Report - www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/

Report Overview

Submitted URL
www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
IP
104.26.2.123
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-15 15:31:06
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www4.bestjavporn.com	unknown	2022-11-22T04:27:02Z	2023-03-09T06:18:40Z	6.8 kB	47 kB	172.67.68.13
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	143.204.42.158
simplewebanalysis.com	unknown	2022-02-25T05:06:25Z	2023-03-09T05:24:11Z	401 B	413 B	18.195.193.92
static.javhdhello.com	unknown	2022-10-14T10:27:54Z	2023-03-09T06:29:20Z	1.9 kB	967 B	185.76.9.26
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-09T05:09:51Z	930 B	84 kB	104.17.24.14
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T05:28:04Z	390 B	44 kB	142.250.74.168
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	2.1 kB	4.2 kB	142.250.74.131
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T06:45:03Z	340 B	964 B	104.18.32.68
liaisondegreedaughters.com	unknown	2022-10-14T03:47:07Z	2023-03-03T05:27:30Z	411 B	14 kB	173.233.137.60
static.javhd.com	39788	2013-11-18T09:31:48Z	2023-03-09T07:09:23Z	2.2 kB	439 kB	185.76.9.26
na.nawpush.com	38563	2020-12-23T09:18:12Z	2023-03-09T04:03:26Z	414 B	1.3 kB	45.133.44.25
714a39ef94.086f39952a.com	unknown	2022-12-12T04:31:57Z	2023-02-10T02:04:14Z	978 B	320 B	45.133.44.24
cdn.creative-bars1.com	unknown	2022-11-15T17:46:22Z	2023-03-09T05:30:51Z	2.1 kB	10 kB	172.64.109.13
friendshipmale.com	unknown	2022-10-21T14:15:25Z	2023-03-09T07:24:57Z	365 B	964 B	172.64.140.24
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	6.1 kB	16 kB	95.101.11.115
r.trwl1.com	34565	2019-07-11T19:32:08Z	2023-03-08T20:59:51Z	614 B	1.1 kB	185.98.53.17
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T05:09:25Z	2.7 kB	61 kB	34.120.237.76
cdn.barscreative1.com	25648	2021-09-16T13:14:42Z	2023-03-09T07:20:37Z	459 B	789 B	45.133.44.4
cdn.cloudimagesb.com	23099	2021-02-12T17:15:41Z	2023-03-09T05:24:12Z	401 B	69 kB	45.133.44.9
theporndude.com	45636	2013-12-28T01:22:02Z	2023-03-09T07:28:30Z	394 B	2.3 kB	104.19.129.100
pics.pornfhd.com	unknown	2022-07-25T07:05:24Z	2023-03-06T23:45:23Z	2.0 kB	125 kB	104.21.235.63
poweredby.jads.co	30525	2019-12-04T11:34:12Z	2023-03-09T06:26:35Z	369 B	2.0 kB	185.94.236.247
adxadserv.com	85319	2018-06-29T01:50:00Z	2023-03-09T04:21:02Z	2.6 kB	78 kB	185.98.53.29
fp.metricswpsh.com	unknown	2022-04-22T13:20:32Z	2023-03-09T06:47:27Z	973 B	797 B	157.90.84.242
assailusefullyenemies.com	unknown	2022-12-09T14:42:11Z	2023-02-26T11:46:02Z	4.1 kB	7.6 kB	192.243.59.13
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T05:22:46Z	682 B	1.3 kB	93.184.220.29
r.trackwilltrk.com	unknown	2020-04-28T06:48:25Z	2023-03-09T04:21:02Z	803 B	1.3 kB	185.98.53.17
js.wpadmngr.com	25762	2021-06-02T16:43:46Z	2023-03-09T06:47:26Z	1.2 kB	7.5 kB	45.133.44.25
asg.phukienthoitranggiare.com	277546	2019-12-10T16:28:30Z	2023-03-06T23:45:23Z	834 B	953 B	135.181.208.216
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T06:38:59Z	1.5 kB	51 kB	142.250.74.163
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-09T05:14:34Z	1.4 kB	2.9 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-09T07:18:27Z	408 B	35 kB	142.250.74.42
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	54.149.51.98
ads.adxadserv.com	113382	2018-07-07T22:22:47Z	2023-03-09T04:21:02Z	689 B	1.9 kB	185.98.53.2
static.adxadserv.com	128146	2018-06-12T15:18:14Z	2023-03-09T04:21:01Z	370 B	2.5 kB	185.76.9.26
js.capndr.com	316718	2021-08-30T14:51:01Z	2023-03-07T21:31:59Z	383 B	17 kB	45.133.44.25
img.bestjavporn.net	406632	2021-04-25T14:04:12Z	2023-03-03T20:40:02Z	392 B	722 B	104.21.233.138
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T06:38:15Z	408 B	746 B	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-15	medium	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	Malware
2022-12-15	medium	simplewebanalysis.com/stats	Malware
2022-12-15	medium	cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html	Phishing
2022-12-15	medium	assailusefullyenemies.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDuah48SCOByGSMNs9PbMzmxAW1xhZzO8f5qAeqquqZytb3dVWdU9P9rQYkBxEJ54EL73fbLJEQzTgVZDeeJCByLYHXcX15B%2BgYs4ys4OLD6req%2Fre4fu%2B9z5Yy3aIi4xuXzirV6RSdKZVd2tHrsmY69zWzl2peW7dPVG7JuPZ5olaf3yZ3nHPbdXdV2pvCLasZxqu57qe69VOSyNC3Z%2BZoJDJ%2FTmvPufWm42612qib%2F7%2FtpkDSx3w3g55FpJXB5e%2BfwjJSsTRV6eEXU51cuz1KFM01QY9vnE1Xo51HiPaK0PjIIw3pt3QtiLk033Q8cZUAXRvfawAgayI85OHIN6Y0kTQu7PLNFAQMQJ%2BGHmvhFAlJC3B9E1IvkUAxnHuPOLo7jltcnpjF6VjtCIHnvwNmVfkwG%2FPIY4eLCjZr13WKkulji36YQHZLyG7JZJsE%2BmKA5lvgqXvQ%2FLHZObJGcTR%2BnmrNCQvJuqlLCHDEkoMQK2DbHykgyx0kCUOIr5do6250HXbYRD6fqfJGPN9xlqdWd7ifrMTusjYmN4AaTIAUwMws4rErGJZfrLVennr3aMw2bewSwUsd2DTijgXV9HjBXJBkFuCnBLkkiBPCfJecYcr27DFXa5sFnjT3JhmvxjqtLtG7%2Bi0K2KyluyQZ8buOIdeuo1lsV1rBLzDfdf1%2FFk6G%2FKWG7CgRduhHzap1wgprCwg7b6J4BVZkf2HbiKRFdl34k8EtIRVJZh8GjR7ATQfthsu6NKw2XGxEn8ZCJtep71Em7jOdASuCyTpAaQ3nDW1Q56fDOr4H0ch2Gj%2Br2MLjx%2FeexvMFEhMgevyEUFX3Rpe0jlZv6RzSx6eT1IZyRU6HuLllKbi4Odvihu5NnzxlB3ce5WNgXF5%2F4qw6Rkacxl3LfliQXIuzGltmCDfLNprIriQ2aWFzMRZcubCa6cXo8QIa6WOS1BZEXL7dzBZkaceXJws6Isf%2FQJpSpisQJSNyDQg9SZYsgqbjOZ%2Fbb73YfOtRVhNYNReT5A4yLNiaBrB3qeSFfEPz0KJ0fzPV384y04%2BAg0KWDGa%2F678%2BJ0j%2F2wiEP%2BZsmZvoWsc0PQm4qhAzxToqQJUDWCz%2FcM0MaP5H%2F1JIFDOMFDGWQ%2BUUbd3DbZyu9bymqITdNqM80Aw7rUbfsd33Qbnzfac8OaQ2op9dvLrfwEAAP%2F%2FAQAA%2F%2F8mSwcbfAQAAA%3D%3D	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-15	medium	liaisondegreedaughters.com	Sinkholed
2022-12-15	medium	086f39952a.com	Sinkholed
2022-12-15	medium	assailusefullyenemies.com	Sinkholed
2022-12-15	medium	assailusefullyenemies.com	Sinkholed
2022-12-15	medium	assailusefullyenemies.com	Sinkholed
2022-12-15	medium	assailusefullyenemies.com	Sinkholed
2022-12-15	medium	assailusefullyenemies.com	Sinkholed

JavaScript (35)

	URL	Size	First Seen	Last Seen
	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2	70 kB	2023-03-08	2023-05-09
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-05-09 13:30:00 Times Seen4 Hash 25b438bbf0012293c03182fd5c1b2c78 3b315f5f46731ad656322576d3603059f5518ff5 9bb49f7260999e2606151d15fe7c24b8fb9157a9aec2c7912be4fc203839f4e6 Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	18 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 01:42:13 Times Seen2754 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-19
Pretty URL www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 03:54:40 Times Seen54520 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3	3.9 kB	2023-03-08	2023-03-13
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2023-03-13 17:40:57 Times Seen1 Hash 2d975d9112dedc0e2a9a19db1fca050e 159ddd8e5886340d37fd9c875d9e121d27cab9d5 da4bc148b4fb82f5ad6455617da96f52329944ab6198d049a58cd64b2499854a Loading...

	static.adxadserv.com/js/adb.js	1.3 kB	2023-03-07	2023-04-16
Pretty URL static.adxadserv.com/js/adb.js IP 185.76.9.26 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-04-16 19:00:23 Times Seen28 Hash 6f620fd5ad9850e1117bb73e2326afe5 eb8576e351e8f6ff39ed9ade7a940d8aec66fad1 26ec90d22570d3951bcd6006eefe2d622a85ef89598d75418dda23cbae996dc8 Loading...

	adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya%252F%2526dt%253D1671118253562%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671118253808&t_i=1671118253817&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671118253817&fpid=&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.338	0 B	2023-03-07	2024-04-19
Pretty URL adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya%252F%2526dt%253D1671118253562%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671118253808&t_i=1671118253817&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671118253817&fpid=&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.338 IP 185.98.53.29 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 04:51:57 Times Seen36952284 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-18 21:02:43 Times Seen1513 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	js.wpadmngr.com/static/adManager.js	1.2 kB	2023-03-08	2023-09-14
Pretty URL js.wpadmngr.com/static/adManager.js IP 45.133.44.25 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:08 Last Seen2023-09-14 04:40:07 Times Seen1254 Hash 51b1a71b0add99b35a138609b191ca0a 49f6306d517f897883dcadb89fb725a3cd5f017d 902269f1228994ac73ce1a3ed21d948beb250b5c3d945b459ac6a48a097968fe Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	345 B	2023-03-08	2024-02-28
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 9e07e1de097e074188c64f54bc89e80d 549f51aa69be92fa441c291adc1fb43b72d7729b 53f0c82f7e25fd9211e8149d2088174e3f73bd867756cd49cf4d9a41e582595f Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	364 B	2023-03-09	2023-03-09
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 06:22:37 Last Seen2023-03-09 10:26:44 Times Seen1 Hash 02786243456b00b5367abc62b3740bc5 2bf6081376e9f718551a1aec48aaab13bd2e5036 90f483617d19a4d0afc1daf774799bb35b7b998ceb391385466770f48f508542 Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	116 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash 0be1ea69d1fb993a014af482fc00de04 2a5f51fcc22963fda8f6b4cb71daa63b1a7014f5 2ff5985ddb0e1152aad3b96aa9a46f56dc338928e911591ccd8105c2b98d7cf9 Loading...

