
Size 136 kB (135898 bytes)
Hash c125e5d95f227b20668dcf21f8db60fa
bcdb1f728964d37c007515eba7a549164fd1951e
11d537b5f1c8f66d68b36f57f526f55f1e916d67a35c1944b8d559adc7723f8a
GET /widgets/v4/Universal/main.af7ca474e642b518be23.js HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-44c9f"
expires: Tue, 12 Dec 2023 16:59:02 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 5
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f5bb9c569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET static.javhdhello.com/h5/files/video/1552-18540-300x250.medium.mp4
206 Partial Content 965 kB URL GET HTTP/2 static.javhdhello.com/h5/files/video/1552-18540-300x250.medium.mp4
IP
ASN #60068 Datacamp Limited
Requested by https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Certificate IssuerLet's Encrypt
Subject1079288232.rsc.cdn77.org
Fingerprint20:E3:A8:BE:AD:D9:B0:2B:18:D1:FD:4F:B9:50:1E:36:6A:08:7E:56
ValiditySat, 09 Dec 2023 06:56:57 GMT - Fri, 08 Mar 2024 06:56:56 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
- data
Size 965 kB (964974 bytes)
Hash 4fedd389a7c867b8828c92f2045141a3
e10f4fe96b13abc2bd439aca4efba99e4fd7a3b1
4d2b168cf402e7bd6e1100bf2f54c693676dae5250d2f76d3aa14427e654c1c2
GET /h5/files/video/1552-18540-300x250.medium.mp4 HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://static.javhdhello.com/h5/files/15985/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fb8befb0d-0fab-4477-9699-2c88371f3211%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D171854%26cv4%3D280475%26cv5%3D986714%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NjUsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsImZsIjowLCJvIjoyLCJwIjoxLCJzIjoyOTA1Nn0
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: video/mp4
content-length: 964974
last-modified: Wed, 16 Feb 2022 11:46:31 GMT
etag: "620ce417-eb96e"
expires: Wed, 23 Aug 2023 17:21:56 GMT
cache-control: max-age=86400
access-control-allow-origin: *
server: CDN77-Turbo
x-77-nzt: EQwBuUwJFAH3jIwAAA
x-77-nzt-ray: af585630363f094b56917865079eee0a
x-accel-expires: @1702450728
x-accel-date: 1702364362
x-cache-lb: HIT
x-age-lb: 35980
x-77-pop: stockholmSE
x-77-cache: HIT
x-77-age: 35980
content-range: bytes 0-964973/964974
X-Firefox-Spdy: h2
GET img.strpst.com/thumbs/1702400280/112288596_webp
200 OK 8.0 kB URL GET HTTP/3 img.strpst.com/thumbs/1702400280/112288596_webp
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 4cbdd389f55aae07a86f11da8b82911e
74cc5840ee6d6996b8d90a1007af8eac90a8d34f
e407d372a5c9e51128986cd33ca1220f588dca3a9cd6de01d6746c9b627aecb4
GET /thumbs/1702400280/112288596_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/webp
content-length: 8026
etag: "4cbdd389f55aae07a86f11da8b82911e"
last-modified: Tue, 12 Dec 2023 16:57:10 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 70
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783fb99de7129-OSL
alt-svc: h3=":443"; ma=86400
GET img.strpst.com/thumbs/1702400280/66083671_webp
200 OK 14 kB URL GET HTTP/3 img.strpst.com/thumbs/1702400280/66083671_webp
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
- data
Hash 3bd5191ed87ef54dc39febc5126c3882
9cd500f6ffadc227b0778b2c666b460a5714ca9d
47c3b399c6235c0ca6ee16351f1b2e2d81b96354ccb7783ec319e3f3683dcddb
GET /thumbs/1702400280/66083671_webp HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/webp
content-length: 14418
etag: "3bd5191ed87ef54dc39febc5126c3882"
last-modified: Tue, 12 Dec 2023 16:56:55 GMT
cache-control: public, max-age=1800, s-maxage=1800
access-control-allow-origin: *
access-control-allow-methods: GET
cf-cache-status: HIT
age: 70
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783fb89c37129-OSL
alt-svc: h3=":443"; ma=86400
GET go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A636%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A288%2C%22duration%22%3A144%2C%22transferSize%22%3A80913%7D%5D&mh=141256941
200 OK 103 B URL GET HTTP/3 go.mnaspm.com/abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A636%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A288%2C%22duration%22%3A144%2C%22transferSize%22%3A80913%7D%5D&mh=141256941