	asg.phukienthoitranggiare.com/Cqp6VQ5.js	119 kB	2023-03-08	2023-03-13
Pretty URL asg.phukienthoitranggiare.com/Cqp6VQ5.js IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:25 Last Seen2023-03-13 10:17:46 Times Seen1 Hash 20b1f7c4e40e41c2debfb17cb07134ec f5ba09f282f291f98f69d4829569903c18b5ed57 130e9e584b0c6495952676d31263fab5331788351c9f83078fcc29e2caf7d7a7 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18	20 kB	2023-03-07	2024-03-10
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:28 Last Seen2024-03-10 09:13:07 Times Seen149 Hash e019a5eef7655ef670c33b1d53387c89 9febd845833a7bb5fc8766c50888d6a55cb6953f 999841f33c1c69bff363d50e357c6f1f2e7af6cacbbaf82302f857894e795d29 Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	146 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen25 Hash 9615ee0aa330a699931e5f7b6e9c1e0c e0a84195adac251741043f7d937add120ef68559 740364edc7a7d4b4f2b4dbdf53f7bcdd6eb05194be8c49a0ed045716102d9ae5 Loading...

	www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js	5.6 kB	2023-03-07	2024-04-15
Pretty URL www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-15 10:43:48 Times Seen689 Hash 81a54a116c4b5f257f0c296bb023e915 23167641c90ec1587c30c71625cedaa7f5701a1e 1e3bbf2a6d9503811213baca9f5e309618ca968136199ca532a0a5167c0b0f1c Loading...

	js.capndr.com/popunder-admanager/build.m.js	45 kB	2023-03-09	2023-03-09
Pretty URL js.capndr.com/popunder-admanager/build.m.js IP 45.133.44.25 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 06:22:37 Last Seen2023-03-09 17:23:15 Times Seen1 Hash e5c62aa1618a3fa16325de91711e058d 7224af8d18d25849213dc3e2c32d5eb3a123ae0e 38ed70a9a58b06099db5a9cf9507dec0664d80ddc4dabe0cbf11112aedad0dfb Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4	97 kB	2023-03-07	2024-04-18
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-18 15:00:37 Times Seen118523 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0	1.6 kB	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen38 Hash 0c8e12b6729ea495f40021071c279dbd d4bcfb6be3925b36d01f9ac879c4a86910f7a199 d7b7dc8c56c48930200905378552e435f23e32c2fd159a2176d40a712cd43513 Loading...

	www.googletagmanager.com/gtag/js?id=UA-124653024-3	112 kB	2023-03-09	2023-03-09
Pretty URL www.googletagmanager.com/gtag/js?id=UA-124653024-3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:26:44 Last Seen2023-03-09 10:26:44 Times Seen1 Hash 61f2280ac8886eb05601cb66fd0e1cf6 6aff8c58111811e4eb4bfe1789fdaa520d8d0bc7 f8e9b02a8f2e9f2c481722fb4f9e5ee39a2bb0b05d38ede0f3c499ef0c1a3186 Loading...

	www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17	2.2 kB	2023-03-07	2024-04-18
Pretty URL www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2024-04-18 16:58:36 Times Seen724 Hash 9a4179bd53e9fbc78f27855cfcc1c29c 2fcfd1cb9da823e8a4f260a42c616473580f1c1c aeb40c559d97e7bbb79841388a3b9a371c1d23ad07f69499ffd0f4625c35ec61 Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	64 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:26 Times Seen20 Hash f9675ebfcfaedcfc75362b6f6f0b848c 2eb1a3c8f6e600379712d2aa73eb1bf7e52ceb40 6a405d8f6090f493c5dba7eaf7197cfb927fe13919a5bc470ca615c3fd48243a Loading...

	static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ	2.0 kB	2023-03-07	2023-03-17
Pretty URL static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ IP 185.76.9.26 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-03-17 11:34:25 Times Seen1 Hash ad2321001e354b491f6a13575f4df95e 3f4eedffe42bc56c1def92b8c2c330d6408c8743 dfd960c7184e6b60e180fd568607a134fb8642977081e18bc002f758b8938a10 Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0	426 B	2023-03-07	2024-04-16
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 IP 104.26.2.123 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-16 10:48:18 Times Seen1138 Hash fa2ce987f8db7686a86e81d3407acb43 2c0e064be7f6d1d273749ddaa289d09a0f7470c1 405a5e4943b97243440d632a958bb6e79f1d1929666745000a22ebaa5fa2d819 Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	63 B	2023-03-07	2023-03-17
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2023-03-17 11:36:13 Times Seen1 Hash 68b49461696c843d7eb50c3e3bd3d394 4b8bedd664b7bc395ee93416e1bdf11b6a5c482d 9aff9406b53b2576b262de3e45c58bd5220734b74b6a1a24e8d8c58c78787439 Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags=	561 B	2023-03-09	2023-03-09
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags= IP 185.98.53.2 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:26:44 Last Seen2023-03-09 10:26:44 Times Seen1 Hash e6b705c4cfa3b93c3741531ed5a288b7 eaacf9acb49cd7613adb49e181e99e5057f9fbb1 116818e43342f314225df9d2b4cad376d4b37931dd8f3ba348250a7b58f9c201 Loading...

	asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=898&ww=1280&uuid=	569 B	2023-03-09	2023-03-09
Pretty URL asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=898&ww=1280&uuid= IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:26:44 Last Seen2023-03-09 10:26:44 Times Seen1 Hash bf175aa2e1e14303a9b55269cc413a1b 2ea9faaf7cf003e0b22c0e62c69ee3f72164b1e0 734f749965e8155db9e5a3c6f4f4e1d59c00bd2842f7c8a3cea7bc6452ed23c1 Loading...

	http:blank	565 B	2023-03-08	2024-02-28
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-02-28 02:41:26 Times Seen4 Hash 4c42561bb948a82f4b32d0e367543695 7fce9ddd740fee81dd857eba798f8977a9f7646f 55f1ab867653b56df88ecb576f1f6d8921e8398b023df3b905ee658b88aafdf9 Loading...

	poweredby.jads.co/adshow.php?adzone=794135	1.9 kB	2023-03-07	2023-04-05
Pretty URL poweredby.jads.co/adshow.php?adzone=794135 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2023-04-05 02:10:48 Times Seen259 Hash 5cd62169649c11f1057fd71c875fdd2f 6abb31f47f4927bf56249c39a3ef728c57385b68 1fdcbb5a37d7a7fb4938ab8f8a73fc7b68cadb81aecacdf7ad490525e6aea3fa Loading...

	cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js	90 kB	2023-03-07	2024-04-18
Pretty URL cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js IP 172.64.109.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-04-18 23:52:11 Times Seen3671 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3	33 kB	2023-03-08	2024-01-06
Pretty URL www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/main.js?ver=1.4.3 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:32:39 Last Seen2024-01-06 07:53:05 Times Seen16 Hash 9c087dd00c879aaa39aa54baadb77c07 4a9233ab7ac20e8a415b7f4582d521d25920d21d 87fc1b3826f63e8d1b4f966d122e0c37cd11cf707a52f772c5d80b28c4aa040e Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	155 B	2023-03-07	2024-02-28
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-02-28 02:41:25 Times Seen20 Hash 02b151f7f8bea6ea1530ad01245fa6cd 380297a64caa6dc209094187f329c61ed6a67dc1 61c58386d48745eb2671d386f65a2097706cfbab8a17103baa29b1159475c41d Loading...

	www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/	1.6 kB	2023-03-07	2024-04-10
Pretty URL www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ IP 172.67.68.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-10 18:41:01 Times Seen690 Hash 388722716c8c89af1136cef19a98017c 50875c3734cfd73eb9856bef783de97dbb496dae d39b00bf80cd9591e726005002d8084407bdb41ce867ac0e70ede5b7a781c472 Loading...

	poweredby.jads.co/js/jads.js	3.8 kB	2023-03-07	2024-04-18
Pretty URL poweredby.jads.co/js/jads.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-04-18 13:23:37 Times Seen8225 Hash bc8141c4650030c41f6a98026b12ce80 af5618f7e467a207d4c64627be580283ab5640cd 5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51 Loading...

	ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags=	345 B	2023-03-09	2023-03-09
Pretty URL ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags= IP 185.98.53.2 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:26:44 Last Seen2023-03-09 10:26:44 Times Seen1 Hash e949887ae77c14ab41d35ae8c11a9614 8e5117d8f54452b18d07672deafd301909ecf437 c59b69a1899910da53649972d2727d866a7f0c7b5a27957245044322f3c36ca3 Loading...

	liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js	37 kB	2023-03-09	2023-03-09
Pretty URL liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js IP 173.233.137.60 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:26:44 Last Seen2023-03-09 10:26:44 Times Seen1 Hash 017dd2c915df45553670f4c51f13f3c6 4f50ed84ea56242f3e8458d5298f1d48519db011 534e1faf853695a7edbb7d07fdb36aa6453256467e7ac4829df31d94376a327f Loading...

HTTP Transactions (110)

URL IP Response Size

www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/

172.67.68.13

301 Moved Permanently

0 B

URL HTTP/1.1
www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
IP
172.67.68.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Dec 2022 15:30:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 15 Dec 2022 16:30:54 GMT
Location: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Rqy04RWt80IYftbqjzeOtwNpmmYtbYzJ1lv8qxUEf1AL7nasp9kf3wwaCQcEpRLGBVlxj47k5pk6Hu9b%2FObRoqn%2BhuSZWi0LAkHCjP%2BHsTcSASP8cfEXjbELNPndnr7lPdpbDu1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77a0392468380b4d-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13502
Expires: Thu, 15 Dec 2022 19:15:56 GMT
Date: Thu, 15 Dec 2022 15:30:54 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
381442da2a14cb93770f4c8f6e19d35b
31c48467751e2450a63004c57eea0c7872023eaf
61b0985f47033bd7020ab3b8cdcbc6c17be6ab9b6feba69e006088b78e21c0f0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61B0985F47033BD7020AB3B8CDCBC6C17BE6AB9B6FEBA69E006088B78E21C0F0"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3924
Expires: Thu, 15 Dec 2022 16:36:18 GMT
Date: Thu, 15 Dec 2022 15:30:54 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
51bd0cc75ed746fd33c950eb12936b7e
4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50
188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2765
Expires: Thu, 15 Dec 2022 16:17:00 GMT
Date: Thu, 15 Dec 2022 15:30:55 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 14:33:54 GMT
content-type: application/json
age: 3421
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: RoOmbMUHMIepYgOrPpo/9YVGanQ6/8w1TFvOlkzajJoDZKboyVXWwiQEUUoCmtOaGR7oWFIj2LY=
x-amz-request-id: H2A6FSQNE0CECRZA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 14:50:57 GMT
age: 2398
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
7e55b4ea6dadda35224340b2dfd5de72
43aa18ef3d89cd13b176050956094161704ec5fe
d2de50832da689e712d47c1523ced14fb4268ee4f7b89abbef9f1cf8b1f59c73

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2680
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Etag: "639a9d59-116"
Last-Modified: Thu, 15 Dec 2022 14:46:15 GMT
Server: ECS (amb/6B80)
X-Cache: HIT
Content-Length: 278

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.24.14

200 OK

77 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 685508
expires: Tue, 05 Dec 2023 15:30:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NDi%2BEK5Kq2JRr31uKW4SgzvvoWpmy8BxdW6iXsy5WuRPYg%2FePiZlwrbLtI67dS3HVIepna1rtPC1be5ZOZHt4bZRseWwvqxPu%2BM22WOOuB5oATpeciqM1dKeUchubyyCCPKaf8ZA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77a039279e25b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.24.14

200 OK

5.1 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
abe1df98b6ab4644bd567e6669d0da03
27e3bf22ef08b7ca0090721ed31b4f921d278e7c
cd40ba7dbf63d67511c0fd56b7e5327dbedb43d15c439d79a8aacb6377059540