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?sourceId=mangaraw_300x100&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3&modelsLimit=2&actionButtonPlacement=bottom&thumbSizeKey=big&hideButtonOnSmallSpots=1&hideTitleOnSmallSpots=1&hideModelNameOnSmallSpots=1&buttonColor=%23DC0C2C&liveBadgeColor=%2300bd8f&language=en&thumbFit=cover&quality=original&stripcashR=0&thumbType=default&kbLimit=0&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=2&segment=hls-newAPI&landing=WidgetV4Universal&referrer=https%3A%2F%2Fpoweredby.jads.co%2F&i=0&ib=0&filtersMatch=0&m=%5B%7B%22type%22%3A%22navigation%22%2C%22startTime%22%3A0%2C%22duration%22%3A636%7D%2C%7B%22type%22%3A%22resource%22%2C%22startTime%22%3A288%2C%22duration%22%3A144%2C%22transferSize%22%3A80913%7D%5D&mh=141256941 HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/
Cookie: __cflb=0H28upDCGznfDm9XVD3SofQ5NjJpXSeb877YUtkDi7v
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: image/gif
content-length: 103
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 834783fb9ac3569d-OSL
alt-svc: h3=":443"; ma=86400
GET xhamster.com/pwa/isXHamsterOk
200 OK 14 B URL GET HTTP/2 xhamster.com/pwa/isXHamsterOk
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerLet's Encrypt
Subjectxhamster.com
FingerprintDF:50:88:50:DF:DE:AA:37:A3:D4:23:73:B1:CA:D3:72:C1:33:8C:37
ValidityTue, 24 Oct 2023 15:59:39 GMT - Mon, 22 Jan 2024 15:59:38 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 5adb849d1e5031fa27c14f861f6700da
a5b1658db04aa9183a780d00838f638c7936446a
c45272c1b33373d94fb6786698d5145ba0cb558fc7494d91cbbb380b4fc561a8
GET /pwa/isXHamsterOk HTTP/1.1
Host: xhamster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
content-length: 14
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: *
cf-cache-status: HIT
age: 460
last-modified: Tue, 12 Dec 2023 16:51:22 GMT
expires: Tue, 12 Dec 2023 18:59:02 GMT
cache-control: public, max-age=7200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MvZiBd5BFMvM%2BdcFti4Ihr2STsoIZ%2FLXzP3elMsVP8jPHQ41l0frqJu4gYOI5HUcUQE%2BcThrdobEAvOQ%2B3RxupB%2FieNcuhnvhnmkpEsKxeqf%2FQYiExlVTDStmy%2Ba%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783fbbf71b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST go.mnaspm.com/app/domain-checker/check-result
204 No Content 0 B URL POST HTTP/3 go.mnaspm.com/app/domain-checker/check-result
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Tue, 12 Dec 2023 16:59:02 GMT
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVE9Kb8v5TrfcnGC4sbWk3bzQGsn; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783fcac09569d-OSL
alt-svc: h3=":443"; ma=86400
GET stripchat.webcam/checkUrl
200 OK 15 B URL GET HTTP/2 stripchat.webcam/checkUrl
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerLet's Encrypt
Subjectstripchat.webcam
Fingerprint93:41:FC:FB:5D:54:9F:02:21:AA:CC:44:6A:14:F4:FF:F6:F2:40:9A
ValidityTue, 12 Dec 2023 11:05:40 GMT - Mon, 11 Mar 2024 11:05:39 GMT
File type JSON data
- , ASCII text, with no line terminators
Hash 7fb97eb7c8636552ad068f6d56b5ea34
b69679936779fb02503bc0fe1374a737cc762ecb
e78008828abaa93c4462e326ef384dcda1443352a0f24bdeedada6a6fdbfd1d5
GET /checkUrl HTTP/1.1
Host: stripchat.webcam
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
content-length: 15
access-control-allow-origin: https://creative.mnaspm.com
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuGyDLPvii6XBe56JkFLbbmn2HToudB17Pt1Qs5Yqi; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783fcd8c0712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST go.mnaspm.com/app/domain-checker/check-result
204 No Content 0 B URL POST HTTP/3 go.mnaspm.com/app/domain-checker/check-result
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /app/domain-checker/check-result HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 174
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Tue, 12 Dec 2023 16:59:02 GMT
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=02DiuDFRFiBZBvMSLtr4BTSnpWHamtv7KvYQkKnpxDoor; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783fd8d21569d-OSL
alt-svc: h3=":443"; ma=86400
GET poweredby.jads.co/adshow.php?adzone=1023037
200 OK 1.6 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=1023037
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=986714
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, ASCII text, with very long lines (371), with CRLF, LF line terminators
Hash aee4ca9b1e168422ed0be6433614862e
f755ed550279cdcfd87b28649e9168a8b3003539
d47da01f919c0e4eed4d5701341efdf2702f673302f110486508f4bd529f2826
GET /adshow.php?adzone=1023037 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 12 Dec 2023 16:59:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=3322525db8bc9f1a223538c78d34223b; expires=Wed, 11-Dec-2024 16:59:19 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps29764=1; expires=Wed, 13-Dec-2023 16:59:19 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjY5NjM0ODtpOjE3MDI2NTk1NTk7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:19 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 15-Dec-2023 16:59:19 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
GET go.mnaspm.com/app/domain-checker/get-check
200 OK 133 B URL GET HTTP/3 go.mnaspm.com/app/domain-checker/get-check
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash 059991ad90927674334b32aff5693733
b8ab8d7028e26ca7d880504f62a35685069357d3
6a49b4c73948e8325de852319cfd86f434bfe079144b82ce8c532cfec8cd35a5
GET /app/domain-checker/get-check HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVEL2Ezfg4QRCzSix2YwzMjVk1fr; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783f9e8b9569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET mangarawjp.io/css/style2.css
200 OK 19 kB URL GET HTTP/2 mangarawjp.io/css/style2.css
IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
File type ASCII text, with very long lines (19177), with no line terminators
Hash 93d4963ef5bfc4da4425aa4933119c46
2cd6f95da9c967dbc3a8ac47f21958cc66981d49
4deca8af6a4434192662014a444caaabf40d90f3b0d3d4071239cec5c34509c0
GET /css/style2.css HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: text/css
last-modified: Wed, 29 Jun 2022 01:31:38 GMT
vary: Accept-Encoding
etag: W/"62bbab7a-4ae9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
200 OK 76 kB URL User Request GET HTTP/2 IP
Certificate IssuerLet's Encrypt
Subjectmangarawjp.io
Fingerprint34:AD:EE:A8:82:E9:BA:88:E0:96:70:CB:0A:68:D1:4E:D6:3A:8A:91
ValiditySat, 07 Oct 2023 17:03:50 GMT - Fri, 05 Jan 2024 17:03:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: mangarawjp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
GET creative.mnaspm.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.mnaspm.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Tue, 12 Dec 2023 16:59:08 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 2
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f71d50569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
200 OK 13 kB URL GET HTTP/3 creative.mnaspm.com/widgets/v4/Universal/main.af7ca474e642b518be23.css
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with very long lines (13396), with no line terminators
Hash d55b785d72863fbb8425a36b7d675ec2
546cda15b6fb2a67ce1f102dc82eefb6f749f9c3
a4d09f6a50b6d96e7f22ab12f406dcf44be0d815105018cc5c7f1105fbf597f7
GET /widgets/v4/Universal/main.af7ca474e642b518be23.css HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2023 10:59:44 GMT
etag: W/"656f02a0-3454"
expires: Tue, 12 Dec 2023 16:59:05 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 5
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f5bb9a569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET pk910324e.com/get/2005529?zoneid=2005529&jp=_clh0xkl4swp3wvu7rncb4r&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1800418368983552&eclog=0&sp=1&im=1&freq=0
200 OK 5.0 kB URL GET HTTP/2 pk910324e.com/get/2005529?zoneid=2005529&jp=_clh0xkl4swp3wvu7rncb4r&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1800418368983552&eclog=0&sp=1&im=1&freq=0
IP
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint52:A2:D7:2B:E2:76:4C:63:FB:E5:6C:43:01:5D:79:AA:37:86:A9:18