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 16399917
expires: Tue, 05 Dec 2023 15:30:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3iFAxmxgFG6GcMHVl2kLwdFg6StXVdYeANbB%2Bxwejg22D0g0Lkv1Hjuu1hXfRW8CXDkWOGtqqCTVricMVSgvggoGCY9VgjZj64QS21KT0XgrLVy%2FtS5HnEN7K50USRdJptooCRD4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77a039279d6cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0

104.26.2.123

200 OK

7.5 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (31186)
Size
7.5 kB (7487 bytes)
Hash
6a33e15abc507c407875854f25e9320c
ab27180ebd35430fa3d45db809ec8a2e4768b13e
157845a41971be9c35e5940f94c99d1e95da24a191c5acfde77e8def17835796

HTTP Headers

GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
etag: W/"635fdc2f-7a75"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=4.7.0
x-rocket-uri: /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 15852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8i5L2CqGW4lxe0Xxt%2Fy03KgBZEphKEt1Z3ywQNc0uLBlHEEvj9B8glE0sbD9LqbwsMgr0taagvXqG8ABZVv28dNiTN%2FXVyoKjrUyFFi8bv3T1XR4QctOq%2FdizPEt4VbT%2BX25UDnW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039274fd1b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/

104.26.2.123

200 OK

24 kB

URL HTTP/2
www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3016), with CRLF, LF line terminators
Size
24 kB (23696 bytes)
Hash
2e196b59efe616a6f117430e2d5f1576
800b7c8bced9d254fefb73da75643c7ae0681c35
d8e01f3ff3cf95a449245091f95af5d131ef354c35357f39ef0fe8d2e50154d3

HTTP Headers

GET /video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/ HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: text/html; charset=UTF-8
cf-ray: 77a039265e4db500-OSL
age: 80819
cache-control: max-age=3600
last-modified: Tue, 13 Dec 2022 23:45:45 GMT
link: <https://www4.bestjavporn.com/wp-json/>; rel="https://api.w.org/", <https://www4.bestjavporn.com/?p=55133>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: HIT
cf-apo-via: tcache
cf-connecting-ip: 66.249.68.26
cf-edge-cache: cache,platform=wordpress
x-frame-options: SAMEORIGIN
x-pingback: https://www4.bestjavporn.com/xmlrpc.php
x-rocket-nginx-serving-static: No
x-rocket-uri: /index.php
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UjC7Awgx9NzGfT9eNXvDQEK4214w6s04oqqOnRPZOvmWYA%2B7EQWqmppxnBVs9ysL29Ymg3VIUYJzZbABtfTGaXaPm3xFKvp%2F%2BMLgKTJ474gjuRdxJdR%2BVp7wqAjzuSFcx1y2pJ6j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17

104.26.2.123

200 OK

1.5 kB

URL HTTP/2
www4.bestjavporn.com/wp-includes/js/comment-reply.min.js?ver=5.2.17
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2160), with no line terminators
Size
1.5 kB (1464 bytes)
Hash
e9f209c7a2423319ac128da49e291b40
a4d4af0c6678cdfeced25f7f4b0cd63b99b06159
8f6e3247dedf4f1ce9459fba0feb6ee8577fda739bc1d4d88adba4db276b1dff

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=5.2.17 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 19:27:31 GMT
vary: Accept-Encoding
etag: W/"607893a3-870"
cf-connecting-ip: 90.224.223.37
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=5.2.17
x-rocket-uri: /wp-includes/js/comment-reply.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 5293
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9wA4d%2FT1zbGKCkSsz1ZVzFrSrPyM6BHLOFsiu1pmNP4MlC9EkWZ8gEmQceRsK9YBPVfnkguyo%2B%2BIYDFn18iGM3aG48OmOxICyORtC4NB9NUjvKraBAaejsFl1NO5WP0Gs%2FMEhXDd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039276802b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js

104.26.2.123

200 OK

2.4 kB

URL HTTP/2
www4.bestjavporn.com/wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5543)
Size
2.4 kB (2416 bytes)
Hash
9822bcdfdcf492870cab4aa88ab2b2ad
0716890ad758d9e193f50d5f604a1d9ea6122b1f
cd0a96755ffb4daf5e3775d2aa157ccf327c5126f9f636f507edb26226537720

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 10:02:46 GMT
vary: Accept-Encoding
etag: W/"5e831546-15d1"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/plugins/wp-rocket/assets/js/lazyload/12.0/lazyload.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 16970
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sqljMMF5%2BLkr7hGoZ2QGginmukFc%2BNAWX%2BceCqpaQd%2Brd2IsqFR7dUkplko67Gj9wcmINj7PMm5JI5QBRl9arYZR5HAyAudSNhPl7fIECaFap%2FG%2F5wPXU4WCYSI4wvtfF8Q1gJ8B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a03927780fb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4

142.250.74.42

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Dec 2022 09:45:42 GMT
expires: Mon, 11 Dec 2023 09:45:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 366313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-124653024-3

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-124653024-3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43577 bytes)
Hash
3870a26f83449f39e814616499c5a177
ceb92d6bb28b8e032a1f881f5f5f6222bfcb48d8
fc1a21fbcee784fb4b04638993cd01f867fac11ef4e898b0db17aac60aa4ef0c

HTTP Headers

GET /gtag/js?id=UA-124653024-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Dec 2022 15:30:55 GMT
expires: Thu, 15 Dec 2022 15:30:55 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0

104.26.2.123

200 OK

705 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
705 B (705 bytes)
Hash
33ff6900be6f97daa0bcd67f7cf54044
8b6d26a55170eda82dbc26f52344c1cbb80167e1
e9819510f86bd4fe4cec7ce2a5d32962f0a69f5a087c56e8056da9e9797f1c44

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=683
etag: W/"600200e4-2ab"
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.0.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/skip-link-focus-fix.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 16998
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y717SdgXPadZfSyToR63UbgPHLnuMCiJrT32zxNRMRpMR3iWcGfeQ%2FvgKNrtQ%2FTdeDHlgOqyZQpMW1HezIsnlyyZUTzb37m67Kojs8iiOpz2hvcXUntdvRPP3zFxSnM9moIRi1O6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039276800b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0fbe3d80eaa6623da753aece08c3a818
d3c6fe97e3154f00f681647a3c74800008ac2d2f
cab890482eacc4298414a2aa0e41ea5bce399eccd4d5e50c9cdc55c735c83b1e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

theporndude.com/favicon-32x32.png

104.19.129.100

200 OK

1.6 kB

URL HTTP/2
theporndude.com/favicon-32x32.png
IP
104.19.129.100:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.6 kB (1576 bytes)
Hash
e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad

HTTP Headers

GET /favicon-32x32.png HTTP/1.1
Host: theporndude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/webp
content-length: 1576
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1823
content-disposition: inline; filename="favicon-32x32.webp"
vary: Accept
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cache-control: public, max-age=31536000
etag: "71f-5dbddefb-94cda11995fd4df4;;;"
expires: Fri, 15 Dec 2023 15:30:55 GMT
last-modified: Sat, 02 Nov 2019 19:54:35 GMT
strict-transport-security: max-age=31536000
x-frame-options: allow-from https://webvisor.com/
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1358586
accept-ranges: bytes
server: cloudflare
cf-ray: 77a039293b6bb4fd-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
088037aa3cd3f678776d4443ee3feec3
4e8c2c84585e93acaeaba3c4a5704a98a315b33d
5f6edbe6d09f7efebc225ecb6d07c98f1ec12fa127febec52a4194130affdc88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:53:39 GMT
expires: Tue, 12 Dec 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 247036
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
088037aa3cd3f678776d4443ee3feec3
4e8c2c84585e93acaeaba3c4a5704a98a315b33d
5f6edbe6d09f7efebc225ecb6d07c98f1ec12fa127febec52a4194130affdc88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 14:33:21 GMT
age: 3454
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e30904bd9b57028f7ba1cc8e04ff08fd
9acb88374abef6387243ce8c5cf1149d73879ac1
be1ece2af7858ffc84e916d4554a805760c13a2eab346ac5a09a232b79116225

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pics.pornfhd.com/s/mono/movie/adult/84mkmp144/84mkmp144pl.jpg

104.21.235.63

200 OK

74 kB

URL HTTP/2
pics.pornfhd.com/s/mono/movie/adult/84mkmp144/84mkmp144pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", progressive, precision 8, 477x320, components 3\012- data
Size
74 kB (74273 bytes)
Hash
7a2083e2aa0d90a9c6c69f6a85bb825e
b26ea83bc5cf3fdb7cdb542647564ffb11f33f26
1284e821775b61625f3df557ed810c98fe135a7d54e4e8f17f5279c83ee2cab7

HTTP Headers

GET /s/mono/movie/adult/84mkmp144/84mkmp144pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/jpeg
last-modified: Tue, 07 Feb 2017 02:10:46 GMT
vary: Accept-Encoding
etag: W/"58992ca6-d3da"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 137010
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tVacboFTkRfK%2BufOCM%2FSNBPwHtC6xGyjc%2B8uxVYFxKl2azjcV36mtVeImcsgzJKSRIZlpBIH03gNX6LPyMvj5N6sYKLP8X6%2BpkVXW6NdB9YiKqO4xxtgoKMkc%2BdtzZLv5Jv3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a0392a39b07193-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b9f0adeb27a19629aeff6f34de67f3ad
3876d1b871d7da6d18de23c2edb301eb30728066
c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2895
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Etag: "639ae3b4-1d7"
Last-Modified: Thu, 15 Dec 2022 14:42:40 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e30904bd9b57028f7ba1cc8e04ff08fd
9acb88374abef6387243ce8c5cf1149d73879ac1
be1ece2af7858ffc84e916d4554a805760c13a2eab346ac5a09a232b79116225

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 15:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
6775836d0255d7372cec2703fb651e91
43f918640742a77ca445a1577035ce2b5c86c2d1
3a92a8c297e9d8c3d2ee7cd3755a26d66bcde5f50a8f384e2b02cd04765056eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 15:30:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Dec 2022 08:27:06 GMT
Expires: Tue, 20 Dec 2022 08:27:05 GMT
Etag: "43f918640742a77ca445a1577035ce2b5c86c2d1"
Cache-Control: max-age=405969,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77a0392b9d3db517-OSL

pics.pornfhd.com/s/mono/movie/adult/mmb433/mmb433pl.jpg

104.21.235.63

200 OK

47 kB

URL HTTP/2
pics.pornfhd.com/s/mono/movie/adult/mmb433/mmb433pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", progressive, precision 8, 478x320, components 3\012- data
Size
47 kB (46935 bytes)
Hash
ce3e62773c8640dfb737ec145fed7bdf
bb49bc5642955e9f0b2f9daadb588691e57e17ab
cd5d17579cdfceae85d04b149746d7d188099c9c42c9e65e2d300562952daffd

HTTP Headers

GET /s/mono/movie/adult/mmb433/mmb433pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/jpeg
last-modified: Wed, 28 Sep 2022 06:54:39 GMT
vary: Accept-Encoding
etag: W/"6333efaf-b6a5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1242396
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yfp1aBTlYydT72o3b5%2F4crpPaFNIOlNwHQSxvABB69IWL%2FPE354ZqKSsN3FXGni3LWZoNTF4ZgoZExMfqr5rtx%2FQoy0IoFtwJ0oXolR6NhQB0F3oeWCyfvPTvHQEQgwIFWs3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a0392a39b27193-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

poweredby.jads.co/js/jads2.js

185.94.236.247

200 OK

1.7 kB

URL HTTP/1.1
poweredby.jads.co/js/jads2.js
IP
185.94.236.247:0
ASN
#42567 Mojohost B.v.