ValidityMon, 04 Sep 2023 10:47:46 GMT - Fri, 01 Mar 2024 22:59:00 GMT
File type ASCII text, with very long lines (5106), with no line terminators
Hash c0caee620aa7437a5371bef502c8d723
f14ca466b56f1493f4fad8b0dc473aaab2287504
6c36e6430a0d3173e32941d6b34eeca7635ba1e54a76d5f3e323a2ad20ca1327
GET /get/2005529?zoneid=2005529&jp=_clh0xkl4swp3wvu7rncb4r&nojs=0&abvar=0&febuild=1.0.181&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=1800418368983552&eclog=0&sp=1&im=1&freq=0 HTTP/1.1
Host: pk910324e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:59:00 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Tue, 14 Jan 2025 16:59:00 GMT; Secure; SameSite=None
UID=2312121159dbc8c6e0d55e4bbc91c6561846; Path=/; Expires=Tue, 14 Jan 2025 16:59:00 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
200 OK 55 kB URL GET HTTP/1.1 i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=1023037
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=250, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x250, components 3
- data
Hash c3348fbaa05f8e7e87c6852295108c29
6c34181d01614498abee447e37c765e7e0b614fa
801475bc7efdfb518e6e583539f7f2e75707e3ba043d9d0d27e1e682cb96c860
GET /network/user22416/29763-1538682381-0894967001538682381.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YToxOntpOjY5NjM0ODtpOjE3MDI2NTk1NDE7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps29764=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:02 GMT
Connection: Keep-Alive
ETag: "1538682381"
Cache-Control: max-age=19614862
Content-Length: 55399
Content-Type: image/jpeg
Last-Modified: Thu, 04 Oct 2018 19:46:21 GMT
Accept-Ranges: bytes
X-HW: 1702400341.dop219.sk1.t,1702400341.cds252.sk1.shn,1702400341.dop219.sk1.t,1702400342.cds217.sk1.c
GET go.mnaspm.com/app/domain-checker/get-check
200 OK 130 B URL GET HTTP/3 go.mnaspm.com/app/domain-checker/get-check
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash 4aac4bf1f6704b0d11df5e6eb29cbf9a
23b60e4ec4e629adf754810fb6118c19ff0723c5
f9087fd71cbae3467396e3ddd39344cdb1ecb63dc3c4b75ba5efa63586045760
GET /app/domain-checker/get-check HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVDQgYY38nUsBbmdWpJfK5oeP1GY; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783fb7aa0569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST go.mnaspm.com/thumbs/view
200 OK 164 B URL POST HTTP/3 go.mnaspm.com/thumbs/view
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash adfe19e87074ed6f14a5b169d668def6
15cfdcafc605c9f00d0c46dad912f4007a76fd0b
d10bd17acfc97004105cf8793fb25e86b1c35c1699e46005a64628274bd9155d
POST /thumbs/view HTTP/1.1
Host: go.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 156
Origin: https://creative.mnaspm.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:02 GMT
content-type: application/json
access-control-allow-origin: https://creative.mnaspm.com
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28upDCGznfDm9XVE9CKHVnP1Wapb2PhMRhBJSYWBe; SameSite=None; Secure; path=/; expires=Wed, 13-Dec-23 16:59:02 GMT; HttpOnly
server: cloudflare
cf-ray: 834783fbeb20569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css
200 OK 1.8 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css
IP
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (1895), with no line terminators
Hash b3f4dd9bd98c76eb638e0cc6d0184721
2fbbc2e81bf1ac6dde9bf24c013524df1973480a
b2dce8f0973f7debc99cd2dfb90f65f37004c26c81a131def9cefa00c7fa00dd
GET /npm/slick-carousel@1.8.1/slick/slick.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"6f0-qUoFmzF4tK3sCeMoGs4oGaMAlaQ"
content-encoding: br
accept-ranges: bytes
date: Tue, 12 Dec 2023 16:58:59 GMT
age: 23553533
x-served-by: cache-fra-eddf8230085-FRA, cache-bma1669-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 590
X-Firefox-Spdy: h2
GET creative.mnaspm.com/widgets/v4/Universal/lang/en.json
200 OK 172 B URL GET HTTP/3 creative.mnaspm.com/widgets/v4/Universal/lang/en.json
IP
Requested by https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
Certificate IssuerGoogle Trust Services LLC
Subjectmnaspm.com
FingerprintD2:26:54:49:EC:5C:B3:8E:40:54:41:6D:0E:21:1C:E8:A8:48:BD:EE
ValidityFri, 20 Oct 2023 15:37:06 GMT - Thu, 18 Jan 2024 15:37:05 GMT
File type ASCII text, with no line terminators
Hash 402f4a06b5dcf96d25dd4ff1f840784b
edebb253af01ef1882f424ee6278368485898d62
bd570b38d9d687c593545a7b250570605c601381f3d3d5263346b295e12a55ba
GET /widgets/v4/Universal/lang/en.json HTTP/1.1
Host: creative.mnaspm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative.mnaspm.com/widgets/v4/Universal?sourceId=mangaraw_300x100&modelsCountry=jp%2Ccn&modelsLanguage=ja&userId=a3115cd454ef2273fb9662d903c418077029a9977072242a76ba6160231094a3
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: application/json
last-modified: Tue, 05 Dec 2023 10:58:14 GMT
etag: W/"656f0246-ac"
expires: Tue, 12 Dec 2023 16:59:08 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
age: 2
vary: Accept-Encoding
server: cloudflare
cf-ray: 834783f92fdd569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET pk910324e.com/lv/esnk/2005529/code.js
200 OK 104 kB URL GET HTTP/2 pk910324e.com/lv/esnk/2005529/code.js
IP
Certificate IssuerBuypass AS-983163327
Subject
Fingerprint52:A2:D7:2B:E2:76:4C:63:FB:E5:6C:43:01:5D:79:AA:37:86:A9:18
ValidityMon, 04 Sep 2023 10:47:46 GMT - Fri, 01 Mar 2024 22:59:00 GMT
File type ASCII text, with very long lines (65107)
Size 104 kB (104207 bytes)
Hash db8f007e9911e61597c691baf6e44f06
eca5d48cd149609edf86e72ca9a33d0502d1dc82
be1c4387827cae3c787c630dd5cda2a17d6bdc79c5b5dd697496db5aeb0539ed
GET /lv/esnk/2005529/code.js HTTP/1.1
Host: pk910324e.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mangarawjp.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 12 Dec 2023 16:58:59 GMT
content-type: application/javascript
last-modified: Tue, 12 Dec 2023 10:14:40 GMT
vary: Accept-Encoding
etag: W/"65783290-1975a"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
GET i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
200 OK 55 kB URL GET HTTP/1.1 i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=1023037
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=250, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x250, components 3
- data
Hash c3348fbaa05f8e7e87c6852295108c29
6c34181d01614498abee447e37c765e7e0b614fa
801475bc7efdfb518e6e583539f7f2e75707e3ba043d9d0d27e1e682cb96c860
GET /network/user22416/29763-1538682381-0894967001538682381.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=b6445220b20d64661a58cdb51a52013e; juicy_data_1=YToxOntpOjY5NjM0ODtpOjE3MDI2NTk1NDE7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps29764=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 12 Dec 2023 16:59:02 GMT
Connection: Keep-Alive
ETag: "1538682381"
Cache-Control: max-age=19614862
Content-Length: 55399
Content-Type: image/jpeg
Last-Modified: Thu, 04 Oct 2018 19:46:21 GMT
Accept-Ranges: bytes
X-HW: 1702400341.dop219.sk1.t,1702400341.cds252.sk1.shn,1702400341.dop219.sk1.t,1702400342.cds217.sk1.c
GET cdn.cloudfrale.com/bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4
206 Partial Content 330 kB URL GET HTTP/2 cdn.cloudfrale.com/bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerZeroSSL
Subjectcdn.cloudfrale.com
Fingerprint4A:96:98:80:5E:E5:82:7D:6B:94:C6:1F:EC:1E:3C:FD:39:13:0A:41
ValidityMon, 30 Oct 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]
- data
Size 330 kB (329525 bytes)
Hash 7e77144a14e32644ed5e15f0f9fb030f
b7cab3a5435f14781949ee4473960540e35690f6
9915a8f845c921ea7c24aabcf3674f8aa0818a7800108cc1fa4d178f21a8bd5b
GET /bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 12 Dec 2023 16:59:01 GMT
content-type: video/mp4
content-length: 329525
server: nginx/1.24.0
etag: 7e77144a14e32644ed5e15f0f9fb030f
last-modified: Sun, 05 Nov 2023 16:10:26 GMT
x-timestamp: 1699200625.34816
x-trans-id: txcbbd1c65758c4da994d05-006547e8a6
x-openstack-request-id: txcbbd1c65758c4da994d05-006547e8a6
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Thu, 14 Dec 2023 16:59:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-329524/329525
X-Firefox-Spdy: h2
91.197.1.55
185.145.245.121
188.114.97.1
205.185.216.42
104.18.63.126
212.117.190.201
185.94.236.247
185.76.9.21
185.196.197.35