File type
ASCII text, with very long lines (3758), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54

HTTP Headers

GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www4.bestjavporn.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 15:30:56 GMT
Content-Type: application/x-javascript
Last-Modified: Mon, 21 Nov 2022 05:24:20 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"637b0b84-eae"
Content-Encoding: gzip

push.services.mozilla.com/

54.149.51.98

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.51.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hBMs5t/1Ix+jAb8348j6/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QUuF6HUzK7ZfZNBg0P11rvKxvBQ=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfaa342af62183154bacd2969ab8f9d9
78cd69d56ad4ed419785e57d4a8f3c29b2ce231b
560db44ea6c1eba9e900842dfd6bb37349b24af21a40edf410cfb96cbb1fbceb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560DB44EA6C1EBA9E900842DFD6BB37349B24AF21A40EDF410CFB96CBB1FBCEB"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=228
Expires: Thu, 15 Dec 2022 15:34:44 GMT
Date: Thu, 15 Dec 2022 15:30:56 GMT
Connection: keep-alive

ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags=

185.98.53.2

200 OK

1.7 kB

URL HTTP/2
ads.adxadserv.com/ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags=
IP
185.98.53.2:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (579)
Size
1.7 kB (1689 bytes)
Hash
3c94dfb835536e90b113a194bb70465b
9537a171f8ea116b11b43f99d7d85320305bd3f9
b8aec83f6942b289c49a8df68d6035eb218960ce24f463249bc25bbec1b6c409

HTTP Headers

GET /ad?spotid=62fe56a361d6e272ea2a6a61&type=300x250&output=html&extra1=0&ref=https%3A//www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/&dt=1671118253562&screen=1280x1024&tags= HTTP/1.1
Host: ads.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: text/html; charset=utf-8
content-length: 1689
cache-control: no-cache
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8479a3148cab4275d4ce504e9865174b
a61b0fd5cf905b5278c5bfd075e9ecf4e29c4a86
101498cadbcf70ee23cca45072c70c318dc3e8a0b526c2a0a684556a3e2541df

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "101498CADBCF70EE23CCA45072C70C318DC3E8A0B526C2A0A684556A3E2541DF"
Last-Modified: Tue, 13 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2308
Expires: Thu, 15 Dec 2022 16:09:24 GMT
Date: Thu, 15 Dec 2022 15:30:56 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83ee95aa57c06c066ae3aed33734f035
3f869b22fb095585c145f9cf3652be087433c22e
4195a9d7c888dd3585905e6b672c3a9c0a98c57c3f7132c686380637763cf35f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4195A9D7C888DD3585905E6B672C3A9C0A98C57C3F7132C686380637763CF35F"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2242
Expires: Thu, 15 Dec 2022 16:08:18 GMT
Date: Thu, 15 Dec 2022 15:30:56 GMT
Connection: keep-alive

r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv1=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61

185.98.53.17

200 OK

988 B

URL HTTP/1.1
r.trackwilltrk.com/s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv1=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (792)
Size
988 B (988 bytes)
Hash
49399d76ed58965743b22acb93cc0921
e0f96da88549c81c4118c797027a8d494bca93c8
52a674ae5235d9531cf18f6e92afa9f126d80f87d78ae7589b0ce5ad51cefc87

HTTP Headers

GET /s1/e1ce8edc-bc88-4852-876e-2bf610b566ce?externalId=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv1=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&cv2=0c1c5c30286e1db21a741e4b62c8b6e4&cv3=desktop&cv4=62fe933961d6e278cd572307&cv5=62fe933061d6e278cd572305&cv6=en&cv7=NTVA-Bestjavporn&cv8=Firefox&cv9=62fe56a361d6e272ea2a6a61&cv10=62fe56a361d6e272ea2a6a61 HTTP/1.1
Host: r.trackwilltrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:30:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 988
Connection: close
Set-Cookie: uid=p2-VyWEtp; Path=/; Domain=trackwilltrk.com; Expires=Fri, 16 Dec 2022 15:30:56 GMT; HttpOnly
X-Request-Id: 110ae87b-1570-4e4c-b67f-a27d3f0079b2

adxadserv.com/ascripts/pxl.js

185.98.53.29

200 OK

78 kB

URL HTTP/1.1
adxadserv.com/ascripts/pxl.js
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (36114)
Size
78 kB (77806 bytes)
Hash
8348b78d100940ba1808a8e9b93f2e94
c2aa612dc3256c9f235dcfc6e330d0ecaf957768
9c983adf86ebc949957bdf55d524dfa278a79bea8d13f2efa9512c6dd37b86f5

HTTP Headers

GET /ascripts/pxl.js HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:30:56 GMT
Content-Type: application/javascript
Content-Length: 77806
Connection: keep-alive
Last-Modified: Fri, 25 Sep 2020 09:55:25 GMT
ETag: "5f6dbe8d-12fee"
Expires: Tue, 13 Dec 2022 08:33:23 GMT
Cache-Control: max-age=86400, public
X-77-NZT: Abk73hFrKsD/2mEAAA
X-77-NZT-Ray: f4787b2700adf57db03d9b63ce73bf29
X-Cache: HIT
X-Age: 25050
X-77-POP: amsterdamNL
X-77-Cache: HIT
Accept-Ranges: bytes

liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js

173.233.137.60

200 OK

13 kB

URL HTTP/1.1
liaisondegreedaughters.com/2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with very long lines (37143), with no line terminators
Size
13 kB (13420 bytes)
Hash
467650168057528bb9948d00120d2d40
7f9508021b411df463b1b41a60062d3b6abec7e6
498c6474f6d17ce9f30c3e9d7b308103e8aa609cddcac2b84ce61fc5dd6f5340

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /2b/d8/d3/2bd8d300136a6fd50bcb5a7f3f4a12fa.js HTTP/1.1
Host: liaisondegreedaughters.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 15 Dec 2022 15:30:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a663a9fccb4b85de415fe45fd03eb921
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya%252F%2526dt%253D1671118253562%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671118253808&t_i=1671118253817&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671118253817&fpid=&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.338

185.98.53.29

200 OK

0 B

URL HTTP/1.1
adxadserv.com/px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya%252F%2526dt%253D1671118253562%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671118253808&t_i=1671118253817&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671118253817&fpid=&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.338
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/event/v1?e_t=pageview&url=https%253A%252F%252Fads.adxadserv.com%252Fad%253Fspotid%253D62fe56a361d6e272ea2a6a61%2526type%253D300x250%2526output%253Dhtml%2526extra1%253D0%2526ref%253Dhttps%25253A%252F%252Fwww4.bestjavporn.com%252Fvideo%252Fgvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya%252F%2526dt%253D1671118253562%2526screen%253D1280x1024%2526tags%253D&ref=https%253A%252F%252Fwww4.bestjavporn.com%252F&d_r=1&d_s=1280x1024&d_w=293x250&t_s=1671118253808&t_i=1671118253817&u_tz=0&u_l=en-US&u_l2=&u_l3=&pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&nav_rc=0&nav_nt=NAVIGATE&p_nn=adxad-rtb&p_pt=IFRAME&imid=7811a2ab-7c8d-11ed-a8af-e2e38133f3a0&spid=62fe56a361d6e272ea2a6a61&fpid_sa=1671118253817&fpid=&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=1&e_d=%7B%22isResetRequired%22%3Atrue%7D&t_op=0.338 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:30:56 GMT
Content-Length: 0
Connection: keep-alive

static.javhd.com/h5/files/button/29-button.png

185.76.9.26

200 OK

733 B

URL HTTP/2
static.javhd.com/h5/files/button/29-button.png
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
82a66a2d222379716ca9a03ff50d8f42
ae43d917ff791f9172edc527baa6266416182aaa
cc5da7b40e498d30bf5eaae43e59cae32202737076422676489dd8d3030803de

HTTP Headers

GET /h5/files/button/29-button.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: image/png
content-length: 733
last-modified: Tue, 22 Dec 2015 18:41:22 GMT
etag: "56799952-2dd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRQ+N4z/X9MPAQ
x-77-nzt-ray: af585630172976eeb03d9b638a6a5f38
x-cache: HIT
x-age: 17814367
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhd.com/h5/files/overlay/1602-overlay-preview.png

185.76.9.26

200 OK

1.5 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/1602-overlay-preview.png
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1546 bytes)
Hash
7083a71bc40e5d85670940c518cacca2
a2caeb7c6ca3960af2881434fb0df0c2241d7288
7c4049c76ecd35b05855df0c6ce7e1157213d9fb92c3b2b05ebf9b5d9bdff03a

HTTP Headers

GET /h5/files/overlay/1602-overlay-preview.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: image/png
content-length: 1546
last-modified: Wed, 20 Apr 2022 13:56:48 GMT
etag: "62601120-60a"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRSI9k7/X9MPAQ
x-77-nzt-ray: af585630172976eeb03d9b63b24b6238
x-cache: HIT
x-age: 17814367
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.javhd.com/h5/files/overlay/1602-overlay.png

185.76.9.26

200 OK

1.8 kB

URL HTTP/2
static.javhd.com/h5/files/overlay/1602-overlay.png
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1839 bytes)
Hash
f4403fc07b7c414db6ec613317885035
457d3e8f9e9fb0456292efdbd5f18b318e804ea7
00ffbfa9483f4a6e8b85b6ab368a9547cf29e54c1aeb2bfcf81f34ec2bf50ee7

HTTP Headers

GET /h5/files/overlay/1602-overlay.png HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: image/png
content-length: 1839
last-modified: Wed, 20 Apr 2022 13:56:47 GMT
etag: "6260111f-72f"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRSOo5r/X9MPAQ
x-77-nzt-ray: af585630172976eeb03d9b63cc706538
x-cache: HIT
x-age: 17814367
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76a92eb1f407b195b89e2d7fabb40db8
b5b52b657ae3fd5e139dc43fe19fc080cf02e3b2
d4abf1cfb2a21d414212c896486b25aed4a1e7fd3b3d6c604609bdc12628930b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D4ABF1CFB2A21D414212C896486B25AED4A1E7FD3B3D6C604609BDC12628930B"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20885
Expires: Thu, 15 Dec 2022 21:19:01 GMT
Date: Thu, 15 Dec 2022 15:30:56 GMT
Connection: keep-alive

static.javhd.com/h5/files/video/3849-30453-300x250.medium.mp4

185.76.9.26

206 Partial Content

432 kB

URL HTTP/2
static.javhd.com/h5/files/video/3849-30453-300x250.medium.mp4
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
432 kB (431883 bytes)
Hash
1c6cc0e006fbcbe3ea94216b9bc0dcef
fe8ee7a562043af39d0b9422eb09ee7bcd26a4a3
2de8221645cf78c35fa8dd9396999c833b46ec732af49b87655349f9c1f4c42e

HTTP Headers

GET /h5/files/video/3849-30453-300x250.medium.mp4 HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 206 Partial Content
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: video/mp4
content-length: 431883
last-modified: Mon, 07 Feb 2022 07:42:29 GMT
etag: "6200cd65-6970b"
expires: Tue, 24 May 2022 11:04:49 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-accel-expires: @1671192378
server: CDN77-Turbo
x-77-nzt: AblMCRSxNdn/9i8AAA
x-77-nzt-ray: af585630172976eeb03d9b6386b2aa3a
x-cache: HIT
x-age: 12278
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-431882/431883
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
22d02052779cf2c78d16fbf68e431c86
360dad4f9c939e6b2645dfc4506fe57511f96834
4631dd8a20cdbb7956266fe0a51075e9bd7e9bde29b3beae5b6ef8768a84d008

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4631DD8A20CDBB7956266FE0A51075E9BD7E9BDE29B3BEAE5B6EF8768A84D008"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10133
Expires: Thu, 15 Dec 2022 18:19:50 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c5b83c25e5e46f436651e669c2fea40
82b3c30793b3f3dd8649bf9a58bd6e4e2d34fca8
2454f4d3a18d2eee42d11e2a7cf64519fd5866d1575f2f846e0ccb980a4733c3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165856
Date: Thu, 15 Dec 2022 15:30:57 GMT
Etag: "639b2198-1d7"
Expires: Sat, 17 Dec 2022 13:35:13 GMT
Last-Modified: Thu, 15 Dec 2022 13:31:04 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8qD-4BCrpAQJfdhI_tsNHQ5Iq3PKh3XW4wf_w3Rs-hQxClu1-M-BqA==
Age: 249

simplewebanalysis.com/stats

18.195.193.92

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.195.193.92:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
d7844832041e0caa148ac9d55a628348
dfd3420bc6439f804ed8c757299d188be911c963
fa5e8ea3485008fb4547bb82f8e79227e8de4b63594a7836fdbac6b76714970c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www4.bestjavporn.com
access-control-allow-credentials: true
set-cookie: uid_id2=ceee45cd-c419-414f-9bc8-56b6f5e9189f:1:1; expires=Sun, 12 Dec 2032 15:30:57 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

js.wpadmngr.com/npc/sdk/wp-banners.js

45.133.44.25

200 OK

0 B

URL HTTP/2
js.wpadmngr.com/npc/sdk/wp-banners.js
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Thu, 15 Dec 2022 15:35:57 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
22d02052779cf2c78d16fbf68e431c86
360dad4f9c939e6b2645dfc4506fe57511f96834
4631dd8a20cdbb7956266fe0a51075e9bd7e9bde29b3beae5b6ef8768a84d008

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "4631DD8A20CDBB7956266FE0A51075E9BD7E9BDE29B3BEAE5B6EF8768A84D008"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10133
Expires: Thu, 15 Dec 2022 18:19:50 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10406
Expires: Thu, 15 Dec 2022 18:24:23 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bac1fc09540b96a33f19937b58c7ed4
b9808ad23f49bd73d6d532890384bd431a54eeaf
956bb994fbb9fcf3dbbce90e952e12183601c966a65ff5711ff05c6ea395e339

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "956BB994FBB9FCF3DBBCE90E952E12183601C966A65FF5711FF05C6EA395E339"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18282
Expires: Thu, 15 Dec 2022 20:35:39 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10406
Expires: Thu, 15 Dec 2022 18:24:23 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10406
Expires: Thu, 15 Dec 2022 18:24:23 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10406
Expires: Thu, 15 Dec 2022 18:24:23 GMT
Date: Thu, 15 Dec 2022 15:30:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa07f7ca-6934-430f-92d6-9bc043047221.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa07f7ca-6934-430f-92d6-9bc043047221.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8421 bytes)
Hash
b2361f592471c52524830ea99ab9f217
884fd2a1cfcef20f2e5e549a0853ec3b27be9968
8732e50c7734c8a787c1305a1edf977f5d6db02f0030a79908d18d39dcf70987

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa07f7ca-6934-430f-92d6-9bc043047221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8421
x-amzn-requestid: e5a0378b-4497-4c27-a99b-98f389364c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c-ERFG5tIAMFVLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639580d3-05d06f8f35895f7b54a2db48;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 07:03:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iWw7ZVF9o-If8H_QfGf6JFNsCs31r60nJaA5jlt0ifWgHJBg-XHTAg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:54:41 GMT
age: 63376
etag: "884fd2a1cfcef20f2e5e549a0853ec3b27be9968"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7163 bytes)
Hash
1e1fb0ddf6ac86d38423a55841c78c6c
d31310f2441c9f7584f3c1605dd3fb38d5af41a6
8e91e724a42f8b0cf953570937c33465903c979297e439438d86c45b3d242d4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7163
x-amzn-requestid: f3472b61-a3e4-4af9-bb1f-eecd4c7315e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dFxs3GuWIAMFSWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63989652-2892086d207c30e3583847ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 15:12:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_9xOQmBEPWm8hje_FeJWC-nFCvbNOuLGR13GiPcZrjbK9Gl8dYiNA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:42:32 GMT
age: 64105
etag: "d31310f2441c9f7584f3c1605dd3fb38d5af41a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4523 bytes)
Hash
b76e8c43482cb1f6e9d3f5dd55185382
364236e338c799f7d7a604882451428d12cdc7c7
375600e8bedfec8fa85da9298fc3322b91e97261dee7fd94b1dad8e6f4faed67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4523
x-amzn-requestid: 5404595d-f42f-49a0-9438-093b2fb1b852
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBXWTGEcIAMFdnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d28e-17f927945ee836a91a3148e0;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:04:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JBIoHXeeJIsyl_wj57ZEP_f1mg3eq0WJjgKveuc_DslNZzSiVf62Og==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:14:54 GMT
age: 29763
etag: "364236e338c799f7d7a604882451428d12cdc7c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

js.wpadmngr.com/static/adManager.js

45.133.44.25

200 OK

6.4 kB

URL HTTP/2
js.wpadmngr.com/static/adManager.js
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
6.4 kB (6402 bytes)
Hash
b0985bc253ad30f9d7d7b6f2a90885bb
353636a4b63d604806e4e91259ddc743e5213f6a
f9f75d1c814e42200823efe98b0cb9a51d6fe972f10e0511204353ffae0f1497

HTTP Headers

GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 05 Dec 2022 13:37:26 GMT
etag: W/"638df416-4dd"
content-encoding: gzip
expires: Thu, 15 Dec 2022 15:35:57 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5166 bytes)
Hash
860298771622d100fe1feafb0a1aac50
e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3
93ea9f1b9a0276075ff9752dc31a5a19e4378ca481895a3cd22f461a8ca6040a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5166
x-amzn-requestid: fa8e9bd0-e5ee-48e9-86b6-0330ccac7d69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6xc4GQYIAMFriA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942f85-5f7472d631c1c9f560d88378;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:04:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B_yXACjMh8LALqEgc6Ld85CUk_CpEQrSsWsEUc0IwKrOQl2ExsIwlQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 02:23:39 GMT
age: 47238
etag: "e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

31 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F127c491c-f334-4f88-ab1c-07169225ca7c.gif
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
GIF image data, version 87a, 296 x 148\012- data
Size
31 kB (30895 bytes)
Hash
1a355e31327e2a5f648c36fdc4d2348a
ab6149b7874d751c3b897889902ecf52cbede8e4
cf3fbf211bc15f39efe535bf66a281d124c6254b0b9e641b6ea3c8023ab869dc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F127c491c-f334-4f88-ab1c-07169225ca7c.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 30895
x-amzn-requestid: 2d48ad82-6b48-4b9b-9dd0-98afd8b7f9ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c0NExFi7oAMFuKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63918eeb-6ceedd921e75513b6dfdb084;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 07:14:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Hl0Mdyy9oH1n1LveM7TzD0kSA7NT80XbRiPEAQMbjxmMqRmpwcrG5w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 13:41:32 GMT
age: 6565
etag: "ab6149b7874d751c3b897889902ecf52cbede8e4"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

na.nawpush.com/tags/59555?version_name=a

45.133.44.25

200 OK

1.1 kB

URL HTTP/2
na.nawpush.com/tags/59555?version_name=a
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (1106), with no line terminators
Size
1.1 kB (1106 bytes)
Hash
dc0a31c6d676473b303005385917dc6e
5d6c793a9968ed86916c454c82758487946a661e
bd2ed155698a172edfee2d450d25a85c50c396e8fd279db38e69e3dacc03203b

HTTP Headers

GET /tags/59555?version_name=a HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: application/json
content-length: 1106
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

static.adxadserv.com/js/adb.js

185.76.9.26

200 OK

2.1 kB

URL HTTP/2
static.adxadserv.com/js/adb.js
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (511), with CRLF, LF line terminators
Size
2.1 kB (2131 bytes)
Hash
5ae555e96798f2f4fb74cedb6436cf2f
ca8e48330309141e54af1353fc3887cd7ad04ecf
d37953931784964413b9cf9df43fa755c3c93bf83095b8aea72da6e5c575ace0

HTTP Headers

GET /js/adb.js HTTP/1.1
Host: static.adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: application/javascript
last-modified: Tue, 24 Mar 2020 11:15:59 GMT
etag: W/"5e79ebef-532"
x-accel-expires: @1671966438
server: CDN77-Turbo
x-77-nzt: AblMCRQyntX/yuACAA
x-77-nzt-ray: af585630282304e7b03d9b638680fe0f
x-cache: HIT
x-age: 188618
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5d9480dd205da74ef87145d1282fffed
3975ecdee3b69343a371a1341217ced364104d7b
95529f9f0618242d3d762cf6a14320f03a388ebdaca30d473e06e19984fcaabd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95529F9F0618242D3D762CF6A14320F03A388EBDACA30D473E06E19984FCAABD"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19155
Expires: Thu, 15 Dec 2022 20:50:13 GMT
Date: Thu, 15 Dec 2022 15:30:58 GMT
Connection: keep-alive

r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=

185.98.53.17

200 OK

811 B

URL HTTP/1.1
r.trwl1.com/s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6=
IP
185.98.53.17:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (615)
Size
811 B (811 bytes)
Hash
26b8a40a0ff4c33805ffa0716028f3d7
cd59b59030e4f3965db13020754e56ea117caa76
68f402a9be1b8995ba9d6402fd2b420025ed016e6d5ec437c00d7079dac8b27f

HTTP Headers

GET /s1/5146bd48-0d31-4836-a052-4f7292431eec?externalId={extPlaceholder}&cost={costPlaceholder}&cv1={dynamicCON}&cv2=NO&cv3=126401&cv4=237443&cv5=794135&cv6= HTTP/1.1
Host: r.trwl1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:30:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 811
Connection: close
Set-Cookie: uid=U2cVyixtp; Path=/; Domain=trwl1.com; Expires=Fri, 16 Dec 2022 15:30:58 GMT; HttpOnly
X-Request-Id: 837da156-a9e5-4285-b9bf-cdc437951af3

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae441bcd21b7bee7a3f0bfc636a205c9
5dd6b920d61444862782637252658b6f98e299c0
541daa19a9886b6946933faddf638643fb445e88b59c7dfc28d84b394ab5076d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "541DAA19A9886B6946933FADDF638643FB445E88B59C7DFC28D84B394AB5076D"
Last-Modified: Thu, 15 Dec 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9424
Expires: Thu, 15 Dec 2022 18:08:04 GMT
Date: Thu, 15 Dec 2022 15:31:00 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d51d52d37ba81e9d618dca8922166831
ffb2a0f7499f14b88e209eaec7f7b855af4b4ca2
c8ca0aa1ef0915e11a26020de41f65a75770f40ef36e30a307ee89f2770615f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8CA0AA1EF0915E11A26020DE41F65A75770F40EF36E30A307EE89F2770615F9"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19171
Expires: Thu, 15 Dec 2022 20:50:31 GMT
Date: Thu, 15 Dec 2022 15:31:00 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0cb8c1e66e95988a08c60a5193c683ff
22b9cfab25b53d04015f553f098f0b44d40528ba
827bf35c603558bf5b569168d2dea4bcc74ee5944c5df424b06c1810b4770335

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "827BF35C603558BF5B569168D2DEA4BCC74EE5944C5DF424B06C1810B4770335"
Last-Modified: Thu, 15 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17835
Expires: Thu, 15 Dec 2022 20:28:15 GMT
Date: Thu, 15 Dec 2022 15:31:00 GMT
Connection: keep-alive

fp.metricswpsh.com/fp?tag_id=59555

157.90.84.242

204 No Content

0 B

URL HTTP/1.1
fp.metricswpsh.com/fp?tag_id=59555
IP
157.90.84.242:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www4.bestjavporn.com/
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:31:00 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

714a39ef94.086f39952a.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxMjAyNjU1NTkxOTk3NjY3MzAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjE5LjEiLCJ0YWdfaWQiOjU5NTU1LCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjIuNzEsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MCwidXNlcl9rZXl3b3JkcyI6IkdWRy0yMjklMkMlNUJFbmdsaXNoJTJDU3ViYmVkJTVEJTJDRmFuJTJDT2YlMkNCaWclMkNUaXRzJTJDU2hvdGEta3VuJ3MlMkNMZXdkJTJDUHJhbmslMkNLYWhvJTJDU2hpYnV5YSUyQ0Jlc3RKYXZQb3JuIn0=

45.133.44.24

200 OK

0 B

URL HTTP/2
714a39ef94.086f39952a.com/in/track?data=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
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /in/track?data=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 HTTP/1.1
Host: 714a39ef94.086f39952a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:00 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=59555

157.90.84.242

200 OK

28 B

URL HTTP/1.1
fp.metricswpsh.com/fp?tag_id=59555
IP
157.90.84.242:0
ASN
#24940 Hetzner Online GmbH

File type
JSON data\012- , ASCII text
Size
28 B (28 bytes)
Hash
e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a

HTTP Headers

POST /fp?tag_id=59555 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22283
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:31:00 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Set-Cookie: id=10761739755827815344; Expires=Fri, 15 Dec 2023 15:31:00 GMT; Secure; SameSite=None
Vary: Origin

assailusefullyenemies.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa

192.243.59.13

200 OK

4.3 kB

URL HTTP/1.1
assailusefullyenemies.com/sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (5909), with no line terminators
Size
4.3 kB (4285 bytes)
Hash
25f0ec13cb70aefe46d4d0eb05a613b8
91bda1a316ffa01633c8d28f2afdd4879eb7e69f
d21c87b85731dd6cf3dabf38dc317ac183a51e2ea247ce81deffd1982f8a5d93

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=2bd8d300136a6fd50bcb5a7f3f4a12fa HTTP/1.1
Host: assailusefullyenemies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 15 Dec 2022 15:31:00 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www4.bestjavporn.com
Access-Control-Allow-Origin: https://www4.bestjavporn.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17179025; expires=Fri, 16 Dec 2022 15:31:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 16 Dec 2022 15:31:00 GMT; secure; SameSite=None
uncs=1; expires=Fri, 16 Dec 2022 15:31:00 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 16 Dec 2022 15:31:00 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 16 Dec 2022 15:31:00 GMT; secure; SameSite=None
slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3859755]; expires=Thu, 15 Dec 2022 15:31:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e0512b2b4e4c05bda21ef10a12625a2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

js.capndr.com/popunder-admanager/build.m.js

45.133.44.25

200 OK

16 kB

URL HTTP/2
js.capndr.com/popunder-admanager/build.m.js
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
16 kB (16434 bytes)
Hash
6d38bc61009a3f6a701b76a53b97a9d8
b2eda4081618a22c4ece2349ca77934e2ba3fb78
18b2a83adca8b20afeaead00aaacdd3107f41a0601c65b80aeaf4af403c6cade

HTTP Headers

GET /popunder-admanager/build.m.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:00 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 13 Dec 2022 12:10:23 GMT
etag: W/"63986baf-aee3"
content-encoding: gzip
expires: Thu, 15 Dec 2022 15:36:00 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9aaf846029ac76d5ee378266c44d62c8
fc2a1c31cbadf938ed5d169cd59ca689b5a108b5
d95633d98be0c7e3123e33277dc866a8eec53b8382bd121277f06d7065af9026

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D95633D98BE0C7E3123E33277DC866A8EEC53B8382BD121277F06D7065AF9026"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9501
Expires: Thu, 15 Dec 2022 18:09:21 GMT
Date: Thu, 15 Dec 2022 15:31:00 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
bf16b1c77c901ba941f03435ed9401da
656c70bbb5a67fb731bd3bec79a886e944f3a6ba
14927c403b0356172c9938a2f8d8da70bc68927f0bc93ce5236cfd7af5bde1a4

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "14927C403B0356172C9938A2F8D8DA70BC68927F0BC93CE5236CFD7AF5BDE1A4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9729
Expires: Thu, 15 Dec 2022 18:13:10 GMT
Date: Thu, 15 Dec 2022 15:31:01 GMT
Connection: keep-alive

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png

172.64.109.13

200 OK

6.0 kB

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/img/close.png
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 05 Jul 2022 10:43:39 GMT
etag: "62c415db-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 900489
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x6x%2BhkexnYl6F1Duc%2FBZ8cewlh1PRs8VvKtKZxuYhmLcQc3lAC3FkTOpnEj6TUlAIELDvC4YBJNFPNWUEXpVLgT28IJ4Yswi6ex0lpVNuU9riWJnqOp71jJr5qQ1WaF4ZXK6rxL4z4AU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0394b8a4d23ae-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html

45.133.44.4

200 OK

403 B

URL HTTP/2
cdn.barscreative1.com/sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html
IP
45.133.44.4:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text
Size
403 B (403 bytes)
Hash
7af11c609bc1cd0ba8692aac78ce0a48
93a7a4b2afc623533ffec6edf15adab365812b45
eb5b706390e15df5ffe68b8eddf9c1448617ff910c0e49822c0c210c02bed8d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sb/au/e6/d7/97/e6d797a3a7be0e7ec1877d1b33146dfa/1657714258.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:00 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 13 Jul 2022 12:11:03 GMT
etag: W/"62ceb657-4a6"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 15 Dec 2022 16:31:00 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
bf16b1c77c901ba941f03435ed9401da
656c70bbb5a67fb731bd3bec79a886e944f3a6ba
14927c403b0356172c9938a2f8d8da70bc68927f0bc93ce5236cfd7af5bde1a4

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "14927C403B0356172C9938A2F8D8DA70BC68927F0BC93CE5236CFD7AF5BDE1A4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9729
Expires: Thu, 15 Dec 2022 18:13:10 GMT
Date: Thu, 15 Dec 2022 15:31:01 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
acb4317798865229367688f864382257
cc2fb179d950b63cd79b2ddcad7923251fb372ae
953396e3963bc9ce751b99059ce36ac04cafa5156e76543b993e94267ad8d8fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "953396E3963BC9CE751B99059CE36AC04CAFA5156E76543B993E94267AD8D8FA"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5675
Expires: Thu, 15 Dec 2022 17:05:36 GMT
Date: Thu, 15 Dec 2022 15:31:01 GMT
Connection: keep-alive

assailusefullyenemies.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=150

192.243.59.13

200 OK

0 B

URL HTTP/1.1
assailusefullyenemies.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=150
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fstyle.css&l=4649&fd=150 HTTP/1.1
Host: assailusefullyenemies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3859755]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 15 Dec 2022 15:31:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.cloudimagesb.com/si/07/c5/87/07c5872818864bb5c9951724ac83b6a4/1671036721.png

45.133.44.9

200 OK

69 kB

URL HTTP/2
cdn.cloudimagesb.com/si/07/c5/87/07c5872818864bb5c9951724ac83b6a4/1671036721.png
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
69 kB (69066 bytes)
Hash
2ee54f9958ff162107915cbe0171d4e4
2aa7f74641a6523fae6e5aeec30af904a91885a6
f7c9c735b7c4bd0e5543aa6c3881284b5a98c49352e954bb1cd7350a799e92b3

HTTP Headers

GET /si/07/c5/87/07c5872818864bb5c9951724ac83b6a4/1671036721.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: image/png
content-length: 69066
server: nginx/1.17.6
last-modified: Wed, 14 Dec 2022 16:52:10 GMT
etag: "6399ff3a-10dca"
expires: Sat, 17 Dec 2022 15:31:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js

172.64.109.13

200 OK

183 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/script.js
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
183 B (183 bytes)
Hash
ebb57b91d3c26defb07d8667074cc559
d583650fc9da4671ca6aac8ce31933945f60ee2f
c932991a0eb48241843d089e42218e3ef19efb174615504d3cbab7f348153f02

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-17f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 898355
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tL%2BPap1XQGlO%2BhcJdw9UX5h4Up2eYjSD%2Btyt6q9fm7jUGB0PNM69jDhcmGcycbpvL17%2FtvwjOUaNb7zy3BI6lMkvYr87mSkSa1MI8zjYFDVF9piaHappyH%2BUks%2BH%2B%2FQOVw5eZ2%2BzHPr5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0394c1b1c23ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

assailusefullyenemies.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=155

192.243.59.13

200 OK

0 B

URL HTTP/1.1
assailusefullyenemies.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=155
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2Fv2%2Fnew%2F3%2Fcss%2Fanimate.css&l=79313&fd=155 HTTP/1.1
Host: assailusefullyenemies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3859755]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 15 Dec 2022 15:31:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:34:08 GMT
expires: Thu, 14 Dec 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 71813
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 18:53:49 GMT
expires: Thu, 14 Dec 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 74232
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

assailusefullyenemies.com/pixel/sbs?c=1

192.243.59.13

200 OK

0 B

URL HTTP/1.1
assailusefullyenemies.com/pixel/sbs?c=1
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: assailusefullyenemies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3859755]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 15 Dec 2022 15:31:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

assailusefullyenemies.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDuah48SCOByGSMNs9PbMzmxAW1xhZzO8f5qAeqquqZytb3dVWdU9P9rQYkBxEJ54EL73fbLJEQzTgVZDeeJCByLYHXcX15B%2BgYs4ys4OLD6req%2Fre4fu%2B9z5Yy3aIi4xuXzirV6RSdKZVd2tHrsmY69zWzl2peW7dPVG7JuPZ5olaf3yZ3nHPbdXdV2pvCLasZxqu57qe69VOSyNC3Z%2BZoJDJ%2FTmvPufWm42612qib%2F7%2FtpkDSx3w3g55FpJXB5e%2BfwjJSsTRV6eEXU51cuz1KFM01QY9vnE1Xo51HiPaK0PjIIw3pt3QtiLk033Q8cZUAXRvfawAgayI85OHIN6Y0kTQu7PLNFAQMQJ%2BGHmvhFAlJC3B9E1IvkUAxnHuPOLo7jltcnpjF6VjtCIHnvwNmVfkwG%2FPIY4eLCjZr13WKkulji36YQHZLyG7JZJsE%2BmKA5lvgqXvQ%2FLHZObJGcTR%2BnmrNCQvJuqlLCHDEkoMQK2DbHykgyx0kCUOIr5do6250HXbYRD6fqfJGPN9xlqdWd7ifrMTusjYmN4AaTIAUwMws4rErGJZfrLVennr3aMw2bewSwUsd2DTijgXV9HjBXJBkFuCnBLkkiBPCfJecYcr27DFXa5sFnjT3JhmvxjqtLtG7%2Bi0K2KyluyQZ8buOIdeuo1lsV1rBLzDfdf1%2FFk6G%2FKWG7CgRduhHzap1wgprCwg7b6J4BVZkf2HbiKRFdl34k8EtIRVJZh8GjR7ATQfthsu6NKw2XGxEn8ZCJtep71Em7jOdASuCyTpAaQ3nDW1Q56fDOr4H0ch2Gj%2Br2MLjx%2FeexvMFEhMgevyEUFX3Rpe0jlZv6RzSx6eT1IZyRU6HuLllKbi4Odvihu5NnzxlB3ce5WNgXF5%2F4qw6Rkacxl3LfliQXIuzGltmCDfLNprIriQ2aWFzMRZcubCa6cXo8QIa6WOS1BZEXL7dzBZkaceXJws6Isf%2FQJpSpisQJSNyDQg9SZYsgqbjOZ%2Fbb73YfOtRVhNYNReT5A4yLNiaBrB3qeSFfEPz0KJ0fzPV384y04%2BAg0KWDGa%2F678%2BJ0j%2F2wiEP%2BZsmZvoWsc0PQm4qhAzxToqQJUDWCz%2FcM0MaP5H%2F1JIFDOMFDGWQ%2BUUbd3DbZyu9bymqITdNqM80Aw7rUbfsd33Qbnzfac8OaQ2op9dvLrfwEAAP%2F%2FAQAA%2F%2F8mSwcbfAQAAA%3D%3D

192.243.59.13

200 OK

7 B

URL HTTP/1.1
assailusefullyenemies.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDuah48SCOByGSMNs9PbMzmxAW1xhZzO8f5qAeqquqZytb3dVWdU9P9rQYkBxEJ54EL73fbLJEQzTgVZDeeJCByLYHXcX15B%2BgYs4ys4OLD6req%2Fre4fu%2B9z5Yy3aIi4xuXzirV6RSdKZVd2tHrsmY69zWzl2peW7dPVG7JuPZ5olaf3yZ3nHPbdXdV2pvCLasZxqu57qe69VOSyNC3Z%2BZoJDJ%2FTmvPufWm42612qib%2F7%2FtpkDSx3w3g55FpJXB5e%2BfwjJSsTRV6eEXU51cuz1KFM01QY9vnE1Xo51HiPaK0PjIIw3pt3QtiLk033Q8cZUAXRvfawAgayI85OHIN6Y0kTQu7PLNFAQMQJ%2BGHmvhFAlJC3B9E1IvkUAxnHuPOLo7jltcnpjF6VjtCIHnvwNmVfkwG%2FPIY4eLCjZr13WKkulji36YQHZLyG7JZJsE%2BmKA5lvgqXvQ%2FLHZObJGcTR%2BnmrNCQvJuqlLCHDEkoMQK2DbHykgyx0kCUOIr5do6250HXbYRD6fqfJGPN9xlqdWd7ifrMTusjYmN4AaTIAUwMws4rErGJZfrLVennr3aMw2bewSwUsd2DTijgXV9HjBXJBkFuCnBLkkiBPCfJecYcr27DFXa5sFnjT3JhmvxjqtLtG7%2Bi0K2KyluyQZ8buOIdeuo1lsV1rBLzDfdf1%2FFk6G%2FKWG7CgRduhHzap1wgprCwg7b6J4BVZkf2HbiKRFdl34k8EtIRVJZh8GjR7ATQfthsu6NKw2XGxEn8ZCJtep71Em7jOdASuCyTpAaQ3nDW1Q56fDOr4H0ch2Gj%2Br2MLjx%2FeexvMFEhMgevyEUFX3Rpe0jlZv6RzSx6eT1IZyRU6HuLllKbi4Odvihu5NnzxlB3ce5WNgXF5%2F4qw6Rkacxl3LfliQXIuzGltmCDfLNprIriQ2aWFzMRZcubCa6cXo8QIa6WOS1BZEXL7dzBZkaceXJws6Isf%2FQJpSpisQJSNyDQg9SZYsgqbjOZ%2Fbb73YfOtRVhNYNReT5A4yLNiaBrB3qeSFfEPz0KJ0fzPV384y04%2BAg0KWDGa%2F678%2BJ0j%2F2wiEP%2BZsmZvoWsc0PQm4qhAzxToqQJUDWCz%2FcM0MaP5H%2F1JIFDOMFDGWQ%2BUUbd3DbZyu9bymqITdNqM80Aw7rUbfsd33Qbnzfac8OaQ2op9dvLrfwEAAP%2F%2FAQAA%2F%2F8mSwcbfAQAAA%3D%3D
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzq%2BDuah48SCOByGSMNs9PbMzmxAW1xhZzO8f5qAeqquqZytb3dVWdU9P9rQYkBxEJ54EL73fbLJEQzTgVZDeeJCByLYHXcX15B%2BgYs4ys4OLD6req%2Fre4fu%2B9z5Yy3aIi4xuXzirV6RSdKZVd2tHrsmY69zWzl2peW7dPVG7JuPZ5olaf3yZ3nHPbdXdV2pvCLasZxqu57qe69VOSyNC3Z%2BZoJDJ%2FTmvPufWm42612qib%2F7%2FtpkDSx3w3g55FpJXB5e%2BfwjJSsTRV6eEXU51cuz1KFM01QY9vnE1Xo51HiPaK0PjIIw3pt3QtiLk033Q8cZUAXRvfawAgayI85OHIN6Y0kTQu7PLNFAQMQJ%2BGHmvhFAlJC3B9E1IvkUAxnHuPOLo7jltcnpjF6VjtCIHnvwNmVfkwG%2FPIY4eLCjZr13WKkulji36YQHZLyG7JZJsE%2BmKA5lvgqXvQ%2FLHZObJGcTR%2BnmrNCQvJuqlLCHDEkoMQK2DbHykgyx0kCUOIr5do6250HXbYRD6fqfJGPN9xlqdWd7ifrMTusjYmN4AaTIAUwMws4rErGJZfrLVennr3aMw2bewSwUsd2DTijgXV9HjBXJBkFuCnBLkkiBPCfJecYcr27DFXa5sFnjT3JhmvxjqtLtG7%2Bi0K2KyluyQZ8buOIdeuo1lsV1rBLzDfdf1%2FFk6G%2FKWG7CgRduhHzap1wgprCwg7b6J4BVZkf2HbiKRFdl34k8EtIRVJZh8GjR7ATQfthsu6NKw2XGxEn8ZCJtep71Em7jOdASuCyTpAaQ3nDW1Q56fDOr4H0ch2Gj%2Br2MLjx%2FeexvMFEhMgevyEUFX3Rpe0jlZv6RzSx6eT1IZyRU6HuLllKbi4Odvihu5NnzxlB3ce5WNgXF5%2F4qw6Rkacxl3LfliQXIuzGltmCDfLNprIriQ2aWFzMRZcubCa6cXo8QIa6WOS1BZEXL7dzBZkaceXJws6Isf%2FQJpSpisQJSNyDQg9SZYsgqbjOZ%2Fbb73YfOtRVhNYNReT5A4yLNiaBrB3qeSFfEPz0KJ0fzPV384y04%2BAg0KWDGa%2F678%2BJ0j%2F2wiEP%2BZsmZvoWsc0PQm4qhAzxToqQJUDWCz%2FcM0MaP5H%2F1JIFDOMFDGWQ%2BUUbd3DbZyu9bymqITdNqM80Aw7rUbfsd33Qbnzfac8OaQ2op9dvLrfwEAAP%2F%2FAQAA%2F%2F8mSwcbfAQAAA%3D%3D HTTP/1.1
Host: assailusefullyenemies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Cookie: u_pl=17179025; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2bd8d300136a6fd50bcb5a7f3f4a12fa=[3859755]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Thu, 15 Dec 2022 15:31:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 517dc7cc24ad5b145e22d526359ebac6
Strict-Transport-Security: max-age=0; includeSubdomains

adxadserv.com/px/heartbeat/v1?pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&t_op=5.34&p_nn=adxad-rtb&fpid_sa=1671118253817&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384

185.98.53.29

200 OK

0 B

URL HTTP/1.1
adxadserv.com/px/heartbeat/v1?pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&t_op=5.34&p_nn=adxad-rtb&fpid_sa=1671118253817&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384
IP
185.98.53.29:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /px/heartbeat/v1?pv_uid=13f4c51b-c237-489b-94f3-c7d58796ee61&t_op=5.34&p_nn=adxad-rtb&fpid_sa=1671118253817&fpid=bc43f01a151639d4c69739dcaca30e3b&feid_sa=1671118253817&sid_sa=1671118253817&feid=d7d12746ad9c8098ceca78b6ec8d9ba0&sid=43dc9ccf1154d51571bf252719b5eb39&u_adb=0&vn=T-0.1.1&utm_typ=referral&utm_src=www4.bestjavporn.com&s_rst=0&ts=%5B0%2Cfalse%2Cfalse%5D&pl=Linux%20x86_64&cc=NA&ss=1&ls=1&idb=1&ab=0&od=0&ll=0&lr=0&lo=1&lb=0&cd=24&hc=16&dm=-1&dt=2&ed=0&sr=5497558139882&fb=10384 HTTP/1.1
Host: adxadserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1
Origin: https://ads.adxadserv.com
Connection: keep-alive
Referer: https://ads.adxadserv.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 15 Dec 2022 15:31:02 GMT
Content-Length: 0
Connection: keep-alive

js.wpadmngr.com/static/adManager.m.js

45.133.44.25

200 OK

0 B

URL HTTP/2
js.wpadmngr.com/static/adManager.m.js
IP
45.133.44.25:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 12 Dec 2022 10:14:28 GMT
etag: W/"6396ff04-1880d"
content-encoding: gzip
expires: Thu, 15 Dec 2022 15:35:57 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=898&ww=1280&uuid=

135.181.208.216

200 OK

0 B

URL HTTP/2
asg.phukienthoitranggiare.com/api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=898&ww=1280&uuid=
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/spots/184920?host=www4.bestjavporn.com&ev=197&wh=898&ww=1280&uuid= HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 15:31:00 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=29tsfRL6ATbXNBtPh6TF; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/js/jquery.min.js
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 12:13:58 GMT
etag: W/"62ceb706-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 900489
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fy3D4DZOZkxTxlwerEHV%2Bj91ZfnH%2B8d9p8drovV7TiKrndEAj0kKVr2clqk6Rcd3KhpwlniIGQBmDzqhATEr8Oy7HbTwS%2FXPL5MEhgcBT%2BBugE2OtO0LOwGKeejCdZF5LobKGC%2FVdx0H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0394b8a5423ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
last-modified: Fri, 15 Jan 2021 20:53:56 GMT
vary: Accept-Encoding
etag: W/"600200e4-4fdb"
cf-connecting-ip: 88.195.172.127
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-args: ver=1.6.18
x-rocket-uri: /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 16998
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5kIiGlN98lyMvZMm90o%2F29TxySSuP3k8B3WKz79g1OZTkm7vIt0ut5MSR8U8s0iTKA78%2B3FxVx%2B%2BhfARhkBW%2BV9%2BpXOq6wq28J%2FXFMfMut1zWVxSLEkllGtlrMdztIw17n%2Fl9b4w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039275feeb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

img.bestjavporn.net/favicon.ico

104.21.233.138

200 OK

0 B

URL HTTP/2
img.bestjavporn.net/favicon.ico
IP
104.21.233.138:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: img.bestjavporn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/x-icon
last-modified: Thu, 16 Jul 2020 11:00:10 GMT
etag: W/"5f10333a-3c2e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1036751
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cSKeXX0KkItnwnTi73YCYeVziKyzV4jWAGbin%2BLWE6DUeHLj1v%2FN9%2BP5GTDAannTDrPjMEGZaQWHU%2BhL4nBVMLqjNEQSQgIz%2BRAFe%2BRhUPMes79QI7LO2eqt0r1e6zwIBPRQL5vS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0392a2846d180-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/fun.js?ver=1.3.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
cf-connecting-ip: 217.140.208.120
cf-bgj: minify
cf-polished: origSize=23878
etag: W/"6388cd5c-5d46"
last-modified: Thu, 01 Dec 2022 15:50:52 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.3.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/fun.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 81411
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XGEa4VeaPWl3MiOsYmQJi0u1jU2c9vtYRJzCydXT6moTn18sa1J1UV%2BO4QWeByqT4UFEihoHDaT7yZ%2FsBgnzj9K3aJgZcUemcranU%2FGVtmumQjchNWa3YgmjQW6LyWFDWdn160sd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039277810b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.javhd.com/h5/files/css/style.css

185.76.9.26

200 OK

0 B

URL HTTP/2
static.javhd.com/h5/files/css/style.css
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/css/style.css HTTP/1.1
Host: static.javhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.javhdhello.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: text/css
last-modified: Wed, 25 May 2016 08:29:12 GMT
etag: W/"57456258-7bd"
expires: Tue, 23 May 2023 11:04:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-accel-expires: @1684839889
server: CDN77-Turbo
x-77-nzt: AblMCRT6Eqr/X9MPAQ
x-77-nzt-ray: af585630172976eeb03d9b631b205a38
x-cache: HIT
x-age: 17814367
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ

185.76.9.26

200 OK

0 B

URL HTTP/2
static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trwl1.com%2Fc1%2Ff194c970-bc2d-4827-8b0a-7f39df13c295%3Fcost%3D%257BcostPlaceholder%257D%26cv1%3D%257BdynamicCON%257D%26cv2%3DNO%26cv3%3D126401%26cv4%3D237443%26cv5%3D794135%26cv6%3D%26externalId%3D%257BextPlaceholder%257D%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjIxOTM5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trwl1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:58 GMT
content-type: text/html
last-modified: Wed, 20 Apr 2022 13:56:46 GMT
etag: W/"6260111e-c86"
expires: Fri, 06 Jan 2023 17:53:12 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1673027592
server: CDN77-Turbo
x-77-nzt: AblMCRRgQ+H/qmoKAA
x-77-nzt-ray: af585630172976eeb23d9b6336f19d2e
x-cache: HIT
x-age: 682666
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 12:08:17 GMT
etag: W/"639719b1-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWqao%2BplLb3l0JbpUw1keybOEfBhqAi66qLmewkP4pYFRStAQQ6l62hJmbDzJr4fgr7xn%2BJeSbeBZKGoUApoH%2FAmtlyx%2B%2FNf9p7domxh4FycZYVErIAwjx%2BkQQWN9ijMWtt7CW%2FW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a039275fe9b500-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 17 Dec 2022 15:30:55 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/style.css?ver=1.4.3
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/style.css?ver=1.4.3 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: text/css
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
cf-polished: origSize=84878
etag: W/"6388cd36-14b8e"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.4.3
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/style.css
cache-control: max-age=3600
cf-cache-status: HIT
age: 15852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=apK%2BS9zGnys6yLj70RMpvbU%2FFnUYcNNLzRGEaFBefRhFM6QliHw9S%2FxLpzxGnaVXAf1QG8sTrphhbgA027LMunDnQceoD4omsjwZW%2BySXyuukv%2FGKpExymQxy2RFk22zneBiGkw0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039274fcdb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

172.64.140.24

200 OK

0 B

URL HTTP/2
friendshipmale.com/sfp.js
IP
172.64.140.24:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:57 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 9f1f3e695d37bdbf811b36533110d44b
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 15 Dec 2022 15:30:57 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v4PVKKCQFAuOfmhvfxEKGCspJnkvsvtMuWxRjgZdBf%2FUUPyGB7f8VTciv%2F%2B8S6uY%2FM1dWnSJdSfUEM77f2J%2BMaOlqGEjtv5MBL9jmshc%2B2frH48Yb6saJ1shDVOmrpSDXRVzN50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a03932ead123be-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

asg.phukienthoitranggiare.com/Cqp6VQ5.js

135.181.208.216

200 OK

0 B

URL HTTP/2
asg.phukienthoitranggiare.com/Cqp6VQ5.js
IP
135.181.208.216:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Cqp6VQ5.js HTTP/1.1
Host: asg.phukienthoitranggiare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
last-modified: Sat, 22 Oct 2022 11:28:35 GMT
etag: W/"6353d3e3-1cfaf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
vary: Accept-Encoding, Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7f7d86a250c539fe4431535882cf4e4e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Xtoi-pk70hGUnDtsbS2BBmU-DwTACDqenrEnGPfVCivF54mb0ONkkQ==
age: 4338234
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 15:30:55 GMT
date: Thu, 15 Dec 2022 15:30:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/pgd00872/pgd00872pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/pgd00872/pgd00872pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/pgd00872/pgd00872pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/jpeg
last-modified: Wed, 27 Apr 2016 07:29:17 GMT
vary: Accept-Encoding
etag: W/"57206a4d-927e"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1997777
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DCLS6ht2EmXVkOjy20Dfh8iat66gp9GBUIiQDKjm6kY4%2Byxwcr8pfReJfOpi%2BZcOyFjsUk9m%2FE%2BU0OS4PXNT4Hr3sMsGf2u9NtJLmkEI%2B0CQlRmcy5%2BVSt7SmBbTjpCPJFwr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a0392a49b67193-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/animate.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:56 GMT
etag: W/"62ceb704-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 898356
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9QnreN9QehO8yUCRDcszQyFDNVslgrDac4%2F2S6%2FlLNO8ann5WBPk%2FrQBOP5ZLerGt1L%2B0sZLX%2B1lSyCdyD9OIKc1DEAioLPJLDGIzcNq80m4kBPSW%2BsmNGZRwWQy85xrMacoDcvn61bL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0394b8a4823ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pics.pornfhd.com/s/digital/video/onsg00004/onsg00004pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/s/digital/video/onsg00004/onsg00004pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/digital/video/onsg00004/onsg00004pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/jpeg
last-modified: Wed, 20 Apr 2016 07:42:06 GMT
vary: Accept-Encoding
etag: W/"571732ce-93a8"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1394213
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J6T9iQlSCPL981nhGBjlKG9Kkb4ZPojYveuc67RrX93qFB6fXW2f54aobI%2BaAKplh8KyFC%2FUKgqusYxZNR8HbUOKsCTTWyU9RoYLSDXj0uF0H5aL0XcIX%2FaKru5MMS7CfLcs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a0392a49b37193-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/ajax-view.php
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /wp-content/themes/retrotube/ajax-view.php HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 48
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
cf-connecting-ip: 91.90.42.154
x-frame-options: SAMEORIGIN
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/ajax-view.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xVhRHkzL%2FDymc4oHWwLZsKwsF3w3E0nsdzSNADYLpwq%2F3MB8fnUfmyW5DbRWCCvXYAjfl6QcDszxAucSnRjMu%2B0BmQxcb%2FKkQOhK1DSFkY88%2B8W%2Fa7BMMueWNkCVApC1M9dPr5l7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039297b3db500-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ

185.76.9.26

200 OK

0 B

URL HTTP/2
static.javhdhello.com/h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ
IP
185.76.9.26:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /h5/files/15970/300x250.html?targetUrl=http%3A%2F%2Fr.trackwilltrk.com%2Fc1%2Fef7ed9bf-02b1-42a7-b41c-1a88029074bd%3Fcv1%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26cv10%3D62fe56a361d6e272ea2a6a61%26cv2%3D0c1c5c30286e1db21a741e4b62c8b6e4%26cv3%3Ddesktop%26cv4%3D62fe933961d6e278cd572307%26cv5%3D62fe933061d6e278cd572305%26cv6%3Den%26cv7%3DNTVA-Bestjavporn%26cv8%3DFirefox%26cv9%3D62fe56a361d6e272ea2a6a61%26externalId%3D7811a2ab-7c8d-11ed-a8af-e2e38133f3a0%26p%3DeyJiIjoyNzc0NTEsImJoIjoyNTAsImJ3IjozMDAsImYiOjEsIm8iOjEsInAiOjEsInMiOjI3Nzc5fQ HTTP/1.1
Host: static.javhdhello.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://r.trackwilltrk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:56 GMT
content-type: text/html
last-modified: Wed, 20 Apr 2022 13:56:46 GMT
etag: W/"6260111e-c86"
expires: Sat, 14 Jan 2023 15:30:56 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
x-accel-expires: @1673710256
server: CDN77-Turbo
x-77-nzt: AblMCRRCg4ih
x-77-nzt-ray: af585630172976eeb03d9b632ffef62f
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.1.0 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
cf-connecting-ip: 88.195.172.127
cf-bgj: minify
cf-polished: origSize=6149
etag: W/"635fdc2f-1805"
last-modified: Mon, 31 Oct 2022 14:31:11 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=1.1.0
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/navigation.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 16998
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AW3qC1lKja6fePUXyoqxJg6I2%2Fh6kWCSX%2FouuT0ldaM9OYuA3vuIcstbhAkT1d%2BxR1sHBHRoeoOG%2BahclmYGY0VMgIMPvyrTz13nqYwkSgsbCAvzo4mvuWNs3Xpc6NxZHIPMwrSO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039275fecb500-OSL
content-encoding: br
X-Firefox-Spdy: h2

pics.pornfhd.com/digital/video/13gvg00229/13gvg00229pl.jpg

104.21.235.63

200 OK

0 B

URL HTTP/2
pics.pornfhd.com/digital/video/13gvg00229/13gvg00229pl.jpg
IP
104.21.235.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /digital/video/13gvg00229/13gvg00229pl.jpg HTTP/1.1
Host: pics.pornfhd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: image/jpeg
last-modified: Tue, 17 Nov 2015 05:59:30 GMT
vary: Accept-Encoding
etag: W/"564ac242-31c4f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 490227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=35t1cg2OCjdLVI0p00cWXmR6L8T5RCjLq7NKeovKjk05qpgrREmb2xeDUWpMZ2x2iSQtOxA3yhiDV4%2BkoKbSbEN%2BlwI4KlcuJp98jXu838gAMM3vsukKRWSU54j7mX%2BxpGyi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039286f347193-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2

104.26.2.123

200 OK

0 B

URL HTTP/2
www4.bestjavporn.com/wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2
IP
104.26.2.123:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/retrotube/assets/js/cast.js?ver=7.2.2 HTTP/1.1
Host: www4.bestjavporn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www4.bestjavporn.com/video/gvg-229-javtube-fan-of-big-tits-shota-kun-s-lewd-prank-kaho-shibuya/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:30:55 GMT
content-type: application/javascript
cf-connecting-ip: 92.220.0.147
cf-bgj: minify
etag: W/"6388cd36-11395"
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-rocket-args: ver=7.2.2
x-rocket-nginx-serving-static: No
x-rocket-uri: /wp-content/themes/retrotube/assets/js/cast.js
cache-control: max-age=3600
cf-cache-status: HIT
age: 15558
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k2LwcwJRaM56aJQNi0p%2BsxqHTiNOsWj3yEY4hYh6iqwwL4Eyud9n%2FLwE6Zg%2F%2F%2FAtnPNWGOBARFJLZiXnJAacFg8OAgyPkcbN35FAKSIVzoIcxwSydU1wXccXJTcy2shj0zf6F6Ak"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a039276806b500-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/v2/new/3/css/style.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/chat/mob/ssp/v2/new/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www4.bestjavporn.com
Connection: keep-alive
Referer: https://www4.bestjavporn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Dec 2022 15:31:01 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 12:13:55 GMT
etag: W/"62ceb703-1229"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 898356
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CL8aN0vRFWl6qBTGGH0oBNH1TtOLtbWJzJq1NxhWBalOYbE7tHTRk0O3jIiM77ZHP7o1zs9%2B0BZA3hzul8i2IgVsxDAsMItI739vIhR9n2JD0VT5vUjxNnbA7bLAmRTjKogNLOEtfozw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a0394b8a4423ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations