{"report_id":"dbd0979d-048d-4094-bfe0-0bdfae42cc96","version":6,"status":"done","tags":[],"date":"2025-10-17T05:02:22Z","url":{"schema":"http","addr":"Jp.tub4us.top","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"title":"Hot Videos 人気動画-動画@AV4.us"},"submit":{"url":{"schema":"http","addr":"Jp.tub4us.top","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-21T05:02:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":4,"urlquery":0,"analyzer":17}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:53Z","timestamp":1760677313,"ip_dst":{"addr":"104.21.43.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.11","port":40786,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ETPRO INFO .moe Domain in TLS SNI","source":"{\"timestamp\":\"2025-10-17T05:01:53.312592+0000\",\"flow_id\":2231208897518468,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.11\",\"src_port\":40786,\"dest_ip\":\"104.21.43.90\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2827579,\"rev\":7,\"signature\":\"ETPRO INFO .moe Domain in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2017_08_17\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Moderate\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"cdn.anh.moe\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":913,\"bytes_toclient\":3154,\"start\":\"2025-10-17T05:01:53.301956+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"172.18.0.11","port":34814,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"176.65.149.167","port":443,"asn":0,"as":"","country":"Germany","country_code":"DE"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 34","source":"{\"timestamp\":\"2025-10-17T05:01:59.749047+0000\",\"flow_id\":349751229228346,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"176.65.149.167\",\"src_port\":443,\"dest_ip\":\"172.18.0.11\",\"dest_port\":34814,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400033,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 34\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2025-10-17T05:01:59.730426+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"172.18.0.11","port":58014,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"severity":"low","alert":"ET INFO Observed ZeroSSL SSL/TLS Certificate","source":"{\"timestamp\":\"2025-10-17T05:01:59.843223+0000\",\"flow_id\":1988173878517507,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"89.248.193.244\",\"src_port\":443,\"dest_ip\":\"172.18.0.11\",\"dest_port\":58014,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2031231,\"rev\":3,\"signature\":\"ET INFO Observed ZeroSSL SSL/TLS Certificate\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2020_11_23\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_12_01\"]}},\"tls\":{\"subject\":\"CN=vidmo.org\",\"issuerdn\":\"C=AT, O=ZeroSSL, CN=ZeroSSL ECC Domain Secure Site CA\",\"serial\":\"00:B3:91:61:01:8B:9B:9D:FC:85:F0:C1:45:73:67:7A:A5\",\"fingerprint\":\"b7:f0:9a:8b:ef:dd:7c:08:39:54:3a:9a:f1:30:12:01:fd:82:2c:29\",\"sni\":\"vidmo.org\",\"version\":\"TLS 1.2\",\"notbefore\":\"2025-09-05T00:00:00\",\"notafter\":\"2025-12-04T23:59:59\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"0191d81a4ad7ee1a330a1e2c51d23ace\",\"string\":\"771,49195,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":6,\"bytes_toserver\":1080,\"bytes_toclient\":3634,\"start\":\"2025-10-17T05:01:59.646915+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"160.191.77.132","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.11","port":53486,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ETPRO INFO .moe Domain in TLS SNI","source":"{\"timestamp\":\"2025-10-17T05:01:59.961714+0000\",\"flow_id\":1276901524486410,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.11\",\"src_port\":53486,\"dest_ip\":\"160.191.77.132\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2827579,\"rev\":7,\"signature\":\"ETPRO INFO .moe Domain in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2017_08_17\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Moderate\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"anh.moe\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":909,\"bytes_toclient\":2663,\"start\":\"2025-10-17T05:01:59.571658+0000\"}}"}],"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"cacrz.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"s9.am-videos.click","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"en.vidmo.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"page.phic4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fixedjs.jtube.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"css.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"jsjs.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"timg216.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"jp.tub4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"zhestkoe.org","ip":{"addr":"78.40.116.145","port":443,"asn":200019,"as":"Alexhost Srl","country":"Sweden","country_code":"SE"},"domain_registered":"2015-08-31","domain_rank":533026,"first_seen":"2015-09-01T23:48:05Z","last_seen":"2025-10-05T20:33:26.557691Z","alert_count":0,"request_count":3,"received_data":15543,"sent_data":1304,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"images.avidolpics.com","ip":{"addr":"104.21.15.197","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-13","domain_rank":0,"first_seen":"2021-12-03T19:43:36Z","last_seen":"2025-08-14T16:14:09.060873Z","alert_count":0,"request_count":1,"received_data":7805,"sent_data":447,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.xvideos.com","ip":{"addr":"185.88.181.7","port":443,"asn":46652,"as":"SERVERSTACK-ASN","country":"The Netherlands","country_code":"NL"},"domain_registered":"1997-12-30","domain_rank":1943,"first_seen":"2012-05-21T20:29:12Z","last_seen":"2025-10-15T14:23:02.988852Z","alert_count":0,"request_count":1,"received_data":15370,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn5-thumbs.motherlessmedia.com","ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2008-10-11","domain_rank":905009,"first_seen":"2018-12-23T05:30:23Z","last_seen":"2025-10-10T20:41:50.432058Z","alert_count":0,"request_count":2,"received_data":51834,"sent_data":922,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}]},{"fqdn":"www.twi-videos.net","ip":{"addr":"104.21.75.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-07-05","domain_rank":3757802,"first_seen":"2021-11-10T10:36:55Z","last_seen":"2025-10-11T23:40:59.796496Z","alert_count":0,"request_count":1,"received_data":749,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"xxxxsx.com","ip":{"addr":"185.213.91.19","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"domain_registered":"2020-04-08","domain_rank":194175,"first_seen":"2020-04-08T16:54:03Z","last_seen":"2025-08-16T16:56:23.591546Z","alert_count":0,"request_count":1,"received_data":1499,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"vidmo.pro","ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"domain_registered":"2022-04-10","domain_rank":59347,"first_seen":"2019-07-12T22:27:24Z","last_seen":"2025-10-11T10:25:42.136003Z","alert_count":0,"request_count":1,"received_data":20788,"sent_data":479,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"oedy9.com","ip":{"addr":"176.65.149.167","port":443,"asn":0,"as":"","country":"Germany","country_code":"DE"},"domain_registered":"2023-10-27","domain_rank":150266,"first_seen":"2023-10-27T10:41:23Z","last_seen":"2025-10-10T20:41:55.26762Z","alert_count":0,"request_count":1,"received_data":15839,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdne-pics.youjizz.com","ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"domain_registered":"2007-10-22","domain_rank":731156,"first_seen":"2017-01-30T06:19:28Z","last_seen":"2025-10-11T10:25:43.37102Z","alert_count":0,"request_count":9,"received_data":154025,"sent_data":4210,"comment":"","tags":null,"fingerprints":null},{"fqdn":"icdn05.zzztube.tv","ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2023-02-05T20:12:52Z","last_seen":"2025-09-22T12:43:18.616159Z","alert_count":0,"request_count":2,"received_data":22647,"sent_data":886,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.youjizz.com","ip":{"addr":"66.254.114.242","port":443,"asn":29789,"as":"REFLECTED","country":"United States","country_code":"US"},"domain_registered":"2007-10-22","domain_rank":2431,"first_seen":"2012-05-22T02:44:21Z","last_seen":"2025-10-11T10:25:40.893574Z","alert_count":0,"request_count":1,"received_data":4737,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"anh.moe","ip":{"addr":"160.191.77.132","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2022-08-12","domain_rank":99228,"first_seen":"2022-08-12T19:30:51Z","last_seen":"2025-09-25T14:09:27.970899Z","alert_count":0,"request_count":1,"received_data":195,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"catherineii.z00.monster","ip":{"addr":"148.113.178.17","port":443,"asn":16276,"as":"OVH SAS","country":"United States","country_code":"US"},"domain_registered":"2019-08-26","domain_rank":0,"first_seen":"2021-08-10T08:46:44Z","last_seen":"2025-08-02T18:10:27.378532Z","alert_count":0,"request_count":1,"received_data":8307,"sent_data":460,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"777.porn","ip":{"addr":"172.67.144.187","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-08-26","domain_rank":66806,"first_seen":"2016-03-10T03:38:04Z","last_seen":"2025-10-16T15:46:24.530568Z","alert_count":0,"request_count":1,"received_data":19410,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"u.jjj.cam","ip":{"addr":"38.58.183.141","port":443,"asn":26042,"as":"FIBERSTATE","country":"United States","country_code":"US"},"domain_registered":"2017-04-11","domain_rank":0,"first_seen":"2025-07-19T00:56:19.629195Z","last_seen":"2025-08-11T22:27:24.015844Z","alert_count":0,"request_count":1,"received_data":46600,"sent_data":466,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ajax.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3691,"first_seen":"2012-05-22T10:38:03Z","last_seen":"2025-10-12T22:17:47.775352Z","alert_count":0,"request_count":2,"received_data":175806,"sent_data":886,"comment":"","tags":null,"fingerprints":null},{"fqdn":"en.vidmo.pro","ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"domain_registered":"2022-04-10","domain_rank":122476,"first_seen":"2022-04-11T13:12:45Z","last_seen":"2025-10-09T15:46:45.680897Z","alert_count":2,"request_count":2,"received_data":40114,"sent_data":913,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"pics.pabporn.com","ip":{"addr":"104.21.30.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-09-13","domain_rank":4552472,"first_seen":"2021-09-10T03:01:44Z","last_seen":"2025-10-11T10:25:41.53522Z","alert_count":0,"request_count":1,"received_data":9376,"sent_data":445,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"weav.xyz","ip":{"addr":"172.67.219.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-06-24","domain_rank":91500,"first_seen":"2015-07-11T20:29:43Z","last_seen":"2025-10-11T10:25:40.775391Z","alert_count":0,"request_count":1,"received_data":601,"sent_data":427,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"8zoo.net","ip":{"addr":"104.21.47.99","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-05-31","domain_rank":462853,"first_seen":"2020-05-31T12:49:43Z","last_seen":"2025-08-16T16:55:36.317959Z","alert_count":0,"request_count":1,"received_data":690,"sent_data":427,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"sexsex84.com","ip":{"addr":"202.95.16.30","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2023-04-17","domain_rank":0,"first_seen":"2025-10-16T15:46:21.610412Z","last_seen":"2025-10-16T15:46:21.610412Z","alert_count":0,"request_count":1,"received_data":4544,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"stw.javvhub.com","ip":{"addr":"167.235.2.93","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2020-11-13","domain_rank":0,"first_seen":"2025-10-17T05:02:28.264387Z","last_seen":"2025-10-17T05:02:28.264387Z","alert_count":0,"request_count":1,"received_data":14131,"sent_data":474,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"p16-kimg.kwai.net","ip":{"addr":"95.101.11.34","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"1999-10-05","domain_rank":305176,"first_seen":"2024-07-17T19:55:13Z","last_seen":"2025-10-16T15:46:28.100363Z","alert_count":0,"request_count":1,"received_data":9692,"sent_data":651,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"mc.webvisor.org","ip":{"addr":"87.250.250.119","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"domain_registered":"2009-08-25","domain_rank":99131,"first_seen":"2017-08-16T02:40:17Z","last_seen":"2025-10-13T02:49:16.316298Z","alert_count":0,"request_count":2,"received_data":4844,"sent_data":3328,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.asiannudestube.com","ip":{"addr":"104.21.63.239","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-10-16","domain_rank":293497,"first_seen":"2019-11-26T08:27:30Z","last_seen":"2025-10-12T01:33:44.919047Z","alert_count":0,"request_count":2,"received_data":2493,"sent_data":890,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"blumpkintube.com","ip":{"addr":"172.67.148.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-11-26","domain_rank":91888,"first_seen":"2017-05-23T16:37:55Z","last_seen":"2025-10-11T10:25:45.177847Z","alert_count":0,"request_count":3,"received_data":29957,"sent_data":1329,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn77-pic.xvideos-cdn.com","ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2017-08-25","domain_rank":75108,"first_seen":"2018-09-06T22:43:13Z","last_seen":"2025-10-14T18:34:34.751871Z","alert_count":0,"request_count":6,"received_data":87276,"sent_data":3198,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"volosnya.com","ip":{"addr":"31.10.5.4","port":443,"asn":207728,"as":"EUROHOSTER Ltd.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2019-02-21","domain_rank":1436377,"first_seen":"2025-07-19T00:56:18.988145Z","last_seen":"2025-08-24T23:17:47.152445Z","alert_count":0,"request_count":1,"received_data":2078,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"pics.dmm.co.jp","ip":{"addr":"54.230.80.79","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2006-07-10","domain_rank":409090,"first_seen":"2012-08-01T07:09:25Z","last_seen":"2025-10-13T06:53:20.27101Z","alert_count":0,"request_count":1,"received_data":31390,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.kwai.com","ip":{"addr":"95.101.11.138","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2002-01-16","domain_rank":13387,"first_seen":"2014-12-08T08:52:52Z","last_seen":"2025-10-16T07:26:49.654924Z","alert_count":0,"request_count":1,"received_data":3691,"sent_data":431,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.elog-ch.com","ip":{"addr":"139.162.66.104","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Japan","country_code":"JP"},"domain_registered":"2006-05-17","domain_rank":1006142,"first_seen":"2017-02-15T14:05:58Z","last_seen":"2025-10-10T04:59:29.32565Z","alert_count":0,"request_count":1,"received_data":8660,"sent_data":457,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"ft.javpussy.net","ip":{"addr":"104.21.16.137","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-10-27","domain_rank":5124027,"first_seen":"2020-06-10T12:09:59Z","last_seen":"2025-09-23T21:07:03.976186Z","alert_count":0,"request_count":1,"received_data":20795,"sent_data":461,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"muweimv.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-08-27","domain_rank":1495082,"first_seen":"2023-08-27T18:31:24Z","last_seen":"2025-06-02T06:09:33.723405Z","alert_count":0,"request_count":3,"received_data":0,"sent_data":1548,"comment":"","tags":null,"fingerprints":null},{"fqdn":"play.baiwanbf.com","ip":{"addr":"172.67.200.101","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-11-09","domain_rank":4037478,"first_seen":"2024-12-30T19:44:20.909473Z","last_seen":"2025-10-16T22:30:34.642087Z","alert_count":0,"request_count":1,"received_data":208249,"sent_data":448,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"page.phic4.top","ip":{"addr":"104.21.73.126","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-07","domain_rank":4536559,"first_seen":"2024-03-28T08:56:57Z","last_seen":"2025-10-09T15:46:44.674695Z","alert_count":2,"request_count":2,"received_data":1386,"sent_data":818,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"vidmo.org","ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"domain_registered":"2012-10-07","domain_rank":73868,"first_seen":"2013-01-12T05:42:46Z","last_seen":"2025-10-11T10:25:45.080832Z","alert_count":0,"request_count":1,"received_data":5697,"sent_data":428,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"teentubexnxx.com","ip":{"addr":"185.73.221.134","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"domain_registered":"2019-11-29","domain_rank":336336,"first_seen":"2019-12-01T20:30:43Z","last_seen":"2025-09-11T07:52:23.79708Z","alert_count":0,"request_count":1,"received_data":168,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.9188porn.xyz","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-02-21","domain_rank":3270384,"first_seen":"2025-03-12T03:12:05.263544Z","last_seen":"2025-10-09T15:46:45.815079Z","alert_count":0,"request_count":3,"received_data":0,"sent_data":1399,"comment":"","tags":null,"fingerprints":null},{"fqdn":"avidolpics.com","ip":{"addr":"185.149.132.131","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"domain_registered":"2016-04-13","domain_rank":350682,"first_seen":"2016-04-27T08:24:56Z","last_seen":"2025-08-14T16:14:09.273282Z","alert_count":0,"request_count":1,"received_data":1496,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-10-12T22:12:10.358486Z","alert_count":0,"request_count":1,"received_data":286428,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"sasisa.ru","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2005-01-12","domain_rank":154794,"first_seen":"2016-04-26T02:06:35Z","last_seen":"2025-10-16T15:46:22.769734Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"content.jwplatform.com","ip":{"addr":"3.164.240.118","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2010-04-13","domain_rank":42202,"first_seen":"2017-09-15T13:11:36Z","last_seen":"2025-10-14T01:14:36.681899Z","alert_count":0,"request_count":1,"received_data":344,"sent_data":441,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"fapmove.com","ip":{"addr":"185.73.220.217","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"domain_registered":"2018-09-13","domain_rank":261826,"first_seen":"2015-08-15T18:53:29Z","last_seen":"2025-10-12T01:33:45.799639Z","alert_count":0,"request_count":1,"received_data":168,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.filmx-perso.com","ip":{"addr":"5.135.23.164","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"domain_registered":"2015-02-27","domain_rank":0,"first_seen":"2019-12-19T21:43:04Z","last_seen":"2025-06-29T13:37:58.657015Z","alert_count":0,"request_count":1,"received_data":22172,"sent_data":456,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sexsex61.com","ip":{"addr":"23.145.152.20","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2023-04-17","domain_rank":155642,"first_seen":"2025-03-24T07:20:20.686063Z","last_seen":"2025-10-10T20:41:56.432384Z","alert_count":0,"request_count":1,"received_data":4544,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ds2.obmenvsemfiles.net","ip":{"addr":"85.17.28.50","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-06-19","domain_rank":4168968,"first_seen":"2020-06-19T20:52:45Z","last_seen":"2025-10-16T15:46:27.466978Z","alert_count":4,"request_count":2,"received_data":106491,"sent_data":990,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"tiam.jp","ip":{"addr":"23.27.160.201","port":443,"asn":23338,"as":"ASN-DCS-01","country":"United States","country_code":"US"},"domain_registered":"2010-07-11","domain_rank":573687,"first_seen":"2025-09-09T18:46:54.498965Z","last_seen":"2025-09-09T18:46:54.498965Z","alert_count":0,"request_count":2,"received_data":7191,"sent_data":880,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"multicst.com","ip":{"addr":"104.21.94.59","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-09-25","domain_rank":160888,"first_seen":"2023-09-25T11:47:33Z","last_seen":"2025-10-11T15:25:24.508191Z","alert_count":0,"request_count":1,"received_data":84774,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"obmenvsem.me","ip":{"addr":"82.192.80.133","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-01-27","domain_rank":354947,"first_seen":"2024-04-12T05:32:49Z","last_seen":"2025-10-10T20:41:48.405835Z","alert_count":0,"request_count":1,"received_data":15362,"sent_data":431,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.aisan-porn.org","ip":{"addr":"192.243.50.111","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2020-01-03","domain_rank":5292813,"first_seen":"2021-05-06T08:15:59Z","last_seen":"2025-10-11T10:25:40.312026Z","alert_count":0,"request_count":1,"received_data":172,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"e1nn.com","ip":{"addr":"104.21.6.191","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-02-16","domain_rank":158415,"first_seen":"2019-02-17T22:15:29Z","last_seen":"2025-10-10T20:50:50.004231Z","alert_count":0,"request_count":2,"received_data":58221,"sent_data":862,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"css.4jpg.top","ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-07","domain_rank":1675736,"first_seen":"2024-03-18T04:19:51Z","last_seen":"2025-10-09T15:46:44.070143Z","alert_count":1,"request_count":1,"received_data":4940,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"obmenvsemfiles.net","ip":{"addr":"82.192.80.149","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-06-19","domain_rank":114701,"first_seen":"2020-06-19T20:50:24Z","last_seen":"2025-10-10T20:41:49.97484Z","alert_count":1,"request_count":1,"received_data":14420,"sent_data":491,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"naturismv.com","ip":{"addr":"104.21.44.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-07","domain_rank":171242,"first_seen":"2014-04-08T13:58:23Z","last_seen":"2025-10-10T20:41:55.407927Z","alert_count":0,"request_count":1,"received_data":33019,"sent_data":441,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"18j.tv","ip":{"addr":"104.26.2.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-09-14","domain_rank":25816,"first_seen":"2020-06-09T09:32:21Z","last_seen":"2025-10-16T15:46:21.878253Z","alert_count":0,"request_count":1,"received_data":706,"sent_data":425,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"realincest.pro","ip":{"addr":"172.67.155.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-08-22","domain_rank":429403,"first_seen":"2017-09-10T05:22:13Z","last_seen":"2025-10-10T20:41:48.828613Z","alert_count":0,"request_count":1,"received_data":6967,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"img.redwap-cdn.com","ip":{"addr":"104.21.0.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-01-27","domain_rank":3022826,"first_seen":"2019-01-28T01:00:21Z","last_seen":"2025-10-10T20:41:56.655845Z","alert_count":0,"request_count":3,"received_data":41995,"sent_data":1365,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.pornoanswers.com","ip":{"addr":"213.174.132.100","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-11-04","domain_rank":6984898,"first_seen":"2021-01-08T00:20:00Z","last_seen":"2025-09-13T05:56:07.880624Z","alert_count":0,"request_count":1,"received_data":172,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.oedy9.com","ip":{"addr":"23.145.136.155","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2023-10-27","domain_rank":3836162,"first_seen":"2023-10-27T17:25:38Z","last_seen":"2025-10-10T20:41:50.422321Z","alert_count":0,"request_count":1,"received_data":15839,"sent_data":432,"comment":"","tags":null,"fingerprints":null},{"fqdn":"media.crazyshit.com","ip":{"addr":"45.133.44.3","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"1999-02-20","domain_rank":2942510,"first_seen":"2019-08-06T22:57:07Z","last_seen":"2025-10-10T20:41:54.444928Z","alert_count":0,"request_count":2,"received_data":656650,"sent_data":910,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"filmx-perso.com","ip":{"addr":"5.135.23.164","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"domain_registered":"2015-02-27","domain_rank":470893,"first_seen":"2017-04-19T05:29:27Z","last_seen":"2025-07-26T07:50:05.586852Z","alert_count":0,"request_count":2,"received_data":8844,"sent_data":900,"comment":"","tags":null,"fingerprints":[{"name":"PHP:8.2","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]}]},{"fqdn":"ikikiv.uk","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-12-28","domain_rank":2125281,"first_seen":"2025-06-03T02:09:31.022912Z","last_seen":"2025-08-11T22:27:24.97502Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"shirouto.inran.jp","ip":{"addr":"183.90.182.167","port":443,"asn":37907,"as":"DigiRock, Inc.","country":"Japan","country_code":"JP"},"domain_registered":"2024-11-01","domain_rank":0,"first_seen":"2024-12-30T10:41:23.203225Z","last_seen":"2024-12-30T10:41:23.203225Z","alert_count":0,"request_count":2,"received_data":17287,"sent_data":900,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"www.twi-dl.net","ip":{"addr":"104.21.2.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-05-15","domain_rank":124394,"first_seen":"2024-09-09T09:24:24Z","last_seen":"2025-10-16T07:26:49.329954Z","alert_count":0,"request_count":1,"received_data":739,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"asianpornxbb.sbs","ip":{"addr":"104.21.23.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-02-13","domain_rank":195805,"first_seen":"2025-03-18T06:53:36.727587Z","last_seen":"2025-10-10T20:41:50.954659Z","alert_count":0,"request_count":1,"received_data":75944,"sent_data":477,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.clporn.com","ip":{"addr":"104.21.25.21","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-10-16","domain_rank":764883,"first_seen":"2015-04-11T05:54:49Z","last_seen":"2025-10-10T20:41:53.087488Z","alert_count":0,"request_count":2,"received_data":14894,"sent_data":874,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn1.xxxxsx.com","ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"domain_registered":"2020-04-08","domain_rank":0,"first_seen":"2020-07-24T13:24:33Z","last_seen":"2025-08-16T16:56:23.678848Z","alert_count":0,"request_count":1,"received_data":16520,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"img.cdn2025.life","ip":{"addr":"107.167.21.106","port":443,"asn":46844,"as":"SHARKTECH","country":"United States","country_code":"US"},"domain_registered":"2025-01-21","domain_rank":2977506,"first_seen":"2025-04-22T21:34:58.856189Z","last_seen":"2025-10-16T15:46:25.256827Z","alert_count":0,"request_count":1,"received_data":22771,"sent_data":476,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"filtradas.com","ip":{"addr":"91.234.199.87","port":443,"asn":43641,"as":"SOLLUTIUM EU Sp z.o.o.","country":"Ukraine","country_code":"UA"},"domain_registered":"2025-04-09","domain_rank":184383,"first_seen":"2025-06-15T07:12:29.914989Z","last_seen":"2025-10-09T15:46:44.874151Z","alert_count":0,"request_count":2,"received_data":62871,"sent_data":940,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ajyshedfwer.buzz","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2024-12-19","domain_rank":3589906,"first_seen":"2024-12-20T12:56:13Z","last_seen":"2025-10-12T05:13:16.201881Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":435,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ansuko.net","ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-07-04","domain_rank":87799,"first_seen":"2023-07-04T08:10:56Z","last_seen":"2025-10-11T10:25:40.977199Z","alert_count":0,"request_count":12,"received_data":939078,"sent_data":5547,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"s9.am-videos.click","ip":{"addr":"172.67.180.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-13","domain_rank":0,"first_seen":"2025-10-16T15:46:20.329838Z","last_seen":"2025-10-16T15:46:20.329838Z","alert_count":1,"request_count":1,"received_data":23525,"sent_data":441,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"douga100ka.net","ip":{"addr":"133.125.148.22","port":443,"asn":7684,"as":"SAKURA Internet Inc.","country":"Japan","country_code":"JP"},"domain_registered":"2022-05-25","domain_rank":447088,"first_seen":"2022-05-25T17:23:40Z","last_seen":"2025-10-10T20:41:51.802243Z","alert_count":0,"request_count":2,"received_data":31894,"sent_data":868,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"incestmom.net","ip":{"addr":"185.162.11.82","port":443,"asn":207728,"as":"EUROHOSTER Ltd.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2019-10-07","domain_rank":1452575,"first_seen":"2025-07-17T06:11:40.708362Z","last_seen":"2025-07-17T06:11:40.708362Z","alert_count":0,"request_count":2,"received_data":397344,"sent_data":875,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"image.beckybelike.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-10-26","domain_rank":3852212,"first_seen":"2025-01-01T06:43:10.563767Z","last_seen":"2025-10-12T01:33:41.854872Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn5.nudegirls.wiki","ip":{"addr":"134.19.178.221","port":443,"asn":49453,"as":"Global Layer B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2021-04-27","domain_rank":0,"first_seen":"2022-08-26T05:43:19Z","last_seen":"2025-10-10T20:41:50.202649Z","alert_count":0,"request_count":1,"received_data":20163,"sent_data":522,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-10-12T22:15:22.841346Z","alert_count":0,"request_count":1,"received_data":11712,"sent_data":446,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"i1.wp.com","ip":{"addr":"192.0.77.2","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"1997-03-28","domain_rank":44421,"first_seen":"2012-09-27T05:17:34Z","last_seen":"2025-10-13T02:11:14.008262Z","alert_count":0,"request_count":2,"received_data":504,"sent_data":964,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cacrz.4jpg.top","ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-07","domain_rank":4780815,"first_seen":"2024-04-16T13:36:39Z","last_seen":"2025-10-09T15:46:47.046991Z","alert_count":2,"request_count":2,"received_data":18988,"sent_data":864,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.9188porn.com","ip":{"addr":"104.21.17.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-06-18","domain_rank":3479355,"first_seen":"2025-02-07T09:21:52Z","last_seen":"2025-10-10T20:41:49.72107Z","alert_count":0,"request_count":3,"received_data":2275,"sent_data":1283,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"static.bad.news","ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-08-28","domain_rank":3049996,"first_seen":"2025-05-21T07:11:43.074342Z","last_seen":"2025-10-10T20:41:48.98658Z","alert_count":0,"request_count":6,"received_data":202456,"sent_data":2986,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"pornoperso.com","ip":{"addr":"104.21.41.194","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2000-06-06","domain_rank":25644,"first_seen":"2017-06-17T23:41:58Z","last_seen":"2025-10-09T15:46:43.451621Z","alert_count":0,"request_count":2,"received_data":25599,"sent_data":908,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fixedjs.jtube.top","ip":{"addr":"172.67.159.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-07","domain_rank":3735676,"first_seen":"2024-06-18T01:29:39Z","last_seen":"2025-10-16T07:26:48.128597Z","alert_count":1,"request_count":1,"received_data":9460,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"pabporn.com","ip":{"addr":"185.213.91.160","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"domain_registered":"2018-09-13","domain_rank":153198,"first_seen":"2018-10-24T19:04:47Z","last_seen":"2025-10-11T10:25:45.784157Z","alert_count":0,"request_count":1,"received_data":1499,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-10-12T22:16:17.945241Z","alert_count":0,"request_count":1,"received_data":223744,"sent_data":436,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"pics.teentubexnxx.com","ip":{"addr":"172.67.208.72","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-11-29","domain_rank":0,"first_seen":"2022-01-22T18:48:52Z","last_seen":"2025-09-11T07:52:29.956738Z","alert_count":0,"request_count":1,"received_data":9746,"sent_data":448,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"urpussy.com","ip":{"addr":"185.213.91.19","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"domain_registered":"2018-09-13","domain_rank":161324,"first_seen":"2017-09-01T23:22:04Z","last_seen":"2025-10-16T15:46:28.897292Z","alert_count":0,"request_count":1,"received_data":1499,"sent_data":430,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"icdn05.4kpornvideos.tv","ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":4106070,"first_seen":"2022-11-09T12:16:02Z","last_seen":"2025-10-10T20:41:51.179536Z","alert_count":0,"request_count":4,"received_data":135738,"sent_data":1796,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"images.fapmove.com","ip":{"addr":"104.21.2.105","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-09-13","domain_rank":0,"first_seen":"2022-06-18T12:52:41Z","last_seen":"2025-10-12T01:33:44.348116Z","alert_count":0,"request_count":1,"received_data":17581,"sent_data":448,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"nudegirls.wiki","ip":{"addr":"109.202.99.24","port":443,"asn":49453,"as":"Global Layer B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2021-04-27","domain_rank":96966,"first_seen":"2021-06-09T14:55:04Z","last_seen":"2025-10-10T20:41:52.662642Z","alert_count":0,"request_count":1,"received_data":143,"sent_data":433,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.dirtysancheztube.com","ip":{"addr":"104.21.16.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-11-26","domain_rank":1702718,"first_seen":"2017-04-21T10:33:26Z","last_seen":"2025-10-11T10:25:45.309187Z","alert_count":0,"request_count":2,"received_data":12608,"sent_data":892,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.missvid.com","ip":{"addr":"23.145.136.156","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2024-10-18","domain_rank":4538635,"first_seen":"2023-10-06T12:15:54Z","last_seen":"2025-10-11T10:25:40.849303Z","alert_count":0,"request_count":1,"received_data":15839,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gcore-pic.xvideos-cdn.com","ip":{"addr":"185.244.209.62","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"Norway","country_code":"NO"},"domain_registered":"2017-08-25","domain_rank":91016,"first_seen":"2023-11-29T03:20:25Z","last_seen":"2025-10-15T16:34:42.783576Z","alert_count":0,"request_count":2,"received_data":35874,"sent_data":1066,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"affsample.duga.jp","ip":{"addr":"58.156.255.108","port":443,"asn":17506,"as":"ARTERIA Networks Corporation","country":"Japan","country_code":"JP"},"domain_registered":"2006-02-24","domain_rank":7116336,"first_seen":"2017-02-09T08:32:43Z","last_seen":"2025-10-12T01:33:43.785787Z","alert_count":0,"request_count":2,"received_data":68526,"sent_data":930,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"motherless.com","ip":{"addr":"185.107.81.234","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2005-11-19","domain_rank":1728,"first_seen":"2012-05-21T16:56:06Z","last_seen":"2025-10-10T20:41:53.214837Z","alert_count":0,"request_count":1,"received_data":1500,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.mymediaing.my","ip":{"addr":"172.67.170.181","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-10-07T20:07:31.091044Z","last_seen":"2025-10-16T07:26:48.585625Z","alert_count":0,"request_count":1,"received_data":53485,"sent_data":419,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"jp.tub4us.top","ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-09","domain_rank":2418890,"first_seen":"2025-10-17T05:02:26.268776Z","last_seen":"2025-10-17T05:02:26.268776Z","alert_count":1,"request_count":1,"received_data":109589,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"ds.obmenvsemfiles.com","ip":{"addr":"85.17.28.58","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-03-17","domain_rank":6211170,"first_seen":"2020-03-19T19:08:33Z","last_seen":"2025-09-27T18:22:11.163245Z","alert_count":4,"request_count":1,"received_data":35784,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.w3schools.com","ip":{"addr":"23.36.77.67","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2000-03-21","domain_rank":2135,"first_seen":"2014-02-05T20:15:46Z","last_seen":"2025-10-13T05:09:00.690369Z","alert_count":0,"request_count":1,"received_data":24014,"sent_data":432,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img.tnaflix.com","ip":{"addr":"156.146.33.140","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"domain_registered":"2007-02-18","domain_rank":508372,"first_seen":"2021-07-31T15:01:03Z","last_seen":"2025-10-10T20:41:52.316305Z","alert_count":0,"request_count":1,"received_data":15542,"sent_data":469,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"8zoonet.z00.monster","ip":{"addr":"148.113.152.129","port":443,"asn":16276,"as":"OVH SAS","country":"United States","country_code":"US"},"domain_registered":"2019-08-26","domain_rank":0,"first_seen":"2020-06-27T22:13:57Z","last_seen":"2025-08-16T16:55:33.915081Z","alert_count":0,"request_count":1,"received_data":15345,"sent_data":454,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"jsjs.4jpg.top","ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-03-07","domain_rank":3562357,"first_seen":"2024-03-08T20:38:07Z","last_seen":"2025-10-09T15:46:46.398729Z","alert_count":1,"request_count":1,"received_data":761,"sent_data":417,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"timg216.top","ip":{"addr":"172.66.155.86","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-04","domain_rank":157563,"first_seen":"2025-05-11T16:24:46.418762Z","last_seen":"2025-10-13T19:17:08.928639Z","alert_count":1,"request_count":1,"received_data":24167,"sent_data":479,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.javvhub.com","ip":{"addr":"185.197.163.38","port":443,"asn":60144,"as":"3W Infra B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2020-11-13","domain_rank":0,"first_seen":"2020-11-13T19:37:14Z","last_seen":"2025-09-13T02:15:46.987452Z","alert_count":0,"request_count":1,"received_data":170,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.10.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"sbzytpimg1.com","ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"domain_registered":"2024-04-24","domain_rank":160397,"first_seen":"2024-07-25T07:47:58Z","last_seen":"2025-10-14T03:19:47.041233Z","alert_count":0,"request_count":7,"received_data":627843,"sent_data":3395,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"catherineii.com","ip":{"addr":"104.21.59.142","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-05-20","domain_rank":393463,"first_seen":"2021-05-21T00:19:01Z","last_seen":"2025-08-02T15:25:01.156264Z","alert_count":0,"request_count":1,"received_data":693,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.brettspizzeria.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-12-08","domain_rank":0,"first_seen":"2025-07-08T01:23:59.542352Z","last_seen":"2025-10-12T01:33:43.726111Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":441,"comment":"","tags":null,"fingerprints":null},{"fqdn":"pics.urpussy.com","ip":{"addr":"172.67.189.133","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-09-13","domain_rank":4574435,"first_seen":"2020-11-22T20:07:00Z","last_seen":"2025-10-16T15:46:25.921439Z","alert_count":0,"request_count":1,"received_data":7577,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"jxjav.com","ip":{"addr":"104.21.43.127","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-04-09","domain_rank":216248,"first_seen":"2024-04-09T07:17:08Z","last_seen":"2025-08-18T22:15:09.873331Z","alert_count":0,"request_count":1,"received_data":765,"sent_data":428,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.anh.moe","ip":{"addr":"104.21.43.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-08-12","domain_rank":2830542,"first_seen":"2022-08-13T10:18:33Z","last_seen":"2025-10-16T15:46:25.429239Z","alert_count":0,"request_count":1,"received_data":23354,"sent_data":437,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"img.apian088.sbs","ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"domain_registered":"2025-07-15","domain_rank":4180399,"first_seen":"2025-07-19T07:04:29.096235Z","last_seen":"2025-10-09T15:46:43.571184Z","alert_count":0,"request_count":24,"received_data":321201,"sent_data":11056,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"sexsex10.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-04-17","domain_rank":688235,"first_seen":"2025-07-08T05:40:36.488095Z","last_seen":"2025-10-10T20:41:53.277867Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":431,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img.aosikaimge.com","ip":{"addr":"208.64.217.42","port":443,"asn":6939,"as":"HURRICANE","country":"United States","country_code":"US"},"domain_registered":"2022-11-29","domain_rank":3184584,"first_seen":"2022-12-08T15:32:54Z","last_seen":"2025-10-14T17:29:37.88785Z","alert_count":0,"request_count":1,"received_data":5037,"sent_data":449,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fqjpg4.top","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-05-14","domain_rank":162173,"first_seen":"2025-06-28T08:10:55.589739Z","last_seen":"2025-10-10T20:41:54.304554Z","alert_count":5,"request_count":5,"received_data":0,"sent_data":2381,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:53Z","timestamp":1760677313,"ip_dst":{"addr":"104.21.43.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.11","port":40786,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ETPRO INFO .moe Domain in TLS SNI","source":"{\"timestamp\":\"2025-10-17T05:01:53.312592+0000\",\"flow_id\":2231208897518468,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.11\",\"src_port\":40786,\"dest_ip\":\"104.21.43.90\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2827579,\"rev\":7,\"signature\":\"ETPRO INFO .moe Domain in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2017_08_17\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Moderate\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"cdn.anh.moe\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":913,\"bytes_toclient\":3154,\"start\":\"2025-10-17T05:01:53.301956+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"172.18.0.11","port":34814,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"176.65.149.167","port":443,"asn":0,"as":"","country":"Germany","country_code":"DE"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 34","source":"{\"timestamp\":\"2025-10-17T05:01:59.749047+0000\",\"flow_id\":349751229228346,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"176.65.149.167\",\"src_port\":443,\"dest_ip\":\"172.18.0.11\",\"dest_port\":34814,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400033,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 34\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2025-10-17T05:01:59.730426+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"172.18.0.11","port":58014,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"severity":"low","alert":"ET INFO Observed ZeroSSL SSL/TLS Certificate","source":"{\"timestamp\":\"2025-10-17T05:01:59.843223+0000\",\"flow_id\":1988173878517507,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"89.248.193.244\",\"src_port\":443,\"dest_ip\":\"172.18.0.11\",\"dest_port\":58014,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2031231,\"rev\":3,\"signature\":\"ET INFO Observed ZeroSSL SSL/TLS Certificate\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2020_11_23\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_12_01\"]}},\"tls\":{\"subject\":\"CN=vidmo.org\",\"issuerdn\":\"C=AT, O=ZeroSSL, CN=ZeroSSL ECC Domain Secure Site CA\",\"serial\":\"00:B3:91:61:01:8B:9B:9D:FC:85:F0:C1:45:73:67:7A:A5\",\"fingerprint\":\"b7:f0:9a:8b:ef:dd:7c:08:39:54:3a:9a:f1:30:12:01:fd:82:2c:29\",\"sni\":\"vidmo.org\",\"version\":\"TLS 1.2\",\"notbefore\":\"2025-09-05T00:00:00\",\"notafter\":\"2025-12-04T23:59:59\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"0191d81a4ad7ee1a330a1e2c51d23ace\",\"string\":\"771,49195,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":6,\"bytes_toserver\":1080,\"bytes_toclient\":3634,\"start\":\"2025-10-17T05:01:59.646915+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-17T05:01:59Z","timestamp":1760677319,"ip_dst":{"addr":"160.191.77.132","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.11","port":53486,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ETPRO INFO .moe Domain in TLS SNI","source":"{\"timestamp\":\"2025-10-17T05:01:59.961714+0000\",\"flow_id\":1276901524486410,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.11\",\"src_port\":53486,\"dest_ip\":\"160.191.77.132\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2827579,\"rev\":7,\"signature\":\"ETPRO INFO .moe Domain in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2017_08_17\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Moderate\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"anh.moe\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":909,\"bytes_toclient\":2663,\"start\":\"2025-10-17T05:01:59.571658+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"domTimer","is_inline":false,"md5":"6a6d49c6c2ae70af7aaf37b59e1992be","sha1":"7ec9c0209de4ee75d15551de5b41d72ef95a53d2","sha256":"01cad962eb3c779b21c51c5b10914e8f949d1c08ea965e804a60b5882846833d","sha512":"e65a14ab5a1147e6103f4f6f7b703f5d94c4d06887a51a1ec6ce33769227d9e8636b88c1d3523e3a24523bcd9896f4020be259edcd7249bf8c58ecf8ce74d1a9","ssdeep":"","tlshash":"44110000e2208a28002028332800020800020000c08008008002002000208030ea000a","size":958,"data":"","first_seen":"2025-03-21T10:58:41.402631Z","last_seen":"2025-11-24T03:08:53.460613Z","times_seen":537,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-04T00:14:20.000954Z","times_seen":118075,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fixedjs.jtube.top/?vidjs=51qxezx","fqdn":"fixedjs.jtube.top","domain":"jtube.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"7ac6105a7097f9adf5c0814af29772cb","sha1":"00c3ef37619d1c82b8fdd6804119e3f2d0f9e77c","sha256":"f0b32afbb72e4060009d413a61d5ea9da8b110f81c71040febbe5cec9a7d2dd3","sha512":"3203fdee2145d09a1f58e2d8933b1f0eeb9d2732c1f2381263f076ed9b3fae92f99b2b8449a4ccf1113cdcbf026079caff6e4de419378f321c1abad322721a5d","ssdeep":"1536:OMJTUxbKOOaZ8JKJfg2ns+VaPz4nWITNNYl2xGSKLGTEjT7qdQomJUJ+LjAJLlp/:jUxbKLtBPQWjYGSKLGkTm6oKLyT8K7","tlshash":"d373a5bb725d502844e106a769714244fc2be637ad91d290f96c2c306f34e2a99f7fec","size":76918,"data":"","first_seen":"2025-10-16T14:11:02.887252Z","last_seen":"2025-10-26T14:03:25.478115Z","times_seen":23,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"423b92a8ca41b86b02934639d5268c36","sha1":"8f9eb72dcd3456c1d5b00f2df41f78c7338ff931","sha256":"bcd08209eeb17a6fe91845f1b97daa589f0a805487d100d80d032baee40c1be9","sha512":"f085e8465a05579464dc5b073efba37c78a23c04c64b8317c92b946f074b184138026365a6d371463937922427a4d4f02de7a18dd0fd1958fc80079592657f73","ssdeep":"3072:a7xSNTRqo6vx04QAHyh3Ua3mfplU1TS0BBxl9zZ0uanZNQKc33rWMQHV:a7sNTPr4vHyhsfp+pSoB0JnZbcrWJV","tlshash":"da24d7d936927462937334b4a02f410f72be78a6f1088954f189d9d93e78dac9237f6c","size":222604,"data":"","first_seen":"2025-10-14T04:51:35.548622Z","last_seen":"2025-10-20T16:31:00.866938Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsjs.4jpg.top/index.php?js=very","fqdn":"jsjs.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"77542f8a3ada1bb8b45eb9139c5e69ef","sha1":"08556fa802dce18bec90fc57d62c7caaa4dbbdd0","sha256":"4a12c40c3eb9ed0e055519dbd5be4cb7e88ee707739484aa38e3e3284c0bdc46","sha512":"6b9938d1d6ec6dc835bab5a041396050d45888f323b9e7e4df78254d280e054bf4ecb8f296e5d9dad8e9c6d8a02511f526e41fa305aaa78c5fa45168d9981358","ssdeep":"","tlshash":"cda01210f004c43815841428c0e6074617c990cc86c3170149402b0744367d56202060","size":82,"data":"","first_seen":"2024-04-16T15:37:11Z","last_seen":"2025-10-17T05:03:07.441404Z","times_seen":1803,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-620120-3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5033ff135abd43651825e11f651792c4","sha1":"006b8335ed4f0b4e8b86d5254939cf65d3478240","sha256":"19ac9c2131d98837d6e34c7f9fff2eb574ef0d27ef4ea32a8069706e7ee75153","sha512":"b8c38e9aa6ef344ff361115d9832f63b3097a925a2302a1062279e119fee2136f3b6001d9fd40085120c5a884a52bccbb3aeca95de35feefc73a81b0f2760724","ssdeep":"6144:OWc6tQSyW+b4nkEt7FLKWjxSqpRKJkAX6HJLUy1kPoxYtU:y6rab4nkEt7FREqMZy1kQWW","tlshash":"645419ccb7d6b42683a36478503f114bb13b7992f84cc894e182d8d82e74aa94277f7d","size":285778,"data":"","first_seen":"2025-10-17T05:03:06.644941Z","last_seen":"2025-10-17T05:03:06.644941Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"domTimer","is_inline":false,"md5":"a57152b06a259d44d68ed7bca5713220","sha1":"9e2da37836dd54a48ca9d1427b22407c8100b81e","sha256":"01b11179be37589fc67de3d7e419eec20dc566869de4175df5a4c5793a8dee78","sha512":"f2d79d01dcc9bcd209d8b69139d4a2be40a4918ec37d4eff6265a5a067f54bd8649dfebf7a1cb884dd2f91be15835aa4f008f2c2703e4bd8dcee3325041ab2d0","ssdeep":"","tlshash":"bf110000c802022202030b3a2008280020000200c082028000a000000080820002280c","size":929,"data":"","first_seen":"2025-03-21T10:58:41.403796Z","last_seen":"2026-02-02T21:39:33.582202Z","times_seen":228,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.mymediaing.my/sdk/p/?zid=9801","fqdn":"cdn.mymediaing.my","domain":"mymediaing.my","tld":"my"},"ip":{"addr":"172.67.170.181","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4e4e226523e5dc1d1a84c9f47b9b4d82","sha1":"39c535a1a7efdd9c686790b2de8684453fb0302e","sha256":"6ce12f9f2de28bf41b43507283f8225142de308c5fbfeded3af1e73699197f3b","sha512":"4c84ef18da3bd956e7a90b80e51aa360c2723d393833309b057fa1250ac353117d190282e65046c2010fd79c0cdcbfa667f7bfb5ad57a0b76961cf4be23e3dfb","ssdeep":"1536:nFiJtBRiqSJQUUBU1wpIbS0UboLxCSMzHUgNvFG:nDqSJQUUBU1wpIbS0UboLxCSMzHH+","tlshash":"603392982fd0b94053dbab7b772fb4e5f4571c2f6a81484fe225bc20359071beaa5930","size":52894,"data":"","first_seen":"2025-10-17T05:03:07.278786Z","last_seen":"2025-10-17T05:03:07.278786Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ea77f824de2ef57acb12e7cb6596365e","sha1":"10bad0dbdf30a0471c2c786b349daeb1dd19180e","sha256":"2b19d92ce83bf3b498f73103ba1240f09c84798b1f92aedf1491ccf0aa6f5e4c","sha512":"cf69dd76334b7318c829868da8a7e9c2097ef261555388132fc69f95d42e91420e2988056c3d93c830b20059422ae5a82e1109e3dce9127ccb0e23cc5ca27591","ssdeep":"192:N0rZbTPe+fl9SKRGyFgkw+wi+FrZJqbzr+5rA7wbUCzebIkm:N09voK7gzi+FrZJqbzrarAyUX5m","tlshash":"7a22f8b33133fd9f8fba085ac61d61045c7dbc6f4aa94091bb0884e86af4558ead5d34","size":10687,"data":"","first_seen":"2023-03-07T12:02:01Z","last_seen":"2026-04-03T22:52:06.902225Z","times_seen":2338,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsjs.4jpg.top/index.php?js=av4\u0026advertisement\u0026","fqdn":"jsjs.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b12b8513ebe8dccf6e52efefd6e513d4","sha1":"08f614ee5c39760e02f14a81267e65b2e7a8075d","sha256":"d2528f38cc17f8fbee8ef7269d916584425e36ebd07e356e17f6852404bbb2bc","sha512":"14b19608fafd9e7d1757a19b674d97e96e1cb7b5601dc51dae973c991a5ce04812d27d2990dc20c9c53f47b7bba1ebd513f5ae91c3199e79c3f60a1baf9b4523","ssdeep":"3072:mhVwy/HrhITVaU/1V/w8ivI14EOtsCtJNSKDm/VHSLQNz:Smy/HVCVaU/15ivdK/VHSLQNz","tlshash":"2914e8f63608502951f312a78a768648f833a02b99816884fd1c6d751f78e7f196affc","size":191857,"data":"","first_seen":"2025-10-17T05:03:07.450144Z","last_seen":"2025-10-17T05:03:07.450144Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b4b936eab4235f662d4eb756534d69d7","sha1":"4ee18cb14eaf40e117a19a7f86dcefe6291bc0cf","sha256":"f7650ed40588ee2d1128869afc47866ee4eb09d4860ce1c3e07c9860b7242d33","sha512":"8ab68f0f71a5ed1bfef35dbdad985867b7695f46cd03e3d3bbf2ebe8de35b5a95638f5fdb41fdd52b85ecca95cbcb4a341f6fa560f1cb6a39a2026e22a9af10c","ssdeep":"","tlshash":"0260003c003f00030cc03c0000c0c000c000003c000303f00f030000000003030cc00c","size":12,"data":"","first_seen":"2023-03-07T12:07:12Z","last_seen":"2026-04-03T22:52:06.981677Z","times_seen":2305,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-04T00:14:20.000954Z","times_seen":118075,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0b92303a1cb08e00253e7879d304ee26","sha1":"68bdd0c37dddd5312507918516eaa994a1a1cb93","sha256":"7f10c6dc85b21ab592994c008eea9b75e836674d27bef1d026c511b4fb158432","sha512":"ea194370faf1c720d260f547d126b2beb99385dbbb29af6d954059e7bd3e622bf4040ad7731eaffea192c45551bf8816b8ba85ba40ef1a5ea1edae09e4c770e7","ssdeep":"","tlshash":"e7e0c035342d010202170260ac772a6a743dea750fc060b0d23825787684cb661596fd","size":353,"data":"","first_seen":"2024-05-18T10:55:44Z","last_seen":"2026-04-03T22:52:06.982617Z","times_seen":1351,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"8981d7d5762da819fd76fb9a6af69502","sha1":"73a6a054048f292202869c25a5be190ad5bb9cc6","sha256":"3c9e5317128af17847a8e308e8aa0c38c6be139b91afbd3d9598607d8de2b42e","sha512":"e99a831f0872d06c82bb4e84b19140c45feb6953e8da6515464ad5617b73b041c65c543ff25ee2a24509d749b16814d815388be58733c560da07742f0dc64d58","ssdeep":"","tlshash":"3990047f143d35101145115dc0c3547c400df14d57d14c054c53d045104c435d14100d","size":48,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T07:58:42.956301Z","times_seen":468,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"264d10031939cccbe6ccacad85d05572","sha1":"6ba289e4515dc98f790c54f154c41f5026e65a3d","sha256":"ca71ec20421522e662c56569f6b1de4a34668cac9465c0dbb28f347952399469","sha512":"4fa8a2033fcbfff126915701936d4656d394f6f3ad7c449f202223b455db9e60555ec46b87bdc3f12d9678610cd9feb23c26efc94d008a4b68df71e12d33ec79","ssdeep":"","tlshash":"558000e0e280a0ba00f2a20ca2002020082ac2280e83e3828c2aa0cc08008f38aeba00","size":34,"data":"","first_seen":"2025-02-08T03:33:08.473479Z","last_seen":"2026-03-29T10:32:52.1512Z","times_seen":495,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"fc99276790fd60430168f66babce9b5f","sha1":"aa97ed55496c03dc06f7ecad4721d094b456ffdf","sha256":"877bccd98aed1b71b4998a16cafbb93bfe0028f121304b26b07d9af90bb91205","sha512":"126086c45cc6532d590023e0bf76d0cd2749d280283968e0a2f2df98ba0aff1c28ed8aad898695cf6895655ee25166d2d75787eb40d67cf1fd828aa5235f9f56","ssdeep":"","tlshash":"9ca0025e116f693121414544a1c3665e504ab11a49768a09b853a8e111844796385d14","size":61,"data":"","first_seen":"2024-07-17T16:44:11Z","last_seen":"2025-11-13T10:13:36.967139Z","times_seen":627,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"13b29d7aeaa1d827a9a3feeb39148a43","sha1":"da2040ef13a2d1ce62b0eef9c6ced0fe14f66b28","sha256":"d2d18329527d4d7d4acda028f92281274ac2a08bd840af1c0480620582f98338","sha512":"86dc2b9ccd6cda65753b62b83dda93aabd9272931c1cd9bae1a56ccb607d7de074a8b9873c3a91b69479abf9fb911a4e10b47e0ae7f9cd242d638ce732869c53","ssdeep":"","tlshash":"466000003333000030c00c03c0000c00cf0c00cc000030003c030c00303000030c33c3","size":14,"data":"","first_seen":"2023-03-07T12:07:12Z","last_seen":"2026-04-03T22:52:06.991651Z","times_seen":1772,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"031272e79a9911f16d484b354be88c9d","sha1":"7d875792a099de314c9ddffbe10de67a443a96f5","sha256":"4562dba0f875615fa36535736a46725e70e63715a6ddcf54aa661fd653ca3db3","sha512":"abb30f2699a3c36dd5511949b2d74ffae557f269e6544cd36a28741a22561f1c6f2508bb0c16d53e9f9ec6c35fc7893d2b28bca2345d0102204045862a408249","ssdeep":"","tlshash":"54d022e88228a52826a522c9d10fe3d09ca5a38b708339f0dc7e082d02489491436462","size":202,"data":"","first_seen":"2025-03-12T03:12:27.527113Z","last_seen":"2026-04-03T22:52:06.993164Z","times_seen":364,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"2badd01f80cd03eb7ffce90487ab3f71","sha1":"1d0af7cc184466c7d86216085ea60242daeb1eb4","sha256":"e8f6c4dca8b7093bad96494bef55525265ce366c13dc6f76d9358cca8ee182d4","sha512":"ec9d7c3fe33550482bf70ec70ab0f2bb4c989ce096f4744d2e29646fae993113711dcf2c447e743ce4d422299d5b5155561522571a5b3c617d138ea55299078c","ssdeep":"","tlshash":"0b900410c47007103004550cc47573570531430d5f45171c0f10d4d3f5cf110553014c","size":43,"data":"","first_seen":"2023-03-07T12:07:12Z","last_seen":"2026-04-03T22:52:06.99386Z","times_seen":2352,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"edc24b7d2fc7536422daee6621435edf","sha1":"71fd4875b509449d820e6a3dd7d83e5f6c31fac8","sha256":"ec599569faa2feb73e0954dcb1f0f7ac5ba6d49ad50d17d3932506608b86a2fc","sha512":"04c6206b3bc1bac7456e96da9d1c58b9a9173e86ff91e8c94fbcd1088b011b5660519419f7971fae6370e8f281951c046c3539ea74a00f7b29830311e0174b34","ssdeep":"","tlshash":"c79002532d0494c2214558c564a0a80f9411644a58a4869688a5051161082ec0842500","size":55,"data":"","first_seen":"2024-04-16T15:37:12Z","last_seen":"2026-04-03T22:52:06.994562Z","times_seen":2323,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"8da66cae5fc09ad0ad54710cd4960dbd","sha1":"01ef404d9c252491d6f0cd6900cce145d4b76db1","sha256":"90b1ab53462f9b18c6a0d06704f07055e834c86239bdc87a3708514e9a6b6762","sha512":"5d4f175963755b790e21d7765434cab11676f9d02d4d9fa2885c05dbb2dd665ec871d93e3b7d9f50f79de7ed991f8815f7e6dc1bf82f9b1c70c8d4becf28e953","ssdeep":"","tlshash":"c1b0124b1d0c882f25319c40a552647f0072f0263510caee84b40120dc302cc4420400","size":88,"data":"","first_seen":"2023-03-07T12:02:01Z","last_seen":"2026-04-03T22:52:06.999917Z","times_seen":2422,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"33e50c65bc34e7205dd72147375dd7ee","sha1":"45d7704eefa9421415ddfe589dba26be6f3e0a1e","sha256":"f17654210f6b478323ef0f08d7591e4844f6c6d9c2e00672cbc8b7d211a0d688","sha512":"18656d1462e7e19b5872d2c6f52641ba01c64fa4bba62fe302f4e420f5a75c87088aca6e13f60cbbb18b8970154765e2a0aaa920c7d04e487730e421171a4f38","ssdeep":"","tlshash":"81d0a76b0c1ff453862052e8d053601cc08ed01d93e4cd5380c384716244aea066d819","size":228,"data":"","first_seen":"2024-11-18T15:29:42.20345Z","last_seen":"2025-11-13T10:13:36.984718Z","times_seen":682,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"01dcb251aa87ce0733fea1fc0ae53b1e","sha1":"2d5f366d847815daf4dfec72a13666de040e10ae","sha256":"2f5798bfde28f406058c5b99f53885dee140638bf4edc41f2c98efda28655fd3","sha512":"5b2678bbc155529c465accca49946b7abd5fae5a9857d506217a87c70275984fb20e70adc39e47087d1b87e8da71842b64cc3cddb961a81b571cb590c6d6aaed","ssdeep":"","tlshash":"3e8000080c00a80aa8300280ea80e008caca228320bb8a83088800022000a2020aa02a","size":29,"data":"","first_seen":"2025-09-09T18:47:24.546196Z","last_seen":"2025-11-06T02:12:29.173571Z","times_seen":147,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/9/2/1/9218ba131b5676e36463284252894ad71507989906-768-432-1146-h264.mp4-7.jpg?revnum=1","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.328Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /9/2/1/9218ba131b5676e36463284252894ad71507989906-768-432-1146-h264.mp4-7.jpg?revnum=1 HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 19570\r\nlast-modified: Sat, 14 Oct 2017 14:50:19 GMT\r\netag: \"4c72-55b82e463cc66\"\r\nexpires: Sat, 24 Aug 2024 05:12:24 GMT\r\ncache-control: max-age=10409727\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-8658-1-2839138-h-0-0---;8658-20-3715953----0-0-0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19570,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 692x693, segment length 16, comment: \"Lavc52.123.0\", baseline, precision 8, 308x232, components 3","md5":"06dc18ac40e7df34784c1d8aa161b030","sha1":"09d32b943093e6e734eba574db35343b306cf4ed","sha256":"742bae5d208a16aa11c2b3f510e93e1aa6157fb8aa9487fd208143d1a14e2e9b","sha512":"98ac7e23e35c36a9ea0407adfb4dc9c4f97b2c5dabc2cf1d60d6c0f594605140bb3e45ab48a98b8dd749199e9130695ee8e54986dbe281edad39645ef1181fa1","ssdeep":"384:KrmfffJA3hk1whba82CPswlCGdJ349tZrL8bDe4YWK5II/Cr7yvWzzqhKxZ1ZQg5:KyfffJvwhO+swlCG/IzRL8brvEOzqhy7","tlshash":"f992d0587b2f41c1ec36e776f448b51d09ecb4296d177a079b1e95e0e50cab3862207e","first_seen":"2025-10-17T05:03:06.547869Z","last_seen":"2025-10-17T05:03:06.547869Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1682,"timings":{"blocked":1619,"dns":0,"connect":0,"send":0,"wait":62,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"blumpkintube.com/favicon.ico","fqdn":"blumpkintube.com","domain":"blumpkintube.com","tld":"com"},"ip":{"addr":"172.67.148.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"blumpkintube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 16:43:09 GMT","end":"Tue, 06 Jan 2026 17:40:50 GMT"},"fingerprint":{"sha1":"1E:5F:43:D1:62:A9:3B:35:04:2F:A8:7F:C8:C0:55:4E:7C:DE:80:C4","sha256":"DF:89:D0:CE:A3:31:22:68:E9:31:A0:B5:F9:14:C0:4A:DF:2E:12:2E:C1:09:E3:FA:92:B8:02:32:4B:DA:36:A5"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: blumpkintube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nserver: cloudflare\r\nlast-modified: Fri, 29 Nov 2019 11:53:39 GMT\r\netag: \"5de106c3-47e\"\r\nexpires: Mon, 28 Sep 2026 01:17:32 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1655066\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V8i15IPt0J9jZfupScRNHZIcEstf%2FlRoTsLSWzvwpmRc9J4XlxJ5rSAJb0hH9tdh8bnBIOdNvgWjkwD1eMWtIkVYX3qocfU8miBsfp5O\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3dbffeab569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"3de13983da1e7755426362ee988fae6a","sha1":"51d87d2cb8a6950b5e1c8ca24a257cb397664a93","sha256":"16c3dc433b7b2460b9ba12b1aa28a14c598e93f5bab8f7cb1b5afa3989457c05","sha512":"788bdd434e346a864dbebe4681af25ad503de3d27baf36fe96ac013fc9bd3d207f7641ff85a353da57ad6cccd6e5ce4419de2d6653dba9622bdcb4bac81b1d02","ssdeep":"","tlshash":"3721a45d6404a4bdfd98f77a331175068ede76b2317a00f507e01f676462258b8c6ea0","first_seen":"2024-05-18T21:25:43Z","last_seen":"2026-03-03T14:10:03.70959Z","times_seen":399,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sasisa.ru/favicon.ico","fqdn":"sasisa.ru","domain":"sasisa.ru","tld":"ru"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.784Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: sasisa.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":112,"timings":{"blocked":111,"dns":1,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cacrz.4jpg.top/AV4.us.jpg","fqdn":"cacrz.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:02:00.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"4jpg.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 20 Aug 2025 22:07:03 GMT","end":"Tue, 18 Nov 2025 23:05:39 GMT"},"fingerprint":{"sha1":"F7:56:D0:5F:96:7E:84:98:1E:F2:DC:20:74:94:F8:5E:E9:99:22:BE","sha256":"A4:A0:9B:AB:A6:84:D2:21:1D:FD:89:C2:59:89:93:11:10:44:BB:96:A7:D5:61:38:E5:1F:75:F7:F1:E5:EC:A1"}}},"request":{"raw":"GET /AV4.us.jpg HTTP/1.1\r\nHost: cacrz.4jpg.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\nserver: cloudflare\r\netag: \"2225-5499bcea176c0\"\r\naccept-ranges: bytes\r\ncontent-length: 8741\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\nahost: RZ\r\ncache-control: public, max-age=3600000\r\ncontent-type: image/jpeg\r\nage: 1655070\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AD362jtZmYum1%2Fy00FOQedlXcb5ZcEwZ1xhTy1TF%2F%2Bmgr7kfrPwh4yYgu1hKlzvKN1sUIWp4VaI693pj8r8T3Uz0oYAD40EmJbNv%2B%2BU5\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3dc26ffc0daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8741,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3","md5":"edfe007a6e5b3d268b2528f564b60b43","sha1":"1644c8ef97c871079e07e5079d613af5cb94052f","sha256":"bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390","sha512":"8eab965dcd5098e29ccc1cf94459fa6b8fda97331a35139ae6c57cacbe0ed733cd53af8f7e2ca8a82c2cb9f785cafe46f4a34f99aadbdde53ca81cae25403d93","ssdeep":"192:YkyyBW+1ajsm2w0aCqPGfAzC4TvykEobWwK5Fi:YkvU4DqufJ4TvyXO0i","tlshash":"b702bf4a2da48fb326c1c5508cdff34b2ec78a5c67efb16f97319e5af4017165904849","first_seen":"2024-04-16T15:37:12Z","last_seen":"2025-11-15T09:18:18.740899Z","times_seen":2006,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"cacrz.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.tnaflix.com/a16:8q80w500r/195/10/94/10940775/thumbs/10.jpg","fqdn":"img.tnaflix.com","domain":"tnaflix.com","tld":"com"},"ip":{"addr":"156.146.33.140","port":443,"asn":60068,"as":"Datacamp Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.tnaflix.com","organization":""},"issuer":{"commonName":"GeoTrust TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 10 Dec 2024 00:00:00 GMT","end":"Tue, 16 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B0:1D:B1:2D:91:C8:A2:E5:E1:CC:05:C1:20:F1:52:8E:61:AB:B3:FF","sha256":"DC:ED:80:AD:A9:A9:FF:97:B7:90:84:B7:0F:E6:26:C6:32:64:AA:98:4B:D6:85:55:40:7B:4E:A7:10:33:10:72"}}},"request":{"raw":"GET /a16:8q80w500r/195/10/94/10940775/thumbs/10.jpg HTTP/1.1\r\nHost: img.tnaflix.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15118\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-77-nzt: EgwBnJIhiwH3v3kHAAwBT3/LCwH3Dam8AA\r\nx-77-nzt-ray: cf8787276c8c5c64c4cdf168fb3b7912\r\nx-77-cache: HIT\r\nx-77-age: 489919\r\nserver: CDN77-Turbo\r\naccess-control-allow-origin: *\r\nx-77-pop: frankfurtDE\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":15118,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 500x250, components 3","md5":"ff23754986055cd4f0357a958871b2aa","sha1":"4b2ac019d415a6da8ac45ca2ca08f9df0ab2c7ac","sha256":"aac4d3facc96656daa7354799deb5ab189e2488c0031a2eeda7f2e97e1415678","sha512":"641b00a8cc82ec5d2f2d82880aabe75e7139beb0a43c0ee734ba6a10c8e424a1bb942e4f38b497f2c6f4879dd8044f1779f859352943e1fd6ac13e9c294bcb89","ssdeep":"384:NpgXCM/dM+a9HeiM8DQf4aX//0jbQlKIzp5sCcpvTthhBeg:wbdMv9HeiPO4k8jbMH15sPpvTtvsg","tlshash":"8362c0eb76ddd444c807e935401ac715af6a5c8987c9bcfd7184494f30ee3ca3e85856","first_seen":"2025-10-17T05:03:06.563515Z","last_seen":"2025-10-17T05:03:06.563515Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2859,"timings":{"blocked":1058,"dns":18,"connect":35,"send":0,"wait":25,"receive":22,"ssl":1683},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/456/4.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/456/4.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:57 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 14516\r\nLast-Modified: Sat, 23 Mar 2024 12:19:59 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ef-38b4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14516,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"5c11e76515cea78d8faa55d8132324fc","sha1":"4f7fbb10bf0d0f4db9006460f9e3638e964c44cd","sha256":"e713face201014d6b41240671d890c338c386cd83c9d39fc4057f79360650681","sha512":"590c2bb6be2829fdab1cd9f9b4426fe224065731b8d7bac7cf23135fa1f9de78f1bafafe185ca3b64454bcadbf7b088b29536ad6997a3694941afc1c4c010238","ssdeep":"384:suABxa+q5KQlYOyWLNMWBY+CYrR/YV7tsM+cJI+:sG+UVRHNu+A7tF/J9","tlshash":"2852bf36173f4d03d8895b72999f832e93f0b9ece789583552c0b3b6c78825ae8551bc","first_seen":"2025-10-17T05:03:06.5684Z","last_seen":"2025-10-17T05:03:06.5684Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3679,"timings":{"blocked":1489,"dns":5,"connect":170,"send":0,"wait":206,"receive":1,"ssl":1803},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/a/d/d/7/4/add74cef3300eebcee73293fd08c79e11607528041-123.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /a/d/d/7/4/add74cef3300eebcee73293fd08c79e11607528041-123.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 18424\r\nlast-modified: Mon, 27 Jan 2025 09:08:39 GMT\r\netag: \"47f8-62cac6c18886b\"\r\nexpires: Wed, 28 May 2025 03:25:55 GMT\r\ncache-control: max-age=10422005\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-6249-1-255082-h-0-0---;8658-20-3715953----0-0-1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18424,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 692x693, segment length 16, comment: \"Lavc58.35.100\", baseline, precision 8, 308x232, components 3","md5":"961b8da1ca4fc403ce640f326f119e5b","sha1":"d5094a399388dc5c91d7aace4216c4be8c029bd1","sha256":"c50cd05832e748d6ff6495e8aee517276b6c7c92e90dbfe41c7fe98b5bd77a95","sha512":"468be7eed9e985cf1e4c84f5bcf626cf86393510f4b97465240343d0321863fcc54a51c887cf2f8f9c53c1ca06b532445a3a14dead922b9cd5a2f9f655f072ba","ssdeep":"384:C3CTI6siXvqSZo0gJL2vP2rlVDEVHDmuyA0TpqqX6ncM2k5:mwCT02L2sOHDmHp9qcM2k5","tlshash":"ac82cf33a9255eb0f9343f71f643023d0515b9f3b0d35a779882d5e9a15e0eb1e62831","first_seen":"2025-06-07T22:50:30.162116Z","last_seen":"2026-01-11T08:33:16.133206Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1633,"timings":{"blocked":1574,"dns":0,"connect":0,"send":0,"wait":56,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:00 GMT","end":"Mon, 15 Dec 2025 08:41:59 GMT"},"fingerprint":{"sha1":"E9:4F:AE:49:69:8C:15:95:B2:F7:9C:C0:6F:DA:FF:C6:06:1A:22:46","sha256":"89:56:CA:FF:85:BC:CA:ED:64:3B:13:28:77:62:7B:0C:FD:25:AB:78:F3:7E:B5:34:21:E4:79:F2:F9:D2:8C:E7"}}},"request":{"raw":"GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30399\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 13 Oct 2025 09:58:09 GMT\r\nexpires: Tue, 13 Oct 2026 09:58:09 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 327827\r\nlast-modified: Tue, 03 Mar 2020 19:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86927,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-04T00:14:20.000954Z","times_seen":118075,"resource_available":true,"data":null}},"time_used":1873,"timings":{"blocked":-1,"dns":0,"connect":20,"send":0,"wait":18,"receive":25,"ssl":1802},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/nosleep/0.11.0/NoSleep.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/nosleep/0.11.0/NoSleep.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 3953\r\ncf-ray: 98fd3daa3cf9b4ff-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5ed16b69-29bf\"\r\nlast-modified: Fri, 29 May 2020 20:07:05 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1044453\r\nexpires: Wed, 07 Oct 2026 05:01:56 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=7h3hqY%2FDEdWUMp5NT%2FQ3vs67OztchT1OxaKs0CcKuqEgqi%2FnIFdTVAOxCdrMgIrNmv0WfmmVM5TCdoy%2BC9%2B2D2xFDecEGJpkuUHfqp97d0i%2FHT2PbouBREd6ieLIex5ZRNgki0%2Bj\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10687,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (10613)","md5":"ea77f824de2ef57acb12e7cb6596365e","sha1":"10bad0dbdf30a0471c2c786b349daeb1dd19180e","sha256":"2b19d92ce83bf3b498f73103ba1240f09c84798b1f92aedf1491ccf0aa6f5e4c","sha512":"cf69dd76334b7318c829868da8a7e9c2097ef261555388132fc69f95d42e91420e2988056c3d93c830b20059422ae5a82e1109e3dce9127ccb0e23cc5ca27591","ssdeep":"192:N0rZbTPe+fl9SKRGyFgkw+wi+FrZJqbzr+5rA7wbUCzebIkm:N09voK7gzi+FrZJqbzrarAyUX5m","tlshash":"7a22f8b33133fd9f8fba085ac61d61045c7dbc6f4aa94091bb0884e86af4558ead5d34","first_seen":"2023-03-07T12:02:01Z","last_seen":"2026-04-03T22:52:06.902225Z","times_seen":2338,"resource_available":true,"data":null}},"time_used":1725,"timings":{"blocked":1,"dns":12,"connect":13,"send":0,"wait":20,"receive":0,"ssl":1665},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.elog-ch.com/news/images/200804/20080422-6s.jpg","fqdn":"www.elog-ch.com","domain":"elog-ch.com","tld":"com"},"ip":{"addr":"139.162.66.104","port":443,"asn":63949,"as":"Akamai Connected Cloud","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"elog-ch.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Aug 2025 02:08:43 GMT","end":"Sun, 23 Nov 2025 02:08:42 GMT"},"fingerprint":{"sha1":"A1:E2:E5:A7:47:28:64:A2:19:BD:75:2F:50:72:76:11:B5:BD:7E:8C","sha256":"E4:83:80:D1:60:30:6D:C6:5E:D8:89:FC:BD:88:5D:C8:5C:62:04:32:68:CE:BA:69:43:19:F8:B2:76:97:68:65"}}},"request":{"raw":"GET /news/images/200804/20080422-6s.jpg HTTP/1.1\r\nHost: www.elog-ch.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 20 Apr 2020 03:37:13 GMT\r\naccept-ranges: bytes\r\ncontent-length: 8193\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8193,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x160, components 3","md5":"1e1956054628ac9cc1dd7db1b05694b9","sha1":"5f84a267904c3878514a8171e52799683b1421b1","sha256":"ffedcd6fe83fde092136b34c651834b517147c7d7f7dd32883b993e69b6ef046","sha512":"efa15efa03dff0c7364418df044df8d229900227f9b810c68066b409cae0535246460aae773341a05c323930a93cc5c9ef53d74fed792ea8ca9c70b273308a97","ssdeep":"192:8mh+akoJAq+kObSGQx4TUJp3MDCJ1tTjd28KM:UakoR+neL2QJpacr","tlshash":"e9f1b0207deacb4bfb0409b994f62721d9a939cbfcb9d508d2d9bbc391411e466cdc01","first_seen":"2025-08-11T10:41:32.178431Z","last_seen":"2025-11-13T03:35:17.084733Z","times_seen":3,"resource_available":false,"data":null}},"time_used":4873,"timings":{"blocked":2246,"dns":284,"connect":257,"send":0,"wait":290,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/9982.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/9982.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 182734\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Wed, 15 Oct 2025 02:16:18 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7SWjvG6ZAgXkE0SSDNP6zWxCBoyzo%2BcOctQ9OQSroi8qHv6%2Bpj5Bx9eyIn8SVR2nM%2BDZd0d2Hqtc1N0QPyIOvTJ0VIqrjdtPkFc%3D\"}]}\r\ncf-ray: 98fd3d99ca36783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":82844,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 883x600, components 3","md5":"48833ff89b3aa447b3c43c6b51314dd3","sha1":"093e7fe39e17dfcbd3241c3394b7c77c06f6ed0a","sha256":"a9f5ab234e1610d1965087a87ca5830b09efebc0ff1083bf0c481796b01d4814","sha512":"e224024baab96364019b44341eebb82c2e492d954f559f440e4623ef75787d48b5957c8ba17114237c59fb4eb9e64fec4714b7d5d10bf461b1c8a6c214d76e50","ssdeep":"1536:PZ9gcDTfNo2UNcDBrXfSM7IrP15p4lbATLVoaopLcHmH0pTS6JLl6xEz:ROEpzUN5bPbpwbATOa3mH0phLZz","tlshash":"b98302599b4a8dd265b034c9ca782cfa40d62cdc139fac13a29b027e0815757ee9bd4e","first_seen":"2025-07-30T08:26:08.427079Z","last_seen":"2025-11-08T13:15:11.303208Z","times_seen":7,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":107,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shirouto.inran.jp/wp-content/uploads/2024/12/srh036jp.jpg","fqdn":"shirouto.inran.jp","domain":"inran.jp","tld":"jp"},"ip":{"addr":"183.90.182.167","port":443,"asn":37907,"as":"DigiRock, Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shirouto.inran.jp","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 20 Aug 2025 16:22:23 GMT","end":"Tue, 18 Nov 2025 16:22:22 GMT"},"fingerprint":{"sha1":"63:B0:C7:47:20:C8:EE:22:41:AC:99:0F:2B:79:07:FB:2C:66:83:42","sha256":"80:FD:DD:6A:5A:65:8F:48:CE:05:B7:A3:0F:4D:8F:56:72:7E:23:F9:8E:60:37:D9:D4:E0:FC:CC:6B:4D:11:C8"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/srh036jp.jpg HTTP/1.1\r\nHost: shirouto.inran.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: private\r\nexpires: Fri, 24 Oct 2025 05:01:56 GMT\r\ncontent-type: image/webp\r\nlast-modified: Thu, 26 Dec 2024 00:28:40 GMT\r\naccept-ranges: bytes\r\ncontent-length: 16426\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\nserver: LiteSpeed\r\nvary: Accept\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":16426,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"52602caf0b471f1dfb683d0eaa067094","sha1":"17dc2e9e66439779311e8056d978d25a7e0026f4","sha256":"b594b093df980fa70697d2b865a2b793607107437543fbefb9b733748305b3b0","sha512":"9a3a81dff335f418da69acbf26291d81071de4a4ea3f5fbd86a1f9fcf92bab991a7d3858f914472610f89a064676aa824c1ce3451f408f09300c4ebbc0a3e1bb","ssdeep":"384:S9HUhjE2jOPhWbEs+AwIoZwR39bl8TBm3CGh70POK:OuRaEZZR39blcmn7PK","tlshash":"9e72d02f0e5f852126f066480ce6103260e3b3a15d8f3d46d141d2a3b7e9f257b86a2f","first_seen":"2025-10-17T05:03:06.593104Z","last_seen":"2025-10-17T05:03:06.593104Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3234,"timings":{"blocked":587,"dns":1,"connect":247,"send":0,"wait":494,"receive":1,"ssl":1889},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ft.javpussy.net/thumbs/000/028/28562/28562_320x180.jpg","fqdn":"ft.javpussy.net","domain":"javpussy.net","tld":"net"},"ip":{"addr":"104.21.16.137","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"javpussy.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 10:31:24 GMT","end":"Fri, 12 Dec 2025 06:39:57 GMT"},"fingerprint":{"sha1":"6B:F9:D4:4E:A7:34:FB:B5:1C:25:0E:93:22:88:15:AA:3E:A0:E5:D0","sha256":"5B:17:4B:3F:97:37:F9:B5:D8:F3:8F:23:C2:CD:1A:36:A5:96:EB:03:01:A7:8F:DC:AC:6E:F7:EF:86:7C:97:D1"}}},"request":{"raw":"GET /thumbs/000/028/28562/28562_320x180.jpg HTTP/1.1\r\nHost: ft.javpussy.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 19499\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\netag: 59037a04e454c881d5ac803c67f4b242\r\nlast-modified: Wed, 01 Jun 2022 17:01:14 GMT\r\nx-timestamp: 1654102873.30943\r\nx-trans-id: tx12f2c8f2c5bd44e09a114-0065f34535\r\nx-openstack-request-id: tx12f2c8f2c5bd44e09a114-0065f34535\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\nexpires: Sat, 18 Oct 2025 19:07:35 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nage: 35661\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dM1sSkTGyzplp%2FUcT61aLEUAcCu2A9TlIB8UMVFiBdu0T5ayWknJ7iddoOTnN%2FAUvMHkGrrkt9wtlHgGnMm6O5uM4dQqW869FGOm4lWMAA%3D%3D\"}]}\r\ncf-ray: 98fd3dabf8d20731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19499,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=www.keniu.com], baseline, precision 8, 320x180, components 3","md5":"59037a04e454c881d5ac803c67f4b242","sha1":"d13da36bbbdc2ce198098a91043b855c2785ee7d","sha256":"aad9fe07d61b615acde2ba2a73eab621158c9f36d0a6a23613ede7cd3a37ae9c","sha512":"418860e0eeb5db1efa068540969bc4f25ad989ceddcdf2b571cfd3a08fcfd816d84672356623b5e27c614d797813c54c9c88d4a680b1e31c7ebaf23dc682e6d8","ssdeep":"384:tatc47aD4W37TPl7t31Ih5ZtbSnGj+7Sg4S80M03j:mPaD4WfhtlIJpSnXmfUM0T","tlshash":"6692d00ac24ee952c63a177508e93f1def619e6afdd72722342c70f1d03174646ad6d8","first_seen":"2024-05-01T13:38:35Z","last_seen":"2026-03-03T09:47:10.972503Z","times_seen":86,"resource_available":false,"data":null}},"time_used":2842,"timings":{"blocked":906,"dns":18,"connect":16,"send":0,"wait":8,"receive":1,"ssl":1887},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s9.am-videos.click/NGWaYeW.fr.jpeg","fqdn":"s9.am-videos.click","domain":"am-videos.click","tld":"click"},"ip":{"addr":"172.67.180.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.398Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"015889f2.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 13 Oct 2025 17:49:02 GMT","end":"Sun, 11 Jan 2026 18:49:01 GMT"},"fingerprint":{"sha1":"45:65:23:D2:40:11:A0:E9:DE:C9:3C:9C:9C:42:E8:1C:14:CA:7E:C3","sha256":"71:99:A9:B1:AE:93:E6:34:69:27:B4:B7:08:B3:D6:A8:33:F0:55:32:1C:8D:BF:FF:96:C6:54:0B:E5:34:DC:39"}}},"request":{"raw":"GET /NGWaYeW.fr.jpeg HTTP/1.1\r\nHost: s9.am-videos.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp.tub4us.top/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 22857\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZGPNvo8TrIgZUmYc21HWNTjSG3GuSNJ2BZlNvptFACO3Ab6TW3QQE8DBdyA1Ut9e2hhXfmwp0j9Fjq5PTJwPzRCEzd2ahk9lJF8IGCQvO8BSwQ%3D%3D\"}]}\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"e45579cf376ba9d055d710fd88c6ce5e\"\r\nlast-modified: Mon, 13 Oct 2025 17:16:32 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nage: 6583\r\ncache-control: max-age=14400\r\ncf-ray: 98fd3daf5aa035a6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22857,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 408x720, components 3","md5":"e45579cf376ba9d055d710fd88c6ce5e","sha1":"c3850c6a605846204f696f87ac71ea60679308e7","sha256":"c36c5aef683b41e4e7103004ee25ce1d5c74401b99dd8e267c54cff18d182858","sha512":"b0d75f728ce59c7f9deef31c6b60899ae7b291ee5180f7fa29ad2999c179efc5df3f4e1b011d6581233b9e59e45eaa97705d3f468700a1f6088104c867609598","ssdeep":"384:+8Vo7h/eY7yLtf+sy/pgaBGNMV8XXSR3nj8yi76DBtI9fXqwkIL9+:+8V2IsypyNBGNMVeXGhg6dtUqXo+","tlshash":"99a2e1574af4edf7aa945079862eb3220d74a341c984fb6165c79b83111f6d16302d33","first_seen":"2025-05-22T07:14:21.079683Z","last_seen":"2025-11-02T12:24:20.626895Z","times_seen":33,"resource_available":false,"data":null}},"time_used":2629,"timings":{"blocked":980,"dns":3,"connect":1,"send":0,"wait":15,"receive":2,"ssl":1625},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"s9.am-videos.click","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js?1","fqdn":"ajax.googleapis.com","domain":"ajax.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:00 GMT","end":"Mon, 15 Dec 2025 08:41:59 GMT"},"fingerprint":{"sha1":"E9:4F:AE:49:69:8C:15:95:B2:F7:9C:C0:6F:DA:FF:C6:06:1A:22:46","sha256":"89:56:CA:FF:85:BC:CA:ED:64:3B:13:28:77:62:7B:0C:FD:25:AB:78:F3:7E:B5:34:21:E4:79:F2:F9:D2:8C:E7"}}},"request":{"raw":"GET /ajax/libs/jquery/3.3.1/jquery.min.js?1 HTTP/1.1\r\nHost: ajax.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"hosted-libraries-pushers\"\r\nreport-to: {\"group\":\"hosted-libraries-pushers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30399\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 13 Oct 2025 10:54:03 GMT\r\nexpires: Tue, 13 Oct 2026 10:54:03 GMT\r\ncache-control: public, max-age=31536000, stale-while-revalidate=2592000\r\nage: 324474\r\nlast-modified: Tue, 03 Mar 2020 19:15:00 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86927,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-04T00:14:20.000954Z","times_seen":118075,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":3,"connect":0,"send":0,"wait":18,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/99/35/da/9935daddef0f2076a5d78346cd065b16/9935daddef0f2076a5d78346cd065b16.5.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/99/35/da/9935daddef0f2076a5d78346cd065b16/9935daddef0f2076a5d78346cd065b16.5.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 18624\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Mon, 13 Jan 2025 12:37:20 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH3NfwvAAwBJRPCOgH3Qd6VAAgBbT1apwGB\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf16826a2cb24\r\nx-accel-expires: @1767900524\r\nx-77-cache: HIT\r\nx-accel-date: 1757532556\r\nx-accel-date-max: 1736796522\r\nx-77-age: 3144757\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":18624,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 352x198, components 3","md5":"77347b6eed21bf18259141ea2271d8d3","sha1":"cd05d6196345a0c1323feae0232c0c3fd54b2417","sha256":"28f41d4d620475330ae9a54da307d737cb1fe05ed5a51c2b673048ac5a71779c","sha512":"d241e39d2de5be5bce0f20909b902bc06095434011e7e4bbf5b35656f44004c662d44f8a0a001bb0d756d4c456312e0bb1f70e377e5dd8e5fca82a2b763ef06e","ssdeep":"384:Su+CIjsStSby+NN0+NbjwHwQdcubrfSJ2yBrEQ+FutywkWgg3:WCIltSby+I+NoQEnruxTMfWgg3","tlshash":"2282d01fe04424e5f122e433131ca48b9716c64f89e56d68b3298d068bfdec01ed9bcd","first_seen":"2025-07-25T08:10:29.870435Z","last_seen":"2026-01-13T15:17:47.288658Z","times_seen":14,"resource_available":false,"data":null}},"time_used":137,"timings":{"blocked":117,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ds2.obmenvsemfiles.net/fo/files_attachments/584/346/584346d402bf8fdfb53344a50a00b55e.jpg","fqdn":"ds2.obmenvsemfiles.net","domain":"obmenvsemfiles.net","tld":"net"},"ip":{"addr":"85.17.28.50","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.508Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ds2.obmenvsemfiles.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Sep 2025 08:49:16 GMT","end":"Mon, 01 Dec 2025 08:49:15 GMT"},"fingerprint":{"sha1":"1F:1C:8C:98:5B:96:F1:54:F1:03:22:C6:5D:60:13:E9:E7:8A:7F:5B","sha256":"ED:D0:2A:47:2A:AD:13:E3:9C:6A:49:F2:2C:61:D2:E9:8E:24:F5:2E:2F:9D:2D:2E:00:49:3F:F8:2D:AD:BF:5C"}}},"request":{"raw":"GET /fo/files_attachments/584/346/584346d402bf8fdfb53344a50a00b55e.jpg HTTP/1.1\r\nHost: ds2.obmenvsemfiles.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 72111\r\nlast-modified: Fri, 02 Jun 2017 19:16:49 GMT\r\netag: \"5931b9a1-119af\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72111,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x270, components 3","md5":"584346d402bf8fdfb53344a50a00b55e","sha1":"138737c8a576d2b8d193d558314424d958f54c0d","sha256":"6ae00ec8ef00afd9d2fc4fc83260aa9d5572cf5e85fd9e93a7a99191f82a64f5","sha512":"48495a68e8cc800f438a3c63298eba616e5f9cb6e5e7effa969beb3cafdd252b7944601147172d23627dea63a15f7d851f4fb948254c5263f433769df244ad1f","ssdeep":"1536:pfWgDru0bWWQXppK8GwYSNrrrkiT5W3FzLfJXXj3ai/NG1qKQMbGXABBalH:pfhRW3IRO/xoJXXjKYNGsK9/v0","tlshash":"0c6302b4d375cb4afda85283a6c67d4c91d7cf0508c1609b69d3a909257cb0e1b39ddc","first_seen":"2025-06-03T04:10:59.177002Z","last_seen":"2026-01-21T08:47:17.614379Z","times_seen":14,"resource_available":false,"data":null}},"time_used":2808,"timings":{"blocked":997,"dns":13,"connect":37,"send":0,"wait":32,"receive":59,"ssl":1660},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sexsex10.com/favicon.ico","fqdn":"sexsex10.com","domain":"sexsex10.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.769Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: sexsex10.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"volosnya.com/favicon.ico","fqdn":"volosnya.com","domain":"volosnya.com","tld":"com"},"ip":{"addr":"31.10.5.4","port":443,"asn":207728,"as":"EUROHOSTER Ltd.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"volosnya.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Sep 2025 01:55:37 GMT","end":"Mon, 08 Dec 2025 01:55:36 GMT"},"fingerprint":{"sha1":"1A:F3:E0:93:DE:B1:C2:FA:7B:E5:36:69:C2:F5:99:2F:73:17:D3:5C","sha256":"BC:88:C5:8C:17:12:EE:BB:58:66:C7:83:92:2B:56:37:82:5A:18:11:8C:C9:0D:ED:55:93:96:D8:7C:94:67:CD"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: volosnya.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:01:59 GMT\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 1780\r\nConnection: keep-alive\r\nLast-Modified: Wed, 03 Apr 2019 09:34:19 GMT\r\nETag: \"6f4-5859cf53c0102\"\r\nAccept-Ranges: bytes\r\nStrict-Transport-Security: max-age=31536000;\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1780,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 32x32, components 3","md5":"df2b5e1dc05d67f645b59f58380945a8","sha1":"70b3d8b1efb0c4fa752d0d295949a2e3e77cf975","sha256":"17ee733316765ee9546a3024f60bce4a21f75813207cc6d2914f43372e47b16e","sha512":"03811eeff3ec8d271fad53926b43db13e2a1b08d0ea8f9a0dd94241a6b43af293d72e870a610cba282964a8e9031c2c496bdfd0250d9bea1d838abb990fdb411","ssdeep":"","tlshash":"9431eaff0e164a105407c07f4d06e140e2ce26c9707963617ed2d7e6c6f2d94589c91e","first_seen":"2025-07-19T00:56:29.87902Z","last_seen":"2026-04-03T21:47:16.495399Z","times_seen":21,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":103,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/zvvuc4hj_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/zvvuc4hj_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 335548\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 13 Oct 2025 07:49:25 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gwYcrNqYNDRMc76oL4U53WRnZ5kaoXZqh6pMGJFJSIWqNKIEc%2Flmm3yfCW20Tsz2Iap2qwoF10m8X%2FuQ0Dy0mf0D2Q1%2FOHzmOfs%3D\"}]}\r\ncf-ray: 98fd3d99ca33783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":111355,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 800x710, components 3","md5":"b5414b556ef802f84e876a4859252169","sha1":"d6cd89e6f8b176d09d9f5b094eca5ecf5b552aa8","sha256":"a4a848ce8220b9f79a7469cd137bb0ca15439de3fcf51d016f1e9ef1432b79da","sha512":"20b220309b996b7ae09f698dd3dfea2d67e6824b3052062ef990451fd5005f68a231586d96e36cd6cdcacd9d72dbbe00c70e7013dbd57fb4fc84b14a05a678b4","ssdeep":"3072:wk+TZ+AfGemUNxUxTaeXAnHkZnsPNV6Mpi:wMXemUNWxTaOeECVE","tlshash":"e9b30231ed2503eda91f911e788e7e4f0e8c7df92ade4b0e0ad92c4db9c53590b61541","first_seen":"2025-10-17T05:03:06.618591Z","last_seen":"2025-11-12T14:35:24.026424Z","times_seen":2,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":115,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"asianpornxbb.sbs/zhenshimama12nimenyaodeshipinlaile/thumbnails_001.jpg","fqdn":"asianpornxbb.sbs","domain":"asianpornxbb.sbs","tld":"sbs"},"ip":{"addr":"104.21.23.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.596Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"0b45ee2e.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:37:35 GMT","end":"Thu, 25 Dec 2025 12:37:25 GMT"},"fingerprint":{"sha1":"EC:95:F0:24:DE:2D:2A:1C:BC:D7:2A:91:EA:B7:C3:0D:92:AD:0A:7E","sha256":"71:BB:4F:6A:7D:B0:C8:82:75:74:B3:83:8F:39:93:43:A0:3A:9F:D5:73:A3:FC:65:A8:A6:F9:49:F7:54:5E:C8"}}},"request":{"raw":"GET /zhenshimama12nimenyaodeshipinlaile/thumbnails_001.jpg HTTP/1.1\r\nHost: asianpornxbb.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 75275\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=urcZvjNx%2Ff4dso87aOAFRSmT%2B2rtnDkH4KtDEzs6lkszmWCw1cYidTMNmag5d1aJ9fk03gh%2BgiYubXgDo04L%2FNlQNPY7cMNXwXS9EwYP\"}]}\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\naccept-ranges: bytes\r\netag: \"d8aa70a4fd215c0ba39e167056ef609e\"\r\nlast-modified: Thu, 02 May 2024 03:35:57 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nage: 705277\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3dac6a690b51-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":75275,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1218x1440, components 3","md5":"d8aa70a4fd215c0ba39e167056ef609e","sha1":"89c954b67e5a419d1015bd89374ce3b227ce90cf","sha256":"035d70019bc21db14e854469a0c5143572211cbed67c1fcca7bee7d8d620017a","sha512":"3803b7fd8ac43e05bf4f91ba1285bd872ad4a7b60cff4ff5d9e933bfaaa2524c94283fb091aa4e404d61c31f4cfcfd1def581e0de298ff9b536218a4033d0936","ssdeep":"1536:HFTnz11qawY8sFiXGfJPoX1YgzhkQWsXnjKfTi+6v7GqGNNfhuXi:lTzSaV89XGJQX1NlXjSR6Diffhuy","tlshash":"257302810dbfdfc89cf3cbf6161e80115a8698278ca5174bfba11f17766bd698214893","first_seen":"2025-09-15T19:17:31.227403Z","last_seen":"2026-01-13T11:40:30.225814Z","times_seen":15,"resource_available":false,"data":null}},"time_used":2966,"timings":{"blocked":1088,"dns":5,"connect":1,"send":0,"wait":19,"receive":4,"ssl":1807},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/168/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/168/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10825\r\nLast-Modified: Sat, 23 Mar 2024 12:18:57 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b1-2a49\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10825,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"85667fde79e4e39a75cd55bee65ce5e2","sha1":"df67253589345bd0206b6f231be764a5b8b90af6","sha256":"e5f9640772455f4689be80fb1f7b078a534c1d472531290eb5da4fa3be421d57","sha512":"cd5d67ae22b728543c103f34612ebc6a1c415344048355c6bde580f4ee8e86bb5718f7d40617f218d94ab1e8959d4c40c272cc739ddae80a9e8681bbebfeba15","ssdeep":"192:PSSSSSSonTw37ycPnNV4gppqWlGZMUGK8LIb8FfHDpFB4pROPjk9V5a33KNr:PSSSSSSo837XPnNVV58WJIbYfHx4pEq5","tlshash":"b122ae6c0ab6d12bcd7c313b27b9064a5334eb16118abb2613643b097f2913b9d646f7","first_seen":"2025-10-17T05:03:06.640125Z","last_seen":"2025-12-24T17:34:12.625424Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1832,"timings":{"blocked":1631,"dns":0,"connect":0,"send":0,"wait":199,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-620120-3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:44 GMT","end":"Mon, 15 Dec 2025 08:40:43 GMT"},"fingerprint":{"sha1":"02:50:AA:DF:C5:16:76:73:9E:ED:AD:C4:E5:98:EB:E7:2D:B9:C3:33","sha256":"6C:68:2F:0A:C2:03:62:A1:8E:7B:3B:BB:D6:6D:96:A7:78:6C:78:0F:1D:F0:EB:77:84:A5:4A:DD:07:44:9B:DD"}}},"request":{"raw":"GET /gtag/js?id=UA-620120-3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\nexpires: Fri, 17 Oct 2025 05:01:56 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Fri, 17 Oct 2025 03:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 101497\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":285778,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (3005)","md5":"5033ff135abd43651825e11f651792c4","sha1":"006b8335ed4f0b4e8b86d5254939cf65d3478240","sha256":"19ac9c2131d98837d6e34c7f9fff2eb574ef0d27ef4ea32a8069706e7ee75153","sha512":"b8c38e9aa6ef344ff361115d9832f63b3097a925a2302a1062279e119fee2136f3b6001d9fd40085120c5a884a52bccbb3aeca95de35feefc73a81b0f2760724","ssdeep":"6144:OWc6tQSyW+b4nkEt7FLKWjxSqpRKJkAX6HJLUy1kPoxYtU:y6rab4nkEt7FREqMZy1kQWW","tlshash":"645419ccb7d6b42683a36478503f114bb13b7992f84cc894e182d8d82e74aa94277f7d","first_seen":"2025-10-17T05:03:06.644941Z","last_seen":"2025-10-17T05:03:06.644941Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1968,"timings":{"blocked":1,"dns":10,"connect":33,"send":0,"wait":61,"receive":73,"ssl":1772},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.com/","fqdn":"www.9188porn.com","domain":"9188porn.com","tld":"com"},"ip":{"addr":"104.21.17.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"9188porn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 04 Oct 2025 06:42:53 GMT","end":"Fri, 02 Jan 2026 07:31:59 GMT"},"fingerprint":{"sha1":"FA:0D:5D:6E:20:F3:6A:FC:5D:CF:E5:5B:87:A0:BD:8C:6E:F6:DF:D9","sha256":"20:6C:83:E8:06:18:9D:FD:64:DA:45:92:13:99:F6:45:64:B5:7D:69:EB:5C:B4:EC:15:98:15:45:A1:E5:69:34"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.9188porn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\npriority: u=4,i=?0\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=T8bidD20axV13a8rxs4NVflJOo%2B8cXJpWtv7eWEiX2UP46y40o8ssljAb1N%2FMZem7jRvRpf59fCQGJEHyYsnes80EF2nnOyaNAN58q0zDBk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3db0899b49c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"teentubexnxx.com/favicon.ico","fqdn":"teentubexnxx.com","domain":"teentubexnxx.com","tld":"com"},"ip":{"addr":"185.73.221.134","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teentubexnxx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 01 Sep 2025 05:20:59 GMT","end":"Sun, 30 Nov 2025 05:20:58 GMT"},"fingerprint":{"sha1":"D9:7A:1E:AD:E6:CA:CE:F7:52:1C:DA:5E:2A:B1:FA:D0:77:17:6E:52","sha256":"15:0D:1B:DA:D3:B1:C8:4B:51:A6:10:A6:21:32:EB:0E:C7:A1:91:53:3C:38:84:78:B7:FB:09:D9:CB:5F:8B:99"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: teentubexnxx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":1342,"timings":{"blocked":602,"dns":9,"connect":45,"send":0,"wait":49,"receive":0,"ssl":623},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zhestkoe.org/sites/zhestkoe.net/images/icon.png","fqdn":"zhestkoe.org","domain":"zhestkoe.org","tld":"org"},"ip":{"addr":"78.40.116.145","port":443,"asn":200019,"as":"Alexhost Srl","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:02:00.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"zhestkoe.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Sep 2025 00:26:18 GMT","end":"Thu, 18 Dec 2025 00:26:17 GMT"},"fingerprint":{"sha1":"F4:63:4F:1A:D8:27:76:F4:C7:B7:0E:DD:E3:3F:A8:95:CB:34:4C:53","sha256":"09:62:E9:2A:15:ED:CB:FB:C8:67:41:9C:45:56:60:49:A2:0B:D0:61:E8:AC:3C:AC:81:FA:3E:D6:56:1A:ED:66"}}},"request":{"raw":"GET /sites/zhestkoe.net/images/icon.png HTTP/1.1\r\nHost: zhestkoe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp.tub4us.top/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:02:00 GMT\r\nContent-Type: image/png\r\nContent-Length: 1778\r\nLast-Modified: Wed, 19 Jun 2024 12:15:52 GMT\r\nConnection: keep-alive\r\nETag: \"6672cbf8-6f2\"\r\nExpires: Sat, 17 Oct 2026 05:02:00 GMT\r\nCache-Control: max-age=31536000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1778,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit colormap, non-interlaced","md5":"ef79e39f351cd0717bb84648aef65098","sha1":"58f7aa3cb41b4a58544f16e275c55858d4346c40","sha256":"71b1ae4634508681de38aa658b5aa243b1fa9a21c36e4af3643bf74dc0528d7b","sha512":"b799399fac350f6a5119c85c1656ced19218505439e68f9e63d1e25d559b11f0768f79f7a3802bf226bf72a5bdf5520e6900e23e822144ab9f8ccf6cbb57f261","ssdeep":"","tlshash":"603109e1f181cd2897463526b19a22bfb16b543383b7369937095594758601e738e34f","first_seen":"2025-05-23T07:10:10.114611Z","last_seen":"2026-01-28T23:13:27.074461Z","times_seen":42,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":38,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5.nudegirls.wiki/uploads13/thumbnails/6/102/tiktok-pyts-flashing-tits-best-pyt-no-limit-chats-more-te-LZggNv.jpg","fqdn":"cdn5.nudegirls.wiki","domain":"nudegirls.wiki","tld":"wiki"},"ip":{"addr":"134.19.178.221","port":443,"asn":49453,"as":"Global Layer B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn5.nudegirls.wiki","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Oct 2025 11:48:51 GMT","end":"Wed, 31 Dec 2025 11:48:50 GMT"},"fingerprint":{"sha1":"A8:BF:E1:C9:B3:92:AE:66:A8:E2:1F:D9:E1:6F:6B:98:95:87:76:79","sha256":"6A:9C:9E:72:2B:FD:5A:9E:16:61:09:9D:06:C2:11:E4:2A:C0:48:D4:86:CB:73:E5:34:C7:49:13:80:79:23:49"}}},"request":{"raw":"GET /uploads13/thumbnails/6/102/tiktok-pyts-flashing-tits-best-pyt-no-limit-chats-more-te-LZggNv.jpg HTTP/1.1\r\nHost: cdn5.nudegirls.wiki\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 19451\r\nlast-modified: Sun, 09 Oct 2022 09:24:45 GMT\r\netag: \"6342935d-4bfb\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type\r\nstrict-transport-security: max-age=31536000; includeSubdomains; preload\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19451,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x548, components 3","md5":"625ed3d64839493340af564230786676","sha1":"5689e87368c832adca5db299d2fd514a0937e961","sha256":"dde7b623cdc82833b2d8b266ffa1bcc4a64247dc8411a92094d339b266cc163a","sha512":"8b085e7a21a10ddc1f1d2495474848cc35b8a6fb47174eaef3935bc7759ce474bf91a283a25ccf725f503de0191f9f51ad2b187f6863e6451ff73f12571790b6","ssdeep":"384:AJjNWsLzavKyP7g8MoD6prj2mA9eqUF0eOuoqqb/OPPXHjb:IosLGSigno8rymA9eqIfOoO4Pv","tlshash":"1192d0f73449b0474656c2b25c3fba8a5e5be872c30f531a27d693c89ee12c3412578b","first_seen":"2024-12-06T08:18:00.347482Z","last_seen":"2025-12-18T08:25:15.014384Z","times_seen":58,"resource_available":false,"data":null}},"time_used":2201,"timings":{"blocked":570,"dns":1,"connect":15,"send":0,"wait":28,"receive":18,"ssl":1566},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.asiannudestube.com/thumbs/30/660_-.jpg","fqdn":"www.asiannudestube.com","domain":"asiannudestube.com","tld":"com"},"ip":{"addr":"104.21.63.239","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asiannudestube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Sep 2025 21:27:35 GMT","end":"Fri, 26 Dec 2025 22:25:50 GMT"},"fingerprint":{"sha1":"B8:FD:FC:44:EA:65:A1:0F:60:EE:4D:7D:CD:A5:1D:2E:EE:29:28:71","sha256":"1F:59:10:82:17:8F:5F:17:B4:8D:E3:BB:ED:B8:2F:D3:47:9C:20:72:0F:87:1C:99:1E:BB:DF:61:CE:AF:1B:6B"}}},"request":{"raw":"GET /thumbs/30/660_-.jpg HTTP/1.1\r\nHost: www.asiannudestube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncf-cache-status: BYPASS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LyK8F3bE6fmyzSEVT5UP3OuWJUI08jKtiPNO618skBbLM3UkmHY%2FAvs%2Fu1JSZwJKBOyezuyyG5u1iAC00fkVHyFiEKElsQAuvc7JtIeK%2FwSf5ynyGiI%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 98fd3dae8a05783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":3117,"timings":{"blocked":1126,"dns":0,"connect":4,"send":0,"wait":10,"receive":0,"ssl":1973},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"en.vidmo.pro/favicon.ico","fqdn":"en.vidmo.pro","domain":"vidmo.pro","tld":"pro"},"ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"en.vidmo.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Sep 2025 20:46:58 GMT","end":"Sun, 21 Dec 2025 20:46:57 GMT"},"fingerprint":{"sha1":"62:B0:3A:0B:30:5F:D5:33:34:2D:B2:52:68:D3:05:FC:0F:7B:B2:BC","sha256":"69:53:E3:60:66:6F:57:25:AD:1A:25:03:0E:E9:0E:3B:D8:D1:08:2B:01:B6:E5:3C:C6:C2:BE:0C:AC:92:30:73"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: en.vidmo.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 5430\r\nlast-modified: Sun, 14 Oct 2012 21:41:38 GMT\r\netag: \"507b3192-1536\"\r\ncache-control: public, no-transform\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5430,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"6b6734885d5e4ff9dbb7d82ba6023598","sha1":"3c454d68a346b375ed7b59a131699061e7393b1f","sha256":"0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819","sha512":"e3d4562da250a2096981bd9a211efa643400ebe18a2d0765e750454b4cf75cb31e9594d8fccfa61a4c86e1c08bbf130dbc635c2974996838444cef029bf3eb50","ssdeep":"96:12lbcmeAscXXZCGv56cOtAe8CKfMibd+tLMiWMyuFa:0muCQpBQ6d+ti","tlshash":"a9b173c151c1e587e0274f38e237d750b1fa2c13bab0ea85156b7a555a731898317b1e","first_seen":"2023-05-05T08:02:57Z","last_seen":"2026-04-03T21:47:16.469436Z","times_seen":688,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":125,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"en.vidmo.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pabporn.com/favicon.ico","fqdn":"pabporn.com","domain":"pabporn.com","tld":"com"},"ip":{"addr":"185.213.91.160","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pabporn.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 13 Sep 2025 08:20:47 GMT","end":"Fri, 12 Dec 2025 08:20:46 GMT"},"fingerprint":{"sha1":"D4:78:C2:20:60:B2:21:94:37:81:46:C3:C6:7E:24:60:3A:10:FB:22","sha256":"0B:6B:3E:93:1C:9F:AA:2F:8D:A5:AC:A6:79:F2:D7:81:AE:55:68:72:BA:03:58:37:27:28:B8:7C:99:7B:B9:3B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: pabporn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Tue, 31 May 2022 20:33:33 GMT\r\netag: \"62967b9d-47e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000;\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"d72c930210cebff0ea2ad00235f1f48a","sha1":"0cc1bff18559805ec4501cf617721c6310b8117f","sha256":"e5a5227839abcc6c0d6207378aeffa883f5acd059fb09338273e2049fc5fed88","sha512":"1797acac3a336e83957216e47dcfc8d72c800dc79ec498a7e3647e40506ffc2f7560d4f7312b9db90858b081cb8e60e064e79a3be4b0bc49503f973446df2504","ssdeep":"","tlshash":"1321f0cae62ada88e9106bfc00308cce209b68919478c4c595e330fa5d4bf9f09e1d13","first_seen":"2024-08-19T21:44:19.361965Z","last_seen":"2026-03-03T14:10:03.991229Z","times_seen":224,"resource_available":false,"data":null}},"time_used":970,"timings":{"blocked":166,"dns":1,"connect":92,"send":0,"wait":92,"receive":0,"ssl":604},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/b6zmylvv_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/b6zmylvv_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 386093\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 17:47:00 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UC4dT20U%2FxOhAht5wVDsx%2BDAxyA4TVs6ghCxjk1TuLn1RKZ03imF74SMz6TOVg0LHjUt8HM%2FHeFi%2BbiKLiROZbNQx4TL9nvikjk%3D\"}]}\r\ncf-ray: 98fd3d99aa0b783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":112698,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 720x540, components 3","md5":"e9b835f3ff217d551c105c9e923d2b74","sha1":"49647cea471c07c80a8439a77aa031a4c1d95a73","sha256":"1ede20632b391676e349b1eadeacc9f78aa5a96e1e3b0e485bdd42f7209df1cb","sha512":"3583c2139f2d603141ee3a7fff3a819a249c952a2dd5712d81f6e899a33bd70e1757b089e188249aa11d2b83887f9afd25c707fd4373a42bcc9330bb688727b8","ssdeep":"3072:MhWTXW3/pRbRjBslbl8MsTclUuNUzWI4/w340z:MhkWZjBs5l8MsTaU4UFNz","tlshash":"54b312e34f944a9056f4dd8122401ea8edf4f89e7dd324a9e0c93c2454a2759fb9cc9d","first_seen":"2025-08-12T15:19:25.585027Z","last_seen":"2025-11-25T10:56:18.795611Z","times_seen":9,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":41,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.avidolpics.com/photos/380/671.jpg","fqdn":"images.avidolpics.com","domain":"avidolpics.com","tld":"com"},"ip":{"addr":"104.21.15.197","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avidolpics.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 Aug 2025 20:16:20 GMT","end":"Mon, 17 Nov 2025 21:13:47 GMT"},"fingerprint":{"sha1":"02:26:BB:73:0B:C9:A2:3A:37:B0:3D:44:6B:D8:2D:1F:5C:8E:D5:72","sha256":"38:9B:01:02:B0:85:0D:B6:52:07:7E:27:17:AC:02:8A:73:86:09:75:82:EA:E3:54:BB:6A:E0:BF:CB:96:01:00"}}},"request":{"raw":"GET /photos/380/671.jpg HTTP/1.1\r\nHost: images.avidolpics.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 7077\r\nserver: cloudflare\r\nlast-modified: Sun, 27 Sep 2020 11:17:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"5f7074e4-1ba5\"\r\nexpires: Thu, 23 Oct 2025 06:57:16 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nage: 79479\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=immO1nf%2BN5iwhkio6ZL218jS9g1%2BgGtrguztyg5YFVj1RKNfAuRGw2qDkHg1kqReHPRpMoTGaPAYkECdaqdXmHAuTk3kSrFwJ9dObFgyNMaWsizuXA%3D%3D\"}]}\r\ncf-ray: 98fd3da6793ab28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7077,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 300x190, components 3","md5":"b4a4b6e8b9c913bab82314e94101aa35","sha1":"cb3ce186b1b4231892ee6c924e8b412917c6aa0f","sha256":"136c1c373aba7016130a538ceba287adf4c1cd9ba3af563db070128aee71c8c8","sha512":"c54d252dd862dc7ef087478ab81f10dd292954c1f536c3bc4d999ae461d47227d3bbde9e62c095e468e90fc7e7c18bb2dfa045c954c6a40cf4d7012bbd1d51cc","ssdeep":"192:8C5UbwpiEySFZhrl8IF7lqHEvBQK83/JbWTGeJ:8C5Us0EllLF7EkvB/w/JSF","tlshash":"7ee1af09a98beb26bfad08bfd347e17971387144253a436702678444a3fd64ffda6301","first_seen":"2024-12-16T19:48:51.96325Z","last_seen":"2025-11-27T08:23:02.48552Z","times_seen":15,"resource_available":false,"data":null}},"time_used":1847,"timings":{"blocked":190,"dns":2,"connect":1,"send":0,"wait":7,"receive":0,"ssl":1644},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/tbr9qjhh_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.409Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/tbr9qjhh_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 374782\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 20:55:31 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9hpBHPfaIb6AOdJN5aGG8P5QY0LzGNV0tzIGYGzkUXWez0xmTvxFPL1Gdf77wpbZSEq5XpXbXXTnKK0GCrMJa5NmcgXjDMQy1no%3D\"}]}\r\ncf-ray: 98fd3d99aa0c783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31583,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x300, components 3","md5":"82ed4d20ef29281a2ec4cb6edea5535d","sha1":"f2b9a899b663ef11a8bb8ccbb7ddee0090b59626","sha256":"562764a1db2f2574cb1be5ca7d5aa21c245e9ce39264df9c33a712bb3f8282c5","sha512":"56fce2af61430c3012e716b5f3007e14d31ce48501f9e69a9c92c5611fefc63d6722a9847a29afa01365b03a10441b06f2a80f1e1ec7c2ceb3e80b0bca949d8b","ssdeep":"768:z6M41ted3BVHSVMD0i0TPgCSUrQ/RvxiOPMRz6GiBHvVaF:zb41t4bH3gICa9sIGiBHvV8","tlshash":"7be2e15c3a130ed2fe90748ac6238c0745e9eb1323072c651df9edeea49a159797a1ec","first_seen":"2025-10-17T05:03:06.676338Z","last_seen":"2025-11-10T18:09:19.444803Z","times_seen":2,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":141,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.anh.moe/s9/NGWaYeW.fr.jpeg","fqdn":"cdn.anh.moe","domain":"anh.moe","tld":"moe"},"ip":{"addr":"104.21.43.90","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anh.moe","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 07 Sep 2025 06:21:50 GMT","end":"Sat, 06 Dec 2025 07:20:05 GMT"},"fingerprint":{"sha1":"2F:AB:73:2C:2F:28:1C:7E:B3:57:45:AA:A5:54:67:AE:C9:04:E3:08","sha256":"88:9D:37:00:30:E5:AD:F9:5B:DD:EC:F0:20:90:84:B3:4E:C9:39:71:2F:B9:29:08:3E:DD:12:33:9E:4D:AE:3F"}}},"request":{"raw":"GET /s9/NGWaYeW.fr.jpeg HTTP/1.1\r\nHost: cdn.anh.moe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\nlocation: https://s9.am-videos.click/NGWaYeW.fr.jpeg\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X%2FkTuRxLcn9WdNZxzIIqyzt0%2FQsFv1kfnnj%2F7bo7RLgZj9dlJXKKKZpED3yMzcZf7XAVu39nnyhcSChQhKiRilmQDIDbRxBKTw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 98fd3d9cee0956c6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22857,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":1450,"timings":{"blocked":674,"dns":7,"connect":1,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/391/9.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/391/9.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12797\r\nLast-Modified: Sat, 23 Mar 2024 12:18:53 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ad-31fd\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12797,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"97fe31dcbd96b5bb255127a921d51efa","sha1":"122f687de1407789ce90360102c2e27229705780","sha256":"67cd6b4d48cdbc2d67016b539564b4696c435498256b8169a85ceb6aabc49fcf","sha512":"aa2e086d560687008144bd8448331b7ab7bb3963a7e1e0aa8bb1c9d31b74666f5efc7b701148cc56da941e1524d05294a775f971596f21ae90ed618a9e450cc4","ssdeep":"384:do/YGHQRNBL8L33w2SZOGk+oW+Mp1Rav1jn:d7By338OG4W+yav1jn","tlshash":"0242c0dbb6261ea3f15ec6f9432473c5f234548a17541ee770baa2f96b0b0d84e64ec0","first_seen":"2025-09-19T04:19:40.222069Z","last_seen":"2025-11-12T14:35:23.900113Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2360,"timings":{"blocked":2148,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pics.pabporn.com/photos/538/329_--.jpg","fqdn":"pics.pabporn.com","domain":"pabporn.com","tld":"com"},"ip":{"addr":"104.21.30.242","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pabporn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 10:27:43 GMT","end":"Tue, 30 Dec 2025 11:24:32 GMT"},"fingerprint":{"sha1":"89:A9:5E:10:81:61:5F:12:5C:E9:1B:E0:71:D5:19:B0:3D:30:5B:08","sha256":"A1:DD:DE:4C:17:99:25:7A:D8:49:52:8E:78:AA:C8:09:49:5D:D4:67:28:86:54:5B:75:DD:32:E1:80:43:00:EA"}}},"request":{"raw":"GET /photos/538/329_--.jpg HTTP/1.1\r\nHost: pics.pabporn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 8657\r\nserver: cloudflare\r\nlast-modified: Thu, 30 Jul 2020 09:05:57 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"5f228d75-21d1\"\r\nexpires: Sun, 19 Oct 2025 00:20:52 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nage: 448862\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R2zxjGbL%2FT1lQoeEoO7s%2B4XhPAvXRzeMqsanaEizdmQ4Qt1wWTfH2QWzvIr3MGiupbEjv%2B%2F9O6pqqwjeqnbPr%2Fobz92I5DeKGQ5Obmvk\"}]}\r\ncf-ray: 98fd3da36bbe5691-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8657,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 300x175, components 3","md5":"653854fb4e8a1461d7a183b0d23b6109","sha1":"9a43445630f71ba3d0701aaffbc1bb4c66171c58","sha256":"e1b007e94a0f0c64e4837b4eed34001fbe1e47f7c40f8815fc7bd040dac73f69","sha512":"4c3b11b08db871a67192028f97ba188c08d754200b83b784a62c23e16147ed4357aee4cedea2317e5d8d5355f5a7fc6fe9e18fb6e3be92c681cc0943569a50c2","ssdeep":"192:sfYklfO1gIc5YG7Hwsfol+vPMSoBhEksExy3SNVO76qU:hklfODcyG7fQIPMXDEksVOg6b","tlshash":"6702aff5225b99f19c3fe8725e5963e849cce9140df197ad1d547121b3ebc02b88c4c9","first_seen":"2025-06-18T07:11:21.5638Z","last_seen":"2026-01-20T15:34:37.90387Z","times_seen":62,"resource_available":false,"data":null}},"time_used":3097,"timings":{"blocked":1521,"dns":2,"connect":4,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20240824-1/9a7e28c58cbb115b07819e404bea38d1.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20240824-1/9a7e28c58cbb115b07819e404bea38d1.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 94606\r\nlast-modified: Sat, 24 Aug 2024 04:36:16 GMT\r\nvary: Accept-Encoding\r\netag: \"66c96340-1718e\"\r\nexpires: Wed, 12 Nov 2025 02:42:16 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":94606,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 718 x 404, 8-bit colormap, non-interlaced","md5":"2c5ecc16370032a031c9b7b209bd7027","sha1":"e14df7b520afc86caf7b0918209c047798e558f2","sha256":"258b1a9736620fe090a7645378ed9f493a5714caba3929e9a8f9338db2ade00b","sha512":"44cfea65e1250088e63a39235e3abc190d2c6a99ab1b0f7425767e949e7b4ae90ef34153004cc6de2b32b5fe52e48854c4cc95290a40d0c87d2b31304a613a5e","ssdeep":"1536:O268ljLTEJ51ecBFtZFFMM9SjCRHJwup13kuDj92x5Qjk/W58RW8F:vfEJfecJZFFMhj0pwuH3/j92/SkOcW8F","tlshash":"2f93124e62837012eb67c9defcdae35a836a9e7a17d15cc08094a7464ddc3b4631467c","first_seen":"2024-12-24T23:19:47.353349Z","last_seen":"2026-01-02T09:22:28.316825Z","times_seen":113,"resource_available":false,"data":null}},"time_used":2949,"timings":{"blocked":731,"dns":4,"connect":169,"send":0,"wait":158,"receive":64,"ssl":1805},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"muweimv.com/%E9%9D%92%E6%98%A5%E6%9C%9F%EF%BC%9A%E7%94%B7%E5%AD%A9%E5%92%8C%E5%A5%B3%E5%AD%A9%E7%9A%84%E6%80%A7%E5%81%A5%E5%BA%B7%E6%95%99%E8%82%B2.webp","fqdn":"muweimv.com","domain":"muweimv.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.252Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /%E9%9D%92%E6%98%A5%E6%9C%9F%EF%BC%9A%E7%94%B7%E5%AD%A9%E5%92%8C%E5%A5%B3%E5%AD%A9%E7%9A%84%E6%80%A7%E5%81%A5%E5%BA%B7%E6%95%99%E8%82%B2.webp HTTP/1.1\r\nHost: muweimv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/2gl1doj7_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.370Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/2gl1doj7_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 385996\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 17:48:36 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HU6eSoiuUcPOMZobsEpgG0E1ERwYtUe3W6YxIRd%2FRX2ArmyCib6C5alrgCU9AMlHKTs0QqiZ5%2By5xs6vFYQ81ZfZ%2F88OGJ%2Fl808%3D\"}]}\r\ncf-ray: 98fd3d99ca35783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":150870,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 720x540, components 3","md5":"5c55529789e6f597a8ab134cc520801a","sha1":"68e658e335d5f4e8b5109e1a160591eafea11ac1","sha256":"3ddf16a702242ff534b7c85dc8df2049af7af90031a4c04529217f9af41bcf5d","sha512":"8f2cb329008aeb3c18f5d34af6893aa5de4db696b0507e691e6bfee6db7bd2d9059d540a3b42a22510ecd3cf4c3c35e1c1b3235e61463c448747780fe53c5a24","ssdeep":"3072:SqCzqwZOh/UuaVu4IeVPIBLGQnFH5H5GHTsI64uU/a4:SqCpQh4fIhKen4Ti4uUH","tlshash":"0be31260e492f5e2f05f8b2a7a2eca3e79ce4e5176d110240ec17c659cf48d52c6ba1f","first_seen":"2025-07-19T07:04:39.415031Z","last_seen":"2026-01-20T05:39:08.061963Z","times_seen":31,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":198,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"douga100ka.net/sam/1817.jpg","fqdn":"douga100ka.net","domain":"douga100ka.net","tld":"net"},"ip":{"addr":"133.125.148.22","port":443,"asn":7684,"as":"SAKURA Internet Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.douga100ka.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 20 Aug 2025 11:41:26 GMT","end":"Tue, 18 Nov 2025 11:41:25 GMT"},"fingerprint":{"sha1":"0D:F4:85:6C:0F:D3:8F:70:4E:27:0F:D3:06:2F:AF:8A:EA:C3:E8:FB","sha256":"25:95:7D:37:01:C4:A2:AD:95:1A:1D:86:4D:D9:07:E9:BB:CD:4F:46:FC:D1:67:1C:99:AC:91:CF:B3:F6:BB:50"}}},"request":{"raw":"GET /sam/1817.jpg HTTP/1.1\r\nHost: douga100ka.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 24 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 24 Apr 2017 15:00:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 19241\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\nserver: LiteSpeed\r\nx-frame-options: SAMEORIGIN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":19241,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.00, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3","md5":"4bcb0bcdced889cb28ba6782bde0d13b","sha1":"e569ac46239a2963685909bb244d92192761e50d","sha256":"801172762775726b81b6a001554353b6f6491c7605f568307253eec259c0c475","sha512":"9be5bd9462d3494fef29c93ac15d404489d295dc72bb00b3b76d4c91e3219029e589c380d062d10d828d815c5e7699d77e5b82c9a33e5d30084d987b4f7d0df3","ssdeep":"384:VKIqMFovf/2mVazauC5uPFBmasLvaq+if2tA2LZl:V/qEovX2ib5usaq+if2u0l","tlshash":"cd82cf6215c557f47fb222794d78c8442ec94b148aadcadd3de57e2aa02a2712e0bc25","first_seen":"2025-06-07T22:50:30.140002Z","last_seen":"2025-10-17T05:03:06.702958Z","times_seen":2,"resource_available":false,"data":null}},"time_used":3591,"timings":{"blocked":765,"dns":6,"connect":288,"send":0,"wait":517,"receive":1,"ssl":1989},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"content.jwplatform.com/favicon.ico","fqdn":"content.jwplatform.com","domain":"jwplatform.com","tld":"com"},"ip":{"addr":"3.164.240.118","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jwplayer.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Mon, 25 Aug 2025 00:00:00 GMT","end":"Mon, 21 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"09:07:C2:01:A5:60:34:94:DE:6A:EB:3B:97:CF:FD:01:36:13:81:D7","sha256":"1D:20:19:08:4E:20:3E:95:A5:35:7B:10:BF:2B:39:A0:C7:FB:BF:4D:E7:F7:DE:51:59:72:68:2C:8F:BB:B3:D7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: content.jwplatform.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html\r\ncontent-length: 150\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\nserver: openresty\r\nx-cache: Error from cloudfront\r\nvia: 1.1 39e03a84352b80cf7e2b59c41f27a026.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P2\r\nx-amz-cf-id: V_RRANNtKTVE6pmQuO53RQBAMTApFeSaN_Hglk_zSVPQ0239bqz_oQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":464,"timings":{"blocked":21,"dns":12,"connect":15,"send":0,"wait":341,"receive":0,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiam.jp/favicon.ico","fqdn":"tiam.jp","domain":"tiam.jp","tld":"jp"},"ip":{"addr":"23.27.160.201","port":443,"asn":23338,"as":"ASN-DCS-01","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.807Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"tiam.jp","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 21:59:29 GMT","end":"Tue, 23 Dec 2025 21:59:28 GMT"},"fingerprint":{"sha1":"36:0A:3F:7A:BA:A5:2D:11:C2:CD:5F:4C:E2:0C:E4:A6:BE:32:37:50","sha256":"B4:E9:49:86:EF:14:30:B8:99:9D:C3:E7:64:28:55:7A:58:0F:58:74:92:E4:4E:28:3B:26:0A:28:5A:5A:84:96"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tiam.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:02:00 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Frame-Options: SAMEORIGIN\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":392,"timings":{"blocked":216,"dns":0,"connect":0,"send":0,"wait":176,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pics.dmm.co.jp/digital/amateur/shinki010/shinki010jp.jpg","fqdn":"pics.dmm.co.jp","domain":"dmm.co.jp","tld":"co.jp"},"ip":{"addr":"54.230.80.79","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"p.dmm.com","organization":"DMM.com LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 19 May 2025 07:11:06 GMT","end":"Sat, 20 Jun 2026 07:11:05 GMT"},"fingerprint":{"sha1":"40:F2:9C:EF:05:B5:FA:93:84:2A:AF:B3:BC:09:BD:07:8A:E4:00:C7","sha256":"E9:AE:DF:FC:EA:84:38:F8:94:56:74:E4:71:77:A5:75:A7:BC:12:28:97:39:9A:9A:84:57:C5:6C:EA:99:84:8B"}}},"request":{"raw":"GET /digital/amateur/shinki010/shinki010jp.jpg HTTP/1.1\r\nHost: pics.dmm.co.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\ncontent-length: 30827\r\nserver: openresty\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\nx-pics-origin: imgsrc\r\nlast-modified: Wed, 30 Sep 2020 10:00:29 GMT\r\nx-cache-status: HIT\r\netag: \"5f74573d-786b\"\r\naccept-ranges: bytes\r\nvia: 1.1 b6cc1cc8645aaa4308b4d326578e9170.cloudfront.net (CloudFront), 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: NRT57-P5, OSL50-P1\r\nx-amz-cf-id: rYsqcHr-6aZRtwcXExE6LRD36yfTirX6pYGhU2MDUj-myA4mZkswwQ==\r\nage: 579109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30827,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x300, components 3","md5":"4c799723fe140115d6f59a6f35a3f100","sha1":"749b1a9ce991130ac52d6ca480f1babe7a99c140","sha256":"a2ba218f2f7d70439e3f4faedda277f7ed7fb67d1d883e7312e880deed75df17","sha512":"b4f1b621e5d43c4d1419fe9d74242e03b9719508b73b5ae77fa41aa612cab663d5a7c48778365696268b98b7152402ff8e4f9978946f65a85ad72cb953bf4f74","ssdeep":"768:5zt6RAwFG2WdqxVDqABz3xm+WcVCLyKPj+7MjwvEJoizu5AGu+4FG:VtuG2pxBqOz8aVdKigjFJo3P2o","tlshash":"84d2f17aa103a18564f6c1b09ce93d338dfc82e19487142a29fc9020b6c536cecf98b7","first_seen":"2025-06-23T16:04:28.60637Z","last_seen":"2026-04-03T22:52:06.938463Z","times_seen":29,"resource_available":false,"data":null}},"time_used":1770,"timings":{"blocked":251,"dns":48,"connect":1,"send":0,"wait":1166,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"8zoonet.z00.monster/scj/thumbs/0/280_chinos.jpg","fqdn":"8zoonet.z00.monster","domain":"z00.monster","tld":"monster"},"ip":{"addr":"148.113.152.129","port":443,"asn":16276,"as":"OVH SAS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.595Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"8zoonet.z00.monster","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Oct 2025 04:16:18 GMT","end":"Tue, 30 Dec 2025 04:16:17 GMT"},"fingerprint":{"sha1":"98:B8:49:67:94:B2:4F:42:C7:71:71:AB:36:81:F2:94:F1:B1:A0:58","sha256":"E6:80:9F:9D:A8:1F:60:77:8E:9D:9D:25:8F:4B:1C:76:89:46:17:56:2C:2B:C4:04:D5:FE:57:9C:FF:13:81:1C"}}},"request":{"raw":"GET /scj/thumbs/0/280_chinos.jpg HTTP/1.1\r\nHost: 8zoonet.z00.monster\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15042\r\nlast-modified: Thu, 02 Jul 2020 18:01:27 GMT\r\netag: \"5efe20f7-3ac2\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15042,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x240, components 3","md5":"2767f6073ec5f718d15f6bdd61b4d34a","sha1":"a230e90c138c9ccf9c24f87b5b09090b6e8431ae","sha256":"0b5ff0e11eb2f7882690a1746ffa62c2c2a8f8b4a560325dd4bfd01aa7d9318c","sha512":"68196f8202dbe3ab84a56d70f80c7b280a6ab9ce252118641b7303cc25d8c28ba9b1f2f2f1a1f6ff35a5b1b0fa55a5ebc6c511d23d162a16ce7155bd4978d290","ssdeep":"384:2TifnEVVxZgIoFGoKELcWWAzcBQw/1/cru2N2MyQ8i7CHXuM:2Tifn8Zvo/x40zqp/cn2/Q8SS","tlshash":"6262d06c09c9c0b2cb8d8a2059399f929cad07fec24f4fa35e1df5597b182ed5484192","first_seen":"2024-08-19T19:45:08.579633Z","last_seen":"2026-03-03T08:08:10.362194Z","times_seen":55,"resource_available":false,"data":null}},"time_used":2256,"timings":{"blocked":400,"dns":3,"connect":104,"send":0,"wait":104,"receive":96,"ssl":1546},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"affsample.duga.jp/unsecure/hiroinet-0016/noauth/flvcap.jpg","fqdn":"affsample.duga.jp","domain":"duga.jp","tld":"jp"},"ip":{"addr":"58.156.255.108","port":443,"asn":17506,"as":"ARTERIA Networks Corporation","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.duga.jp","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 DV TLS CA 2020","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 05 Dec 2024 06:29:27 GMT","end":"Tue, 06 Jan 2026 06:29:26 GMT"},"fingerprint":{"sha1":"0C:84:EB:45:29:A6:F2:F3:27:78:C1:B0:45:28:2D:19:98:94:47:FF","sha256":"8F:C6:47:8D:65:BF:8C:B9:8A:5C:D4:39:3E:E9:57:41:46:FA:F6:FD:95:7F:01:EE:7A:02:66:D7:19:C5:59:72"}}},"request":{"raw":"GET /unsecure/hiroinet-0016/noauth/flvcap.jpg HTTP/1.1\r\nHost: affsample.duga.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 28494\r\nlast-modified: Wed, 04 Dec 2024 09:01:42 GMT\r\netag: \"67501a76-6f4e\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28494,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 864x480, components 3","md5":"b971e6bcc01b432e1d211568978c339b","sha1":"6d28b87f5de9faf9265b8f309c74a9f563968ff5","sha256":"1274e60c18b50148b16dc6e94c6c6e1fcc3d327202da6054b5712fbbd013e096","sha512":"af6b2c470b34a10bbda96cd26ba58a29b294d3aa2800f6bd9b0349bd413e50da9ed70c3a6bef01d1caf32c246808e3e181761a26f5c6d5ee1537c864f98e23ab","ssdeep":"768:b+PwyDJorJ1+HtLLbFz6oYhsfwjuYABsqxEnD:b+PTMgnU+fCulqnD","tlshash":"7ed2f13e0e980a514b71611668760f24ffb787e32f988b7b57110478a419bbe51cef18","first_seen":"2024-08-19T22:34:37.065642Z","last_seen":"2026-01-12T08:39:58.412057Z","times_seen":23,"resource_available":false,"data":null}},"time_used":3759,"timings":{"blocked":1001,"dns":14,"connect":251,"send":0,"wait":501,"receive":1,"ssl":1985},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/e/7/4/e74159708278a6cc60b19811da76648b1597366683-640-480-840-h264.mp4-9.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.335Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /e/7/4/e74159708278a6cc60b19811da76648b1597366683-640-480-840-h264.mp4-9.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15320\r\nlast-modified: Thu, 20 Aug 2020 18:12:57 GMT\r\netag: \"3bd8-5ad5311e2606b\"\r\nexpires: Fri, 09 Jan 2026 01:20:40 GMT\r\ncache-control: max-age=10497077\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-7619-3-3029549-h-0-0---;8658-20-3715953----0-0-1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15320,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"Lavc58.54.100\", baseline, precision 8, 308x232, components 3","md5":"f192662ee53713db7607779ec7ec3834","sha1":"52cc2d5c98ec11ce1f4ff730cd100eb717c43102","sha256":"d36c519da2b37fd7c71a4531439dc4ea8d19c7ecdd85c1b84fdc803bbce9794c","sha512":"910a89d659168bc4b73a4fe5055da795e77954c4ab190b531a651d9409df24bbef343157f13e12278f344ce0404ec67973bf01890c81b356c5a7febcf0b43d27","ssdeep":"384:7pvMzQ0l7eNzSv3gTRRXUGacID2k81F8AcUkCNcfX7T7BT9kk:79MzQ0lgayRxPbIyGUkC+37H","tlshash":"8362bf54190eec55d40a487302a18dad553cee7e36384f9188b732c17eeaf73169968b","first_seen":"2025-06-07T22:50:30.197684Z","last_seen":"2026-03-03T09:47:10.834436Z","times_seen":11,"resource_available":false,"data":null}},"time_used":3288,"timings":{"blocked":1600,"dns":3,"connect":19,"send":0,"wait":17,"receive":7,"ssl":1639},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/0/9/a/b/1/09ab1c517451362875061cc8eaf699cf1605051484-86.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /0/9/a/b/1/09ab1c517451362875061cc8eaf699cf1605051484-86.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 14385\r\nlast-modified: Mon, 20 Jan 2025 09:10:04 GMT\r\netag: \"3831-62c1fa03d3568\"\r\nexpires: Wed, 19 Nov 2025 10:42:47 GMT\r\ncache-control: max-age=10376850\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-8657-2-2649306-h-0-0---;8658-18-3715953----0-0-1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14385,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 692x693, segment length 16, comment: \"Lavc57.89.100\", baseline, precision 8, 308x232, components 3","md5":"fa1b23e9f2d35a8881e0c397bda4306a","sha1":"f89f174c1b55d2e156dd3840652eb67e73f78c84","sha256":"f2adef205cac8a43e5a42dd7313fb91b3c4a7a8c9ecdcbbab766474906fa5c6e","sha512":"af034b54523528bb2052f1aba3866f6695f97975d99393274927a5a49b447000ea49deeb86bf9a7856caedd48c1da2f7d6c0c1a4a6b10f5865b9e02c0dcf868e","ssdeep":"384:tRHFHQFlIX2I2MA6y6artNcJjk8f0q8/4FRerXjTQT2Tlg0GFF8:pHscLOl6WcJjk8ff5FRePTS2hvGU","tlshash":"1c52cfa30d68a3c0db7e83798ed74f540d9f856841e20bcd838626d92967d42750f6bb","first_seen":"2025-07-22T04:45:31.698165Z","last_seen":"2025-10-23T17:25:33.104686Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2660,"timings":{"blocked":977,"dns":1,"connect":17,"send":0,"wait":19,"receive":1,"ssl":1637},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ds.obmenvsemfiles.com/fo/files_attachments/8bb/a09/8bba09788061de8faa4a1772513c32a9.jpg","fqdn":"ds.obmenvsemfiles.com","domain":"obmenvsemfiles.com","tld":"com"},"ip":{"addr":"85.17.28.58","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ds.obmenvsemfiles.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Sep 2025 08:48:39 GMT","end":"Mon, 01 Dec 2025 08:48:38 GMT"},"fingerprint":{"sha1":"8F:47:89:B0:B5:30:95:87:E8:9E:F4:DD:BD:AB:B7:B6:89:6D:64:F0","sha256":"18:F3:D3:77:B9:91:85:4A:7F:AD:DE:8A:30:BF:9F:2B:C5:C4:87:C3:13:A4:36:E0:67:57:1E:F1:C6:32:6E:B8"}}},"request":{"raw":"GET /fo/files_attachments/8bb/a09/8bba09788061de8faa4a1772513c32a9.jpg HTTP/1.1\r\nHost: ds.obmenvsemfiles.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 35555\r\nlast-modified: Tue, 18 Jun 2024 19:12:43 GMT\r\netag: \"6671dc2b-8ae3\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35555,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x270, components 3","md5":"8bba09788061de8faa4a1772513c32a9","sha1":"c78f68fb9992c32ba0b576b24226b72b464b7254","sha256":"c82e9ce0b4c23b544c68c70ad01ff67b8e18f559d3da72c0d77d3999cb39a85d","sha512":"81f9699aa0147b178755439f8c59a008314dff97cac28b416134a7cbf1be90b618b3848bf92b640f0d256ca87fc4d5b53ea745b09d6fecffdd1472cef34dac53","ssdeep":"768:bdYGX2gBI9CGcDbDG8XUl9rTUzSbsAslou55ulzyMDNnqIe3:b9X2HRVHXrTNcRvugIq1","tlshash":"5ff2f196426ac0c8b1f57322abc65ff635abe7118f962fad55c50cf904fc99b0e001b5","first_seen":"2025-07-03T07:40:03.65979Z","last_seen":"2026-01-21T02:46:11.913581Z","times_seen":17,"resource_available":false,"data":null}},"time_used":3224,"timings":{"blocked":1238,"dns":2,"connect":27,"send":0,"wait":259,"receive":38,"ssl":1649},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds.obmenvsemfiles.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"filtradas.com/uploads/default/optimized/2X/c/c3ab6915ecaa2efc1da53288a86dabeffd94830a_2_581x1024.jpeg","fqdn":"filtradas.com","domain":"filtradas.com","tld":"com"},"ip":{"addr":"91.234.199.87","port":443,"asn":43641,"as":"SOLLUTIUM EU Sp z.o.o.","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"filtradas.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Aug 2025 16:04:05 GMT","end":"Sun, 09 Nov 2025 16:04:04 GMT"},"fingerprint":{"sha1":"DF:EC:86:BA:09:B3:17:C2:2B:66:0A:BF:62:3E:3C:4D:90:D2:A4:33","sha256":"EF:3A:5A:BF:D7:FE:5F:99:1A:3F:CD:49:ED:AF:84:68:4F:09:27:DC:47:7B:D5:51:4C:E2:DB:A2:A1:6A:3C:FF"}}},"request":{"raw":"GET /uploads/default/optimized/2X/c/c3ab6915ecaa2efc1da53288a86dabeffd94830a_2_581x1024.jpeg HTTP/1.1\r\nHost: filtradas.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 62418\r\nlast-modified: Tue, 12 Aug 2025 05:12:58 GMT\r\nexpires: Sat, 17 Oct 2026 05:01:56 GMT\r\ncache-control: max-age=31536000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62418,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 581x1024, components 3","md5":"12ea8ed756745d7f5a378758df90f6e4","sha1":"4fedca0328056bee71e4ce81626d7bbb0df04546","sha256":"9874cf0d92db7bcae6e786de0af1575c1c94c2f02a3b15f878bf566bac3412b4","sha512":"2e68fe4f5a083acf14c56a4ff83de27b25ed7b04bf2b7b776ab87c0455080c40eb7db2376050c1252313c76b98100ea0a62da920429d991a27c5b152cf5f90e4","ssdeep":"768:LincIkWUMtdRb6FKUKBdJ6fm1RnvpFlb8ijHLmjli+pu+8rnaShUI+eYE2cH5iwM:f1x8BKfmnD+7YnU0X2m/CnJoqzScFzZ","tlshash":"86530265956fbafbb174963c18e55c0f3b8a90416abe4d0bb055802d232dae097f30fc","first_seen":"2025-08-24T18:54:16.043588Z","last_seen":"2026-01-03T14:25:46.754742Z","times_seen":5,"resource_available":false,"data":null}},"time_used":3063,"timings":{"blocked":1252,"dns":9,"connect":24,"send":0,"wait":21,"receive":43,"ssl":1713},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"weav.xyz/favicon.ico","fqdn":"weav.xyz","domain":"weav.xyz","tld":"xyz"},"ip":{"addr":"172.67.219.98","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"weav.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 23 Sep 2025 12:39:11 GMT","end":"Mon, 22 Dec 2025 13:37:20 GMT"},"fingerprint":{"sha1":"DE:52:09:0E:04:F8:1C:31:F0:33:2E:13:FA:FB:FD:1B:7A:60:6E:06","sha256":"E7:E4:83:9A:96:A1:11:BB:CE:36:ED:CF:F9:F5:8D:A4:CB:AD:0F:E6:EE:89:4A:97:F5:17:3F:1C:D4:7A:2C:39"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: weav.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 2357\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aZvgcpb4QuMbjlyuDwLVFH4RocWTg84oH6510D2YAX5nOwLqlK3DQ1O6dkHa0wJNj6A7e%2Bci77ca8oHXn%2BzL%2BsCgMUVa5w%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 98fd3dc5399c7131-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":751,"timings":{"blocked":73,"dns":1,"connect":1,"send":0,"wait":12,"receive":0,"ssl":663},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/339/4.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/339/4.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:56 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12357\r\nLast-Modified: Sat, 23 Mar 2024 12:18:51 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ab-3045\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12357,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"8a80f883daf75b1a19750bbf971c7465","sha1":"168b4b491d56d55ae748c2af036f5619e44dee69","sha256":"5b7bd38c6469f80bce9635b15a55d37c66e2c9e29250cb9e0e0aec3fa42919cb","sha512":"4b97c1ec3cf0b9dac8b0cac195bfb5ede62ae024cd36da2015eefbb07bdbac7d01b0447625dbe777dab2169693620bfdabf09840dfa0bd5c2299ee2ddcdcf93f","ssdeep":"384:+xih2C+NcDwnVxEZbr/0vkR9ytx3PwJN/4:YihF++D2xYrcMmRK/4","tlshash":"4f42af163373c418c93d1fb107b6cd42e4847964127d0d7a9398e2efbb298990ae29e6","first_seen":"2025-09-03T10:31:35.595841Z","last_seen":"2026-01-11T16:31:17.659523Z","times_seen":6,"resource_available":false,"data":null}},"time_used":2748,"timings":{"blocked":2538,"dns":0,"connect":0,"send":0,"wait":209,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/89d02af754f899d39bd1857913f49d05.jpg?secure=uJT5uY8BjUkMG47s4bjOPA==,1740702489","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/89d02af754f899d39bd1857913f49d05.jpg?secure=uJT5uY8BjUkMG47s4bjOPA==,1740702489 HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 39862\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\ncache-control: max-age=31536000\r\nage: 6299\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=41567\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JFHkPL9LRx6fB9mJcNTIcyxWPx0jIF3Oy3wLyRGhNw2nILljnty0PCr4XtUJyOB2lRvV2jnqwEPTDDgopGWRCazAm%2Fp5gOx%2BaaUKEy90\"}]}\r\netag: \"ca9c8304ea6e8717d1f3bf4e1b154c2a\"\r\nlast-modified: Tue, 28 Jan 2025 18:15:14 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 98fd3d9d9c93b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":39862,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x360, components 3","md5":"f47b7b37d2a8c2a5fe1de04ddc64a49f","sha1":"65a210f440811c818f8c918ea6d4c3f9e6c5791a","sha256":"f772d5cd87598a3a9e178f343426007592e59592487d0c5d08454907ad18a8ba","sha512":"3db1bf89b9c3b0079dd184e374ed8c99fbbc3095b41a88e6a8d3fe9758eba29ac24cd26484c7661403f9d1d208fe0dad0b0e0365634e07c1e4704fb80c4af33d","ssdeep":"768:A8+59bKSnpchwz6ZQ929l4gdFZkPjcIzofISptd+CsRszPsVUI56tMEC5xaG:7+Xn6hwz6ZG2fdwcIODLcCmszPsVUtMJ","tlshash":"fc03f157bfc5d30aaea3a5313e02d49fb8f5dd3a806b4a1e7086dad2cdb448854d0e74","first_seen":"2025-07-09T09:54:35.569394Z","last_seen":"2026-01-11T15:11:42.583157Z","times_seen":5,"resource_available":false,"data":null}},"time_used":593,"timings":{"blocked":581,"dns":0,"connect":0,"send":0,"wait":10,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i1.wp.com/666557.xyz/images/2025/03/10/9a3680eea0f0d421455949c459583732.jpg","fqdn":"i1.wp.com","domain":"wp.com","tld":"com"},"ip":{"addr":"192.0.77.2","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wp.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Oct 2025 19:44:58 GMT","end":"Sat, 03 Jan 2026 19:44:57 GMT"},"fingerprint":{"sha1":"E9:63:7F:0C:6E:C3:A6:C6:27:94:43:17:2D:51:5E:E2:3E:DA:FB:16","sha256":"7A:94:BE:74:03:C4:90:D6:E8:ED:98:EB:0F:DC:60:BE:D8:2A:DF:82:3F:DC:85:70:4F:C1:10:52:E4:F5:75:81"}}},"request":{"raw":"GET /666557.xyz/images/2025/03/10/9a3680eea0f0d421455949c459583732.jpg HTTP/1.1\r\nHost: i1.wp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 Bad Request\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: text/html; charset=utf-8\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 23\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"e1nn.com/vs/35475899.jpg","fqdn":"e1nn.com","domain":"e1nn.com","tld":"com"},"ip":{"addr":"104.21.6.191","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"e1nn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 14:56:32 GMT","end":"Fri, 12 Dec 2025 07:26:50 GMT"},"fingerprint":{"sha1":"E8:12:0A:C4:42:0F:49:14:F3:22:A2:7E:77:DF:01:F9:C3:D6:C5:C0","sha256":"56:EA:0B:B5:62:28:3A:46:B3:36:AB:C5:C7:3E:5A:EB:05:0C:70:6B:96:C0:8C:B5:F2:BA:97:E0:9A:F1:55:32"}}},"request":{"raw":"GET /vs/35475899.jpg HTTP/1.1\r\nHost: e1nn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 27860\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 03 Sep 2020 07:32:57 GMT\r\netag: \"5f509c29-6cd4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-cache-status: HIT, HIT\r\naccept-ranges: bytes\r\nage: 6734514\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EYcn1THhu6yF6TP47W%2BhLPDMKnGnyntLVasZt4QQmFxXiRRfcx44TZBNDYPxWdXPPwTVf%2ByhAJ7A6dk2TS3eBO23JWelp%2Bt1\"}]}\r\ncf-ray: 98fd3daa0d3f120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27860,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 556x416, components 3","md5":"3f01c6edea88e5156d5b253fff3e4209","sha1":"d618c3fd681b2caa852a9ee565439cbc5691221f","sha256":"db802d15aa2b2472a90d179725f82ea57eb959b447de3332848023b3bedab6bc","sha512":"ffb1bc9d8946f20951159a1244445aefa56a94d6c3c9f7ed3e3af92ab3781d53b64ce932a66765a09e906451b6b57fdc0c8230bef2dff9f2c59a0d7106848df8","ssdeep":"768:69zeFfxVPGnQcvs7PZel01qDMSi/YsVpwlL06:6klxlGnLs7Rel2BSOY4pwlA6","tlshash":"27c2e1315a27bcefae56a06da4fb681a55ff3c430860c98d84b59f59e4914f84281b3c","first_seen":"2025-07-19T18:39:22.42443Z","last_seen":"2026-04-03T21:47:16.630137Z","times_seen":10,"resource_available":false,"data":null}},"time_used":2708,"timings":{"blocked":977,"dns":2,"connect":1,"send":0,"wait":9,"receive":1,"ssl":1716},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"affsample.duga.jp/unsecure/hiroinet-0013/noauth/flvcap.jpg","fqdn":"affsample.duga.jp","domain":"duga.jp","tld":"jp"},"ip":{"addr":"58.156.255.108","port":443,"asn":17506,"as":"ARTERIA Networks Corporation","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.438Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.duga.jp","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 DV TLS CA 2020","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 05 Dec 2024 06:29:27 GMT","end":"Tue, 06 Jan 2026 06:29:26 GMT"},"fingerprint":{"sha1":"0C:84:EB:45:29:A6:F2:F3:27:78:C1:B0:45:28:2D:19:98:94:47:FF","sha256":"8F:C6:47:8D:65:BF:8C:B9:8A:5C:D4:39:3E:E9:57:41:46:FA:F6:FD:95:7F:01:EE:7A:02:66:D7:19:C5:59:72"}}},"request":{"raw":"GET /unsecure/hiroinet-0013/noauth/flvcap.jpg HTTP/1.1\r\nHost: affsample.duga.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 39574\r\nlast-modified: Wed, 04 Dec 2024 09:01:36 GMT\r\netag: \"67501a70-9a96\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":39574,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 864x480, components 3","md5":"d0b26de761e451f95882720031a2248a","sha1":"b9977fcfb7532d47eb386f47f5dad5e299f146dd","sha256":"700fed3ddffead6ce7c477c4f2449500d59c4af6cde40e8c4f4990bf9e8aab71","sha512":"b88208a93e54c795e9b105176a461dd9fe4fa1f9e6a5774c472595bf4a3767fb4745dfe9a874739749fc275b1946fb60b0bc4643ef9168ef355ad3ccafaa9460","ssdeep":"768:heUfDoUm6q0ZGkZwwPiniLLsOda9w9v1mAHxYX9jMHbbzk:hVfG6BZGYwwPinikOduemAo2bbzk","tlshash":"9403010fca65182fe403b8230e94e0a0305db5c025a9fe5b16a2df19c5e5b5bfc3dc8a","first_seen":"2025-08-11T22:27:38.626257Z","last_seen":"2026-01-13T15:17:47.191714Z","times_seen":6,"resource_available":false,"data":null}},"time_used":4182,"timings":{"blocked":1202,"dns":14,"connect":250,"send":0,"wait":726,"receive":1,"ssl":1985},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"blumpkintube.com/thumbs/241/916_a.jpg","fqdn":"blumpkintube.com","domain":"blumpkintube.com","tld":"com"},"ip":{"addr":"172.67.148.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"blumpkintube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 16:43:09 GMT","end":"Tue, 06 Jan 2026 17:40:50 GMT"},"fingerprint":{"sha1":"1E:5F:43:D1:62:A9:3B:35:04:2F:A8:7F:C8:C0:55:4E:7C:DE:80:C4","sha256":"DF:89:D0:CE:A3:31:22:68:E9:31:A0:B5:F9:14:C0:4A:DF:2E:12:2E:C1:09:E3:FA:92:B8:02:32:4B:DA:36:A5"}}},"request":{"raw":"GET /thumbs/241/916_a.jpg HTTP/1.1\r\nHost: blumpkintube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11106\r\nserver: cloudflare\r\nlast-modified: Sat, 05 Sep 2020 23:56:53 GMT\r\netag: \"5f5425c5-2b62\"\r\nexpires: Thu, 27 Aug 2026 20:21:58 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 4351196\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fiIECLWu%2BFYdHESffKWyQlO65miq9i9oJOxDPTr2FmVD14gpCzZtJV88OO78ZaQ4t5XnvrOfHHNRIMxQRc71MmaD8OSeMnL8rpUVlfJ5\"}]}\r\ncf-ray: 98fd3da5eb9a7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11106,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3","md5":"8f7398334486af0aaad3fdf1f1362767","sha1":"b985c860c218365bf9eecd6e2285925e10193b18","sha256":"c457c49465bd22bd7f67a115d8ab465d1d384a5ca2022dab42bce8c61850d77b","sha512":"6169acce817b6e87a7fe8216ae6c226b5a9f9c8768f8b2528f14faf534c12a266ec83393c278ba7cb712b3807cd101a8e68f74c5033f35a88a6b3dd5a52b5b76","ssdeep":"192:s29mE6g7OqNhrVKYZ3znOJtkh25dThi2CoCJgDZJ6hVHeq1bIqkzj:v9oIHhpKW3znWQ2YkUgFJ6Dvizj","tlshash":"2032c0b7dac255fab83698f4262f3c11c6d194443993e41143ca0f5fcaa3af658b39a0","first_seen":"2024-05-13T04:18:38Z","last_seen":"2026-01-12T02:36:25.940486Z","times_seen":43,"resource_available":false,"data":null}},"time_used":2015,"timings":{"blocked":442,"dns":2,"connect":1,"send":0,"wait":6,"receive":1,"ssl":1551},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"multicst.com/vs/54769329.jpg","fqdn":"multicst.com","domain":"multicst.com","tld":"com"},"ip":{"addr":"104.21.94.59","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"multicst.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Sep 2025 21:42:46 GMT","end":"Mon, 01 Dec 2025 22:41:13 GMT"},"fingerprint":{"sha1":"35:6E:28:27:2E:29:B9:A1:88:BC:90:29:28:D8:2F:BC:1B:23:EA:67","sha256":"E6:DB:A7:8C:DB:C6:2C:70:B5:ED:4F:6E:97:F6:BE:29:C7:0B:9B:1F:18:C2:07:B2:BB:31:D4:F3:97:6D:BD:D3"}}},"request":{"raw":"GET /vs/54769329.jpg HTTP/1.1\r\nHost: multicst.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 84019\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Mon, 21 Oct 2019 15:00:16 GMT\r\netag: \"5dadc800-14833\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-cache-status: HIT, HIT\r\naccept-ranges: bytes\r\nage: 4234280\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fqAx4M%2BB6RLMfDYcY8%2B9T%2FkAivs8HS3xq%2FT2z94ynEXCewOmc%2B1giEPMSEDbga03XgoPOpCAbqRgqFw4AgdWlyzYRO9l8QqtoGwJPA%3D%3D\"}]}\r\ncf-ray: 98fd3dac1d7ddfec-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84019,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: \"Lavc57.64.101\", baseline, precision 8, 1280x720, components 3","md5":"c831fecfe2068ccf944f6cc5112c0829","sha1":"4b033b9539fbe7ada5b9af8afed7a53c5c02caf8","sha256":"3f9aee96f6556e2a17493a8111b6db0f7d258e18613a67fe22a8e21fee9279e5","sha512":"b5a8cc6d763f3449443e5f0277b6c20a55f5d4376b462c727c4b82ecd81c721da83c732f86510037e7bf0b42792028307b490ee3a67c9034387a9a6a67addd7b","ssdeep":"1536:ZADwG8l8p9q0zN7j0hVbC8fW8+Ot4I/9IwjI0wQmZ8xbQaL6SHZnzD:up9ZzR2lZFIj0wQmZGcIJ5","tlshash":"9c83028676d9c7853de767c20961464360e0bf20192e6b913410ae65eedce7fc4dd81f","first_seen":"2025-05-27T17:53:32.06782Z","last_seen":"2026-02-25T10:38:26.932874Z","times_seen":19,"resource_available":false,"data":null}},"time_used":2996,"timings":{"blocked":1119,"dns":14,"connect":11,"send":0,"wait":18,"receive":4,"ssl":1800},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"blumpkintube.com/thumbs/55/634_Japanese.jpg","fqdn":"blumpkintube.com","domain":"blumpkintube.com","tld":"com"},"ip":{"addr":"172.67.148.206","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.586Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"blumpkintube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 16:43:09 GMT","end":"Tue, 06 Jan 2026 17:40:50 GMT"},"fingerprint":{"sha1":"1E:5F:43:D1:62:A9:3B:35:04:2F:A8:7F:C8:C0:55:4E:7C:DE:80:C4","sha256":"DF:89:D0:CE:A3:31:22:68:E9:31:A0:B5:F9:14:C0:4A:DF:2E:12:2E:C1:09:E3:FA:92:B8:02:32:4B:DA:36:A5"}}},"request":{"raw":"GET /thumbs/55/634_Japanese.jpg HTTP/1.1\r\nHost: blumpkintube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15461\r\nserver: cloudflare\r\nlast-modified: Wed, 24 Jun 2020 12:32:29 GMT\r\netag: \"5ef347dd-3c65\"\r\nexpires: Fri, 03 Jul 2026 05:35:08 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 9156406\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EwZz3sfwn4lFlKP401QNPdrCeZO4INSCtEhvpz9BZg85t65H9JEVAHLrPKq9W0qd8SEpJBtePAtXq%2BlxV4As9hJ9g%2FE%2FiehFsX6JxHzn\"}]}\r\ncf-ray: 98fd3da5bb7f7130-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15461,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3","md5":"66dd5eb56a9c3f22825997aea08b0f3b","sha1":"c01fded198bfaa5e8568fac59e22ba8c6ffa2f25","sha256":"1488ae41cf5e9054325b5119f4af3cb7cc7efad6c48e0d82d8c136c172d3f72d","sha512":"a62094d8d28c19c92c07f697468f27760484c9a437e249244b293244421f1a8ebdc26d8e7b5d1588f834d1d5d2c684f780cab4de010727f89d10e68591748abb","ssdeep":"384:0ippITz6OgP0zboj0FBsq4L7qmCGlfrYtw+FoDnzWhAxDd:Ds6OUScjUsq0brlMtw+xy","tlshash":"0262c087042e68c6bf62967d8773de7436e8042b5d048683eaf68537d4857c9862f207","first_seen":"2025-06-07T22:50:30.183994Z","last_seen":"2026-01-13T15:17:47.306476Z","times_seen":13,"resource_available":false,"data":null}},"time_used":1898,"timings":{"blocked":354,"dns":2,"connect":1,"send":0,"wait":11,"receive":1,"ssl":1524},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/sp/media/videos/tmb/2198/2.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /sp/media/videos/tmb/2198/2.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 15155\r\nLast-Modified: Sat, 23 Mar 2024 12:20:42 GMT\r\nConnection: keep-alive\r\nETag: \"65fec91a-3b33\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15155,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 384x214, components 3","md5":"42ada6a4370314a3dabc3e4cd3cca692","sha1":"bbfe9e8ad2f3781950153402156ed9faeacbb438","sha256":"f65e3c205f37580db8c6f03d510c0bbcb7f97ed7c0df46e0213f18ad73759907","sha512":"24058acbf8710513f6dd3bbc67ece754bfc720975ed939b050576caf0919f558c68037b73a71a5f2eb50177c26b9b83b415367b0fbe8684439e4321f4ded7052","ssdeep":"384:TfwdxzZ7qivAz32HNKuoWYzo6H00+a2p6DO:T4Pz1vAz2t9oWYz9HMGO","tlshash":"6e62d0b3846042c93aaf1feb54878e3b81db6b7090c6010b76e689b7201dec937c2657","first_seen":"2024-08-20T02:02:01.023796Z","last_seen":"2026-03-02T16:55:39.838499Z","times_seen":54,"resource_available":false,"data":null}},"time_used":2249,"timings":{"blocked":2028,"dns":0,"connect":0,"send":0,"wait":220,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i1.wp.com/666557.xyz/images/2025/03/10/9a3680eea0f0d421455949c459583732.jpg","fqdn":"i1.wp.com","domain":"wp.com","tld":"com"},"ip":{"addr":"192.0.77.2","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wp.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Oct 2025 19:44:58 GMT","end":"Sat, 03 Jan 2026 19:44:57 GMT"},"fingerprint":{"sha1":"E9:63:7F:0C:6E:C3:A6:C6:27:94:43:17:2D:51:5E:E2:3E:DA:FB:16","sha256":"7A:94:BE:74:03:C4:90:D6:E8:ED:98:EB:0F:DC:60:BE:D8:2A:DF:82:3F:DC:85:70:4F:C1:10:52:E4:F5:75:81"}}},"request":{"raw":"GET /666557.xyz/images/2025/03/10/9a3680eea0f0d421455949c459583732.jpg HTTP/1.1\r\nHost: i1.wp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 Bad Request\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: text/html; charset=utf-8\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: EXPIRED arn 23\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=EXPIRED;dur=176.0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2993,"timings":{"blocked":1094,"dns":7,"connect":19,"send":0,"wait":187,"receive":0,"ssl":1674},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"p16-kimg.kwai.net/kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIyLzExLzIzLzE5L0JNakF5TWpFeE1qTXhPVEV6TlRaZk1UVXdNREF3TVRVMk56ZzFNVGs1WHpFMU1ERXdNVE00TXpjM09ETTBNRjh5WHpNPV9vZmZuX0JjZmM4ZGEwMWRmZTUzMTYxNzZjY2Q1ODY4OTgzODIwOS53ZWJw.webp","fqdn":"p16-kimg.kwai.net","domain":"kwai.net","tld":"net"},"ip":{"addr":"95.101.11.34","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kwai.net","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 DV TLS CA 2020","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 16 Apr 2025 08:08:20 GMT","end":"Mon, 18 May 2026 08:08:19 GMT"},"fingerprint":{"sha1":"88:41:08:16:B1:09:65:11:BC:B7:74:9F:3C:2B:7F:E4:B7:29:47:FC","sha256":"A7:08:07:07:A1:B9:AB:05:EF:83:67:DA:40:EB:1F:28:60:07:40:83:60:0A:E5:69:22:53:7E:B8:ED:61:8B:E7"}}},"request":{"raw":"GET /kimg/EKzM1y8qmgEKAnMzEg1waG90by1vdmVyc2VhGoQBdXBpYy8yMDIyLzExLzIzLzE5L0JNakF5TWpFeE1qTXhPVEV6TlRaZk1UVXdNREF3TVRVMk56ZzFNVGs1WHpFMU1ERXdNVE00TXpjM09ETTBNRjh5WHpNPV9vZmZuX0JjZmM4ZGEwMWRmZTUzMTYxNzZjY2Q1ODY4OTgzODIwOS53ZWJw.webp HTTP/1.1\r\nHost: p16-kimg.kwai.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/webp\r\ncontent-length: 8768\r\nkrtid: gwb442d63f9dee403590ec44a0e662e4b3\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: 7K8dwT_iJgoQ-8Zq0tHYHhiBd7y2FnDgxZmOr5ZWc28T0017VQf23w==\r\ncache-control: max-age=31536000\r\nexpires: Sat, 17 Oct 2026 05:01:55 GMT\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\nalt-svc: h3=\":443\"; ma=93600,h3-29=\":443\"; ma=93600\r\nakamai-mon-iucid-del: 1668707\r\nx-ks-request-id: 0.1e0b655f.1760677315.17961682\r\nx-ks-cache: Hit from 95.101.11.34\r\nx-mai-cache-status: Y0-L0-0\r\nx-ks-client-ip: 91.90.42.154\r\nkwaisign: null\r\ntiming-allow-origin: *\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\naccess-control-expose-headers: Server,range,hdntl,hdnts,Akamai-Mon-Iucid-Ing,Akamai-Mon-Iucid-Del,Akamai-Request-BC\r\naccess-control-allow-headers: origin,range,hdntl,hdnts\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8768,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 718x406, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"88a36730eb397e7c5a4c1126742924f7","sha1":"fd519ec8c4581f8438bf95ba936f9845921d4140","sha256":"8707289486b873b233cdbd42494eed772a0591f61649bdbf152236c9652b3998","sha512":"733fb038faa7fec237cb6eec2cad7eb6ba7e5007dfb67424d6e67e011bb59ffa5e0dae910df45183d222fb07ef243e8774c2735255f6ede3325508f3a11090c0","ssdeep":"192:PNncqsRxhUjztSva33itVQW9ZVBxMd38o3o:tlSH2nicWrVBxMd4","tlshash":"a602bfa28b976c17994601b92ec0bf21d4806b31181c37b647cbae5f2c495b74cc4db0","first_seen":"2024-12-22T21:58:12.820522Z","last_seen":"2026-01-24T10:59:54.333825Z","times_seen":55,"resource_available":false,"data":null}},"time_used":2149,"timings":{"blocked":640,"dns":7,"connect":5,"send":0,"wait":11,"receive":0,"ssl":1485},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/yandex-metrica-watch/watch.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 87816\r\ncf-ray: 98fd3daa7c0156c0-OSL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 1.408.0\r\nx-jsd-version-type: version\r\netag: W/\"3658f-Fse+RZ4dk+n/VLkhtDoEcCSsYkY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220112-FRA, cache-rtm-ehrd2290023-RTM\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2157\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=BM2Dfg%2FBeMyUeCSkrqYmn3kEx5XBWE1pIiYFBkm4TrEV1pCxChdjHQmBJvf4klocqfO%2Fgcm3AjxRNUl%2BprjW8YVHgWd2lrVLDlE4UaL7fMu0GqxZIIEaA3YHmd5BYo1qdCo%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":222607,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (675)","md5":"423b92a8ca41b86b02934639d5268c36","sha1":"8f9eb72dcd3456c1d5b00f2df41f78c7338ff931","sha256":"bcd08209eeb17a6fe91845f1b97daa589f0a805487d100d80d032baee40c1be9","sha512":"f085e8465a05579464dc5b073efba37c78a23c04c64b8317c92b946f074b184138026365a6d371463937922427a4d4f02de7a18dd0fd1958fc80079592657f73","ssdeep":"3072:a7xSNTRqo6vx04QAHyh3Ua3mfplU1TS0BBxl9zZ0uanZNQKc33rWMQHV:a7sNTPr4vHyhsfp+pSoB0JnZbcrWJV","tlshash":"da24d7d936927462937334b4a02f410f72be78a6f1088954f189d9d93e78dac9237f6c","first_seen":"2025-10-14T04:51:35.548622Z","last_seen":"2025-10-20T16:31:00.866938Z","times_seen":36,"resource_available":true,"data":null}},"time_used":1764,"timings":{"blocked":1,"dns":10,"connect":13,"send":0,"wait":13,"receive":9,"ssl":1691},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.aosikaimge.com/20221002/vxI7a68e/1.jpg","fqdn":"img.aosikaimge.com","domain":"aosikaimge.com","tld":"com"},"ip":{"addr":"208.64.217.42","port":443,"asn":6939,"as":"HURRICANE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.aosikaimge.com","organization":""},"issuer":{"commonName":"Certum Domain Validation CA SHA2","organization":"Unizeto Technologies S.A."},"validity":{"start":"Tue, 24 Dec 2024 10:28:23 GMT","end":"Fri, 23 Jan 2026 10:28:22 GMT"},"fingerprint":{"sha1":"BC:19:8D:FF:22:32:94:8C:04:80:02:CE:1A:59:1C:91:24:15:5C:66","sha256":"F8:17:7C:E0:46:83:E7:7F:FB:CB:88:66:23:61:56:22:39:3A:23:8B:BF:3B:08:F3:37:F4:92:5C:72:1F:D8:B8"}}},"request":{"raw":"GET /20221002/vxI7a68e/1.jpg HTTP/1.1\r\nHost: img.aosikaimge.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 4678\r\nConnection: keep-alive\r\nLast-Modified: Sun, 02 Oct 2022 16:44:23 GMT\r\nETag: \"6339bfe7-1246\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Credentials: true\r\nCache-Control: public, max-age=15768000\r\nCache: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4678,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: \"Lavc57.89.100\", baseline, precision 8, 240x320, components 3","md5":"12de280f2820bbe0cf07d2f1a87ef368","sha1":"ac6b127c2fc2beb6148a9bcd84642ba18ea0cb68","sha256":"1a6a31d391c58c7003ef12250bc3103172b037f02a7e82b868bfe19a00f27721","sha512":"e53a6160ac6b0177c98cbafbf923b5fa0ffd4446a69586225233665f0131a9a90ad4b711f3e3f1832adc3d1ca89f8ce2dc439b902448a7c4f53f92fada71ea50","ssdeep":"96:BZ8zEAmp5RbfA9Ex5D14ejGgbVFoR5tlyx7HYoJOYUL9yW3H+X:Bm7mzRbfAa/eNgbV8yxzYoJOYULwW3eX","tlshash":"97a16deb9731289e8d02d177405e61658fef93a670d193c1773ea336d9981384968d05","first_seen":"2024-08-03T18:55:08Z","last_seen":"2026-01-14T07:56:55.09703Z","times_seen":77,"resource_available":false,"data":null}},"time_used":3783,"timings":{"blocked":1765,"dns":1,"connect":144,"send":0,"wait":153,"receive":0,"ssl":1709},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/393/7.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/393/7.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:56 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11396\r\nLast-Modified: Sat, 23 Mar 2024 12:19:58 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ee-2c84\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11396,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"8e0cef6f09929987e8cd01970cb53344","sha1":"0a1cf4463b17abc9716f0a121ba67786f02b4557","sha256":"6dc6bec4685dfac287e739bd2964b135500aaae4762dbb556a90cffc2266ebe9","sha512":"d1c07029a8b7be4fd2fe268e2eae700d432cfe32300db86aa058c493d2b45434ec42c53064fd4d785c49b877535d15cc8c8becd4bd5e5aef82312af8ff918cf5","ssdeep":"192:gLM1AxdqViz276WJDwFU+bTnluchZhuEuGGRW5Sr0j:gLM1J22DSjvnluchZ4nGlSr0j","tlshash":"d232ae113ba75932e16e31b1bfbc4679d6c03aeae991646114278be897b00b30d853ec","first_seen":"2025-10-17T05:03:06.795569Z","last_seen":"2025-12-05T22:31:48.51158Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2796,"timings":{"blocked":2575,"dns":0,"connect":0,"send":0,"wait":220,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/160/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/160/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 18868\r\nLast-Modified: Sat, 23 Mar 2024 12:18:53 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ad-49b4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":18868,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"544ecf8d4027272bfce2b5d5cd4e7ab8","sha1":"05bb1f0f469477f4fceb65a9a3f722cffd315dc7","sha256":"cc4fa0434b133b4c60f0333c2e5e49f67e7cf08ed7769ee6bb52f1af729be199","sha512":"4c83f774d85c77d765053139df7a58d23b6f49c81317a2f7c50bccaa5ad2b0e19a2e1f206eeaad26d29d1aa5c64dfbcce67d46b98ba770b7dca5ac58d9c6c92f","ssdeep":"384:o1m8vBUMgZ0lLRWy+jM8U8j+W6tmS+sVQbSSUVhsQuOO0dbSMG:o4qlLv+UzlQOSkJ7db6","tlshash":"4f82c054e5792522ff1f197709ce17d1073dee88aa98e324429e8dec02225f79dc027a","first_seen":"2025-10-17T05:03:06.80037Z","last_seen":"2026-01-11T16:31:17.656121Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1747,"timings":{"blocked":1515,"dns":0,"connect":0,"send":0,"wait":223,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gcore-pic.xvideos-cdn.com/videos/thumbs169ll/bb/15/67/bb156792ede4c90ea9fa6688b33e7395/bb156792ede4c90ea9fa6688b33e7395.24.jpg","fqdn":"gcore-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.244.209.62","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/bb/15/67/bb156792ede4c90ea9fa6688b33e7395/bb156792ede4c90ea9fa6688b33e7395.24.jpg HTTP/1.1\r\nHost: gcore-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21975\r\ntraceparent: 00-089690772adb38af1ce625884e987426-0dd0dd2256d39b59-01\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Mon, 14 Apr 2025 00:56:25 GMT\r\nexpires: Tue, 12 Aug 2025 06:43:00 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-id-shield: am3-hw-edge-gc131\r\nage: 5696332\r\nx-id: osix-hw-edge-gc4\r\ncache: HIT\r\nx-cached-since: 2025-10-08T15:54:29+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21975,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 352x198, components 3","md5":"087de600617c405c54775ebd1def1467","sha1":"ba4faafa930a8303a5eb2214a493254e50dabd47","sha256":"c346e41f9a756ff36fbbc8e809486e04b0844e848678a08ac40b9033d98767b7","sha512":"ccae53859f8e7cd449812ff4b069d1e914183dea9534136e166975399472f2350d484e5b098817b5606404d2ff53c2253ade9d894cb2d99068f71e0c5af6f7cc","ssdeep":"384:1wBo7EcaCrE5GoM0U6mjmpHldcRa8j4TiQIyAyIN9/KAhASr7LpkopksX3WLP3QV:CBsoGoLZsQHUo8UGsI9ZhTfxp9Wkdce3","tlshash":"38a2e0aa3b7c0ddec948c0fee5a70925b62aee85c90a532091147b18151a9b33f51cbf","first_seen":"2025-08-18T05:28:50.752396Z","last_seen":"2026-01-20T03:25:23.236637Z","times_seen":13,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":136,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/f/b/7/fb7cf3ca5ec502b0b84e60afdd644f5b1482439521-640-480-315-h264.mp4-1.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.336Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /f/b/7/fb7cf3ca5ec502b0b84e60afdd644f5b1482439521-640-480-315-h264.mp4-1.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13364\r\nlast-modified: Thu, 22 Dec 2016 21:15:36 GMT\r\netag: \"3434-54445c53d9ee8\"\r\nexpires: Sat, 15 Nov 2025 18:33:01 GMT\r\ncache-control: max-age=10493683\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-7619-2-3029509-h-0-0---;8658-20-3715953----0-0-0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13364,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: \"Lavc52.123.0\", baseline, precision 8, 308x232, components 3","md5":"603c674afd64dd98f7aeb7dd7b882254","sha1":"0b94d23ccb1120f11fbb5f519e8f087cd5663d40","sha256":"dd0474897e976e5dfd48fbb8718b1541868a4b163c7561f4696720f6f93c0485","sha512":"56a5f20fdab52c4084c4a44b3e008c5c48d528c4b65d88a56e9afc3e76d794fc04b27f317663d816bf302ff611d034e484504f584479c42b03b63819b1250691","ssdeep":"384:P5UUCB5r3eUSXkJQ/9hhvDsJd6wxOUewYyxD3A1w:P5xi5rehZAKMOUBjxD33","tlshash":"5152b07f3d2750a59657583c22c19b5a901ffbad764352e832c5b5cc6ee1522b13f700","first_seen":"2025-06-07T22:50:30.250017Z","last_seen":"2025-10-17T05:03:06.811806Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1656,"timings":{"blocked":1604,"dns":0,"connect":0,"send":0,"wait":51,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/488/5.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/488/5.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11342\r\nLast-Modified: Sat, 23 Mar 2024 12:20:00 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8f0-2c4e\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11342,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"844030bfb5b58f23b671cc35a55c3fc2","sha1":"ecfd06448bee5e97a3e28d20c6d0a39577e6c0fd","sha256":"7c98a4a2850387b26e8e025d827585d542f1659d4d5c83470030f3ec888cb3d0","sha512":"24ecc92d0f461086116703dc8e9003b464b777077f73e5bf029cd1261e71523b14fce539a3fe85efd82128c6e3193d13fbdda1b38e33b6de8a61649e8d79030d","ssdeep":"192:Bex9txQJ1Vt1bF2Kc61JWGSK4BzzmTHtb8aOMq5p1mWJgxqbJQQmuDdXVy9bdQ:k9AJPFtJsFmTHtwxMq5gxqJUuDdXU9bm","tlshash":"9232affa1864d5cbf84c21bd0862ab0b7854cb3aab4d466e0b50e6f17708ecd15c9ca5","first_seen":"2024-12-28T08:15:47.000649Z","last_seen":"2025-11-01T07:17:39.797071Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1857,"timings":{"blocked":766,"dns":2,"connect":170,"send":0,"wait":195,"receive":2,"ssl":714},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/5f/eb/5d/5feb5d15b0f35011ce3c68e84435a474/5feb5d15b0f35011ce3c68e84435a474.25.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/5f/eb/5d/5feb5d15b0f35011ce3c68e84435a474/5feb5d15b0f35011ce3c68e84435a474.25.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11812\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Sat, 13 May 2017 03:48:57 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH3huUvAAwBT3/TFQH3YceVAAgBj/Q6jAGB\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf168063b2026\r\nx-accel-expires: @1767906363\r\nx-77-cache: HIT\r\nx-accel-date: 1757538363\r\nx-accel-date-max: 1695324094\r\nx-77-age: 3138950\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":11812,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 352x198, components 3","md5":"7d102e90bda8d702e962097ab5943925","sha1":"7a334b7449b054c243bac5c238890db6cb051187","sha256":"365669da31538bcec2e8b7a575c25499499bdee6495b718849fe3b0fa5347952","sha512":"99ade2ee90f2dc37f0364fa06b346fca8a7e8e8a4d479dcf848a92e027d30e8b3d9aaa7adf6cc09240d926777ac631dd5504707bdaa05dd084e85092d0311a48","ssdeep":"192:yhbFoN2QnEqNiZHtfN+wJ5QKa08gEBoxsi3xlAPJXfxVf45/bk0f1cmUWb:yhbF07MHVN+e5tlHsmAPJX5x45/B","tlshash":"5a32c03f56528914177ea0c798462ff69ac84f2611f12dc92ad3f5d187304b8fcc859d","first_seen":"2024-12-19T14:13:56.786391Z","last_seen":"2026-01-20T15:34:37.86936Z","times_seen":21,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/278ff2abb1c95c8b3890886d34f6f0a3.jpg?secure=BmRx1bWV7yan5bc-xwdpqw==,1734229903","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/278ff2abb1c95c8b3890886d34f6f0a3.jpg?secure=BmRx1bWV7yan5bc-xwdpqw==,1734229903 HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 34709\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=36661\r\netag: \"e0b8504b42816cbc60a1511d93d159d3\"\r\nlast-modified: Fri, 13 Dec 2024 23:06:45 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=doPeZ0HJVjd0c8AQrN0%2BRx4%2BGRIAp1VVCYEhHn5uQsAf%2BLdW2TQJmvqqrr0JhmXrb21bboZLsHN9%2Bh3gL%2FY3d%2BMHBti9od8uCmXadQV4\"}]}\r\nage: 5720\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3d9d9c95b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34709,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x360, components 3","md5":"3045d20e1d4ef698e2aadcfeef09c9a5","sha1":"9fa63ac3dbabd62e7f96fd297900d260ba0b4feb","sha256":"063a04bff9546d539a778243123417019daed96654bfce1a1927c759751f5c0d","sha512":"f2803e3709a5e8a2209b560213aed17a7868e1261f0dc7d3dcb99c2afff7612dfa6905cc668a92b8a8d5118fe03f2f6011cbcb7bb4a63698faea8dba803dfb05","ssdeep":"768:Whpm1B8/X9A3UqTDxMu8IPq5Z8FYMppPaRlgcq8gv:eI1B8f9EUa2aq5ZgYMXPaR65","tlshash":"9ef2e15799257c85eeb775ac530959804b2b1b445221cb3eb4de3edc0ceeab1aa03f10","first_seen":"2025-05-21T07:12:06.567291Z","last_seen":"2026-03-02T16:55:39.900307Z","times_seen":139,"resource_available":false,"data":null}},"time_used":412,"timings":{"blocked":399,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.4kpornvideos.tv/35676/1783795_1.jpg","fqdn":"icdn05.4kpornvideos.tv","domain":"4kpornvideos.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.4kpornvideos.tv","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 02:33:01 GMT","end":"Wed, 26 Nov 2025 02:33:00 GMT"},"fingerprint":{"sha1":"D0:06:98:C1:B0:BF:9B:C1:72:76:D0:10:BB:4C:8A:9F:20:B3:4D:DC","sha256":"DA:CA:A0:76:AC:4A:3F:1A:BC:FD:4A:83:E7:AD:52:26:7E:41:41:B2:6A:B2:BD:FE:11:D7:BE:22:95:EC:F4:A0"}}},"request":{"raw":"GET /35676/1783795_1.jpg HTTP/1.1\r\nHost: icdn05.4kpornvideos.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 46069\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1609611470.490254059\r\netag: be15d134b4bd66491c519bad6c450f8e\r\nlast-modified: Sun, 06 Nov 2022 08:19:04 GMT\r\nx-timestamp: 1667722743.98464\r\nx-trans-id: txa71b503318ea4ed9a8022-006795c6f9\r\nx-openstack-request-id: txa71b503318ea4ed9a8022-006795c6f9\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:56 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46069,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x169, components 3","md5":"be15d134b4bd66491c519bad6c450f8e","sha1":"3d71964c8a0dfd1c1df1c7422bc84c936ca9fef7","sha256":"759db9a0bec98e35f03afd7c1c065f4b83f2b58d123f64bfd697914637454ebe","sha512":"aefb2e93ab1affd312a6a912a22f448edb1459922f2e711bafe5662a874f9c001af79b3788a7b052bbaedd9379b33284c762aca3d1dd6653f90835d60208ced1","ssdeep":"768:UqNrAFSlmsXV/6+Q3K8Duh9VHOCN2O9WsuK65Vlu+E1WDD/5q0yI22qpfeFp:UqNrAFMV/xQa8P82AWnK65VE+E1WDD/D","tlshash":"9123f292a4c418841d3143f92cb20e69719d04b2af3c0f8d74e15539df3a6abeb699f6","first_seen":"2025-10-17T05:03:06.839641Z","last_seen":"2025-10-17T05:03:06.839641Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2782,"timings":{"blocked":973,"dns":9,"connect":19,"send":0,"wait":28,"receive":14,"ssl":1717},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page.phic4.top/myda.php","fqdn":"page.phic4.top","domain":"phic4.top","tld":"top"},"ip":{"addr":"104.21.73.126","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"phic4.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 04:42:44 GMT","end":"Wed, 26 Nov 2025 05:38:57 GMT"},"fingerprint":{"sha1":"A9:24:2E:59:E9:1F:79:43:22:02:EE:61:FD:A7:A8:78:49:F5:63:FA","sha256":"1C:49:D3:6F:AB:99:B4:59:BF:D1:35:08:3A:B0:D8:71:A0:BB:CB:E3:35:97:1E:3A:33:3D:88:F5:88:A6:F0:D2"}}},"request":{"raw":"GET /myda.php HTTP/1.1\r\nHost: page.phic4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nmyda: myda2a09:bac2:4da1:341::53:2f\r\nvary: User-Agent, accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d2U30%2F6GJppzEKKSzEDjfEfBTgimo680eaHYFLabhcl%2FwkP6Wa3l%2By1XYBysTPlRTZaqwvOr5kIoAikwMj1qsSUNip4HWxyC34Xb4C%2B1\"}]}\r\nage: 2790\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nlast-modified: Fri, 17 Oct 2025 04:15:26 GMT\r\ncontent-encoding: br\r\ncf-ray: 98fd3db398d35ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":873,"timings":{"blocked":431,"dns":12,"connect":1,"send":0,"wait":5,"receive":0,"ssl":417},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"page.phic4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mc.webvisor.org/watch/48140495/1?wmode=7\u0026page-url=https%3A%2F%2Fjp.tub4us.top%2F\u0026charset=utf-8\u0026uah=che%0A0\u0026browser-info=pv%3A1%3Avf%3A3b8z1leqd9ammnvw0gzjaat34ifxb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2220%3Acn%3A1%3Adp%3A0%3Als%3A1622166937183%3Ahid%3A151547017%3Az%3A0%3Ai%3A20251017050156%3Aet%3A1760677317%3Ac%3A1%3Arn%3A559379472%3Arqn%3A1%3Au%3A1760677317319993382%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C68%2C388%2C0%2C24%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1760677312497%3Afip%3A68bd72ff7c9b5abc9c3f912930d63a42-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1760677318%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-%E5%8B%95%E7%94%BB%40AV4.us\u0026t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842534404%29fip%281%29ti%281%29\u0026redirnss=1","fqdn":"mc.webvisor.org","domain":"webvisor.org","tld":"org"},"ip":{"addr":"87.250.250.119","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mc.webvisor.com","organization":"YANDEX LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 18 Aug 2025 21:05:34 GMT","end":"Mon, 09 Feb 2026 20:59:59 GMT"},"fingerprint":{"sha1":"52:51:83:17:11:3C:6A:D0:47:28:FB:42:75:CF:6A:DA:48:B5:5A:C8","sha256":"69:B8:8D:9D:77:CB:F9:C7:48:04:E2:8C:99:28:7C:EF:5E:C7:2B:43:D6:52:7B:21:D2:99:F6:86:18:A6:0F:80"}}},"request":{"raw":"GET /watch/48140495/1?wmode=7\u0026page-url=https%3A%2F%2Fjp.tub4us.top%2F\u0026charset=utf-8\u0026uah=che%0A0\u0026browser-info=pv%3A1%3Avf%3A3b8z1leqd9ammnvw0gzjaat34ifxb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2220%3Acn%3A1%3Adp%3A0%3Als%3A1622166937183%3Ahid%3A151547017%3Az%3A0%3Ai%3A20251017050156%3Aet%3A1760677317%3Ac%3A1%3Arn%3A559379472%3Arqn%3A1%3Au%3A1760677317319993382%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C68%2C388%2C0%2C24%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1760677312497%3Afip%3A68bd72ff7c9b5abc9c3f912930d63a42-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1760677318%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-%E5%8B%95%E7%94%BB%40AV4.us\u0026t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842534404%29fip%281%29ti%281%29\u0026redirnss=1 HTTP/1.1\r\nHost: mc.webvisor.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://jp.tub4us.top\r\nReferer: https://jp.tub4us.top/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: yabs-sid=1169783461760677317; i=TW3P+ThpNNRky28+ZyzDJMWbHQLHVS/4HibnhuDi/5wippeMfORBCYMFSFY5nEQMjuGiU/ELt8iurpskgBgAb70cfOg=; yandexuid=4335949811760677317; yuidss=4335949811760677317; ymex=1792213317.yrts.1760677317#1792213317.yrtsi.1760677317; bh=YMWbx8cGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 665\r\nx-xss-protection: 1; mode=block\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://jp.tub4us.top\r\nexpires: Fri, 17-Oct-2025 05:01:57 GMT\r\nx-content-type-options: nosniff\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncontent-type: application/json; charset=utf-8\r\npragma: no-cache\r\nlast-modified: Fri, 17-Oct-2025 05:01:57 GMT\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":665,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b2355422f9d9d620f8a08b6a79ed7fb1","sha1":"c389bfcbc89877c26df542a130c1f97aaef61248","sha256":"c229f07105d3e42bf7c601c451439f2916f39933fcd60a7e048384aca06dad26","sha512":"59ca33d8a54d184c3b806365c443094f7556bdd41ea26e75f47e4891d53a40f6aa0e47bf8c2bb616220e4f9ae06c576d3ad0789db63d49ed2abef723470d2917","ssdeep":"","tlshash":"d001232192890f3119458fc095dda201a084310d7d4227e15d13d3a10d4fe95b7ff7ac","first_seen":"2025-10-17T05:03:06.848815Z","last_seen":"2025-10-17T05:03:06.848815Z","times_seen":1,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.w3schools.com/w3css/4/w3.css","fqdn":"www.w3schools.com","domain":"w3schools.com","tld":"com"},"ip":{"addr":"23.36.77.67","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"certification.w3schools.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Aug 2025 06:07:48 GMT","end":"Sun, 09 Nov 2025 06:07:47 GMT"},"fingerprint":{"sha1":"2D:4B:B7:99:2C:DB:9C:A3:25:D3:AF:38:20:23:6B:D0:9E:33:CB:F2","sha256":"B6:F5:DB:F2:A0:3A:F9:73:5F:AD:92:0F:16:0E:28:2E:19:C0:1C:7B:B9:68:9E:B5:55:21:94:F8:03:AE:FF:0C"}}},"request":{"raw":"GET /w3css/4/w3.css HTTP/1.1\r\nHost: www.w3schools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\nlast-modified: Thu, 16 Oct 2025 11:23:08 GMT\r\naccept-ranges: bytes\r\netag: \"0b6723f8f3edc1:0\"\r\ncontent-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;\r\nx-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com https://pathfinder.w3schools.com;\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 5256\r\ncache-control: public, max-age=31474117\r\nexpires: Fri, 16 Oct 2026 11:50:36 GMT\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\nx-loc: true\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23427,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"75b37d4abbdde1322116d2744181081d","sha1":"6d6b5ff442af4682c30e970c382002a7c694ac5b","sha256":"c4f2aba13970ecf8303fb9329f97c8824861569273b0aa27acce48abc61d04f5","sha512":"8ba303e078af3f71176b6e7fa5c32b0f3984014393133a960da7103bc78204a144a3d034a3d1ad7126f1547f45408e00e036175f54766ffccc8cf84cd4c129a5","ssdeep":"384:aHHLO7eS0F4bBY/fn6jZcy9/cGK1q8CarY64Cb+dOy:aHHCLYXfl1q8CarY64Cb+dl","tlshash":"fbb2f022ff8a1138261a873660d5fbfc573a8681df9f1b7a7030373943894c26796e49","first_seen":"2023-06-26T21:08:35Z","last_seen":"2026-04-03T22:52:06.955674Z","times_seen":16143,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":30,"dns":10,"connect":1,"send":0,"wait":9,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.xvideos.com/favicon.ico","fqdn":"www.xvideos.com","domain":"xvideos.com","tld":"com"},"ip":{"addr":"185.88.181.7","port":443,"asn":46652,"as":"SERVERSTACK-ASN","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 30 Dec 2024 00:00:00 GMT","end":"Fri, 30 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8A:99:1B:79:BF:20:90:58:BE:23:F3:B2:15:CA:58:D1:87:C9:8F:0E","sha256":"30:46:58:19:E9:1C:C9:B3:05:E7:D0:33:39:C8:4A:8C:C3:27:BC:55:FD:4A:19:FD:DE:C4:50:B0:FF:69:5F:04"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.xvideos.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 15086\r\nlast-modified: Mon, 09 Oct 2023 14:43:32 GMT\r\netag: \"65241194-3aee\"\r\nexpires: Fri, 24 Oct 2025 05:02:00 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nserver: nginx\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"d6baf7b631c1e482b6e2f770f9e67057","sha1":"73eb49e766e5954e1ad9538cc35038b9f14494b9","sha256":"fa1ee8d05ad6dfa0731ee0d37badfd019cc3315e6d3b9ca1ae161cee4749481b","sha512":"3e1060de4568d23e10a9e8de1a27e5a965ab9e7e377004badb5f82f6018b46239542efd7378fff55a332b2e04a6211e53031b26a8044f28f3e9507760214e184","ssdeep":"96:jxUVxTXzZJEubLaOmLXa8zyyyyByyyyKzEdgCUPOuQqyyyytyyyuEX:jxUVxTFO722d7NX","tlshash":"ac62a8c7e5054da1dda887b04073998b156bfd6b09632c1a20c63f98d9b3eebf474b01","first_seen":"2023-05-07T23:40:39Z","last_seen":"2026-04-03T21:47:16.471701Z","times_seen":736,"resource_available":false,"data":null}},"time_used":1209,"timings":{"blocked":553,"dns":63,"connect":25,"send":0,"wait":24,"receive":12,"ssl":515},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zhestkoe.org/favicon.ico","fqdn":"zhestkoe.org","domain":"zhestkoe.org","tld":"org"},"ip":{"addr":"78.40.116.145","port":443,"asn":200019,"as":"Alexhost Srl","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"zhestkoe.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Sep 2025 00:26:18 GMT","end":"Thu, 18 Dec 2025 00:26:17 GMT"},"fingerprint":{"sha1":"F4:63:4F:1A:D8:27:76:F4:C7:B7:0E:DD:E3:3F:A8:95:CB:34:4C:53","sha256":"09:62:E9:2A:15:ED:CB:FB:C8:67:41:9C:45:56:60:49:A2:0B:D0:61:E8:AC:3C:AC:81:FA:3E:D6:56:1A:ED:66"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: zhestkoe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: no-cache, private\r\nDate: Fri, 17 Oct 2025 05:01:59 GMT\r\nLocation: https://zhestkoe.org/sites/zhestkoe.net/images/icon.png\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6Ink0cnE3TnRBL3dIaVVjYzM5UFNScGc9PSIsInZhbHVlIjoidlRTZ2tNYnRoRjNKSVBSN2p2ekl0NUxOeUo1YlNPMXFzdEpVNi90Z2NnZXE4M2YyQkxHM2FWQVFwQzBCUXQ3ajhSS0xCcDl6RUFMeFRvVlFDeUlkZ0dUdWN4RWt5ZFg1TVoyZ1cwb0NLOVJQaGRoSnRJUnpwUSt6QlZtUjFHKy8iLCJtYWMiOiI0Y2RhNDNjOTZkMzMzZWE4ZTMzMTY4ZGNiODU1ZDc3NDE3YWQxODM3ZTMxOGUzNGU3NWRiYWFlOTZlNDE3MjVlIiwidGFnIjoiIn0%3D; expires=Fri, 24 Oct 2025 05:01:59 GMT; Max-Age=604800; path=/; secure; samesite=lax\nlaravel_session=eyJpdiI6IlZIQnJQRythaVY2SHVnNEdsWGc3Z3c9PSIsInZhbHVlIjoiK1FQTCtva1ZjSUFyTTBIVXk2eHBhdWRqZnVOUVQzWFE5dGFXYU9FMC9tdEhnYTJEdFhMdURINm4rZ0JBaUZuWmZSK00wb1hQSmx4Q3l3YjVIVnBrT1c2bVErWnhNUXVGNkNSOHM4U3NZNFVnbExiUHdiVzVsWlEzZEVidG1rSE8iLCJtYWMiOiI1NjJlNjI0YWNmNTVkMTA2Y2NmZWVmMTliZWUwNTVjMDBmMmZiYzQ0Yzg4NGJmMmQyNWQxMGMwMDViZTQzODliIiwidGFnIjoiIn0%3D; expires=Fri, 24 Oct 2025 05:01:59 GMT; Max-Age=604800; path=/; secure; httponly; samesite=lax\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1778,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.xyz/upload/vod/20241028-9/87344cabbe1ca3fe81fa0806b2e281af.jpg","fqdn":"www.9188porn.xyz","domain":"9188porn.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.534Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /upload/vod/20241028-9/87344cabbe1ca3fe81fa0806b2e281af.jpg HTTP/1.1\r\nHost: www.9188porn.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"realincest.pro/thumbs/336/3824942639029252336_0.jpg","fqdn":"realincest.pro","domain":"realincest.pro","tld":"pro"},"ip":{"addr":"172.67.155.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"realincest.pro","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 20 Aug 2025 22:03:37 GMT","end":"Tue, 18 Nov 2025 23:00:39 GMT"},"fingerprint":{"sha1":"3B:DA:68:31:7A:B5:96:6B:8A:CF:8B:DA:CB:13:72:2A:BC:D4:DE:84","sha256":"92:B9:60:91:7E:24:32:05:21:F0:9E:3B:50:AC:56:FB:87:00:1A:14:82:7C:DE:6C:C7:A8:AA:A1:E4:CD:FF:CF"}}},"request":{"raw":"GET /thumbs/336/3824942639029252336_0.jpg HTTP/1.1\r\nHost: realincest.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 6240\r\nserver: cloudflare\r\nlast-modified: Thu, 05 Mar 2020 23:09:12 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"5e618698-1860\"\r\nexpires: Sun, 26 Oct 2025 17:18:23 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nage: 1770211\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VIxOP3DHhwKBlB6YPkiEbbjK%2FaGSWi19%2FCP568F1wG1AXYZnJMSPevTER%2Ft6naqC7%2Fgwj%2BPH%2FBQMuh3Xh%2FKzTa4tn%2FjWJcDKZdAkHKhY\"}]}\r\ncf-ray: 98fd3da788b13181-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6240,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 240x180, components 3","md5":"a16307d17447d0a66b93e7e4608ebee3","sha1":"4ac57ff9dfd9c6bf21851cbf4c5a69f19a005b36","sha256":"afc407184d7a8db6b2d9c3c878b0426d3d704df38a03ba1793c2396048f07440","sha512":"e2e1b859fc5995534f47c866d4179c592d3e202a54302579f536bcb7a74d2cb595bb863467e215cdf1a47b35ea18fdfe89cf9b236982ad3374994da552c4a80f","ssdeep":"96:Ft3t86G5HCi4jSIYBDwFXvMq/2ttx04YzXtrvpWK6Jk/EnNvtywia57xZFczvDjs:nLqHLsFXvMqrvpl6KEn2wdPGzOlUC","tlshash":"5ad18f83a261e74aff3e167f1626a2dd6609a501c980d137c243513b7faf0c8c57191f","first_seen":"2025-03-22T13:13:11.079999Z","last_seen":"2026-03-02T16:55:39.737365Z","times_seen":14,"resource_available":false,"data":null}},"time_used":2333,"timings":{"blocked":778,"dns":2,"connect":1,"send":0,"wait":17,"receive":1,"ssl":1532},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"en.vidmo.pro/thumbs_320/10/a2/10a285c1dc0fa273b0ab6d7b6b849611/11880112.jpg","fqdn":"en.vidmo.pro","domain":"vidmo.pro","tld":"pro"},"ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"en.vidmo.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Sep 2025 20:46:58 GMT","end":"Sun, 21 Dec 2025 20:46:57 GMT"},"fingerprint":{"sha1":"62:B0:3A:0B:30:5F:D5:33:34:2D:B2:52:68:D3:05:FC:0F:7B:B2:BC","sha256":"69:53:E3:60:66:6F:57:25:AD:1A:25:03:0E:E9:0E:3B:D8:D1:08:2B:01:B6:E5:3C:C6:C2:BE:0C:AC:92:30:73"}}},"request":{"raw":"GET /thumbs_320/10/a2/10a285c1dc0fa273b0ab6d7b6b849611/11880112.jpg HTTP/1.1\r\nHost: en.vidmo.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 34097\r\nlast-modified: Sun, 24 May 2020 18:28:27 GMT\r\nexpires: Wed, 10 Apr 2024 08:44:16 GMT\r\ncache-control: max-age=604800, public, no-transform\r\nx-cache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34097,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 320x240, components 3","md5":"cb9a26ed2a938ac294b7d6fad37d5f2d","sha1":"b749a068952976f03182c036485e4fee83dd6b2b","sha256":"2ac0aa8392712962d24ecf23daae7fc3f9d18e4bda7d4ff251121df7e9d262f2","sha512":"90d2629f40d17023a94ada655ba375a3987b61a5813ae39732b819fdc72193dc358714a0b3482818935a8a4e9d73e4a1c665116208dc5d4db3fa86c9409f6880","ssdeep":"768:YeuWWl4JCW2Dli6jCO9/POZ4QXO1Zc2soDBql66hvWCA6gB:YDr4JCNlhjCOJOH+15sy6661P5gB","tlshash":"01e2e173434e4bbadc086de19bb1191ed98646b3445e5b1532727e9bca24ccce0be289","first_seen":"2025-03-21T10:58:41.316324Z","last_seen":"2026-03-02T07:55:32.807041Z","times_seen":54,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":179,"dns":4,"connect":54,"send":0,"wait":70,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"en.vidmo.pro","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/389/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/389/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:57 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9460\r\nLast-Modified: Sat, 23 Mar 2024 12:19:58 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ee-24f4\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9460,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"8411e865e989e6931b9cf6452ff2c93c","sha1":"721f7cef8092d47e6b6dd5769d3a684cd6f8587c","sha256":"176dc961d4277143d4d927f714275eeb47de20e5daec31a88995829a3e338682","sha512":"0c44b9a0c1974d6714b63a6472d6f9c7aeb46fd554befd16d043488aec6abb44ec177089911b817b6d0dbdd83bfa5cae5e38fec823d26055d56c9a9208b136f0","ssdeep":"192:8iFlUWs2tRUlMfrUW/gigtIoKHoY3qMMIZKHCxWZFI4hwXH8uO:1FWWptRwMDUWhnoKHotMMIZKH/I7H3O","tlshash":"2312c0ea5762ea65d39c5df41444970057a64ce8e43348f204f39b3a1f590ef0ed7464","first_seen":"2025-07-10T15:31:53.966379Z","last_seen":"2026-03-01T16:28:28.78698Z","times_seen":13,"resource_available":false,"data":null}},"time_used":3600,"timings":{"blocked":1472,"dns":1,"connect":170,"send":0,"wait":181,"receive":0,"ssl":1776},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zhestkoe.org/types/videohub/images/228735.jpg","fqdn":"zhestkoe.org","domain":"zhestkoe.org","tld":"org"},"ip":{"addr":"78.40.116.145","port":443,"asn":200019,"as":"Alexhost Srl","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"zhestkoe.org","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Sep 2025 00:26:18 GMT","end":"Thu, 18 Dec 2025 00:26:17 GMT"},"fingerprint":{"sha1":"F4:63:4F:1A:D8:27:76:F4:C7:B7:0E:DD:E3:3F:A8:95:CB:34:4C:53","sha256":"09:62:E9:2A:15:ED:CB:FB:C8:67:41:9C:45:56:60:49:A2:0B:D0:61:E8:AC:3C:AC:81:FA:3E:D6:56:1A:ED:66"}}},"request":{"raw":"GET /types/videohub/images/228735.jpg HTTP/1.1\r\nHost: zhestkoe.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:01:57 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10201\r\nLast-Modified: Mon, 09 Mar 2015 18:17:27 GMT\r\nConnection: keep-alive\r\nETag: \"54fde3b7-27d9\"\r\nExpires: Sat, 17 Oct 2026 05:01:57 GMT\r\nCache-Control: max-age=31536000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10201,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: \"Lavc54.23.100\", baseline, precision 8, 180x135, components 3","md5":"8bb794ebc9444a4a015895fd1b4de4b9","sha1":"61dfd20f14e34f7227ccd3bdc75376ad35779871","sha256":"710c82abfbd4fce3d2048158eaf4a77a66591b0025e53dd34753e145af4cef84","sha512":"e0beac8250d181a743a02d9a28c048ef9e3f4d390888b80cf209e7ed326c0dc4fed0efdf4ffc48d410ff9e6ba56a04eb5f81d980d3b1b0d3e866a33fb92d1466","ssdeep":"192:uZIruDTe64u8HG83eMa4S5qYHz3hktWpghbQdDeveR+0OCDM5KD:haDTe618+dqYTRNpMbQdDemQ0hDFD","tlshash":"5122bf51a15d37cbf04006907aabbede1efc3020f00336e4b9f445d46bd5726ee5a899","first_seen":"2024-04-25T20:11:37Z","last_seen":"2026-03-02T07:55:32.575647Z","times_seen":66,"resource_available":false,"data":null}},"time_used":2673,"timings":{"blocked":970,"dns":0,"connect":14,"send":0,"wait":42,"receive":0,"ssl":1646},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.4kpornvideos.tv/42277/2113806_1.jpg","fqdn":"icdn05.4kpornvideos.tv","domain":"4kpornvideos.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.4kpornvideos.tv","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 02:33:01 GMT","end":"Wed, 26 Nov 2025 02:33:00 GMT"},"fingerprint":{"sha1":"D0:06:98:C1:B0:BF:9B:C1:72:76:D0:10:BB:4C:8A:9F:20:B3:4D:DC","sha256":"DA:CA:A0:76:AC:4A:3F:1A:BC:FD:4A:83:E7:AD:52:26:7E:41:41:B2:6A:B2:BD:FE:11:D7:BE:22:95:EC:F4:A0"}}},"request":{"raw":"GET /42277/2113806_1.jpg HTTP/1.1\r\nHost: icdn05.4kpornvideos.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9790\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1598680374\r\netag: 7cd6aadcb38ecd8c71733c234867100a\r\nlast-modified: Mon, 07 Nov 2022 01:59:40 GMT\r\nx-timestamp: 1667786379.30352\r\nx-trans-id: tx773a2d5e6e194f529d898-0067eaf278\r\nx-openstack-request-id: tx773a2d5e6e194f529d898-0067eaf278\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:56 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9790,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x170, components 3","md5":"7cd6aadcb38ecd8c71733c234867100a","sha1":"54023cdfdd6ba4a3068e72b30342032c1849f228","sha256":"6235a2c044925fc8a71b5327399c52d24822063c30e5bc33d0a49969e7572f74","sha512":"a64c4c5701d6036f89091258408efd4e2b6f9686914144416fc0261a6d70c1ecf101ef5bff6a90b8e368a5b72f378d99cdf21c8d7306eb3754d5048fd54f8abc","ssdeep":"192:ma6aKTPSuiiDCs1OgoOguv2j/fcgyP4DLl/Ahqud4i1a:ma0T6ur1Rtv2zcgyPsh0qBic","tlshash":"b312a04fa4a2330edc6eca708ecac619c946dd140a303dd4e4d37d32a7a65a16edc5a9","first_seen":"2025-07-22T04:45:17.0639Z","last_seen":"2026-03-03T09:47:10.820365Z","times_seen":6,"resource_available":false,"data":null}},"time_used":3070,"timings":{"blocked":1305,"dns":1,"connect":24,"send":0,"wait":55,"receive":0,"ssl":1674},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"u.jjj.cam/movie/alljapanesepass.com/usami.mai/video67/3.jpg","fqdn":"u.jjj.cam","domain":"jjj.cam","tld":"cam"},"ip":{"addr":"38.58.183.141","port":443,"asn":26042,"as":"FIBERSTATE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jjj.cam","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 28 Sep 2025 16:07:33 GMT","end":"Sat, 27 Dec 2025 16:07:32 GMT"},"fingerprint":{"sha1":"2D:27:A7:AE:05:4D:EF:EA:7F:73:B6:44:AF:4E:7E:75:1F:4E:D8:25","sha256":"87:69:66:4B:04:E6:53:BA:BE:D5:53:63:82:23:57:1C:9A:B0:1D:49:DF:16:AB:8C:69:94:55:08:6F:46:50:DC"}}},"request":{"raw":"GET /movie/alljapanesepass.com/usami.mai/video67/3.jpg HTTP/1.1\r\nHost: u.jjj.cam\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 46202\r\nlast-modified: Fri, 07 Feb 2014 06:52:26 GMT\r\netag: \"52f482aa-b47a\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nalt-svc: h3=\":443\"; ma=7777777\r\nstrict-transport-security: max-age=7777777; includeSubDomains\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46202,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 700x393, components 3","md5":"b223da4f89dfe904388bd0aa7d8ddcb5","sha1":"ce469d8301cb3c29782c6677b77037aa0a26caad","sha256":"63d845ea7dce8fc782f0952c4beed34a749cf45f4edcf46a80cd1c614db3846d","sha512":"270097f7cae9718d3aa72f707e0dea3a88c9cb058142e7e62ca42a2353af17da126d82faffc14cbe18c908a94fea393cfe2aa19d1b0be459d25a15892e3cefd5","ssdeep":"768:KSVzsuez8+bracMyW33Nx8O82MFSGk9Fsv+JNW48nSaCowJJe18C:KQ0zb2cy3dmO8pSGk9FUwJ8nSnJe1T","tlshash":"3a23f2061c47e386e644fc6b28652347b5de405358f95c296f132bf98adb1e87c2b31a","first_seen":"2024-08-19T22:23:52.087161Z","last_seen":"2026-03-01T22:32:14.232566Z","times_seen":7,"resource_available":false,"data":null}},"time_used":3575,"timings":{"blocked":1219,"dns":5,"connect":135,"send":0,"wait":135,"receive":271,"ssl":1809},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/f/1/3/2/8/f13285ad9a26c751b9a09d1154bca9721451831707-293.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.367Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /f/1/3/2/8/f13285ad9a26c751b9a09d1154bca9721451831707-293.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 16457\r\nlast-modified: Wed, 13 Oct 2021 09:16:16 GMT\r\netag: \"4049-5ce386a127d1c\"\r\nexpires: Tue, 16 Dec 2025 14:17:59 GMT\r\ncache-control: max-age=10589473\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-8658-2-2839202-h-0-0---;8658-20-3715953----0-0-0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16457,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 200x219, segment length 16, comment: \"Lavc57.89.100\", baseline, precision 8, 308x232, components 3","md5":"550127be75f6640511b47558647ce4ce","sha1":"add6281b5e3a594afe4a65d91d157483f4ab8c16","sha256":"8bb31ccbd9e47231f6cafcf22850708c539716bb577983d9df7129284bb534f3","sha512":"ca018e6ee29ca5ac9494b1088189f428d756772925c2f9b2bfa19070e433bbf8eef1e1f0b91aa15382020bef0d2518ec1ab22aef8b5f30593856981db8ee69c4","ssdeep":"384:nRIu++31gl5HT8OjFt2fu16Fakr+ZOcszWT2:RIurmrjFtJkzrPWy","tlshash":"4872d064837e5c1fbda78bff4da068ecc70bceef4164014a1709c0c445d82eab76926a","first_seen":"2025-08-14T16:14:38.817464Z","last_seen":"2025-11-03T22:08:47.029101Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1637,"timings":{"blocked":1579,"dns":0,"connect":0,"send":0,"wait":57,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"e1nn.com/vs/57644333.jpg","fqdn":"e1nn.com","domain":"e1nn.com","tld":"com"},"ip":{"addr":"104.21.6.191","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"e1nn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 13 Sep 2025 14:56:32 GMT","end":"Fri, 12 Dec 2025 07:26:50 GMT"},"fingerprint":{"sha1":"E8:12:0A:C4:42:0F:49:14:F3:22:A2:7E:77:DF:01:F9:C3:D6:C5:C0","sha256":"56:EA:0B:B5:62:28:3A:46:B3:36:AB:C5:C7:3E:5A:EB:05:0C:70:6B:96:C0:8C:B5:F2:BA:97:E0:9A:F1:55:32"}}},"request":{"raw":"GET /vs/57644333.jpg HTTP/1.1\r\nHost: e1nn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 28884\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Tue, 22 Oct 2019 16:43:07 GMT\r\netag: \"5daf319b-70d4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-cache-status: HIT, HIT\r\naccept-ranges: bytes\r\nage: 278453\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qiKC5tWYXiWuMZQ6UOMfmHshgBaNTYzg9AzsGS8BhdAr9u5fGZA%2Fptr2HTMidUc9P49LXHFHtPy%2BO1Sfj2hH1nnZKs%2F%2BIsNS\"}]}\r\ncf-ray: 98fd3daa4db9120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28884,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 854x480, components 3","md5":"94c602d4cc83878ae004bb73af95d5fb","sha1":"4a125d7826faacc29852199e011d436b88c53ee1","sha256":"07731eb417681e133904025cf921ca05b4c1c5e36b3637dc7516ef2c6ed5d2e5","sha512":"2ffc46189ef51aa8f8757f7f3335ef4b6a0c34625f776cca1608344c36276c7b41ce8e3b323c334b6d96248d20d37ed20ed32810f8cfa5de22fcd1f4df7c8b5a","ssdeep":"768:6ScUX0Yx9WR9NW+kbGRiQenBj+gzPDG5LLd:66qC+koiQkj+gjDULLd","tlshash":"61d29e439c08cfe36554e3f83f531ee96b596b0ce40279fb92228dda3e501035c6976a","first_seen":"2025-10-17T05:03:06.89367Z","last_seen":"2026-01-21T02:46:11.926115Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2687,"timings":{"blocked":996,"dns":12,"connect":10,"send":0,"wait":11,"receive":2,"ssl":1642},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"avidolpics.com/favicon.ico","fqdn":"avidolpics.com","domain":"avidolpics.com","tld":"com"},"ip":{"addr":"185.149.132.131","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avidolpics.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 15 Oct 2025 05:40:49 GMT","end":"Tue, 13 Jan 2026 05:40:48 GMT"},"fingerprint":{"sha1":"28:07:01:F0:F5:4E:8C:B3:39:95:BD:1F:ED:6D:88:DB:56:78:31:98","sha256":"85:68:93:76:BB:8B:20:FC:42:60:3E:84:E6:74:EA:09:20:D0:D6:EE:9B:96:68:53:13:A4:9E:B5:D1:D6:FD:01"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: avidolpics.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Tue, 12 Nov 2019 23:38:04 GMT\r\netag: \"5dcb425c-47e\"\r\nexpires: Fri, 24 Oct 2025 05:02:00 GMT\r\ncache-control: max-age=604800\r\nstrict-transport-security: max-age=63072000;\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"1f42638a72d9867676e710b070b75b1a","sha1":"60c96276d5a1b0445bcb6dbcc4b5c9a4246fc7dd","sha256":"1ce966ef54fad023d941e8ad6cc2223e00beeeae87122ac65533b84d716e0601","sha512":"c35f6a479246688e8710bf3a6993dc3b72541def994dde7ed01f0ccf6c9e65f3c089739556aa4dafe5b9ced0b924a956fe79b0f07e296a70a1989cd14d8dd8a4","ssdeep":"","tlshash":"ce2128ccab1c0dc0cab02ff91b60205a54930e29db18f04d8b3c34ec25f7ae4422689b","first_seen":"2025-04-15T03:02:14.372883Z","last_seen":"2026-02-16T08:54:40.465971Z","times_seen":16,"resource_available":false,"data":null}},"time_used":844,"timings":{"blocked":229,"dns":1,"connect":44,"send":0,"wait":43,"receive":0,"ssl":526},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.redwap-cdn.com/786/786116/786116_320x180.jpg","fqdn":"img.redwap-cdn.com","domain":"redwap-cdn.com","tld":"com"},"ip":{"addr":"104.21.0.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"redwap-cdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 14 Sep 2025 03:11:33 GMT","end":"Fri, 12 Dec 2025 19:36:33 GMT"},"fingerprint":{"sha1":"34:89:BF:1C:99:C0:5D:91:01:C7:87:62:C8:6B:4B:D5:80:1D:CE:75","sha256":"B0:F5:7E:78:05:9D:CE:2F:1A:BE:31:9F:71:F8:32:25:50:F0:01:55:0E:9D:48:B9:75:5A:25:79:9A:B8:64:1F"}}},"request":{"raw":"GET /786/786116/786116_320x180.jpg HTTP/1.1\r\nHost: img.redwap-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13119\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nlast-modified: Thu, 13 Jun 2019 12:07:53 GMT\r\netag: 68fd26b501526de77581f44db1c30100\r\nx-timestamp: 1560427672.28272\r\nx-trans-id: txd1eac8ec285e4484b241f-005e6483b5\r\nx-openstack-request-id: txd1eac8ec285e4484b241f-005e6483b5\r\ncache-control: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\nexpires: Sat, 18 Oct 2025 07:46:58 GMT\r\nx-cdn-host-id: ds9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nage: 76496\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oePM%2BuXT8djDfMxdu3TjfklcxEl%2BWt7bhAekiaa2j2eXzCqmoE1zmqDG02ACy3nbrwvZa2g4lOvYfX5oEapayR0FBIeRu8diO6gPBAaNFjTOIw%3D%3D\"}]}\r\ncf-ray: 98fd3da2ad8e0883-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13119,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85\", progressive, precision 8, 320x180, components 3","md5":"68fd26b501526de77581f44db1c30100","sha1":"519e24cf4812397812d02b5cb82fbe0b163670ef","sha256":"41ac27ac8e3123245a710c3a06c84ec51a11d7447398feca73a7f681628d1acb","sha512":"d31e6c9ff7e81edb25c4d829a2b04e9a5a08dc08a6ccafd19baaa4a0fee66f359cf7f542bea734c557c5f9e19f39e765341c02d9a3684ab475636d2afe134600","ssdeep":"192:8+9BHGZbJwee3+DNdENPK+GbGPwuGOvWbqLrVuXN/rTlUVZxcRCXdl:84HGfwes+54Gb0wR4WbqIp6rx2Cdl","tlshash":"4642bf3ba490ea09ec5f137df6416facce187f122d0986b3a3809c6b2b569dc4c153a5","first_seen":"2024-04-19T21:01:34Z","last_seen":"2026-03-01T19:27:35.435508Z","times_seen":84,"resource_available":false,"data":null}},"time_used":1219,"timings":{"blocked":1212,"dns":0,"connect":0,"send":0,"wait":6,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fqjpg4.top/upload/vod/20241104-1/08b9ba4785030015776351b294457995.jpg","fqdn":"fqjpg4.top","domain":"fqjpg4.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.254Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /upload/vod/20241104-1/08b9ba4785030015776351b294457995.jpg HTTP/1.1\r\nHost: fqjpg4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":451,"timings":{"blocked":0,"dns":6,"connect":108,"send":0,"wait":0,"receive":0,"ssl":333},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"filmx-perso.com/wp-includes/images/w-logo-blue-white-bg.png","fqdn":"filmx-perso.com","domain":"filmx-perso.com","tld":"com"},"ip":{"addr":"5.135.23.164","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:02:00.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sexenfrance.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Oct 2025 18:10:57 GMT","end":"Wed, 31 Dec 2025 18:10:56 GMT"},"fingerprint":{"sha1":"59:91:AA:0E:B5:6D:B1:CD:82:D0:CB:B5:E9:6B:BB:61:8B:6D:BB:1D","sha256":"36:44:90:70:AB:3E:9B:AB:D1:BB:5C:D2:5D:A9:26:60:76:FA:6A:EC:AB:B4:D3:E8:7F:82:95:84:3E:55:44:35"}}},"request":{"raw":"GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1\r\nHost: filmx-perso.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp.tub4us.top/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 4119\r\nserver: OVHcloud\r\nlast-modified: Mon, 13 Sep 2021 06:51:47 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=900\r\nexpires: Fri, 17 Oct 2025 05:17:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4119,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"000bf649cc8f6bf27cfb04d1bcdcd3c7","sha1":"d73d2f6d74ec6cdcbae07955592962e77d8ae814","sha256":"6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0","sha512":"73d2ea5ffc572c1ae73f37f8f0ff25e945afee8e077b6ee42ce969e575cdc2d8444f90848ea1cb4d1c9ee4bd725aee2b4576afc25f17d7295a90e1cbfe6edfd5","ssdeep":"96:h3bdWfcmTY+aRF1pXWZL2+42HGhIUc8KeLEd:hgXTY+as02mOB8XLEd","tlshash":"00814b63df38c566e66a2b189ff6bca56b290fd50ca1194c0eecb025632c06d1065089","first_seen":"2023-04-08T12:31:37Z","last_seen":"2026-04-04T00:34:05.39677Z","times_seen":55252,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":5,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/7a/3b/90/7a3b90445d0499f7a1b958340f7c9c44/7a3b90445d0499f7a1b958340f7c9c44.7.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/7a/3b/90/7a3b90445d0499f7a1b958340f7c9c44/7a3b90445d0499f7a1b958340f7c9c44.7.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 17797\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Sat, 22 Aug 2020 20:32:25 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH3+QIYAAwBz9PTEwH3qEJ+AAgBj/Q6yAGB\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf168478dd024\r\nx-accel-expires: @1769469062\r\nx-77-cache: HIT\r\nx-accel-date: 1759103688\r\nx-accel-date-max: 1738364897\r\nx-77-age: 1573625\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":17797,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 352x198, components 3","md5":"0bf8a65f288adbffb1ed6eacf8f3958e","sha1":"b1fa6e7817504892f3d07339f031401d165dab35","sha256":"604e4c61fbd8cdb67d1a3303148894b5bb8b36615d3912d19fd3d7db9702a8dc","sha512":"273853cf60bddde281c7597857251e4111b891d019ba432fb346ce5d902acab067c32b6c5906a09d483fd9ae54c5f38f60a5d26cc6d12aeb650d28a0e76b2b67","ssdeep":"384:yNkzF/d7GtV3t3O+e39yFHIsPmhUkZKfBYIySE7za3fEdPLPREF:ygZFGtV3k9yFHGUkZK5YVc8bR6","tlshash":"c082d055c50187c26f2e3f024ad0f7a60265d3f6368c1da53c61418eebc6e6e257acf9","first_seen":"2025-02-19T22:30:07.430788Z","last_seen":"2025-11-14T03:02:02.658749Z","times_seen":4,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":147,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/gzlwmenz_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/gzlwmenz_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 42231\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Thu, 16 Oct 2025 17:18:02 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2j2rzIdN0OQ%2BQsmhjcwY2FwkudfGSLm%2BmIob67NYeDDhhc5kZHsbDOY%2B5nibUjMAxIURVLKMEQ2AG8g2%2Fjgv0kz%2BKuD1apv%2F4lg%3D\"}]}\r\ncf-ray: 98fd3d99aa0a783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35899,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 400x299, components 3","md5":"e48407bebc179a915606ea2e828e375a","sha1":"1947f8d9076276d14b737697bb5f885f446be7c9","sha256":"f021b60f291ff51b989b1e9679ed3e9072c02cc629636871d63829e83001addb","sha512":"26ceba43ec13c5eb1b01064466bb3e6bbb1d273a01db90ba3793bb387aa676f688e02de6c4c4d80f0a200a40447e4dcda321ee79e071d2078c264e1818d7b7c1","ssdeep":"768:sp0GlLAlQNPSBhyoxWYen8LdRYDnXCLESkpqV9TLNw/m241SqIlT:spVlMlQRizxWhn8LdRQXCwt2WmkX","tlshash":"b7f2f195d755cbc43d33f6134434ec4c2cedea30c8145285a9892928b6e6b6b9f2fc93","first_seen":"2025-10-17T05:03:06.914745Z","last_seen":"2025-10-17T05:03:06.914745Z","times_seen":1,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":61,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/1BCE750.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.492Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV CA","organization":"GoGetSSL"},"validity":{"start":"Mon, 04 Nov 2024 00:00:00 GMT","end":"Fri, 05 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8","sha256":"10:A9:10:0A:05:AC:3F:09:47:9C:0E:EF:B9:5A:60:87:2B:F1:D5:35:A8:E6:3B:67:04:9B:7C:A8:AA:53:B7:FE"}}},"request":{"raw":"GET /thumbs/1BCE750.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 40746\r\nvary: x-s-token\r\nlast-modified: Tue, 07 Sep 2021 17:44:05 GMT\r\netag: \"9f2a-5cb6b4fdb45fd\"\r\nx-cache: HIT\r\nx-whom: cdn06\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]}],"data":{"size":40746,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 722x480, components 3","md5":"eee871f3594e075dd048f1bdf3047999","sha1":"706e544d79d3f7a4eec1b22e97351c301252e7c2","sha256":"6f42fa73c6a769a9b442fd8f9b10be314c6df7472eacb7cc9c3ffce69aee6823","sha512":"2ec72a716af920291061c2b1c8ebdb78c3ffc2603c8f54f9398a965d388f0d4c210a0a9298013656d46c64bce2a28c49b86c1482158f76522d06c90c73400bd1","ssdeep":"768:WBYJ8vvkuoERvXg0ScSlVjoSuSjPeMJ/0g6VAZxFHaq:Wm6vx9gOSDMeeMJ/F+AZxFl","tlshash":"b00302a58876c217bec698b9ef0cf07247c4bee5c53dc0d3ba2424d8240d0bbd56c96a","first_seen":"2025-06-26T17:45:10.375479Z","last_seen":"2026-01-19T22:06:02.736704Z","times_seen":6,"resource_available":false,"data":null}},"time_used":2353,"timings":{"blocked":725,"dns":1,"connect":20,"send":0,"wait":22,"receive":17,"ssl":1559},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ajyshedfwer.buzz/favicon.ico","fqdn":"ajyshedfwer.buzz","domain":"ajyshedfwer.buzz","tld":"buzz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.632Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ajyshedfwer.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"obmenvsem.me/favicon.ico","fqdn":"obmenvsem.me","domain":"obmenvsem.me","tld":"me"},"ip":{"addr":"82.192.80.133","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"obmenvsem.me","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Sep 2025 08:45:02 GMT","end":"Fri, 19 Dec 2025 08:45:01 GMT"},"fingerprint":{"sha1":"E0:B9:89:73:2E:CA:E4:20:E4:2B:79:33:7A:79:84:85:D0:FB:9D:DA","sha256":"38:2C:10:3C:DC:BA:84:F5:EB:07:3E:CB:95:B6:7C:D2:DE:F2:BD:6A:9C:82:90:E4:F3:FB:A8:D3:56:E6:C1:4C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: obmenvsem.me\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 15086\r\nlast-modified: Wed, 08 Nov 2023 12:00:19 GMT\r\netag: \"654b7853-3aee\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"5fcfc1a6b1d7b1c61867bbf650b725af","sha1":"ef131ddbc75f149934d2a54bf8ef27eb401d26d7","sha256":"aa0a1280a119f0e79c45c6a910a29bdc370bf6f4c41e40b9c156f498c23fdb59","sha512":"df72bf3fd7f3f28c1c8ce675afef03e6a4eb86929e63a83c6f139fc0b300a03cbf1a5ed0ff74aeeda67e1256518a27ca4001b2f5aa4d61b6720aa6d716cf4133","ssdeep":"48:j5tm5k4bbfCbbbbebbbbbbbbbbbbbbbbbbbbxDbbbbbbbbbbbbbbbbbbbbb/bbbZ:j5tVkcjHg/qxNw51EkKtoOK88l0Av","tlshash":"396285cdb257dd6ac2600e718c7dd3bc1028dcadae655103b6d07faf76b262b2502c95","first_seen":"2024-06-17T03:30:17Z","last_seen":"2026-03-03T14:10:03.693249Z","times_seen":330,"resource_available":false,"data":null}},"time_used":717,"timings":{"blocked":53,"dns":2,"connect":33,"send":0,"wait":39,"receive":0,"ssl":584},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20250926-1/730e86dfa5a7137f917b70932942be8d.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20250926-1/730e86dfa5a7137f917b70932942be8d.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 59330\r\nlast-modified: Fri, 26 Sep 2025 03:16:59 GMT\r\nvary: Accept-Encoding\r\netag: \"68d605ab-e7c2\"\r\nexpires: Tue, 11 Nov 2025 16:42:05 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":59330,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 864x488, components 3","md5":"355f10d8c34b03e8d4549ec9ab016bed","sha1":"840e47172f14f688e579721ca4fcbcabde41f021","sha256":"b31d5dde829e5dfd33c33d0dc66330ced6c4cb2614e4e187806146e51b92fc6f","sha512":"1e1defe03a70086074547e835e741c1423a809537f4f0e1e0ef81701e46bc1175b48015afffdcc3409cde375e22d31e9f4bc68f4b2ef93fa9dbef6d602a526a5","ssdeep":"1536:meVLbawzX5i4eTGmgGRviMLl915ub5vZHq0PA77:fZayXs7DZL15Ub9PA77","tlshash":"524302c200945d67cd5de696d2adc32efe15790ab021db86448bb4c5df9e1c4b0387eb","first_seen":"2025-10-16T15:47:40.112193Z","last_seen":"2026-01-26T11:01:23.024361Z","times_seen":32,"resource_available":false,"data":null}},"time_used":2205,"timings":{"blocked":1762,"dns":0,"connect":0,"send":0,"wait":168,"receive":275,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fapmove.com/favicon.ico","fqdn":"fapmove.com","domain":"fapmove.com","tld":"com"},"ip":{"addr":"185.73.220.217","port":443,"asn":32338,"as":"HOSTISERVER","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fapmove.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Sep 2025 05:18:00 GMT","end":"Sat, 13 Dec 2025 05:17:59 GMT"},"fingerprint":{"sha1":"1F:68:2D:56:55:86:EB:DF:D7:AF:29:F7:05:4E:46:2F:76:1C:B3:50","sha256":"A9:C9:22:11:01:F0:A4:64:E0:2A:BA:A7:BB:A5:43:E6:EA:1A:F2:5C:F4:D8:44:D8:B6:1E:7E:12:61:1E:F1:AC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: fapmove.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":284,"timings":{"blocked":77,"dns":3,"connect":43,"send":0,"wait":47,"receive":0,"ssl":108},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.twi-videos.net/favicon.ico","fqdn":"www.twi-videos.net","domain":"twi-videos.net","tld":"net"},"ip":{"addr":"104.21.75.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"twi-videos.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 Aug 2025 03:36:43 GMT","end":"Mon, 17 Nov 2025 04:34:23 GMT"},"fingerprint":{"sha1":"38:50:BA:40:E9:20:1D:89:C0:32:56:65:69:DD:17:21:CF:8F:D2:12","sha256":"75:D8:B7:09:20:52:4E:24:E8:FD:1A:55:49:20:C8:3F:9B:74:9E:BD:8B:57:B1:CC:D5:89:54:A7:A7:E9:6C:3A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.twi-videos.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F6lWkB%2FU8gC5SBtENDf57vOCUzbZedGh%2F8ju2bF6YEQrEvbJOQ3Zi%2BnkHXSFj2YZNwfts85E%2FsNPw1yTHybGO%2Bnr7prQgzhBC9x3k6BeonM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3dc208c55696-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":739,"timings":{"blocked":329,"dns":5,"connect":1,"send":0,"wait":8,"receive":0,"ssl":385},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"motherless.com/favicon.ico","fqdn":"motherless.com","domain":"motherless.com","tld":"com"},"ip":{"addr":"185.107.81.234","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.motherless.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV CA","organization":"GoGetSSL"},"validity":{"start":"Wed, 02 Apr 2025 00:00:00 GMT","end":"Sun, 03 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"BC:66:10:ED:31:C2:E1:48:61:92:BF:BD:98:9C:71:7C:41:97:BB:15","sha256":"DC:4B:D9:73:E2:0F:70:E0:0F:00:83:14:04:82:39:70:D2:DC:F4:3D:ED:56:CB:DA:C8:73:69:B1:19:73:4A:D9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: motherless.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:02:00 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 1150\r\nConnection: keep-alive\r\nLast-Modified: Thu, 20 Apr 2023 06:59:04 GMT\r\nETag: \"6440e2b8-47e\"\r\nX-Server-W: web803\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nX-Cache-Status: HIT\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"71fed71dccb91a13bdf68a6444f25ce4","sha1":"38da7202842147ecda5521d50f094a54d1381f2c","sha256":"18f6675d329e6cb3bb7d7d1e546a1c68c5cc599f1b3ae98c2abbd21a53dc42c2","sha512":"5026edac9534773d52080439a13fe7dd5de5516c7813e062d25501d90ee67cf4cc01cf721070b90fc47f2d164a33a968c475d511c09fa528850a6294bb54795a","ssdeep":"","tlshash":"fc213e8ad700d86cc57456bce13a31f73e88ce40da20286b6f1a3c007c3522178ecc84","first_seen":"2023-05-25T17:44:41Z","last_seen":"2026-04-03T21:47:16.646322Z","times_seen":786,"resource_available":false,"data":null}},"time_used":550,"timings":{"blocked":-1,"dns":4,"connect":25,"send":0,"wait":21,"receive":0,"ssl":495},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xxxxsx.com/favicon.ico","fqdn":"xxxxsx.com","domain":"xxxxsx.com","tld":"com"},"ip":{"addr":"185.213.91.19","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.786Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.xxxxsx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Sep 2025 08:10:50 GMT","end":"Sun, 21 Dec 2025 08:10:49 GMT"},"fingerprint":{"sha1":"AC:B6:06:F4:A9:3F:74:AA:86:65:44:EF:52:68:9A:36:37:8B:40:97","sha256":"B2:89:2C:61:86:45:10:A7:3B:5E:9B:7E:FD:13:09:D9:95:C6:9B:F7:0D:07:69:3F:6B:36:A1:23:D7:B2:50:3C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: xxxxsx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Sun, 17 May 2020 19:04:56 GMT\r\netag: \"5ec18ad8-47e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000;\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"a9014f76c8788bd5a125dc94c74002f0","sha1":"9a9ee429f54babefd601859c291e1d2b503ccfeb","sha256":"7d94486bd88a14aca6332d644d3edea2a88564faeda00e00066043d0ce835616","sha512":"0f88e40007a0f9406934625ebdf145902eeef744df5a84ca0ac50ccdae15591bb9b1cf243dae3727d71dba03a2c00b72c905e3890a1ba99812b5b25318f85702","ssdeep":"","tlshash":"8821ce102a51a853ec53afb89817dc0c805e4d8569b08469fe5d77d98e77ca41afb105","first_seen":"2025-01-04T01:50:33.459865Z","last_seen":"2026-03-03T08:08:10.258998Z","times_seen":17,"resource_available":false,"data":null}},"time_used":966,"timings":{"blocked":122,"dns":1,"connect":104,"send":0,"wait":96,"receive":0,"ssl":638},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incestmom.net/favicon.ico","fqdn":"incestmom.net","domain":"incestmom.net","tld":"net"},"ip":{"addr":"185.162.11.82","port":443,"asn":207728,"as":"EUROHOSTER Ltd.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"incestmom.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Aug 2025 23:30:52 GMT","end":"Fri, 28 Nov 2025 23:30:51 GMT"},"fingerprint":{"sha1":"67:3B:E3:35:58:4C:63:E3:F6:08:DF:27:67:B2:D4:21:F6:72:DE:C4","sha256":"82:46:DA:51:03:E7:C2:FC:D0:7F:58:71:BE:B2:73:DB:4C:0D:CD:D9:B9:DC:D6:BF:F4:23:D9:46:15:E9:25:B6"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: incestmom.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:02:00 GMT\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 372526\r\nConnection: keep-alive\r\nLast-Modified: Mon, 07 Oct 2019 19:32:03 GMT\r\nETag: \"5af2e-594571b3ac633\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=9720000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":372526,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 7 icons, 256x256, 32 bits/pixel, -128x-128, 32 bits/pixel","md5":"f4833b4aea7ef8562a10e659bc983d14","sha1":"204fd1431d3358669414f93b3a73677bc7fd7a6e","sha256":"f38e62bbee076252a8f134c4f9e0e6150911d1fcf12221c794c49b86949f8576","sha512":"f0aaeef918bc898fc3872e45fa7c8802ca0287898516cfa0582d6ea8877908009eebac2d7738ecd906032f70db78843f6d7c98dfb03d94a22ba311539fb56364","ssdeep":"3072:aa0zDyb4kh77h77pXmCMk1hS9NrDj2ahaA:ZoybLh77h77pX69Nv6ahaA","tlshash":"7184b41ebb50da2bd4640b788cbf97145338aed89e42470bb64cf7d928b33853f46259","first_seen":"2024-09-19T22:22:48.949683Z","last_seen":"2026-04-03T22:52:06.920945Z","times_seen":88,"resource_available":false,"data":null}},"time_used":913,"timings":{"blocked":221,"dns":1,"connect":20,"send":0,"wait":21,"receive":141,"ssl":508},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"obmenvsemfiles.net/fo/files_attachments/d7e/5db/d7e5dbb9ff403e9d98b26ee194037dbf.jpg","fqdn":"obmenvsemfiles.net","domain":"obmenvsemfiles.net","tld":"net"},"ip":{"addr":"82.192.80.149","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"obmenvsemfiles.net","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Sep 2025 20:51:22 GMT","end":"Sat, 13 Dec 2025 20:51:21 GMT"},"fingerprint":{"sha1":"99:7A:15:79:74:81:BA:E0:DC:D3:16:A0:F0:D5:93:E2:5C:83:CE:98","sha256":"5B:80:F1:0D:E9:5A:FC:9A:99:E4:B7:C2:56:F4:62:71:43:C7:85:F5:62:3F:21:F5:47:C8:D6:E1:99:A4:5F:7D"}}},"request":{"raw":"GET /fo/files_attachments/d7e/5db/d7e5dbb9ff403e9d98b26ee194037dbf.jpg HTTP/1.1\r\nHost: obmenvsemfiles.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 14191\r\nlast-modified: Sat, 25 Jun 2016 06:56:39 GMT\r\netag: \"576e2b27-376f\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14191,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x320, components 3","md5":"d7e5dbb9ff403e9d98b26ee194037dbf","sha1":"aa29bee1ef4abe5df9ffd69171aaee3b0cb4bbb6","sha256":"14e0af1b8cd32d5e30f752f5ebe2931f6120d61c6d1ecec7dc569291cdb04838","sha512":"18f3688cf75fe8683f527a5772a487ab59b6f3b852d159b14afb397e9fcec22e5df283e5d9523db0b011b6bfbc908786b492ef8cb8608493d0f40c266a52b032","ssdeep":"192:Bdn8DDmmaaiabYtzkoMr4D1JmXe6gd2XGqk5nf60nR9thuw7AX9GoL3hF8qx1fJV:Bd82va+l7MrpR23fdoVbTnusd","tlshash":"ce52cf8b4fe4269ef56886f540522f0470e8a615c26ebf9a4efd291414f40e80ca2bd0","first_seen":"2024-04-20T20:39:18Z","last_seen":"2026-01-24T20:33:37.477245Z","times_seen":40,"resource_available":false,"data":null}},"time_used":2246,"timings":{"blocked":669,"dns":1,"connect":29,"send":0,"wait":28,"receive":6,"ssl":1509},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"naturismv.com/images/beach-ball-day-enature-net-russianbare-com.jpg","fqdn":"naturismv.com","domain":"naturismv.com","tld":"com"},"ip":{"addr":"104.21.44.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.333Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"naturismv.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 29 Aug 2025 01:23:24 GMT","end":"Thu, 27 Nov 2025 02:11:12 GMT"},"fingerprint":{"sha1":"DD:22:3B:71:F9:39:D4:C9:46:A7:50:19:E6:EF:B9:3C:73:AC:23:AA","sha256":"26:F7:84:9C:99:41:4A:62:E6:68:1A:85:3F:FA:A6:D9:8B:09:64:67:85:12:A5:54:22:74:20:DB:4F:F6:58:42"}}},"request":{"raw":"GET /images/beach-ball-day-enature-net-russianbare-com.jpg HTTP/1.1\r\nHost: naturismv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 32263\r\nserver: cloudflare\r\nlast-modified: Fri, 19 May 2023 12:04:44 GMT\r\netag: \"646765dc-7e07\"\r\nexpires: Fri, 09 Oct 2026 08:06:13 GMT\r\ncache-control: max-age=31536000\r\nstrict-transport-security: max-age=31536000;\r\naccept-ranges: bytes\r\nage: 680142\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tkCAQk3hQXjBUyH5NbJr2J8o5qv3lzN49yiVOlfaRCB8zFx9kq19IYmiKaYXLSFX1GCRWmc0pYOILP8hni0AAklyVgQD6AeLw%2FPm\"}]}\r\ncf-ray: 98fd3da8ee87569f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":32263,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, progressive, precision 8, 400x300, components 3","md5":"9133c9e08104dcbcdf8510ef1c89b271","sha1":"e2d3b6bca0052dd4b3a281c8af42a72d7c1f54a9","sha256":"7fe60b732e5d4afe6de57b087dc6eb1f078d01692277ac1a098c8d92826064ce","sha512":"181973268ab4c5166ad2007e28763a5958c17e5357deba47e5bf5791adb4aaad92500f2a25fcd886dedc4d9c28e3d4b99fec974110a287ed5eae5dea22abb907","ssdeep":"768:g+S1/sxkUKDn4juDhgcawV3tB/2BjUefNq:gV/oJse9w79sU2Nq","tlshash":"06e2e1c737812620f8392e2a0bb27e01f5e64a77d94f352ee194281df93adf394a05c5","first_seen":"2024-12-28T23:16:57.359177Z","last_seen":"2025-11-10T10:21:40.63877Z","times_seen":12,"resource_available":false,"data":null}},"time_used":3384,"timings":{"blocked":1655,"dns":1,"connect":1,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/305/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/305/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 13647\r\nLast-Modified: Sat, 23 Mar 2024 12:20:07 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8f7-354f\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13647,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"6e4b9967f3e83fdc859a4ada224fd20a","sha1":"41ca59a83b0ab54156e13cf7fef27971d31a437a","sha256":"684efd120f84eb1f681763d1954fec3854c8302052c5e2ad2b828311c7bd2cc5","sha512":"fffff627d18d11fc3f160040729fd2bd37a625264a37c4261ef0c6a7dbd2aaaf50091f88195e8a0333ca5d52582e50b90c11816a8a84c2d59353e8f271b2058d","ssdeep":"384:77YqypeyMRy6VjmHSKnw/Ktz+DsazmHyDo7v8M:7M9M86ZmyKnw/8z+Ds93V","tlshash":"0152cfd3066e2e13d2aff673057592d7b70f4dab908424562147f13e97c10a56892ef3","first_seen":"2025-06-07T22:50:30.176463Z","last_seen":"2026-03-03T14:10:03.938314Z","times_seen":31,"resource_available":false,"data":null}},"time_used":1534,"timings":{"blocked":1321,"dns":0,"connect":0,"send":0,"wait":213,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.zzztube.tv/38946/1947282_1.jpg","fqdn":"icdn05.zzztube.tv","domain":"zzztube.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.582Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.zzztube.tv","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:33:28 GMT","end":"Tue, 25 Nov 2025 02:33:27 GMT"},"fingerprint":{"sha1":"48:3A:0A:07:A2:90:4A:D2:3A:EE:B6:09:FF:16:6D:DE:C6:04:15:CD","sha256":"66:D3:68:2D:A5:47:A3:F9:10:54:34:81:79:BE:58:C9:DF:E3:A0:0E:92:FA:BB:06:5E:E3:71:FD:47:9E:2D:BB"}}},"request":{"raw":"GET /38946/1947282_1.jpg HTTP/1.1\r\nHost: icdn05.zzztube.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11406\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1598691346\r\netag: 1e7d3b257720304cea5a45ba33b34cb2\r\nlast-modified: Sun, 06 Nov 2022 19:09:16 GMT\r\nx-timestamp: 1667761755.72495\r\nx-trans-id: txc131f8d6f1ed488cba88e-0067eed5b4\r\nx-openstack-request-id: txc131f8d6f1ed488cba88e-0067eed5b4\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:54 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11406,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x170, components 3","md5":"1e7d3b257720304cea5a45ba33b34cb2","sha1":"74003657e9d6025e5d22de5b0eab46eaa95896ae","sha256":"74b3a1aa41056b35f14fda102939bcf6b4fa40d886f67006ff842be6d0759aae","sha512":"f74a8242037cf4b0352f2b60e1f8467a1cd7ee0bf97843ad08b11676ec3a2c9b7e3b7b31f86dbc19c2f266e637bed0e599fd46f26713fbb50989b5dffc661718","ssdeep":"192:TBW6A4XFMYd3RfEVpyhl0rZ2Ve0o5Fx7GodB82TKps//DW/3zqYgWq7K8iaR9:FY4V/JEV4JsZFxi48GKps3+3RNqp","tlshash":"2132cf7e3335129ccaee302044e45b32926c985abd92c69b1de26f44e737add5ef0921","first_seen":"2025-06-07T22:50:30.12022Z","last_seen":"2026-03-01T22:30:17.252428Z","times_seen":23,"resource_available":false,"data":null}},"time_used":1300,"timings":{"blocked":615,"dns":47,"connect":29,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/455/3.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/455/3.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12854\r\nLast-Modified: Sat, 23 Mar 2024 12:18:54 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ae-3236\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12854,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"aaefa930328074d5915ab410cd6806dd","sha1":"454f2cf5270554ce831c9f89c0f4f64ebe2b95e0","sha256":"8ff18fc7be498d81c3fff73ad23ea1eecd813b8630e0fa492f182993f5f749c2","sha512":"9cc6378c4f235710bee8b0466719dc241e59a8aefb0dd1fd04e010376593c7e09066f2581594f49e114afb54b3366a40885b863e3269f0ba2cf8c2269c95a90e","ssdeep":"384:IALSkNvYPgaOhfnH4JRze4Nz3Jxd/gOnkt7Afs68:tL7vY4zPyRSQ37NnE7iW","tlshash":"cd42bfea7f2cd5d4e99fb2316581cb7c050bec8c919d7036c0e462a2674d84d26d829e","first_seen":"2025-09-25T14:10:40.185701Z","last_seen":"2025-10-19T05:57:43.808694Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1535,"timings":{"blocked":1326,"dns":0,"connect":0,"send":0,"wait":209,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/579/10.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/579/10.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10262\r\nLast-Modified: Sat, 23 Mar 2024 12:18:56 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b0-2816\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10262,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"e00b8ae5b571474e093e62ff7ea106d8","sha1":"657eba7ca13fab48d92b1a91ab2723e89423c470","sha256":"38cd29f141c9b71fd7503b437c18981f4aa474fe8b54d677f981dbce210da67e","sha512":"99d2fe8ed53e5e57b35e9ff91b591b49c1fbc6e0252ee551d9f7ece691375d9090e91b319a50b8e02771b47e06f6dec14b26282f6fb5944003efd369e438c12a","ssdeep":"192:cfdgq4JkSbm3/X/rUfWBtwBuD39TnL7EQf8wY9BJOUM:zJjK/vkWBtwBa39THf+M","tlshash":"9f22bf0eff051e4fe9ed3171498003755b7497ca192d9206b9ffe768c3688d90e2d8a5","first_seen":"2025-10-17T05:03:06.988054Z","last_seen":"2026-01-13T15:17:47.281991Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2573,"timings":{"blocked":2373,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20250808-1/1439bc880e2ecc674f2209cbbd584719.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20250808-1/1439bc880e2ecc674f2209cbbd584719.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 68115\r\nlast-modified: Fri, 08 Aug 2025 02:58:16 GMT\r\nvary: Accept-Encoding\r\netag: \"689567c8-10a13\"\r\nexpires: Mon, 03 Nov 2025 03:09:13 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":68115,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 500x281, components 3","md5":"a87b3e2af515c58bddbe2948305dbc98","sha1":"69849cad20bd5592aef5e4222ea4950dfa7584ca","sha256":"9cd9b7bafb4c58fe17f447195523108af608c49174d8de9862dffd6141e928b9","sha512":"e311085731e110369643719b8855ecfe8cb10f4400ef3a4ef884b404787ffb37e4617f94248d1006e1f59a64a890cfeea6071aafbcccabc4856ce7f0bc4dd7c8","ssdeep":"1536:KZDBrRVEUvPK37KqFTQA2S3fFCC8kI4PrTbjQcHPWybCOzQPv0:UrRV9sQnStChUrTHF4n0","tlshash":"7963f2708d5887fad05e7854985188e9d1b17e580c6a7b03e3f3529af65d78c0f08d7e","first_seen":"2025-09-06T19:37:18.850715Z","last_seen":"2026-04-03T21:47:16.645503Z","times_seen":37,"resource_available":false,"data":null}},"time_used":3486,"timings":{"blocked":1322,"dns":1,"connect":146,"send":0,"wait":148,"receive":19,"ssl":1842},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"image.beckybelike.com/upload/vod/20241218-1/2732856672ef5aa11e5abc2c890ba819.jpg","fqdn":"image.beckybelike.com","domain":"beckybelike.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.363Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /upload/vod/20241218-1/2732856672ef5aa11e5abc2c890ba819.jpg HTTP/1.1\r\nHost: image.beckybelike.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":3930,"timings":{"blocked":-1,"dns":3930,"connect":4132,"send":0,"wait":0,"receive":0,"ssl":204},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/gb6wmodg_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/gb6wmodg_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 385289\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 18:00:23 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CBvc27iZ4eufZrlE18hawfa9au72OykXaq%2BBwxbyRDTDOBzGoeZ2C3RERmaUctpMsBU3TvTa8FXar%2F3iiei9fVDXJXAu6mGQr6E%3D\"}]}\r\ncf-ray: 98fd3d99ca2f783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":135629,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 650x661, components 3","md5":"6f085b6a2d2692126daf4fa96a980131","sha1":"46e0dd7d79e394e4836aea4ebf25df67ced58b54","sha256":"7097eca317faaf68c6490138b787bb637e48c244104b73750d3089afac326dfc","sha512":"95c705f4529e880e4c58fc37c2175a4e47b0439520f76373b633202c0ad3a6cf56e164c6a898fe31d57adee952d3eaaee193612d5a4e8b89b3eec022a22a8dd9","ssdeep":"3072:3K0H0wOFycc3wFkdJsdYutTrPXazf1U5qlTZt/OL:aCJkFkdJ0XtTGPTZ1k","tlshash":"bcd3123824c65e03716a48ea83b035ebd5d85f62154c624dae1e39f1e7e3998ddfac01","first_seen":"2025-10-17T05:03:07.001202Z","last_seen":"2026-01-31T10:39:20.872906Z","times_seen":22,"resource_available":false,"data":null}},"time_used":122,"timings":{"blocked":116,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/b/2/4/b246cf9c3609f93e983f20d418cc90711416652516-360-238-401-h264.flv-1.jpg","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.284Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /b/2/4/b246cf9c3609f93e983f20d418cc90711416652516-360-238-401-h264.flv-1.jpg HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15594\r\nlast-modified: Sat, 22 Nov 2014 11:01:21 GMT\r\netag: \"3cea-508707b4cd5a8\"\r\nexpires: Thu, 08 Jan 2026 13:26:00 GMT\r\ncache-control: max-age=10517922\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-7846-2-2948540-h-0-0---;8658-20-3715953----0-0-1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15594,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 540x539, segment length 16, comment: \"Lavc52.123.0\", baseline, precision 8, 308x232, components 3","md5":"71f6191d7f97e6a6d0b663c25bcf2ef8","sha1":"543472a62464b3d12f81ab5098b674e36a4ccbd6","sha256":"fc64c4dbe9d163b833aa087f592a90b7c9fac5277db29cf13413a5d527048ed1","sha512":"218d2d94ee4ee0ed18442090d1d40f7bb10aa32560909509c58e97faca9f83e516f34eb8688b748ce0752e6b47e2c8088bc0d83ac01244d1b0fc785d8e8195fb","ssdeep":"384:EDZcQV7L+fynLHYAdsQFXm/hMaMv794BI4rkjPqroX/:EDyQVOoHDdls/FM2B+jPoov","tlshash":"a762d02cde7233a35dc376eae7045f0ab54f1b5911369a8e4fda1c8ae5323321203714","first_seen":"2024-08-19T21:35:06.458829Z","last_seen":"2026-01-15T23:30:06.743808Z","times_seen":7,"resource_available":false,"data":null}},"time_used":1704,"timings":{"blocked":1656,"dns":0,"connect":0,"send":0,"wait":28,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/42131_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/42131_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 288925\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 13 Oct 2025 20:46:27 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W7OCwcJTxFNMryRUqpeqktDaUVtXSbaMO45qUS8f8LHVKGguLDgNIVImYAD4I3Gjf8VWiRqKhvzdBd53Eg2j2OlFpZHAiuydAbs%3D\"}]}\r\ncf-ray: 98fd3d99aa05783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":68216,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 800x450, components 3","md5":"8f7b7f9915510195fcc3799fcf11c166","sha1":"c2fe0ba5d56e54b797f22ab6b16508f4e9b2ef22","sha256":"4a3cbd347ea8573873c562bebcc847c3bd880cb6e910bb4a8822f6445885f300","sha512":"53289c69ae17f4e178b5f8e1d3aaf0041cea5d3aa51c9a4753243ce69086f8f8d257555075e91e10df0eddce03dd53629bd51c3927c4fc6f8e85f9f435ffa8bf","ssdeep":"1536:b4De6PrzYy1xfuhIc0jMRk/mTZtsdLwHeF4MCIHB9aYCxlG8:kDpvPfuhIQRCetyUc4VAbaYCx7","tlshash":"3e6302eaeb32c3e2b5350dd8aa05af5125deb64017e0880eee9fdf1f424f25144b4693","first_seen":"2025-07-30T08:26:08.422849Z","last_seen":"2025-12-02T18:54:01.208093Z","times_seen":8,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":19,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.fapmove.com/thumbs/1236/890_--.jpg","fqdn":"images.fapmove.com","domain":"fapmove.com","tld":"com"},"ip":{"addr":"104.21.2.105","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.380Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fapmove.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Oct 2025 15:28:00 GMT","end":"Wed, 31 Dec 2025 16:02:11 GMT"},"fingerprint":{"sha1":"98:32:77:28:78:31:83:2D:AA:07:81:02:FD:29:2F:3B:8B:E6:CE:46","sha256":"0D:26:97:7B:AC:10:87:98:ED:8B:82:F6:7F:7F:41:F6:48:AE:5D:8C:B9:BA:84:3C:70:78:B0:C6:94:B0:70:6B"}}},"request":{"raw":"GET /thumbs/1236/890_--.jpg HTTP/1.1\r\nHost: images.fapmove.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 16849\r\nserver: cloudflare\r\nlast-modified: Wed, 03 Nov 2021 11:10:11 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"61826e13-41d1\"\r\nexpires: Fri, 17 Oct 2025 15:54:55 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nage: 565618\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zLObCuTpRjDIr5hqpUiT6VKC%2FI9XLoX%2Bvvk1MIT7eWxLC1MEsqluMudkU%2BvAgKQBzZzyEa%2FsaPWzWUHt%2Frh1r4dx3nFgjTtaR9itzZDrSb27zA%3D%3D\"}]}\r\ncf-ray: 98fd3d99fa6a723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16849,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 320x180, components 3","md5":"bec394cae869227dab7ece91a60591f6","sha1":"79b72e8a276d65a100d504593061364d07bb1361","sha256":"c17f4ea8dcb713b6d1f8d2a9308429daa151a989d39cfdc6ae537a4646bebc8a","sha512":"ced11195baad40009379831d2fd66d4d9ab6f58342520f67f20fb5348b8cec9943369933d454207d3edbd6450992d35f9b21d9658d6fc4068e52477ad866b373","ssdeep":"384:7FQ6m3mmLDt4auUeQXv55PiMfY9Ahzm6n5c9Y0xBRRee5OWOtkBMPip:7CFL5PXPiUY9AhT5cvBRxOSBMPip","tlshash":"0f72d09014125f0ec86f4ae9e74eba06cf75d5fa5337a20ea06d51fe976c02a90478ec","first_seen":"2025-03-21T10:58:41.28214Z","last_seen":"2026-04-03T21:47:16.656083Z","times_seen":10,"resource_available":false,"data":null}},"time_used":547,"timings":{"blocked":220,"dns":4,"connect":1,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/050/4.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/050/4.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9785\r\nLast-Modified: Sat, 23 Mar 2024 12:18:56 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b0-2639\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9785,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"c448c8d8787a6813b38e1704cc36d8fe","sha1":"58e5dcf86b9c9490cf3627fd2b55b3aca9b6aa4d","sha256":"fb77127be028bee9e9243a52833d90f583db443ad93c0f020f94c50dbd77fe57","sha512":"f4ce365df66887d457a19a1d8ecd2aff627ac5ac0362abbc59cd3d4580d9ed3720f80251d3a66a634f882c0bbd1f82fb19d6f06b6d3105850ad7f70e4470e8fc","ssdeep":"192:eyONUBFqoUIvyoW8RgJsHnHHu6Rx/Oh5SqCO2XShktVYxBXGwXNfe:eLUDNvy1gHOQqcqCCetKdfe","tlshash":"0a12ae764b424912ce0c21b172b4f7b4e52a8c09e404347f2d1d1aefbb6add50d644ef","first_seen":"2025-10-17T05:03:07.022686Z","last_seen":"2025-10-17T05:03:07.022686Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2049,"timings":{"blocked":847,"dns":4,"connect":168,"send":0,"wait":187,"receive":1,"ssl":834},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/zwni0yta_header.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/zwni0yta_header.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 379739\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 19:32:53 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uDQsFZwo33V6qLEHMg812TJ9svP8AKNbJTHVfvKSuEFgcknh9bxcL3%2FVzkASPYdA4rfVGrj%2FDoKVxM%2Fedrm3nkRs8tvilEH2%2Bus%3D\"}]}\r\ncf-ray: 98fd3d99aa09783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":73677,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 640x480, components 3","md5":"cc7c27a1bce21419dbee890875c4381f","sha1":"a888a0196a58d3f16f80ea877e9fe72dfd43e56a","sha256":"f444e9dab39a5c82fe3e08e940306f689fab9fe5ae055a3f17ca0af839428c84","sha512":"8f8a7a5e8b454ac5c1ba188a6ebfb263f9e98ad78b06dcbba0d2bbfdc14edf4550eb36dae767c403908b310a3596a9c27a1d0b898501b2b37cf6e6812022573d","ssdeep":"1536:W5qa3qp2AWfAOHaguHIjwBgMIE2mj3dCqJzwA9ltXdOPftas2:u1AsG6EvtCe8A9ltXdQa7","tlshash":"6f73029d1ca0efec0310abb4d4290b457995660454a1061c1bf835f9fbb68ba89df7dc","first_seen":"2025-10-17T05:03:07.027437Z","last_seen":"2026-02-25T10:38:27.046599Z","times_seen":10,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.4kpornvideos.tv/24104/1205152_1.jpg","fqdn":"icdn05.4kpornvideos.tv","domain":"4kpornvideos.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.4kpornvideos.tv","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 02:33:01 GMT","end":"Wed, 26 Nov 2025 02:33:00 GMT"},"fingerprint":{"sha1":"D0:06:98:C1:B0:BF:9B:C1:72:76:D0:10:BB:4C:8A:9F:20:B3:4D:DC","sha256":"DA:CA:A0:76:AC:4A:3F:1A:BC:FD:4A:83:E7:AD:52:26:7E:41:41:B2:6A:B2:BD:FE:11:D7:BE:22:95:EC:F4:A0"}}},"request":{"raw":"GET /24104/1205152_1.jpg HTTP/1.1\r\nHost: icdn05.4kpornvideos.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 34723\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1598363874.399188156\r\netag: a2ef2eb5a4a03d07a36369ee25c42103\r\nlast-modified: Thu, 03 Nov 2022 20:11:49 GMT\r\nx-timestamp: 1667506308.13781\r\nx-trans-id: txb49f095e695447a98c994-0065d424b9\r\nx-openstack-request-id: txb49f095e695447a98c994-0065d424b9\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:56 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34723,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x169, components 3","md5":"a2ef2eb5a4a03d07a36369ee25c42103","sha1":"2e91fd524bca04768dcb3d53a3e845c094a43877","sha256":"38d3bdecc0cf36c36738fff1eb3944cbe9b41f58b4f44fc6e4ee69c2edc4c399","sha512":"76d1ec029c57d9741c74a032e02c0d1fff7f2418112f6d20276903aa1bcb88bbe893f1f3f0f623bf39f0fa2b2c5308df668333ef7ea2203aebde1449a93392e4","ssdeep":"768:lTCKrlND+kHad68F4z+RrCsHNm+zkiXsrhbEO+XTr/F9haQ:5CKrlMkHaBNrVBzkimEOKr7hr","tlshash":"32f2e1ac1f0e1373aeb4ca9bfdfe61c69b865fb30c9883435a4c2c16d05195438395c6","first_seen":"2025-06-07T22:50:30.165078Z","last_seen":"2026-01-13T15:17:47.213804Z","times_seen":7,"resource_available":false,"data":null}},"time_used":2967,"timings":{"blocked":1168,"dns":1,"connect":26,"send":0,"wait":33,"receive":1,"ssl":1699},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fqjpg4.top/upload/vod/20250518-1/c80063060adb40b684e38de8600d146f.png","fqdn":"fqjpg4.top","domain":"fqjpg4.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.620Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /upload/vod/20250518-1/c80063060adb40b684e38de8600d146f.png HTTP/1.1\r\nHost: fqjpg4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":3350,"timings":{"blocked":1391,"dns":2,"connect":114,"send":0,"wait":0,"receive":0,"ssl":1842},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/c8eb4826531f4960bcab86bb1659a6e1.jpg","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/c8eb4826531f4960bcab86bb1659a6e1.jpg HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 44870\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=47884\r\netag: \"3286ba5e4df6435aad79c473e9d7baa1\"\r\nlast-modified: Sat, 07 Oct 2023 09:46:27 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y1UNgNRmhidoMu8pABg%2BQJSOQtEM%2BEJO9EcguvDQxOW7o6%2Ba%2BAYKTP0xEVkx2ZBzvIH%2B8rL0YtTdFOt5xLmY%2FsU2yHJwHBqJoBnRiSpn\"}]}\r\nage: 524\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3da6a97fb28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":44870,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 268 x 394, 8-bit colormap, non-interlaced","md5":"9b1d03a770fff569b0ed0ec9937a1408","sha1":"21a889f947a27743951e06767c20926c18b00a0d","sha256":"9e68ba73b0bc07ea09d159cd27c672a9dcce96fe4afc0bfc34fa1065a2dbbff7","sha512":"9b2535ae0538009922e31dc8903c1858f6d758371c01aa6166e8c765022bdcab54cd13a94238fff853b7ddc8f0134ae683fd7ed59242aca2b5016a8dcd81c3a4","ssdeep":"768:VBZvxONNb17MJGKZA7LSqnvGWXz5cs+Uj/KhwRPc9z9CTnmO4:VENNZ7MJGK+7rG4zyOjVPccmO4","tlshash":"aa1302178598bc65eb97a90bc6d3b19a1781f163ef36993f1217293a3402f189c43ac6","first_seen":"2025-10-17T05:03:07.039167Z","last_seen":"2025-10-17T05:03:07.039167Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2236,"timings":{"blocked":662,"dns":4,"connect":1,"send":0,"wait":14,"receive":2,"ssl":1547},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gcore-pic.xvideos-cdn.com/videos/thumbs169ll/5f/b2/8f/5fb28f7255dcced894ae6987de6792c4/5fb28f7255dcced894ae6987de6792c4.13.jpg","fqdn":"gcore-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.244.209.62","port":443,"asn":199524,"as":"G-Core Labs S.A.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.581Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/5f/b2/8f/5fb28f7255dcced894ae6987de6792c4/5fb28f7255dcced894ae6987de6792c4.13.jpg HTTP/1.1\r\nHost: gcore-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 12682\r\ntraceparent: 00-c5aa3d61c8ad401adb54157fde00875d-b5d60c27f45ec55b-01\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Tue, 06 Feb 2024 03:55:21 GMT\r\nexpires: Mon, 30 Jun 2025 06:24:46 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-id-shield: am3-hw-edge-gc66\r\nage: 9384238\r\nx-id: osix-hw-edge-gc4\r\ncache: HIT\r\nx-cached-since: 2025-08-15T16:53:21+00:00\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12682,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 352x198, components 3","md5":"5724f48cc1e190c643d51d91324cfefd","sha1":"f2d477dfb45d5d2afe16c6066ec4a709cd3e9dc2","sha256":"b163e6088009b08f3d1d16baf687eec27dcf0c6467fb2536825976fe01a74485","sha512":"a23ec68708bd216efce292088861ab1edc76ca40aa16692982b9bbcacd21d86dc04078d77c58e2642b22d9d9b63417ad5e4b1b4de6a79a8e61c945203426fd66","ssdeep":"192:vG3gEAwj2VqeP7eMUbjyedXcBd6yrl/XM35NSUJp58FJuKHZZ+:Kg9qePuwnzru5kcp5PcZZ+","tlshash":"5f42b000e31e0d26e2994f7f1c7155288db3ac02a5f3affe934225926455c76ace7c67","first_seen":"2025-08-29T16:09:41.145052Z","last_seen":"2026-01-14T12:53:34.238301Z","times_seen":4,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":76,"dns":6,"connect":2,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tiam.jp/wp-content/uploads/2015/02/8665-100.jpg","fqdn":"tiam.jp","domain":"tiam.jp","tld":"jp"},"ip":{"addr":"23.27.160.201","port":443,"asn":23338,"as":"ASN-DCS-01","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"tiam.jp","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Sep 2025 21:59:29 GMT","end":"Tue, 23 Dec 2025 21:59:28 GMT"},"fingerprint":{"sha1":"36:0A:3F:7A:BA:A5:2D:11:C2:CD:5F:4C:E2:0C:E4:A6:BE:32:37:50","sha256":"B4:E9:49:86:EF:14:30:B8:99:9D:C3:E7:64:28:55:7A:58:0F:58:74:92:E4:4E:28:3B:26:0A:28:5A:5A:84:96"}}},"request":{"raw":"GET /wp-content/uploads/2015/02/8665-100.jpg HTTP/1.1\r\nHost: tiam.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:01:56 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 6629\r\nLast-Modified: Mon, 02 Feb 2015 10:42:22 GMT\r\nConnection: keep-alive\r\nETag: \"54cf548e-19e5\"\r\nExpires: Fri, 17 Oct 2025 05:06:56 GMT\r\nCache-Control: max-age=300\r\nX-Frame-Options: SAMEORIGIN\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6629,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3","md5":"878c9dd64ee041d9e0549474db2ef0af","sha1":"ab2da159b2cd0c79d93b90f3bfd769cde4024b92","sha256":"7ed1f621806ffff5fac8fdb9ae1014ced6e328e3ed13c55af9a5a29b3b6534b4","sha512":"78eacbd5eaebe584754cfc7261d269be67cc8f03056ba917569a859d6f32e4ff50ef931f3ad19287ca4b67c35cb8b9581f4bd52fe77b1155f0e7ae5c3d969441","ssdeep":"96:FgsDhEgwx6x65GbNjCXr+FZHETsLyt7kG+c+BREJrFd559UgIg1vlSAh5dsKRZ3:WdgwxiMr+3OsLc7Y6RdThlPDdpRZ","tlshash":"dfd17c9797123f7888d2637cc54cda22243b816c315345c5e1082af7b5892136aad1d9","first_seen":"2025-07-26T12:58:47.80796Z","last_seen":"2025-12-16T06:19:44.061612Z","times_seen":6,"resource_available":false,"data":null}},"time_used":2893,"timings":{"blocked":703,"dns":1,"connect":171,"send":0,"wait":178,"receive":0,"ssl":1836},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cacrz.4jpg.top/AV4.us.jpg","fqdn":"cacrz.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"4jpg.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 20 Aug 2025 22:07:03 GMT","end":"Tue, 18 Nov 2025 23:05:39 GMT"},"fingerprint":{"sha1":"F7:56:D0:5F:96:7E:84:98:1E:F2:DC:20:74:94:F8:5E:E9:99:22:BE","sha256":"A4:A0:9B:AB:A6:84:D2:21:1D:FD:89:C2:59:89:93:11:10:44:BB:96:A7:D5:61:38:E5:1F:75:F7:F1:E5:EC:A1"}}},"request":{"raw":"GET /AV4.us.jpg HTTP/1.1\r\nHost: cacrz.4jpg.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\nserver: cloudflare\r\netag: \"2225-5499bcea176c0\"\r\naccept-ranges: bytes\r\ncontent-length: 8741\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\nahost: RZ\r\ncache-control: public, max-age=3600000\r\ncontent-type: image/jpeg\r\nage: 1655068\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PZHWaA19EyoYxwfoA%2FYq4Tc3B%2FN7N%2B%2FFoYNGRxz1IlwAY%2F16MgQ8aPYE7kfeR%2FwtwSJZpJ0g50FolrCRwPHuxC8juTMxJ3Bco0BQJMDO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3db56e5a0daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8741,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3","md5":"edfe007a6e5b3d268b2528f564b60b43","sha1":"1644c8ef97c871079e07e5079d613af5cb94052f","sha256":"bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390","sha512":"8eab965dcd5098e29ccc1cf94459fa6b8fda97331a35139ae6c57cacbe0ed733cd53af8f7e2ca8a82c2cb9f785cafe46f4a34f99aadbdde53ca81cae25403d93","ssdeep":"192:YkyyBW+1ajsm2w0aCqPGfAzC4TvykEobWwK5Fi:YkvU4DqufJ4TvyXO0i","tlshash":"b702bf4a2da48fb326c1c5508cdff34b2ec78a5c67efb16f97319e5af4017165904849","first_seen":"2024-04-16T15:37:12Z","last_seen":"2025-11-15T09:18:18.740899Z","times_seen":2006,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":9,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"cacrz.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.clporn.com/favicon.ico","fqdn":"www.clporn.com","domain":"clporn.com","tld":"com"},"ip":{"addr":"104.21.25.21","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"clporn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Oct 2025 05:16:55 GMT","end":"Wed, 07 Jan 2026 06:15:36 GMT"},"fingerprint":{"sha1":"8A:7B:3B:71:BB:27:D3:70:31:81:3F:59:24:FC:E5:54:3A:47:7B:F6","sha256":"24:47:66:28:D4:C2:64:80:4C:26:68:92:46:D8:DA:31:BE:4B:F3:3D:9A:BD:BB:63:6C:4E:29:64:3B:9E:D6:36"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.clporn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nserver: cloudflare\r\nlast-modified: Sun, 21 May 2023 03:45:32 GMT\r\netag: \"646993dc-47e\"\r\nexpires: Wed, 30 Sep 2026 18:47:10 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1419289\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZHEwzFmqzD7zJaWqUMJG8gVYXIre6mKuacNTMi1lb7h0WxpSwaGs%2Bv7VzTV0TKSlZeEYgGrRpohOUCXrvtwhRbJOfPLxvE1Dxp9gbw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3dbfaea9569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"7bce878d4d59681219dd7ee7b31d501f","sha1":"8078782a63dd8997b9537de46f1c19c0b60737ce","sha256":"19658bac1ca076be044dc8e1289ae869efd6847cc8d61405f1f6aeea11904dcf","sha512":"020763d535f44dfca6aa362c79c6f6a58bbaac6251264c36cb7277bdd3ef928122030d0f7ae12d5cc2b6b186ff8ad21d9d4019c9f51aed340720ce8a9a0802c3","ssdeep":"","tlshash":"ed217d82954145a8eda50f312233181893bfbf97fe74f30ead50b1705b372e400759a6","first_seen":"2024-05-18T21:25:43Z","last_seen":"2026-04-03T21:47:16.44898Z","times_seen":399,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn1.xxxxsx.com/img/871/406_1.jpg","fqdn":"cdn1.xxxxsx.com","domain":"xxxxsx.com","tld":"com"},"ip":{"addr":"185.76.9.27","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1055215681.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Tue, 19 Aug 2025 12:32:35 GMT","end":"Mon, 17 Nov 2025 12:32:34 GMT"},"fingerprint":{"sha1":"CF:A6:E7:EC:B9:35:5B:9D:1D:28:3E:7E:A2:E1:8B:58:70:8C:3C:CA","sha256":"42:5E:D1:FE:F5:BC:5C:53:BD:FF:89:43:74:B1:47:87:1C:BD:17:AB:3F:AB:AB:75:59:6B:2D:65:49:81:E7:8B"}}},"request":{"raw":"GET /img/871/406_1.jpg HTTP/1.1\r\nHost: cdn1.xxxxsx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 15995\r\nlast-modified: Fri, 02 Oct 2020 12:43:43 GMT\r\netag: \"5f77207f-3e7b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000;\r\nx-77-nzt: EwwBuUwJGwH3EeQbAgwBuUwKCQH3uxJYAAwBnJIhJwH3DwcAAA\r\nx-77-nzt-ray: fdb541235d4f33bac4cdf16828602717\r\nx-77-cache: HIT\r\nx-77-age: 35382289\r\nserver: CDN77-Turbo\r\nx-77-pop: stockholmSE\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15995,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 290x186, components 3","md5":"558ce1eef0713f44a106cb586eca2afc","sha1":"0b26f7b833258ad938d9279452c284f945190239","sha256":"4f316b6d33bb3127cdbbb6b8c7dea6b4de31d324dfe1d92c3a2fbca75350d60c","sha512":"20f48ff3fbc5ba4c7039ec19c48288e52e36fe5520580dcbb0ae6eaaa8b6aadb831a0d4ba239f691ce12ca7668d2337a6be8b817bb3c7a099e59ee136e0a89c4","ssdeep":"384:g1GO/DA6dNYPFxM2CyOIk7DJmAg9H5agOuHl6T:cDy3IyOI+Lgd5ouF6T","tlshash":"c872e04cdc0ab9fcf6be61716827f709af02a7b5702532d0832b90ed1f9805a4615e95","first_seen":"2025-03-25T21:53:49.803221Z","last_seen":"2026-03-03T08:08:10.316598Z","times_seen":16,"resource_available":false,"data":null}},"time_used":2887,"timings":{"blocked":1193,"dns":1,"connect":10,"send":0,"wait":10,"receive":1,"ssl":1670},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pornoperso.com/favicon.ico","fqdn":"pornoperso.com","domain":"pornoperso.com","tld":"com"},"ip":{"addr":"104.21.41.194","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pornoperso.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 16 Oct 2025 13:59:39 GMT","end":"Wed, 14 Jan 2026 14:57:12 GMT"},"fingerprint":{"sha1":"29:72:B8:BE:EB:16:17:AB:56:D1:2C:42:50:1F:A7:7F:38:B4:BA:16","sha256":"93:B0:83:A7:14:75:B0:03:27:01:30:E1:75:EE:9B:65:C7:7B:2C:45:C4:EB:A8:22:2D:2A:D7:B2:7D:E6:11:E4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: pornoperso.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nversion: MS25092904\r\nx-dns-prefetch-control: on\r\nx-download-options: noopen\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncache-control: public, max-age=0, s-maxage=100, stale-while-revalidate=30, stale-if-error=1296000\r\nstrict-transport-security: max-age=31536000;\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gUQtFcs4WYrlWyQx9Ye9yl9%2FFlsIitnvibzk1FnxWL6qloJPAWNRFrxx4zZ54%2F%2B0VUU9aXrlQLm64mLMY1sTXsLM5pOwuVEks08kstRZ\"}]}\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncf-ray: 98fd3dbf6f92783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.pornoanswers.com/favicon.ico","fqdn":"www.pornoanswers.com","domain":"pornoanswers.com","tld":"com"},"ip":{"addr":"213.174.132.100","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pornoanswers.com","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 19 Sep 2025 00:00:00 GMT","end":"Thu, 18 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"87:13:E5:F5:B9:4A:9C:59:3C:E4:2F:9E:A2:28:28:A4:60:82:8C:93","sha256":"D3:1F:F0:11:86:F5:5A:9C:38:61:B3:2A:91:96:F6:8E:3F:ED:53:EF:ED:91:79:8F:15:89:35:CE:C6:C3:E7:AE"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.pornoanswers.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: openresty\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":843,"timings":{"blocked":-1,"dns":5,"connect":93,"send":0,"wait":92,"receive":0,"ssl":650},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.kwai.com/favicon.ico","fqdn":"www.kwai.com","domain":"kwai.com","tld":"com"},"ip":{"addr":"95.101.11.138","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.kwai.com","organization":""},"issuer":{"commonName":"GlobalSign GCC R3 DV TLS CA 2020","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 29 Jul 2025 08:23:35 GMT","end":"Sun, 30 Aug 2026 08:23:34 GMT"},"fingerprint":{"sha1":"4A:A1:45:2B:02:C8:86:65:84:02:D2:2B:EF:71:1F:70:E4:44:DF:B5","sha256":"CF:B9:73:AE:76:85:CD:63:FB:EE:A2:9A:2D:E7:B0:B4:2C:2B:CB:EB:4D:79:36:A4:4D:6C:98:85:76:5E:F4:DC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.kwai.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/x-icon\r\ncontent-length: 2006\r\nlast-modified: Thu, 16 Oct 2025 02:59:05 GMT\r\netag: \"68f05f79-7d6\"\r\ncontent-security-policy-report-only: default-src 'self' 'unsafe-inline' 'unsafe-eval' *.mythad.com https://*.kwai-pro.com http://*.kwai-pro.com http://*.kwai.net https://*.kwai.net *.kwai.com *.snackvideo.in *.kwai.me *.kwai.app *.kwimgs.com *.yximgs.com *.cloudfront.net *.kuaishou.com https://*.gifshow.com http://*.gifshow.com https://log-sdk.ksapisrv.com https://www.googletagmanager.com https://gifshow-static.download.ks-cdn.com https://static3.avast.com https://translate.google.com https://www.gstatic.com https://fonts.gstatic.com https://connect.facebook.net www.google-analytics.com hm.baidu.com m.snackvideo.com http://*.ap4r.com https://*.ap4r.com https://*.typekit.net http://*.typekit.net ak-sgp-pic.snackvideo.in tx-sgp-pic.snackvideo.in ws-sgp-pic.snackvideo.in g-us-kampic.golden49.net g-us-kamcdn.golden49.net m.kwai.com sentry.kuaishou.com https://cdn.jsdelivr.net https://at.alicdn.com https://www.facebook.com https://snap.licdn.com https://px.ads.linkedin.com https://cdn.linkedin.oribi.io https://www.linkedin.com https://*.google.com https://*.google-analytics.com https://*.doubleclick.net asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;img-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;connect-src http: https: asset: data: blob: android-webview-video-poster: ikwai: chrome-extension:;report-uri https://csplog.kwai-pro.com/log/kwai/wwwkwai\r\naccept-ranges: bytes\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\nalt-svc: h3=\":443\"; ma=93600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2006,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"8598787bb964772e7c58335630cd2184","sha1":"43bba31482ccfacc5e94cb05f7174ccfb22e1917","sha256":"45526cf4f38253c14eec86886eabcff170c500d7bbe04cda7e24db1a003fe4f3","sha512":"9755e5fbb5248ee9d09f0c32ac0f620829f61bdaf7d74fc6a31a45c60292e07e1241d7c64996474aac54ac2b326963b8ee6adfa61ab942b78264741e5862168d","ssdeep":"","tlshash":"d641e8ae8e969c4fa5c060169238c384b9b51c87e1447de350026d8ee06be98771b1eb","first_seen":"2025-07-25T08:09:31.5089Z","last_seen":"2026-04-03T22:52:06.848343Z","times_seen":454,"resource_available":false,"data":null}},"time_used":1001,"timings":{"blocked":235,"dns":0,"connect":1,"send":0,"wait":268,"receive":5,"ssl":492},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/560/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.598Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/560/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:54 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12845\r\nLast-Modified: Sat, 23 Mar 2024 12:18:54 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ae-322d\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12845,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"fb118256c55ec76b261295f91a4f34aa","sha1":"788fac964c17430724938637a578162212bae246","sha256":"856947debabebfa1baaeeea711dd9ac834583c6e56e2649a4cb78a768d738451","sha512":"94538b1ad493bcfbf1f87b5adb95511d3b6d1b8493a01c706e715cf82e16cd24c2f8900e4058b383ed9d1faa57568bd5b02127007cd988aef036cab0b1659e89","ssdeep":"192:oMAUYqSymnEq8v6TVTxdB18cKxrm+gzgEig/XGiD+/FmTrwAjSsw9yOkFq:oMAByMigh18com+4GO+A/wAjSsw9yOko","tlshash":"5442b02347d0d592fb3c8332a92e607aaa52fa4151341f51b1322078776b1bb4af19be","first_seen":"2025-06-18T07:11:21.471692Z","last_seen":"2025-11-13T05:34:52.772544Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1005,"timings":{"blocked":786,"dns":0,"connect":0,"send":0,"wait":218,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/0d/6f/e7/0d6fe7dc9d9a0d5f5f63084aa7d2643a-1/0d6fe7dc9d9a0d5f5f63084aa7d2643a.27.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/0d/6f/e7/0d6fe7dc9d9a0d5f5f63084aa7d2643a-1/0d6fe7dc9d9a0d5f5f63084aa7d2643a.27.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9348\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Sat, 06 Jan 2024 18:04:01 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH3CCBBAAwBJRPCOgH3eyAJAAwBj/Q6jAH3RAAAAA\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf168e0831d26\r\nx-accel-expires: @1766772338\r\nx-accel-date: 1756409273\r\nx-77-cache: HIT\r\nx-77-age: 4268040\r\nx-accel-date-max: 1704564365\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":9348,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 352x198, components 3","md5":"a8115ea9829b99df2dedebfc9e47a127","sha1":"79323476718c512427793c06e9150f17fdf45f9a","sha256":"caedee67da1a0c03eda6a202c4e81bfa401e06fa5afca4ac66cf2ab945ff01e6","sha512":"d048007682a87600af2c0ed16578f87ac4ce186825dc1eb83fa47369ac89689dabbb6af04bc3cc6ea558e80282ff824e0297cdd352be311429c38aed3a31500b","ssdeep":"192:vBtG/10pDhvg9KMXQtl4vmnOvzLiziwIV6SKSDOGwA3QhJ8DqTwHi:oGhv8KFS+nOvi06CxN88DnHi","tlshash":"dc12af9dfb8609d3cf6ca7bd85d2d884379416276209de0d670c1aa614463353d8e73e","first_seen":"2025-10-17T05:03:07.068731Z","last_seen":"2026-01-17T01:52:05.802416Z","times_seen":20,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fixedjs.jtube.top/AV4.us.jpg","fqdn":"fixedjs.jtube.top","domain":"jtube.top","tld":"top"},"ip":{"addr":"172.67.159.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.366Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jtube.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 27 Aug 2025 14:27:45 GMT","end":"Tue, 25 Nov 2025 15:25:55 GMT"},"fingerprint":{"sha1":"66:2E:34:70:FA:86:6E:B1:ED:1D:E0:2C:B1:CF:99:83:1B:12:C9:9B","sha256":"A1:93:B4:EB:60:87:57:A5:04:81:E6:3C:8D:64:06:1C:C5:B1:E3:4B:82:86:57:4C:97:AF:E0:A3:4E:F8:12:B8"}}},"request":{"raw":"GET /AV4.us.jpg HTTP/1.1\r\nHost: fixedjs.jtube.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 8741\r\nserver: cloudflare\r\netag: \"2225-614075c7eff6b\"\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\ncache-control: public, max-age=360000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lR3u8IRPlrDgY80HAkIK3IaSRRGgHWNiYwvZcZPX3NvHm%2BL%2BuU%2FwZsYFjUKzZFW20ZyXichqhLrl8Vi2G6syzg1RCqiS5xjfr0%2BfMmWw2Q%3D%3D\"}]}\r\nage: 47166\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncf-ray: 98fd3d99eca356c7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8741,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 307x82, components 3","md5":"edfe007a6e5b3d268b2528f564b60b43","sha1":"1644c8ef97c871079e07e5079d613af5cb94052f","sha256":"bf5bb657f5e788af0c02b9b437d3f15bec91e27175e5a654e3d431fb6d063390","sha512":"8eab965dcd5098e29ccc1cf94459fa6b8fda97331a35139ae6c57cacbe0ed733cd53af8f7e2ca8a82c2cb9f785cafe46f4a34f99aadbdde53ca81cae25403d93","ssdeep":"192:YkyyBW+1ajsm2w0aCqPGfAzC4TvykEobWwK5Fi:YkvU4DqufJ4TvyXO0i","tlshash":"b702bf4a2da48fb326c1c5508cdff34b2ec78a5c67efb16f97319e5af4017165904849","first_seen":"2024-04-16T15:37:12Z","last_seen":"2025-11-15T09:18:18.740899Z","times_seen":2006,"resource_available":false,"data":null}},"time_used":586,"timings":{"blocked":219,"dns":0,"connect":7,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fixedjs.jtube.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/523/3.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/523/3.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 14712\r\nLast-Modified: Sat, 23 Mar 2024 12:18:54 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ae-3978\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14712,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"3adb25925094f9910e1d68fd402d3832","sha1":"a83148a3e894e573afe3669f4dd0af229f25249f","sha256":"6b3503b6dae6c9ee9b7d82edef591b7059d25b3caf34703bd68f8bd9e9c641c6","sha512":"5e43275cecbb70409b9fed465c55a982a44f994fd0c112461f33c3c35587e357c72f01b33786dce38b24a88ec1b8db5ca07c1861287df2220bc8880e53e730c3","ssdeep":"384:LL97FtNJwnFUPU4ARkZGDJKP7iGYPixbkZM21MP:L1nnolR/KzZYqxb721MP","tlshash":"4862bf569372d482ea3d54b104309401c7e0aa651ceae76e2975f923c3b9bc6063dbbf","first_seen":"2025-07-08T01:24:12.9987Z","last_seen":"2025-11-27T08:23:02.480681Z","times_seen":5,"resource_available":false,"data":null}},"time_used":3379,"timings":{"blocked":1550,"dns":126,"connect":170,"send":0,"wait":206,"receive":1,"ssl":1320},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20250719-1/72efd9f4c86159e600e83a8e04555be8.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20250719-1/72efd9f4c86159e600e83a8e04555be8.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 151008\r\nlast-modified: Sat, 19 Jul 2025 03:46:19 GMT\r\nvary: Accept-Encoding\r\netag: \"687b150b-24de0\"\r\nexpires: Sun, 16 Nov 2025 04:40:24 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":151008,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3","md5":"7a3def8e138975fbc85c941b7e325396","sha1":"f0e18847e2022444329ba605e473d6cefd1c0b9d","sha256":"ed79dfc407d01fc459f24bf2ab6996e98830bbc0146e9ca3e23e251ae2217104","sha512":"7675ba1b475d92f877ef90861fa8ff8d990ef93c44a8862e0fc9dca46c9d923c52781708b9899954e1606b871e01d6c925f78601f372f0b312d6618986f07a69","ssdeep":"3072:ErhwRTqgrNimBV1va5Gedf/atPEuDlVgA36UO7AiSQziMl:+wBqSLBVCGelSt8klrlOvUMl","tlshash":"97e3122c4e028fb2fdc0a2b2566fac4775cccac97bee612458e5a564c74136d8c2ed53","first_seen":"2025-07-29T16:40:28.9511Z","last_seen":"2026-02-06T15:51:51.626757Z","times_seen":186,"resource_available":false,"data":null}},"time_used":3259,"timings":{"blocked":869,"dns":1,"connect":158,"send":0,"wait":293,"receive":102,"ssl":1808},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/377/4.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/377/4.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 20299\r\nLast-Modified: Sat, 23 Mar 2024 12:19:57 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8ed-4f4b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":20299,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"ea3866d4dcb9036a0b0a7648bec34ce7","sha1":"2585921632bcff6a986b46b16ff84a896eebfbfc","sha256":"a458893fb0f6b6c192cce89947a434400ac88bc37ca004f1baeaecedbabbd10b","sha512":"ddb05bbaacdb0497e74f12fea46c592fb54e60f91bef0c89361088f3a27073872e29c2661246dcb0d6f855b2ff72f32baa54e540473d7521b241768650480d9b","ssdeep":"384:Yu6OZa0j7c/1ld3S/AEu9hA/8pbTPY+KT/Ct6StGIqPPt:YZCa0j7c/1GYEujdp/YkmV","tlshash":"3892e12a0b70e290596c8afeb82d477bff4f0e00384d554f3606cb4a8bb7a054475b47","first_seen":"2025-10-17T05:03:07.081184Z","last_seen":"2025-10-17T05:03:07.081184Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2190,"timings":{"blocked":1943,"dns":0,"connect":0,"send":0,"wait":221,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"muweimv.com/%E9%9D%92%E6%98%A5%E6%9C%9F%EF%BC%9A%E7%94%B7%E5%AD%A9%E5%92%8C%E5%A5%B3%E5%AD%A9%E7%9A%84%E6%80%A7%E5%81%A5%E5%BA%B7%E6%95%99%E8%82%B2.webp","fqdn":"muweimv.com","domain":"muweimv.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.523Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /%E9%9D%92%E6%98%A5%E6%9C%9F%EF%BC%9A%E7%94%B7%E5%AD%A9%E5%92%8C%E5%A5%B3%E5%AD%A9%E7%9A%84%E6%80%A7%E5%81%A5%E5%BA%B7%E6%95%99%E8%82%B2.webp HTTP/1.1\r\nHost: muweimv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.filmx-perso.com/thumb/56NonjmFG2LMdfrRzZQ.jpg","fqdn":"cdn.filmx-perso.com","domain":"filmx-perso.com","tld":"com"},"ip":{"addr":"5.135.23.164","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.les-impudiques.fr","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 09 Oct 2025 19:38:27 GMT","end":"Wed, 07 Jan 2026 19:38:26 GMT"},"fingerprint":{"sha1":"FA:57:73:65:DD:E9:C1:BF:45:38:75:34:C0:6F:62:1A:2F:35:25:23","sha256":"04:A4:04:9E:71:8A:F6:B1:99:65:5B:1C:DD:DF:A1:11:DA:AD:97:19:1F:9B:32:45:10:5D:62:4A:EB:E0:03:7C"}}},"request":{"raw":"GET /thumb/56NonjmFG2LMdfrRzZQ.jpg HTTP/1.1\r\nHost: cdn.filmx-perso.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21895\r\nserver: OVHcloud\r\nlast-modified: Sat, 23 Mar 2019 16:17:59 GMT\r\naccept-ranges: bytes\r\ncache-control: max-age=900\r\nexpires: Fri, 17 Oct 2025 05:16:56 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21895,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x360, components 3","md5":"524fd0b2624d629970677ce7652dd0fc","sha1":"d469de123ce8efce73db67ed5afc8da845983d98","sha256":"f951adfe1b413318054ef29222ac6c5a26b22d03632e2e16aaa09560f9c51ff2","sha512":"a9318fcec4138af01ace896f86568986e854f8e9765cbdd3e429ff7a3227c940dd9ca747f4a0f00aa8a6e31483edbb1b43b776f0feb2b14bd15eeb13b8f55e18","ssdeep":"384:zp7wLUujfyucBwgATtqNN1Srq9oK13Sr04cymnJKPtOCUIZnGi6B7:ZwNjPqA5qIrq9H3SrNcGAwtGic","tlshash":"f4a2e0a85fdad8559b9d64b8ebf446e33f3a7f260909044f12bae735c52ac0e0580b47","first_seen":"2025-10-17T05:03:07.085662Z","last_seen":"2026-04-03T21:47:16.501023Z","times_seen":19,"resource_available":false,"data":null}},"time_used":3104,"timings":{"blocked":1322,"dns":1,"connect":24,"send":0,"wait":28,"receive":21,"ssl":1707},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pics.teentubexnxx.com/photo/174/163_-.jpg","fqdn":"pics.teentubexnxx.com","domain":"teentubexnxx.com","tld":"com"},"ip":{"addr":"172.67.208.72","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"teentubexnxx.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 14 Sep 2025 19:17:08 GMT","end":"Sat, 13 Dec 2025 19:27:45 GMT"},"fingerprint":{"sha1":"5C:3A:AC:AF:D3:12:50:D7:8E:DD:A7:C4:7C:9E:2B:69:F3:55:D3:61","sha256":"36:AC:BC:5E:44:62:6C:42:7F:6E:2E:18:10:56:65:8D:4C:DD:57:B8:B4:92:94:BB:43:81:45:70:A6:30:DA:66"}}},"request":{"raw":"GET /photo/174/163_-.jpg HTTP/1.1\r\nHost: pics.teentubexnxx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9017\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Aug 2021 10:21:32 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"612a0e2c-2339\"\r\nexpires: Fri, 17 Oct 2025 10:17:02 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nage: 585894\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TYDCIw1E0%2B4OJ%2BIBhQmbJ7VQDLHtYwg%2BnUVTr2HL61KXFXIeAtYGzMrswTLlAYrtB2a26TslCpglHpk61mS%2FY8m2Jg5D14j0gzWClzabb6d%2BIDU%3D\"}]}\r\ncf-ray: 98fd3daeef6956c7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9017,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 320x240, components 3","md5":"b5fbb29e172ec94ab01c6be6c14d7dfc","sha1":"45ff479c734dce8ba855641aae18190a35f6a893","sha256":"fdc4a531b5ace780389b840bcc9c6d4ebadda0a97ef9bba8ff14929a690264ac","sha512":"7488db4ad22aecf84538f8cf1469548bc97bdf5ce8c644ef7dcc93b0f2ec4dd9770779e6f6c670e50c61071cac5bb1fa2802625b465e08a421c01092da1400dd","ssdeep":"192:SqIy8rh0jjhngpjDixlLYtAWO2H9wLM9y+lXOFF710woUw:n8rKnhgp2utAHb49nXyF71035","tlshash":"2812bf3d90e290b8da7ded10ec4e9af48fe1126f73b43aa1284316b48fc99f45c5053a","first_seen":"2025-02-15T18:15:16.781306Z","last_seen":"2026-01-21T08:47:17.603731Z","times_seen":41,"resource_available":false,"data":null}},"time_used":3337,"timings":{"blocked":1269,"dns":1,"connect":4,"send":0,"wait":11,"receive":1,"ssl":2043},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/386/2.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/386/2.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:57 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11082\r\nLast-Modified: Sat, 23 Mar 2024 12:20:00 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8f0-2b4a\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":11082,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"51baeb2dc43a2fc95c62ab1e9a8e4ed4","sha1":"042ed36e37744168c5d3d78eb9fac268079aadf0","sha256":"b6734ba4a29dd11172cf72343a955853b30b7f0beba6926718a39f7980894094","sha512":"253f3226ee9563334c67d24f341d8b95c6398a9d924039e3d227c8a8713b6498ef30e1e400cc48686bd67aaf8dd70d437f468fd6250543dd6f399c640df38076","ssdeep":"192:dhjAz/FWgE4+LPK1AvGZHNIlS62FHtpdyBnGSQeixKNg1ncn6hpl:0Qd4OKv6StTyG6ixSWndd","tlshash":"4232bf3060edd0c3fc0fd733d7a262014b52e5e6c58919d2fa540ca02754f49692dafb","first_seen":"2025-10-17T05:03:07.093655Z","last_seen":"2025-10-17T05:03:07.093655Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3754,"timings":{"blocked":1615,"dns":1,"connect":173,"send":0,"wait":184,"receive":1,"ssl":1774},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pornoperso.com/wp-content/uploads/2021/08/teenmarvel-lili-videos.jpg","fqdn":"pornoperso.com","domain":"pornoperso.com","tld":"com"},"ip":{"addr":"104.21.41.194","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pornoperso.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 16 Oct 2025 13:59:39 GMT","end":"Wed, 14 Jan 2026 14:57:12 GMT"},"fingerprint":{"sha1":"29:72:B8:BE:EB:16:17:AB:56:D1:2C:42:50:1F:A7:7F:38:B4:BA:16","sha256":"93:B0:83:A7:14:75:B0:03:27:01:30:E1:75:EE:9B:65:C7:7B:2C:45:C4:EB:A8:22:2D:2A:D7:B2:7D:E6:11:E4"}}},"request":{"raw":"GET /wp-content/uploads/2021/08/teenmarvel-lili-videos.jpg HTTP/1.1\r\nHost: pornoperso.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 23715\r\nserver: cloudflare\r\nlast-modified: Mon, 09 Aug 2021 08:08:13 GMT\r\netag: \"6110e26d-5ca3\"\r\nversion: MS25092904\r\nx-dns-prefetch-control: on\r\nx-download-options: noopen\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncache-control: public, max-age=31536000, s-maxage=31536000\r\naccess-control-allow-origin: *\r\nvary: Accept-Encoding\r\naccept-ranges: bytes\r\nx-served-by: pornoperso.com\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IiyG2A%2Fz%2FZC1aZao%2FPjwHvcVAedRDiHLu4WUCwJk7j9RKC366jYxP%2Fj8vbva9MCFqRlD4iJihZWYv56QlbPxBmxigForatSwgKZD0A%3D%3D\"}]}\r\ncf-ray: 98fd3dab395756a2-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23715,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 600x337, components 3","md5":"5dd1b144322a23c182fb47c4ae0f3d6f","sha1":"fba01439dcf8a2482efe7731f816482e340f2e97","sha256":"9e5ecccf073e7a427cdce368e56f05147e4c2c3186bf903bc057caf85a7ab22c","sha512":"3a29e5a825656724725782d249eaed27abc28f22a6a77a403c90de20e070acac48d1acd293399cc2482233744b9c367d2b1565c0796396766e39c30f85177089","ssdeep":"384:CIUmUh6PN0nU8ZrcBMgp5JjS1PRCB0UITZ9v+h5i9rvWxEtkoJdNIkwIu4kJV:ZNUM18U8ZrxmTjIQITZRUiqeJ41","tlshash":"f3b2e133532599e2c6b80aff7bd1234463a2bc9d171a66bd3211681708f64387a1627a","first_seen":"2025-10-17T05:03:07.098688Z","last_seen":"2025-11-13T23:09:22.694861Z","times_seen":2,"resource_available":false,"data":null}},"time_used":3237,"timings":{"blocked":1196,"dns":22,"connect":14,"send":0,"wait":260,"receive":47,"ssl":1685},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"css.4jpg.top/mycss/av4.css?33","fqdn":"css.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"4jpg.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 20 Aug 2025 22:07:03 GMT","end":"Tue, 18 Nov 2025 23:05:39 GMT"},"fingerprint":{"sha1":"F7:56:D0:5F:96:7E:84:98:1E:F2:DC:20:74:94:F8:5E:E9:99:22:BE","sha256":"A4:A0:9B:AB:A6:84:D2:21:1D:FD:89:C2:59:89:93:11:10:44:BB:96:A7:D5:61:38:E5:1F:75:F7:F1:E5:EC:A1"}}},"request":{"raw":"GET /mycss/av4.css?33 HTTP/1.1\r\nHost: css.4jpg.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\ncache-control: public, max-age=360000\r\nx-proxy-cache-192g-la: HIT\r\nxkey-192la: jcss./mycss/av4.css?33-A-css.4jpg.top--myzone---no\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YJG2GGk9GC2CtolO4dmbuTEoxCjFiaRc%2FkPEJYrLGuX%2FPVroLAuSxIrDm3F5ngEJreYromDTrBsKeowzPBCgaydttg5XShIQiF0PUg%3D%3D\"}]}\r\nage: 166802\r\ncf-cache-status: HIT\r\netag: W/\"103e-62edbddabc000\"\r\ncontent-encoding: br\r\ncf-ray: 98fd3d9f7c902efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4158,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"e05d356eb3c9cb0366e5491f098c5b66","sha1":"9c82f99795bf55512147a0bd629e9775446291bf","sha256":"7c7a5f32e5c6a2e6e1f3e71112f35691714019685cc4c7d567e158cb32d1579c","sha512":"94dd9b84614bae349bcaa9dafea12a08589b4b899cf59c1228cf9bf70d657a715b49cfc18748b2d174dac63a6df076828bfa8da9b25c686d74bc742ddbe9283c","ssdeep":"96:Uq6qw2a3Alqiqq7rShmo3NxlIAFrQH+42+F2fFB:+eYXih/SMoHlIAFkHL2+F2fFB","tlshash":"ca813f729b550141b51b92946f62b79123369013d907cf79bafa217ccf891ec21e2f4e","first_seen":"2025-04-08T05:19:22.565686Z","last_seen":"2026-02-10T20:33:51.228745Z","times_seen":840,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":6,"connect":4,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"css.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/378/4.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.506Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/378/4.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 12689\r\nLast-Modified: Sat, 23 Mar 2024 12:20:04 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8f4-3191\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12689,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"65a120ae32db459cc0ed0d4ce42d28f8","sha1":"0d7bc1d6f38ab49850dfb9e1b80e21ca930af889","sha256":"d2a4546e01b74baddf155f20a76d12992a5fde02cb027c08ce0599d79be1c09d","sha512":"abbc1917015cb532858949173603859b48f380ac9530757a91088b0e14209c5d1bb2c9212c166c1837c1754fdaab3226dbd131247c191b6fbc973c8a996d42db","ssdeep":"192:IrEFaWz8Fx0dah0xPMpIgZOU99tHU8OPjrYgVw1q6G6/S3uDMyEh0vHf6Vn5rmni:cA6pSJsEwWbRK1LGeCrh0vAn5mni6WYG","tlshash":"ba42af12a6f5d793c6ffef711740241763dbf881cea91c41f629502dab17887786a0c9","first_seen":"2025-06-15T23:04:57.837085Z","last_seen":"2026-01-15T12:55:38.074776Z","times_seen":14,"resource_available":false,"data":null}},"time_used":2420,"timings":{"blocked":2199,"dns":0,"connect":0,"send":0,"wait":221,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"media.crazyshit.com/content/2019/01/fc4e8d4d.jpg","fqdn":"media.crazyshit.com","domain":"crazyshit.com","tld":"com"},"ip":{"addr":"45.133.44.3","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"media.crazyshit.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 02:32:42 GMT","end":"Fri, 26 Dec 2025 02:32:41 GMT"},"fingerprint":{"sha1":"29:50:F0:B9:A2:CA:FE:80:44:45:00:A2:95:68:4A:73:E6:9E:5C:F4","sha256":"BA:98:1C:61:77:77:BE:AC:D5:18:45:30:01:AB:3E:40:5A:79:70:DD:E8:44:E6:25:EB:16:B6:69:C6:EE:82:F3"}}},"request":{"raw":"GET /content/2019/01/fc4e8d4d.jpg HTTP/1.1\r\nHost: media.crazyshit.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 339137\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1548588702.531099006\r\netag: 30c18033b8df7e59e533792a298ee8bc\r\nlast-modified: Mon, 05 Apr 2021 10:36:12 GMT\r\nx-timestamp: 1617618971.43645\r\nx-trans-id: tx7c85022d599d49caa5432-006643ddbd\r\nx-openstack-request-id: tx7c85022d599d49caa5432-006643ddbd\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\nexpires: Sun, 19 Oct 2025 05:01:55 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":339137,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 720x540, components 3","md5":"30c18033b8df7e59e533792a298ee8bc","sha1":"05540b7355abb2312822f39650e17ad7b1beb54a","sha256":"8fe9b85d061bc652622f664efa759a80f08e01849d4e82790504f8f3ce3d715a","sha512":"4d6006cb4f1bdd07805e3b8640cbeb4f6ecfafe8dfc712b033b8e905819af68c2b74ae4bf4e5a86c213ca5dc7b19c6e4a0e225bfa14d553777ba6b29468ad99b","ssdeep":"6144:f8mvt03UFL8BEdxBbf0xBCjAuURLA+DA4qn3wFNNTZNZF9BUZwlAehtkmbLLGiP/:f5vt03szxB707DdD3M3wFNzDBUZOhtkg","tlshash":"eb74232c83c922438bf5048f35fd8526139c8c58ae6c7499a973d20bd5e612ff64b5f9","first_seen":"2025-10-17T05:03:07.109394Z","last_seen":"2025-10-17T05:03:07.109394Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2206,"timings":{"blocked":592,"dns":2,"connect":20,"send":0,"wait":63,"receive":70,"ssl":1457},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.xyz/upload/vod/20241028-9/87344cabbe1ca3fe81fa0806b2e281af.jpg","fqdn":"www.9188porn.xyz","domain":"9188porn.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.253Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /upload/vod/20241028-9/87344cabbe1ca3fe81fa0806b2e281af.jpg HTTP/1.1\r\nHost: www.9188porn.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"page.phic4.top/myda.php","fqdn":"page.phic4.top","domain":"phic4.top","tld":"top"},"ip":{"addr":"104.21.73.126","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"phic4.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 04:42:44 GMT","end":"Wed, 26 Nov 2025 05:38:57 GMT"},"fingerprint":{"sha1":"A9:24:2E:59:E9:1F:79:43:22:02:EE:61:FD:A7:A8:78:49:F5:63:FA","sha256":"1C:49:D3:6F:AB:99:B4:59:BF:D1:35:08:3A:B0:D8:71:A0:BB:CB:E3:35:97:1E:3A:33:3D:88:F5:88:A6:F0:D2"}}},"request":{"raw":"GET /myda.php HTTP/1.1\r\nHost: page.phic4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nmyda: myda2a09:bac2:4da1:341::53:2f\r\nvary: User-Agent, accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IFcKPC5VMKBhyWW6iBY%2FbgTljplKWX8g8qb9oqtV4%2B3cOBYQz2Qu1CGSsmXcKm%2FPbH%2FTSDh00zgFvpLKWXcLbVr7O0G5k3nRe8kqBSP%2B\"}]}\r\nage: 2790\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nlast-modified: Fri, 17 Oct 2025 04:15:26 GMT\r\ncontent-encoding: br\r\ncf-ray: 98fd3db388c25ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":855,"timings":{"blocked":422,"dns":12,"connect":2,"send":0,"wait":6,"receive":0,"ssl":406},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"page.phic4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidmo.pro/thumbs_320/aa/f9/aaf9d63a7c09d69bd16aa1e6091ca427/12463848.jpg","fqdn":"vidmo.pro","domain":"vidmo.pro","tld":"pro"},"ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"en.vidmo.pro","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Sep 2025 20:46:58 GMT","end":"Sun, 21 Dec 2025 20:46:57 GMT"},"fingerprint":{"sha1":"62:B0:3A:0B:30:5F:D5:33:34:2D:B2:52:68:D3:05:FC:0F:7B:B2:BC","sha256":"69:53:E3:60:66:6F:57:25:AD:1A:25:03:0E:E9:0E:3B:D8:D1:08:2B:01:B6:E5:3C:C6:C2:BE:0C:AC:92:30:73"}}},"request":{"raw":"GET /thumbs_320/aa/f9/aaf9d63a7c09d69bd16aa1e6091ca427/12463848.jpg HTTP/1.1\r\nHost: vidmo.pro\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 20468\r\nlast-modified: Sun, 01 Nov 2020 20:37:38 GMT\r\nexpires: Mon, 09 Oct 2023 19:17:42 GMT\r\ncache-control: max-age=604800, public, no-transform\r\nx-cache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20468,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93\", baseline, precision 8, 320x240, components 3","md5":"f2c3e5d6cc3e8dbef78a0aaae32a36eb","sha1":"10f4a57706554d68c6d1bdae2f08f7a23945c3cf","sha256":"e8d9218eb2438316c1071f84e30b438e3304879e325f8169c4556d13b23d13dd","sha512":"f913fa3d72a541981eab2b3fe0f9cc58039d1f28096b93a3737ccd3393744edd8eaeb0ca39a6d17b83a82ece6f97b3c3611070f70f9371616ec42b3c97c3444d","ssdeep":"384:4d/glrmjD/bZ+LcPN/NSePhqx+FSLfj4WXMipO+QNC5IYE:4dnjDDdPhNBv3JFgE","tlshash":"3492d0e7156a752c1f41c077fc2890ea47140cc7fa3a1788b81b2675eef8811d68aaad","first_seen":"2024-04-25T20:11:37Z","last_seen":"2026-04-03T21:47:16.593499Z","times_seen":52,"resource_available":false,"data":null}},"time_used":1307,"timings":{"blocked":1216,"dns":13,"connect":59,"send":0,"wait":65,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.com/","fqdn":"www.9188porn.com","domain":"9188porn.com","tld":"com"},"ip":{"addr":"104.21.17.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.432Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"9188porn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 04 Oct 2025 06:42:53 GMT","end":"Fri, 02 Jan 2026 07:31:59 GMT"},"fingerprint":{"sha1":"FA:0D:5D:6E:20:F3:6A:FC:5D:CF:E5:5B:87:A0:BD:8C:6E:F6:DF:D9","sha256":"20:6C:83:E8:06:18:9D:FD:64:DA:45:92:13:99:F6:45:64:B5:7D:69:EB:5C:B4:EC:15:98:15:45:A1:E5:69:34"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.9188porn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MaHSIIW%2BUnENKxTNs7yl2zLxKVaqGPoxcwurJtHRMi96PQSkT5SKphinzGrfs9DKrjgZra0HvEMKBYKEJJvTSmBssDU2rRm5dY9QJmGxBx8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3da5c8bb76ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2057,"timings":{"blocked":509,"dns":2,"connect":1,"send":0,"wait":8,"receive":0,"ssl":1521},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20250809-1/25d33c3649d59777a0cb85d3f7d4f64b.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20250809-1/25d33c3649d59777a0cb85d3f7d4f64b.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 72841\r\nlast-modified: Sat, 09 Aug 2025 02:29:00 GMT\r\nvary: Accept-Encoding\r\netag: \"6896b26c-11c89\"\r\nexpires: Mon, 03 Nov 2025 03:08:53 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":72841,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 500x281, components 3","md5":"fe4745b386a1c7f4750e0549633ef7c0","sha1":"db79da6b155feaa13cb0d5a904771292856fa2a2","sha256":"d09a3ef62959ef5299cc040cb464fce329f6136cf69b7388b769303b7d3176e0","sha512":"f2d2781c170c37b0bdf6e4563fbbb78e95ee9c9d460ce680039ee74a41ce437db88a7622278c8f5544e7e3bbd53c82065dbdf8b00e6e16f42ed03aff3c25974c","ssdeep":"1536:KFht4VbTKPPjJZB6BqecCis8WZhTkvFSO2WmGqmmsGIGYO0mhQ:wSb0PjJX1bs8e5Q32WmGqvJj0CQ","tlshash":"c16302b3308e9bc4179bd69061db1d5edbfe5793f22a0fca8a45855313b634d82208b9","first_seen":"2025-08-13T22:41:44.8924Z","last_seen":"2025-12-30T20:10:12.341314Z","times_seen":143,"resource_available":false,"data":null}},"time_used":2872,"timings":{"blocked":566,"dns":9,"connect":155,"send":0,"wait":202,"receive":88,"ssl":1833},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.xyz/favicon.ico","fqdn":"www.9188porn.xyz","domain":"9188porn.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.791Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.9188porn.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.clporn.com/thumbs/36/436--.jpg","fqdn":"www.clporn.com","domain":"clporn.com","tld":"com"},"ip":{"addr":"104.21.25.21","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"clporn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 09 Oct 2025 05:16:55 GMT","end":"Wed, 07 Jan 2026 06:15:36 GMT"},"fingerprint":{"sha1":"8A:7B:3B:71:BB:27:D3:70:31:81:3F:59:24:FC:E5:54:3A:47:7B:F6","sha256":"24:47:66:28:D4:C2:64:80:4C:26:68:92:46:D8:DA:31:BE:4B:F3:3D:9A:BD:BB:63:6C:4E:29:64:3B:9E:D6:36"}}},"request":{"raw":"GET /thumbs/36/436--.jpg HTTP/1.1\r\nHost: www.clporn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 12235\r\nserver: cloudflare\r\nlast-modified: Tue, 07 Jul 2020 13:09:15 GMT\r\netag: \"5f0473fb-2fcb\"\r\nexpires: Fri, 02 Oct 2026 17:56:46 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1249509\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lYmlsRxHs8ouXb%2FrFXSSIII70iT9qmDyLXHYhZtXwVPl779CJLeUF4PJydA11WtmnbIRV0lb%2Bzl8yQNxzZSxsSwQjzp9n6TZvfNYGA%3D%3D\"}]}\r\ncf-ray: 98fd3dad7d0cb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12235,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3","md5":"cb5292600751a6de4f1b5859acf05f50","sha1":"2ff4f0fa393fc75d503b76577c14fb3a44ea25e1","sha256":"6dacc755d2fc1064928be907691bf3a9929371c76c973e84988d66b14f9adbec","sha512":"8d59b10f678e9ac02832f9440b9dc964a6f439d7d12f2deafc71a1cac2d4ffef6a9cbb4edc82c2b13ab638e524cdd9990999d971c7aafddd60b51578785e1c2e","ssdeep":"192:y0mZU7v4o4crIub01y+8igAhi5KucYnDTJzj+SgqZkZZWt/Q70420SLwSFHs80ls:y0OU7vN4ufo1yadsKucW/Jzuqrx8AZiC","tlshash":"e142d044e47f0fecbced93fad6b9fe4c1ec12421662a506f01eda72981d2a910e0053d","first_seen":"2024-05-28T00:18:16Z","last_seen":"2026-01-13T07:30:17.839508Z","times_seen":15,"resource_available":false,"data":null}},"time_used":3254,"timings":{"blocked":1366,"dns":4,"connect":1,"send":0,"wait":10,"receive":1,"ssl":1870},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mc.webvisor.org/watch/48140495?wmode=7\u0026page-url=https%3A%2F%2Fjp.tub4us.top%2F\u0026charset=utf-8\u0026uah=che%0A0\u0026browser-info=pv%3A1%3Avf%3A3b8z1leqd9ammnvw0gzjaat34ifxb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2220%3Acn%3A1%3Adp%3A0%3Als%3A1622166937183%3Ahid%3A151547017%3Az%3A0%3Ai%3A20251017050156%3Aet%3A1760677317%3Ac%3A1%3Arn%3A559379472%3Arqn%3A1%3Au%3A1760677317319993382%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C68%2C388%2C0%2C24%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1760677312497%3Afip%3A68bd72ff7c9b5abc9c3f912930d63a42-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1760677318%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-%E5%8B%95%E7%94%BB%40AV4.us\u0026t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(42534404)fip(1)ti(1)","fqdn":"mc.webvisor.org","domain":"webvisor.org","tld":"org"},"ip":{"addr":"87.250.250.119","port":443,"asn":13238,"as":"YANDEX LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:57.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mc.webvisor.com","organization":"YANDEX LLC"},"issuer":{"commonName":"GlobalSign RSA OV SSL CA 2018","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 18 Aug 2025 21:05:34 GMT","end":"Mon, 09 Feb 2026 20:59:59 GMT"},"fingerprint":{"sha1":"52:51:83:17:11:3C:6A:D0:47:28:FB:42:75:CF:6A:DA:48:B5:5A:C8","sha256":"69:B8:8D:9D:77:CB:F9:C7:48:04:E2:8C:99:28:7C:EF:5E:C7:2B:43:D6:52:7B:21:D2:99:F6:86:18:A6:0F:80"}}},"request":{"raw":"GET /watch/48140495?wmode=7\u0026page-url=https%3A%2F%2Fjp.tub4us.top%2F\u0026charset=utf-8\u0026uah=che%0A0\u0026browser-info=pv%3A1%3Avf%3A3b8z1leqd9ammnvw0gzjaat34ifxb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2220%3Acn%3A1%3Adp%3A0%3Als%3A1622166937183%3Ahid%3A151547017%3Az%3A0%3Ai%3A20251017050156%3Aet%3A1760677317%3Ac%3A1%3Arn%3A559379472%3Arqn%3A1%3Au%3A1760677317319993382%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C68%2C388%2C0%2C24%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1760677312497%3Afip%3A68bd72ff7c9b5abc9c3f912930d63a42-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1760677318%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-%E5%8B%95%E7%94%BB%40AV4.us\u0026t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)eco(42534404)fip(1)ti(1) HTTP/1.1\r\nHost: mc.webvisor.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://jp.tub4us.top/\r\nOrigin: https://jp.tub4us.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nlast-modified: Fri, 17-Oct-2025 05:01:57 GMT\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 17-Oct-2025 05:01:57 GMT\r\naccess-control-allow-credentials: true\r\npragma: no-cache\r\nx-xss-protection: 1; mode=block\r\nset-cookie: yabs-sid=1169783461760677317; Path=/; SameSite=None; Secure\ni=TW3P+ThpNNRky28+ZyzDJMWbHQLHVS/4HibnhuDi/5wippeMfORBCYMFSFY5nEQMjuGiU/ELt8iurpskgBgAb70cfOg=; Expires=Mon, 15-Oct-2035 05:01:54 GMT; Domain=.webvisor.org; Path=/; Secure; HttpOnly; SameSite=None\nyandexuid=4335949811760677317; Expires=Mon, 15-Oct-2035 05:01:54 GMT; Domain=.webvisor.org; Path=/; Secure; SameSite=None\nyuidss=4335949811760677317; Expires=Sat, 17-Oct-2026 05:01:57 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure\nymex=1792213317.yrts.1760677317#1792213317.yrtsi.1760677317; Expires=Sat, 17-Oct-2026 05:01:57 GMT; Domain=.webvisor.org; Path=/; SameSite=None; Secure\nbh=YMWbx8cGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Sat, 21 Nov 2026 05:01:57 GMT; SameSite=None; Secure\nbh=YMWbx8cGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.webvisor.org; Expires=Sat, 21 Nov 2026 05:01:57 GMT; SameSite=None; Secure\r\nlocation: /watch/48140495/1?wmode=7\u0026page-url=https%3A%2F%2Fjp.tub4us.top%2F\u0026charset=utf-8\u0026uah=che%0A0\u0026browser-info=pv%3A1%3Avf%3A3b8z1leqd9ammnvw0gzjaat34ifxb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A2220%3Acn%3A1%3Adp%3A0%3Als%3A1622166937183%3Ahid%3A151547017%3Az%3A0%3Ai%3A20251017050156%3Aet%3A1760677317%3Ac%3A1%3Arn%3A559379472%3Arqn%3A1%3Au%3A1760677317319993382%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C68%2C388%2C0%2C24%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1760677312497%3Afip%3A68bd72ff7c9b5abc9c3f912930d63a42-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-08cddc828a0a4cecdead9052886a5778-8d2357552742d775381be8c05efc2ed7-b3a4b0ac1b44d5bc13e6d73ffb506aad-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1760677318%3At%3AHot%20Videos%20%E4%BA%BA%E6%B0%97%E5%8B%95%E7%94%BB-%E5%8B%95%E7%94%BB%40AV4.us\u0026t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29eco%2842534404%29fip%281%29ti%281%29\u0026redirnss=1\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\naccess-control-allow-origin: https://jp.tub4us.top\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":665,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":400,"timings":{"blocked":173,"dns":1,"connect":44,"send":0,"wait":50,"receive":0,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nudegirls.wiki/favicon.ico","fqdn":"nudegirls.wiki","domain":"nudegirls.wiki","tld":"wiki"},"ip":{"addr":"109.202.99.24","port":443,"asn":49453,"as":"Global Layer B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nudegirls.wiki","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 20 Sep 2025 23:45:41 GMT","end":"Fri, 19 Dec 2025 23:45:40 GMT"},"fingerprint":{"sha1":"D8:94:AB:B6:85:AE:61:08:F1:E8:90:C8:BC:8F:0F:C2:65:49:31:6F","sha256":"14:36:83:1D:15:5C:63:4F:80:86:A0:AB:3E:A5:B5:60:37:6F:8C:98:91:8C:26:31:A5:26:2C:56:FC:F1:8D:E1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: nudegirls.wiki\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":2,"connect":21,"send":0,"wait":59,"receive":0,"ssl":106},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"filmx-perso.com/favicon.ico","fqdn":"filmx-perso.com","domain":"filmx-perso.com","tld":"com"},"ip":{"addr":"5.135.23.164","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.sexenfrance.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Oct 2025 18:10:57 GMT","end":"Wed, 31 Dec 2025 18:10:56 GMT"},"fingerprint":{"sha1":"59:91:AA:0E:B5:6D:B1:CD:82:D0:CB:B5:E9:6B:BB:61:8B:6D:BB:1D","sha256":"36:44:90:70:AB:3E:9B:AB:D1:BB:5C:D2:5D:A9:26:60:76:FA:6A:EC:AB:B4:D3:E8:7F:82:95:84:3E:55:44:35"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: filmx-perso.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: OVHcloud\r\nx-powered-by: PHP/8.2\r\nlink: \u003chttps://filmx-perso.com/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nx-redirect-by: WordPress\r\nlocation: https://filmx-perso.com/wp-includes/images/w-logo-blue-white-bg.png\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"PHP:8.2","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]}],"data":{"size":4119,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":887,"timings":{"blocked":-1,"dns":50,"connect":31,"send":0,"wait":215,"receive":0,"ssl":587},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"filtradas.com/favicon.ico","fqdn":"filtradas.com","domain":"filtradas.com","tld":"com"},"ip":{"addr":"91.234.199.87","port":443,"asn":43641,"as":"SOLLUTIUM EU Sp z.o.o.","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"filtradas.com","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Aug 2025 16:04:05 GMT","end":"Sun, 09 Nov 2025 16:04:04 GMT"},"fingerprint":{"sha1":"DF:EC:86:BA:09:B3:17:C2:2B:66:0A:BF:62:3E:3C:4D:90:D2:A4:33","sha256":"EF:3A:5A:BF:D7:FE:5F:99:1A:3F:CD:49:ED:AF:84:68:4F:09:27:DC:47:7B:D5:51:4C:E2:DB:A2:A1:6A:3C:FF"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: filtradas.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\nstrict-transport-security: max-age=31536000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/4616b8baf5052cb10d2cf32b4ff3a8d0.jpg?secure=Exxxhol2TPHUBHcl06CaXQ==,1738290641","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/4616b8baf5052cb10d2cf32b4ff3a8d0.jpg?secure=Exxxhol2TPHUBHcl06CaXQ==,1738290641 HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 31472\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=32600\r\netag: \"932e20fe3c947129d14e08ef3d72fb38\"\r\nlast-modified: Mon, 06 Jan 2025 15:12:21 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i8qFXMb5oQqF5B3BDLVgrqVMV%2FcOxzC95w4%2FjIzyrUXBs25UMYXjN6%2Fz2sfAmSlPRwlLQ8hZnRbvHt69YioMxjIJ%2B1TRMBCg1ejHvLwX\"}]}\r\nage: 4015\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3da68963b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31472,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x360, components 3","md5":"cf6954c6401d86d7a712080354f5b7fb","sha1":"871df61be00e5001f513ec1fa8dfc738a96cd318","sha256":"42f50e7385affe282c11a89302a7c092904d630d28bbec9664ef3d180d20a975","sha512":"d2ebd1e6a4dbafd9e9b4bdc1ad50c7ac643d3e04e4c69c53c882e5a1f9783c7325d4373c6aae44e2c464a669c9ab8ec40b6f386d1b446b14eab626a3a30d2baf","ssdeep":"768:9uf6UKYysLalTYPY0WZtQdapo+dgMJaeqHqy7him9:9uCUlPPYtlbbmkM","tlshash":"f0e2e15d3f31e091a943c07f5960413f4468f75bcc8509ae66ce48ac9ac99ddf4ca68f","first_seen":"2025-06-06T01:33:51.147598Z","last_seen":"2025-12-16T06:19:44.019516Z","times_seen":10,"resource_available":false,"data":null}},"time_used":1892,"timings":{"blocked":323,"dns":1,"connect":1,"send":0,"wait":12,"receive":2,"ssl":1551},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn5-thumbs.motherlessmedia.com/thumbs/EFCC9E7-small-7.jpg","fqdn":"cdn5-thumbs.motherlessmedia.com","domain":"motherlessmedia.com","tld":"com"},"ip":{"addr":"185.107.92.224","port":443,"asn":43350,"as":"NForce Entertainment B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.motherlessmedia.com","organization":""},"issuer":{"commonName":"GoGetSSL RSA DV CA","organization":"GoGetSSL"},"validity":{"start":"Mon, 04 Nov 2024 00:00:00 GMT","end":"Fri, 05 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"57:B3:92:20:5F:2C:FA:27:4E:CD:E5:6F:BC:3E:04:43:42:3A:93:E8","sha256":"10:A9:10:0A:05:AC:3F:09:47:9C:0E:EF:B9:5A:60:87:2B:F1:D5:35:A8:E6:3B:67:04:9B:7C:A8:AA:53:B7:FE"}}},"request":{"raw":"GET /thumbs/EFCC9E7-small-7.jpg HTTP/1.1\r\nHost: cdn5-thumbs.motherlessmedia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nserver: openresty/1.21.4.1\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 10538\r\nvary: x-s-token\r\nlast-modified: Fri, 12 Jan 2024 13:47:49 GMT\r\netag: \"292a-60ebfe8ee8c70\"\r\nx-cache: HIT\r\nx-whom: cdn09\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty:1.21.4.1","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10538,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1280x1281, segment length 16, baseline, precision 8, 320x180, components 3","md5":"35c7a42d42f5f2d03694136d6675ca61","sha1":"44dc3bf2ee71a10e6256e5eb35bf2a89eee97993","sha256":"173fe2f7b21471df609df0776a728153e7779148cd98d24c7f17935361040492","sha512":"c8af0f8cceea94f6163dd192006423559bd3fd86811894107f24a190ca1c05f6c5a4477f7ab442dcb55583781eaf974f60b750a6f1ae92e5d593b2bad96c4ef7","ssdeep":"192:A0gWKAaQMDRS8YYRNKPou/D5CLqgC5A+Z6dCp0qPSotzXtnZTmPWT48P23qZu:A0ZKMMDRSmUPogD52qgIN6dj2Son9zTM","tlshash":"75229fe15b0e68faf9946c338f6a2f206ffd65cc72857217988344f4719f21650a8375","first_seen":"2025-09-22T12:44:25.526783Z","last_seen":"2025-10-20T02:57:21.664084Z","times_seen":4,"resource_available":false,"data":null}},"time_used":2289,"timings":{"blocked":734,"dns":2,"connect":20,"send":0,"wait":19,"receive":0,"ssl":1513},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20250710-1/97351813294df62cad6ceda0e7f83547.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20250710-1/97351813294df62cad6ceda0e7f83547.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 75291\r\nlast-modified: Thu, 10 Jul 2025 02:47:07 GMT\r\nvary: Accept-Encoding\r\netag: \"686f29ab-1261b\"\r\nexpires: Tue, 11 Nov 2025 16:40:57 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":75291,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 500x281, components 3","md5":"ddeb31c993f04508c1adbd5f2fd89824","sha1":"466f59b789d81b4db2446f6b571a81047160988e","sha256":"87fe1ee933eabcad7f6832eec068bfa8ddec614e3c3a42f606856419267dc115","sha512":"6167f98fb2e1c20829204b57505d5fcc2501b6ca3698eaf554d62f11a0cc0b618c356656709c72ff57454ffa07833ba411b459b05a63feb94872bacb3fdc0d7a","ssdeep":"1536:zAGVNB11v8BaZuvzTxTqRuN78NXrnUPu4k0ZH1iezYdrqwn:b1vkfxTQ5rnUPu4k0ZH1zgH","tlshash":"6e7301d934fac7cd7e5709b746fc2c0196c468006512851ef9b2bd9ee70cfda2a1668c","first_seen":"2025-07-31T16:43:41.492691Z","last_seen":"2026-01-12T08:29:20.71461Z","times_seen":162,"resource_available":false,"data":null}},"time_used":2486,"timings":{"blocked":1883,"dns":0,"connect":0,"send":0,"wait":472,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/006/354/1.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/006/354/1.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 13874\r\nLast-Modified: Sat, 23 Mar 2024 12:18:57 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b1-3632\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13874,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"ac93a82c7b2723a485c9f2a5951c0c1a","sha1":"32ff5ce2c1d8d2895803de6bfc3b83aed2128d09","sha256":"bf0769dbc76e4debad18ba826088d4791539b42a193fe963502b52e22438706d","sha512":"159720a1890c0cda51f846140f690aec2bc3f6a73b99e10ad207cf097ee4edfd08ea7834f5ba616f7b682850d10aac3c71738b2e57a361484329bc030e4bb037","ssdeep":"192:txJeHJ+gGgfAQOVW91i4i7XbGiP055sZLhJtc5OcysxHWDElfW8gA31zVwpPFe9m:tDeHUG6Vk1i4iRs+LhMbhZlOHA3sC49t","tlshash":"af52b02b9e1126c8df1d62390074e259418ded32b7c3273eacc639a0bf5786422c94bc","first_seen":"2025-10-17T05:03:07.137089Z","last_seen":"2026-01-11T16:31:17.504915Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1982,"timings":{"blocked":1759,"dns":0,"connect":0,"send":0,"wait":222,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"catherineii.com/favicon.ico","fqdn":"catherineii.com","domain":"catherineii.com","tld":"com"},"ip":{"addr":"104.21.59.142","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"catherineii.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 30 Sep 2025 09:13:55 GMT","end":"Mon, 29 Dec 2025 10:11:46 GMT"},"fingerprint":{"sha1":"95:EF:B2:EB:37:C4:45:03:CD:F7:AB:4E:9B:E0:FB:21:14:BD:29:89","sha256":"44:4D:35:2A:96:A6:BE:CA:57:D3:99:C8:91:01:93:2D:01:B6:B9:56:05:36:1C:03:EA:83:CC:7A:92:63:42:92"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: catherineii.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gOQNYC7rGb7M9n3SBHJDT4E%2B4MfnJoGB56HotkCe1yM1bgJ4pa2i0AaYFY6Mius7CrlxthHq4UD0b2%2FHGVgO%2FQP8zGeLK2R1pXrOp0A%3D\"}]}\r\nage: 63\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ncf-ray: 98fd3dc47b175688-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":802,"timings":{"blocked":-1,"dns":2,"connect":1,"send":0,"wait":20,"receive":0,"ssl":773},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"8zoo.net/favicon.ico","fqdn":"8zoo.net","domain":"8zoo.net","tld":"net"},"ip":{"addr":"104.21.47.99","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"8zoo.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 12 Sep 2025 13:01:34 GMT","end":"Thu, 11 Dec 2025 13:57:35 GMT"},"fingerprint":{"sha1":"47:A6:93:26:E2:73:53:06:C2:07:FE:30:4B:03:AF:C7:9B:81:BC:77","sha256":"53:F2:9D:67:20:0A:6F:39:58:7F:0A:39:B6:E1:E7:25:68:87:7C:8C:81:3D:BC:3A:28:64:64:20:82:89:69:66"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 8zoo.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Fri, 17 Oct 2025 05:02:01 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bCaDfGBGh%2BjwcFqrzXM%2FZa%2FUciU6Lc6EGyqSFP5mqkWYP0Odx9BnFws5t8zDc7Xv5cIV%2FqQYgw3Wu8H9N7gYIOA6NHVR2w%3D%3D\"}]}\r\nage: 166\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\ncf-ray: 98fd3dc97fcc56b5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":1401,"timings":{"blocked":202,"dns":2,"connect":8,"send":0,"wait":10,"receive":0,"ssl":1176},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sexsex84.com/favicon.ico","fqdn":"sexsex84.com","domain":"sexsex84.com","tld":"com"},"ip":{"addr":"202.95.16.30","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sex83.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:08:44 GMT","end":"Wed, 10 Dec 2025 14:08:43 GMT"},"fingerprint":{"sha1":"C9:DF:27:A9:2B:47:90:06:7B:5F:0D:64:78:F2:F2:AA:1A:35:1B:98","sha256":"4C:FE:81:8C:DC:92:CE:C9:8C:E0:31:42:DB:60:A1:F2:47:C9:52:17:EF:1D:EF:EB:5D:95:CB:4A:EB:AF:0B:5E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: sexsex84.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/x-icon\r\ndate: Thu, 16 Oct 2025 14:47:45 GMT\r\netag: \"645b773c-10be\"\r\nlast-modified: Thu, 16 Oct 2025 14:47:45 GMT\r\nserver: nginx\r\nx-cache: HIT, policy, disk\r\ncontent-length: 4286\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"da00228045bbdc9fc485eee15ae466f7","sha1":"51acd57ef4439a7e622281388e2aa83d53b3fe33","sha256":"18a2fc0c936b1782fb1f1dec65e9ea9dfff00e1a081594c8c3049a5b435c1d2d","sha512":"b7ba13392ab3c6d8c1077989d482399892c1c094599e798b69dc3c6720b5d26dd6186d414f46cacf8ed48061e091d23978248b63cace28ebc601e41348ce608a","ssdeep":"48:uTOtJTTH7TTS/LY64wSKd2sci/6aq3EDP+3yk:uOH73wSKdEv/3v3yk","tlshash":"e2912fa8edf928bfd22403785f0697f8c8338e1f6ce4593308227c9b272ed51848611d","first_seen":"2023-05-17T22:14:46Z","last_seen":"2026-04-03T22:52:06.89925Z","times_seen":551,"resource_available":false,"data":null}},"time_used":1582,"timings":{"blocked":208,"dns":8,"connect":358,"send":0,"wait":350,"receive":12,"ssl":637},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jsjs.4jpg.top/index.php?js=very","fqdn":"jsjs.4jpg.top","domain":"4jpg.top","tld":"top"},"ip":{"addr":"104.21.77.220","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"4jpg.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 20 Aug 2025 22:07:03 GMT","end":"Tue, 18 Nov 2025 23:05:39 GMT"},"fingerprint":{"sha1":"F7:56:D0:5F:96:7E:84:98:1E:F2:DC:20:74:94:F8:5E:E9:99:22:BE","sha256":"A4:A0:9B:AB:A6:84:D2:21:1D:FD:89:C2:59:89:93:11:10:44:BB:96:A7:D5:61:38:E5:1F:75:F7:F1:E5:EC:A1"}}},"request":{"raw":"GET /index.php?js=very HTTP/1.1\r\nHost: jsjs.4jpg.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nimghost: 1729614248-h-jsjs4jpgtopmh--NO-rm1726420960/index.php?js=very\r\n56nloadrate: 2.7109375\r\ncache-control: max-age=360000, private\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8eMKCs%2Fq5ePraMORVusRKvGE9GlItJYoc%2F2ncsFOprB3eMCcalwQj4BhYqMvXRR66VbdAFd6Dc0IUWt0z90PwUw4FzMqILmwlPtxO88%3D\"}]}\r\ncf-cache-status: BYPASS\r\ncontent-encoding: br\r\ncf-ray: 98fd3d998c6b2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":886,"timings":{"blocked":172,"dns":1,"connect":1,"send":0,"wait":409,"receive":0,"ssl":299},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"jsjs.4jpg.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"douga100ka.net/sam/1800.jpg","fqdn":"douga100ka.net","domain":"douga100ka.net","tld":"net"},"ip":{"addr":"133.125.148.22","port":443,"asn":7684,"as":"SAKURA Internet Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.504Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.douga100ka.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 20 Aug 2025 11:41:26 GMT","end":"Tue, 18 Nov 2025 11:41:25 GMT"},"fingerprint":{"sha1":"0D:F4:85:6C:0F:D3:8F:70:4E:27:0F:D3:06:2F:AF:8A:EA:C3:E8:FB","sha256":"25:95:7D:37:01:C4:A2:AD:95:1A:1D:86:4D:D9:07:E9:BB:CD:4F:46:FC:D1:67:1C:99:AC:91:CF:B3:F6:BB:50"}}},"request":{"raw":"GET /sam/1800.jpg HTTP/1.1\r\nHost: douga100ka.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Fri, 24 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Mon, 24 Apr 2017 15:00:00 GMT\r\naccept-ranges: bytes\r\ncontent-length: 11839\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\nserver: LiteSpeed\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":11839,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.00, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x240, components 3","md5":"dae7b3a8ba2693ea90bdedc14e05c00d","sha1":"5b1510602faf21661a4e64a400dc01c3cd876c19","sha256":"deac44fd1064837e167e61d63efcceca95c5b2112d285c242514c90da9d41c7a","sha512":"4f711b701731e938ea8824e64580394ac9edb16f8613ff8fc9a97ffca7aef3bc8397fd02b1dd3608d34c9f5d62e40741ad10534fcb0a3517246d2aca1f5ff847","ssdeep":"192:PfWjgJWLs6QCfqcDnzDvMdKg+eKQP8TxWUvarhic4:bJWLs9C/nPMxjAYLf4","tlshash":"1132cf67b7210fd7b132a3f9815b4d8037e1cc2db824be17c8f2a5661d4a2a162c6268","first_seen":"2024-08-20T02:29:37.509874Z","last_seen":"2025-12-24T17:34:12.624128Z","times_seen":5,"resource_available":false,"data":null}},"time_used":3320,"timings":{"blocked":767,"dns":3,"connect":275,"send":0,"wait":281,"receive":1,"ssl":1975},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/40/7b/9a/407b9ad1494d912862900141a3b997b6-1/407b9ad1494d912862900141a3b997b6.2.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/40/7b/9a/407b9ad1494d912862900141a3b997b6-1/407b9ad1494d912862900141a3b997b6.2.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 12571\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Mon, 26 Aug 2024 23:55:01 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH36f1JAAwBJRPCOgH3ka8RAAgBj/Q6jAGB\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf16875bdc824\r\nx-accel-expires: @1766196049\r\nx-77-cache: HIT\r\nx-accel-date: 1755828184\r\nx-accel-date-max: 1724724039\r\nx-77-age: 4849129\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":12571,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100\", progressive, precision 8, 352x198, components 3","md5":"24513b5265b6271ca8b7777d8d00cf33","sha1":"e030c7e333c53305a2b290940f9b9a388abc6a90","sha256":"10498b34601567dcb35a8164c180539de4e2050a27611304dbaed5114fb63167","sha512":"5bd2f1f61f57e886d8211fa15524bb3578910877b0e1f96ffc349a380f9e9abe539bea0ec618088ff53c9a83664010159df03f065a9bb630a91122271105fe49","ssdeep":"192:vc6pG2cmaoLIfvBiy8FqYxezD2j2obi7NS5YrGJ0p6gX6Cy5ca9oM7FGR/Rr7oMQ:a2mBDkqQq77iYyc6yAb9HQRrE9","tlshash":"5442c0f2fb890afafd114de754dd4d68177cae2aa21cd110f4600f06fa7a8871746a1a","first_seen":"2025-09-17T02:24:54.496551Z","last_seen":"2025-11-09T21:05:11.973975Z","times_seen":5,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":89,"dns":0,"connect":10,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.zzztube.tv/5783/289144_1.jpg","fqdn":"icdn05.zzztube.tv","domain":"zzztube.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.zzztube.tv","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:33:28 GMT","end":"Tue, 25 Nov 2025 02:33:27 GMT"},"fingerprint":{"sha1":"48:3A:0A:07:A2:90:4A:D2:3A:EE:B6:09:FF:16:6D:DE:C6:04:15:CD","sha256":"66:D3:68:2D:A5:47:A3:F9:10:54:34:81:79:BE:58:C9:DF:E3:A0:0E:92:FA:BB:06:5E:E3:71:FD:47:9E:2D:BB"}}},"request":{"raw":"GET /5783/289144_1.jpg HTTP/1.1\r\nHost: icdn05.zzztube.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9396\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1598690480\r\netag: 4d5a68c92bcf45ae899c7c2f873ce294\r\nlast-modified: Mon, 07 Nov 2022 15:45:23 GMT\r\nx-timestamp: 1667835922.88558\r\nx-trans-id: tx73c9d732e76847d69032f-0067d21e17\r\nx-openstack-request-id: tx73c9d732e76847d69032f-0067d21e17\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:54 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9396,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 300x170, components 3","md5":"4d5a68c92bcf45ae899c7c2f873ce294","sha1":"e2d1fd3208551f45f6af4748e6b520206397e467","sha256":"4b84b9956586faf847c439e27c60bf540aa4a26ff4565fefc21595f69e1c7947","sha512":"480971bab1bc0e6531b73f1570bf4a13268c3455c5e7cfbcec7df9584c71a38bc33bda4de73a19d8ea7068a28bd6f17ce4122ff34e87140c123f151d3816a3ea","ssdeep":"192:yexULUzG2pAHLlQjEVP9a4P3TomUvmozL1axRAaI:pIUq2pACjEr3LGX1axGR","tlshash":"bf12af2bcbf4080bc90de178825905901c1fe3e34718f85716611ed89750996ff7bae6","first_seen":"2025-06-03T04:10:59.182853Z","last_seen":"2026-03-01T16:28:28.682375Z","times_seen":35,"resource_available":false,"data":null}},"time_used":647,"timings":{"blocked":611,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/5/0/e/50e15a3c1d3a4720002f24bc02-574-392-400-h264.flv-3.jpg?revnum=8195","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /5/0/e/50e15a3c1d3a4720002f24bc02-574-392-400-h264.flv-3.jpg?revnum=8195 HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:57 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 17004\r\nlast-modified: Fri, 22 Nov 2013 03:51:08 GMT\r\netag: \"426c-4ebbbeca131f8\"\r\nexpires: Mon, 17 Nov 2025 01:59:34 GMT\r\ncache-control: max-age=10603650\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-7846-1-2948464-h-0-0---;8658-18-3715953----0-0-1\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17004,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: \"Lavc52.20.1\", baseline, precision 8, 308x232, components 3","md5":"a13f9d7f20b35c3e21e727b9859fd99c","sha1":"c52e5204af1caad33eba181ab55b888357fa456b","sha256":"66a392b942a23e0792c837e3d7687a3d04cbd5f47e96b950dc080369ac69287f","sha512":"83211fb515db92d56536ba5134424c0ceef07081c8f710412490b3e94b115ed1ca0d51edea8ea38d6ffe1f4f74c527e8e79d75ede63f43e696aa9e963a25bc3e","ssdeep":"384:n+/Va6k9ldb8c5+8qEqKW14wxhwXMQ1jvSctF5PULGMREQoCwX3G:n+sP9lr7qChwxSXMWSoECOEQ0X3G","tlshash":"0372d18714d760c0f63a41738af643b38b0f46491ae061983e9d5bde45413c5edecd4b","first_seen":"2024-04-24T02:28:42Z","last_seen":"2025-11-24T03:08:53.441381Z","times_seen":10,"resource_available":false,"data":null}},"time_used":2659,"timings":{"blocked":980,"dns":1,"connect":19,"send":0,"wait":21,"receive":1,"ssl":1627},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/07/144190_header.webp","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.773Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/07/144190_header.webp HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/webp\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 385271\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 18:00:42 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lViCX7QruYsyWXLIS6ttDq1l7kCwBk7Nacj460g0TF2Ldk4%2BP4oXWlVH5ZikqMeN1AGyRUpLuT4Sel%2FS6SNzsXm4ouUNmoUgoyQ%3D\"}]}\r\ncf-ray: 98fd3d99ea54783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27090,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 800x450, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"e4510232b0b0adbc76010c6b0ca3c23d","sha1":"da57b0ae078d3274d61fede3e38504584109dd8b","sha256":"4a9922dd15166ae6a416a152ea30c3f05c285fea4acdf0b0bb3df9f4e39b2359","sha512":"12145b77ac9633e5146ca6d91be4ee2448857946b67d86c2c4b7102ca77ef6f00f1c964df24527112708118cde1e1b5a9eb3ef2c7012f1e926fe77adf0f89bb8","ssdeep":"384:IFIG6yKf2MIIOnGeDGm1MhLZHHcOoX/LiVjw0B3qK/r6LN6MKA1ZakrXKqz8GRdc:OxIOnGehMh9HWYj5d7GL3Jay68rVxKh/","tlshash":"14c2e1a2dec20805abc4ba5df36d54dca080411c258ff6f2e5f8995be03bb7363446e9","first_seen":"2025-10-17T05:03:07.166994Z","last_seen":"2025-12-16T06:19:43.954172Z","times_seen":4,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.oedy9.com/favicon.ico","fqdn":"www.oedy9.com","domain":"oedy9.com","tld":"com"},"ip":{"addr":"23.145.136.155","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.787Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.oedy9.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Sep 2025 07:53:08 GMT","end":"Sun, 14 Dec 2025 07:53:07 GMT"},"fingerprint":{"sha1":"0C:A6:5E:8A:D6:B8:B5:31:F9:FD:D9:4A:F9:4F:42:12:AE:F5:0F:F3","sha256":"C8:36:4B:E5:6F:01:8A:EE:48:1D:74:2D:FD:8F:40:B1:8C:BE:B3:F9:22:CA:80:74:C4:AC:11:32:14:13:13:CC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.oedy9.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 15406\r\nlast-modified: Fri, 12 Sep 2025 01:06:12 GMT\r\netag: \"68c37204-3c2e\"\r\nset-cookie: server_name_session=1af5f46823c468fec7d4f033cd80bced; Max-Age=86400; httponly; path=/\nSITE_TOTAL_ID=7a9f90ec62c025fdbf0e3da634de305a; Path=/; Max-Age=259200000; HttpOnly\r\nserver: cdn\r\nx-cache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"873cb2cefd06621161b5d0badf276f9a","sha1":"8825d2ab21a8aa6d5ba6045ac201f82fc7fbdfa5","sha256":"77ba87f988860da018e51fa65f02b422a6cd03a42c6156e412ad7f4ebcffc751","sha512":"d66f5a20d10253f45abb2b4ec81ababbe00b803ead6dbf27b267a21122c495edaa9ab5e00acb56297f8ad8a198c9bebc335398329e1b5cb562a5bcc2ab14851b","ssdeep":"192:4flRn+U1dZv7t1nw2ydsYw7Ck2c3+uEt:4dRn+U1dZv7t1nw2ydsYw7CFc3+uEt","tlshash":"75621ea26b8e81e2f47268be19593a9b2383be232c549d41e750741406769ff473cf4f","first_seen":"2023-06-11T18:17:06Z","last_seen":"2026-04-03T17:43:35.520583Z","times_seen":1440,"resource_available":false,"data":null}},"time_used":1588,"timings":{"blocked":134,"dns":1,"connect":267,"send":0,"wait":529,"receive":1,"ssl":642},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/media/videos/tmb/000/000/534/3.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /media/videos/tmb/000/000/534/3.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 7854\r\nLast-Modified: Sat, 23 Mar 2024 12:21:45 GMT\r\nConnection: keep-alive\r\nETag: \"65fec959-1eae\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7854,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"cc1c3f43acc242b2600f29f8c8a001f4","sha1":"1b450bf469c9026b740a831a6232b1b747662c98","sha256":"5b30b6a495ca5beb7861c87a5a9781e66916046fe6bd9169e2407287e7addd9e","sha512":"1f1c1245dcf3c0d806d5d9d819e93b07e49c8337369b1550c34c9a224ae609ca2e618b890e0e9fad4d32aad4203bc0c2153586b06f745c115602c96c6ccd815c","ssdeep":"192:Kb15yXYU7EJoD8Po/ZkPSx2OSIA2jTOcTlfZyaZ:KhK77Em6oBEpO42WcBhyaZ","tlshash":"96f18e3837509842f98da3f213289b297b27dbc87a0e091fdcd1734deba54f5164a1e9","first_seen":"2025-05-23T07:10:10.181813Z","last_seen":"2026-01-20T12:10:26.317276Z","times_seen":54,"resource_available":false,"data":null}},"time_used":1844,"timings":{"blocked":1654,"dns":0,"connect":0,"send":0,"wait":189,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdne-pics.youjizz.com/3/a/d/3ad806ee871fae88f6321e01c926b5e51564458123-1280-720-1279-h264.mp4-4.jpg?revnum=1","fqdn":"cdne-pics.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"64.210.135.112","port":443,"asn":30361,"as":"SWIFTWILL2","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /3/a/d/3ad806ee871fae88f6321e01c926b5e51564458123-1280-720-1279-h264.mp4-4.jpg?revnum=1 HTTP/1.1\r\nHost: cdne-pics.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 19066\r\nlast-modified: Tue, 30 Jul 2019 16:35:23 GMT\r\netag: \"4a7a-58ee8985c28d8\"\r\nexpires: Tue, 20 Aug 2024 16:01:46 GMT\r\ncache-control: max-age=10741230\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,HEAD,OPTIONS\r\ntiming-allow-origin: *\r\naccess-control-expose-headers: Content-Length\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\"; ma=300\r\nx-cdn-diag: ams5-6140-1-2178494-h-0-0---;8658-20-3715953----0-0-0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19066,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 692x693, segment length 16, comment: \"Lavc57.89.100\", baseline, precision 8, 308x232, components 3","md5":"ca112a7ff0934d18be0d54ae10840a68","sha1":"e95f29510a6ac3775d0da44ef3d71a747a57647c","sha256":"0d5c683969c94ff6d904c93dd7854824e82fc34cd5c4ebe690a0d3566c426379","sha512":"7632681975a39735cde00b70458992102bd2162b2b96e9befa8fb9ee9dc6add46799c7926bffcd94edf7ee4ad147674a2ad0d338028539e07964331c15d505ba","ssdeep":"384:tLexieFoRM2Mm7xclm/c4V/XrrWGlAVesR0WJCp5+S097Mp08giDep/K:dWieFL23C4fVPO4Q9bHXGCp/K","tlshash":"2b82d1db4d9e58b1801703f16ed38e6e1d9e5ff569194980d0f742fee80028276d6b2d","first_seen":"2025-08-16T16:55:58.325322Z","last_seen":"2026-01-08T07:58:01.864568Z","times_seen":4,"resource_available":false,"data":null}},"time_used":1629,"timings":{"blocked":1584,"dns":0,"connect":0,"send":0,"wait":39,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.youjizz.com/favicon.ico","fqdn":"www.youjizz.com","domain":"youjizz.com","tld":"com"},"ip":{"addr":"66.254.114.242","port":443,"asn":29789,"as":"REFLECTED","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.youjizz.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 20 Dec 2024 00:00:00 GMT","end":"Tue, 06 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"18:A8:A8:35:DB:C2:7E:35:C3:7E:2A:75:C8:C8:D8:C6:09:86:45:D7","sha256":"B8:B2:2C:F3:DA:14:43:7C:79:64:F3:2C:36:B2:0A:52:EF:A7:AE:C8:FF:5D:57:E2:D1:26:9D:FD:B8:D7:77:B9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.youjizz.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4286\r\nlast-modified: Tue, 25 Feb 2020 06:57:19 GMT\r\netag: \"5e54c54f-10be\"\r\naccept-ranges: bytes\r\nset-cookie: RNLBSERVERID=ded1717; path=/\r\naccept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version\r\nalt-svc: h3=\":443\"; ma=3600\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"cd65da5df2a2cfd472a198524ec61296","sha1":"e51ea1800eec5985026a37498f4aa7044c757d04","sha256":"321ac040acb1c782abf632960125319b8925361510e13b1a9dfd904a9e733515","sha512":"cc9c5a4b3aa6509950565314184d43312530129c5b891ac8e7bc4f830dfa476c8da2ad281f4482b8f633edd6718536b1313005a26798c4452dca43bbccc21b7d","ssdeep":"24:sub7bP5a7a5TaBFraLahza8C9ajaRGa6RagaAOaAOa5F7aq9ramaP:df5a7iMZcyBSMUGzRnsdOG7NR","tlshash":"7c91efe1972ef89ecb4c82b4e01ad1fdd52e5d08d590031ba0dfbe6b7eb2366147010a","first_seen":"2023-07-17T14:42:33Z","last_seen":"2026-04-03T22:52:06.966753Z","times_seen":672,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":1,"connect":19,"send":0,"wait":38,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.brettspizzeria.com/favicon.ico","fqdn":"www.brettspizzeria.com","domain":"brettspizzeria.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.843Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.brettspizzeria.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":236,"timings":{"blocked":235,"dns":1,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"urpussy.com/favicon.ico","fqdn":"urpussy.com","domain":"urpussy.com","tld":"com"},"ip":{"addr":"185.213.91.19","port":443,"asn":32338,"as":"HOSTISERVER","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.883Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"urpussy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 29 Sep 2025 07:18:42 GMT","end":"Sun, 28 Dec 2025 07:18:41 GMT"},"fingerprint":{"sha1":"06:84:3B:1B:8D:95:C1:C6:B0:06:EF:EA:D9:B2:8B:80:DC:6F:93:FC","sha256":"3B:B2:14:82:30:8E:E3:EF:B7:31:F9:88:03:91:F0:A2:30:26:6E:37:8E:43:45:2B:4B:EF:50:FE:0F:56:B4:57"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: urpussy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Thu, 22 Oct 2020 10:03:50 GMT\r\netag: \"5f915906-47e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=63072000;\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"24e6f25809cfa78cee8e812267128cda","sha1":"2331c158133e3e0c5a7119ee72ca1270a80c747c","sha256":"57ab1eb8e67d3a3f449d43829f93cba6a386a3fe5aa2eda8b0bf7c43a6ce6f14","sha512":"3fd4b79a148c3308fd3620504bfd4843f6ccc637ad1ef88217e90f612ab988354941c326cca13c828182022e3c4999b937eb803fd1d173175ad92c6b6b5e4e71","ssdeep":"","tlshash":"e02120d1d6f51395fb68133404316d2b08521d064cb4c91e0a6dbac1a77f1d63cf235b","first_seen":"2024-08-19T19:45:07.489555Z","last_seen":"2026-01-26T11:01:23.010971Z","times_seen":50,"resource_available":false,"data":null}},"time_used":909,"timings":{"blocked":238,"dns":0,"connect":96,"send":0,"wait":91,"receive":0,"ssl":481},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"timg216.top/videos/0ef77719f0bbb119e4571076df3b4658/cover/5_505_259?ih=1","fqdn":"timg216.top","domain":"timg216.top","tld":"top"},"ip":{"addr":"172.66.155.86","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"timg216.top","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Oct 2025 04:28:49 GMT","end":"Wed, 31 Dec 2025 05:27:41 GMT"},"fingerprint":{"sha1":"0A:EF:84:22:E6:0D:56:57:B7:F6:C3:7D:6D:91:EF:17:49:1B:A6:01","sha256":"B5:3B:20:B4:05:8F:49:AA:87:FC:31:5E:8E:7E:0C:C5:77:A9:A2:5E:FA:54:61:41:C2:B4:A3:9D:CA:1B:2B:AA"}}},"request":{"raw":"GET /videos/0ef77719f0bbb119e4571076df3b4658/cover/5_505_259?ih=1 HTTP/1.1\r\nHost: timg216.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 23390\r\nserver: cloudflare\r\nlast-modified: Tue, 04 Mar 2025 10:01:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: \"67c6cf96-5b5e\"\r\nexpires: Thu, 25 Sep 2025 14:23:00 GMT\r\ncache-control: public, max-age=31536000, stale-if-error=7200\r\nt-cache: LHIT\r\naccept-ranges: bytes\r\nage: 1131272\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hx%2Fo88%2BVeGTXzaMSCPOAJXmZqhGk6VLFL9aJcwiM%2FJbuX%2Bs7%2FH1nAY8TtubYX8894PoiSS3bIpzZvHdqeEQeWwW8laCeHnrbZMRe\"}]}\r\ncf-ray: 98fd3da70b208deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":23390,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"Lavc56.60.100\", baseline, precision 8, 505x259, components 3","md5":"45a117ca6ed397fcfabf063acdd6d321","sha1":"fabd4c8148627abbe8075e3a8507886dae810faf","sha256":"094e512f2bed0fabb2a026f08053c3b25b3a8974c38c9758e4768a887eb3e1ed","sha512":"c9580f83dc8b30e2c16ea72716443dbb5a9ec0cda7c3fd587ea308da4937c2f2b43437cde069fb72ad0354b3ccc6c593b5cdc15c801c694dfde726b6accf263a","ssdeep":"384:992xP12FRVgOG1viFIM1jc21a7m9YITU5UMcXQwdrOvaq/oDnT3S6Q+29+H+5O1Q:Kr2pYeIOchmOI4yXFdCQTLzecK3","tlshash":"65b2af5b2d049587f12986a9fd87068d261d3a08f4577dff680b5ed6f6203ab1d4c02d","first_seen":"2025-05-21T16:17:32.682748Z","last_seen":"2026-03-02T07:55:32.786326Z","times_seen":90,"resource_available":false,"data":null}},"time_used":2210,"timings":{"blocked":519,"dns":1,"connect":1,"send":0,"wait":8,"receive":1,"ssl":1680},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"timg216.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stw.javvhub.com/thumbs/32/24/32241ff617d00f6add907b4a32670905.0.jpg","fqdn":"stw.javvhub.com","domain":"javvhub.com","tld":"com"},"ip":{"addr":"167.235.2.93","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.427Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stw.javvhub.com","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Sun, 27 Jul 2025 09:13:10 GMT","end":"Sat, 25 Oct 2025 09:13:09 GMT"},"fingerprint":{"sha1":"E9:90:D2:DB:49:43:93:EC:2F:E3:60:49:D4:22:9C:22:42:FF:73:81","sha256":"4C:AF:9F:D4:BC:5D:AD:0D:22:FE:90:C0:7F:C5:0F:1C:DA:81:79:71:3C:E2:E2:BC:B8:3F:2B:F8:92:AA:0F:33"}}},"request":{"raw":"GET /thumbs/32/24/32241ff617d00f6add907b4a32670905.0.jpg HTTP/1.1\r\nHost: stw.javvhub.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Fri, 17 Oct 2025 05:01:56 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 13770\r\nLast-Modified: Tue, 03 Jan 2023 23:39:00 GMT\r\nConnection: keep-alive\r\nETag: \"63b4bc94-35ca\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":13770,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3","md5":"4190abbaf971948a953488b857e86b70","sha1":"5e202d0ff703fad297514751eb70b1d0a7c3dcbe","sha256":"3d0a59eaf133cfe4dab20a538f08e1727e2a0af6e2c6def7af7bfa1e60baa2e0","sha512":"9c3c2e08de0eb354b7c064c8ddd62d77e99b9f6e5e6aedc43d8ad1e1f84d8e93d04e39341e47c7716caa4f749c4a47bbf88706fbddafe7ac69769a28417763ef","ssdeep":"384:+bd4DoxF1iY020G24F/q9A4c4CLvu/Uj86+Vr:KGE3110jMFCLctLmq8xr","tlshash":"fb52bfb10369c7c6f4ec73355286bc2a41c154973742a7df31db60769dfa6a0882838a","first_seen":"2025-08-14T16:14:38.750333Z","last_seen":"2026-01-21T05:47:16.550712Z","times_seen":16,"resource_available":false,"data":null}},"time_used":2999,"timings":{"blocked":1230,"dns":13,"connect":24,"send":0,"wait":47,"receive":1,"ssl":1681},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dirtysancheztube.com/thumbs/6/214_.jpg","fqdn":"www.dirtysancheztube.com","domain":"dirtysancheztube.com","tld":"com"},"ip":{"addr":"104.21.16.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dirtysancheztube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 12 Oct 2025 04:24:40 GMT","end":"Sat, 10 Jan 2026 05:23:23 GMT"},"fingerprint":{"sha1":"48:BC:49:5B:63:42:1C:10:85:D6:EA:42:14:63:B0:2D:ED:6D:9A:EC","sha256":"1C:0F:CF:F6:06:75:18:91:A8:BD:A3:B9:07:04:7E:93:2B:E4:68:F1:53:DD:F0:21:1B:49:93:1B:6E:7C:1A:E7"}}},"request":{"raw":"GET /thumbs/6/214_.jpg HTTP/1.1\r\nHost: www.dirtysancheztube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 9924\r\nserver: cloudflare\r\nlast-modified: Wed, 29 May 2019 09:00:18 GMT\r\netag: \"5cee4a22-26c4\"\r\nexpires: Mon, 05 Oct 2026 06:27:18 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1031678\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=djHAPsb99r6QhoRRwO2lLg9mmm8oxumo4jztaJLvuAgu7HzQriE34sTeT3m1VaXqmEHt3hWikKBAWCYsaJK0JeQQJMVgQ1Z8AEC892Kvdm9%2FOf%2BHJOezfQ%3D%3D\"}]}\r\ncf-ray: 98fd3daadd1d2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9924,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 312x208, components 3","md5":"a532a09c1462de91993ab491e9ae1137","sha1":"64416e301865fb84a396cae73c1c6e02f8e1efc4","sha256":"d3aca2f36bee4fbb25ee44ce41d60f0738e9b7df7ccd444d9f30db7d16110393","sha512":"086e6632cc3b2f1fd30d7e84051ed29766372d298d85c6c46b254cb81deda49886856653cf884a42203f9b5ff0f3ff0f3eacfcaac5eff51a549ba5f517073df4","ssdeep":"192:qv1lBHpu2RAgMKes+FflT05cahDYNIbXP1htw8SMdqNhk/R5D:UHQ0hP+FqhhD/LP1nw8JdqNS/TD","tlshash":"d222ae6af40cf9f3f903a516b239bd02ebd20dac4e99e60a89d5c7d6c22d8c561402d9","first_seen":"2024-04-25T02:47:34Z","last_seen":"2026-03-03T14:10:03.998608Z","times_seen":84,"resource_available":false,"data":null}},"time_used":2766,"timings":{"blocked":1046,"dns":8,"connect":10,"send":0,"wait":9,"receive":0,"ssl":1670},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/009/402/3.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/009/402/3.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 17177\r\nLast-Modified: Sat, 23 Mar 2024 12:18:59 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b3-4319\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17177,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"761212a33f9567fbadb718f053f0b20f","sha1":"3d1ef523ac778f19a22c9aaad10bda88ce14ca7b","sha256":"73591db6852a5d6ae575d61159ba021c1f1b487f891a24cc7e34b3378c3e74d1","sha512":"c87e1a123d85d58e6abc22218e4f2a3487ebde9390072bfec68d40dc9ec1418c5967e4dde6470b07caf85714e1f51af679f0e2ff4d83854d514d5dfb9557f26d","ssdeep":"384:7vrJJgVx7/FtYM4McYILnAv4ONoXyaSxKOy5eXqoVxB36sxqNE:7v1m/FSM4djnSoiaSxKxUXqoVH36zNE","tlshash":"d672c18dc95e2d98c33e17724ea7727b83fd847f2f51599a84652ba02331ae10b406db","first_seen":"2025-10-17T05:03:07.224783Z","last_seen":"2026-03-03T14:10:03.728074Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2393,"timings":{"blocked":2160,"dns":0,"connect":0,"send":0,"wait":220,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dirtysancheztube.com/favicon.ico","fqdn":"www.dirtysancheztube.com","domain":"dirtysancheztube.com","tld":"com"},"ip":{"addr":"104.21.16.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dirtysancheztube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 12 Oct 2025 04:24:40 GMT","end":"Sat, 10 Jan 2026 05:23:23 GMT"},"fingerprint":{"sha1":"48:BC:49:5B:63:42:1C:10:85:D6:EA:42:14:63:B0:2D:ED:6D:9A:EC","sha256":"1C:0F:CF:F6:06:75:18:91:A8:BD:A3:B9:07:04:7E:93:2B:E4:68:F1:53:DD:F0:21:1B:49:93:1B:6E:7C:1A:E7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.dirtysancheztube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nserver: cloudflare\r\nlast-modified: Fri, 29 Nov 2019 12:08:12 GMT\r\netag: \"5de10a2c-47e\"\r\nexpires: Mon, 05 Oct 2026 00:21:46 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1053613\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4ismSW5qF3VTdG3xACUm5w3VLIZmBMsqcaLT4zQwfBxqbfo%2FyScG2jV9Z3MsaUHEv0HRLZeggErsohYz07YovUIdTEi9I4g4ha3B6SGxfMe010nzlW4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3dc019f956c9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"dfd251a1848f0caf669a9253f39d3068","sha1":"ee5695be8c0f24633be95c3a3adbd4b5b42ed6a3","sha256":"0b561412b53c6a575b07d9dd6cd1d9d98a4b61c2ab3540b6e9ff246eb5c88664","sha512":"df0a8b6ff89e8e44334e7747caf43914b9c3d9c39f09d3bdf26c2c7f959facb33a5a29701b0159599656a60189190a5f60e4c2b2cf4c80271c2574140d0e92ed","ssdeep":"","tlshash":"a421dea1d0f61c06c75fe93af051ef123e89bc550f9122b7a980133029a8dbfc2a5b80","first_seen":"2024-06-16T03:37:43Z","last_seen":"2026-03-03T14:10:03.70876Z","times_seen":190,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/135444_header.webp","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/135444_header.webp HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/webp\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 385891\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 17:50:21 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YRMGHSn2D%2FIiXOSMorUpwbKPw4ZQlcoaVAgNisXUpY9ro84jQMbnz2iFI3wOKmXEoxMOfroBsyTDvWmbnq7jw0a%2BkSfudkHiCk0%3D\"}]}\r\ncf-ray: 98fd3d99ca37783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49994,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 800x450, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"d7f0dcf3c062af45943d139ad9c634bf","sha1":"c5fea62263a3794938cae60a4dc63e3fd3c799f5","sha256":"3d994bd3852767d3130830c641e55382d879b8f11c020402800f614d2fdba33e","sha512":"f32501fcb0bd4b82a14ae6fd0382eb44aeabb805ff289e42cb0c56c0d66e86e71b78ffa7f3629db5430ba34ba6f3fe20a192be26d7522f201b361011f0b10e69","ssdeep":"1536:MxQdRo2/E14V1u39u7CKF1O6BvBWzhTRDQrhdA3x:h/wuu39uGkNvBWzDDz3x","tlshash":"4123f1438fa4389e2adddd2cbdcbdbe948e61045807bf3b876686945640e325232cd6d","first_seen":"2025-07-26T12:58:47.697949Z","last_seen":"2026-01-13T15:17:47.164869Z","times_seen":8,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sexsex61.com/favicon.ico","fqdn":"sexsex61.com","domain":"sexsex61.com","tld":"com"},"ip":{"addr":"23.145.152.20","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sex83.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:08:44 GMT","end":"Wed, 10 Dec 2025 14:08:43 GMT"},"fingerprint":{"sha1":"C9:DF:27:A9:2B:47:90:06:7B:5F:0D:64:78:F2:F2:AA:1A:35:1B:98","sha256":"4C:FE:81:8C:DC:92:CE:C9:8C:E0:31:42:DB:60:A1:F2:47:C9:52:17:EF:1D:EF:EB:5D:95:CB:4A:EB:AF:0B:5E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: sexsex61.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/x-icon\r\ndate: Thu, 16 Oct 2025 09:20:06 GMT\r\netag: \"645b773c-10be\"\r\nlast-modified: Thu, 16 Oct 2025 09:20:06 GMT\r\nserver: nginx\r\nx-cache: HIT, policy, disk\r\ncontent-length: 4286\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"da00228045bbdc9fc485eee15ae466f7","sha1":"51acd57ef4439a7e622281388e2aa83d53b3fe33","sha256":"18a2fc0c936b1782fb1f1dec65e9ea9dfff00e1a081594c8c3049a5b435c1d2d","sha512":"b7ba13392ab3c6d8c1077989d482399892c1c094599e798b69dc3c6720b5d26dd6186d414f46cacf8ed48061e091d23978248b63cace28ebc601e41348ce608a","ssdeep":"48:uTOtJTTH7TTS/LY64wSKd2sci/6aq3EDP+3yk:uOH73wSKdEv/3v3yk","tlshash":"e2912fa8edf928bfd22403785f0697f8c8338e1f6ce4593308227c9b272ed51848611d","first_seen":"2023-05-17T22:14:46Z","last_seen":"2026-04-03T22:52:06.89925Z","times_seen":551,"resource_available":false,"data":null}},"time_used":1335,"timings":{"blocked":233,"dns":2,"connect":266,"send":0,"wait":270,"receive":6,"ssl":557},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/eed4007c80cd9fa47a54d9e4abfe9d1c.jpg","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.435Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/eed4007c80cd9fa47a54d9e4abfe9d1c.jpg HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 25824\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tQ1zxQ4nCXJhmaYSB24ZT8TTi7Ky87x8mobzJLD%2Fos7U9RJ%2FV3%2BbAwZUXKywm%2FmjIeeRqX7ZMgR4qG6X5bH%2B%2FAj%2BUtRy0onwhjEXvKPG\"}]}\r\nage: 524\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=26411\r\netag: \"6740ffa97335b44b97ecc1a763500425\"\r\nlast-modified: Sat, 07 Oct 2023 09:57:47 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3d9d9c9eb28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25824,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 268x394, components 3","md5":"1487dfd8307b49ed372ea9bb2daebc84","sha1":"870475ba59ed574af11a33e0a1af0f9d12d729d1","sha256":"033b19eb71828c55f2e5cd913f31af06e9693e0334881c586b4b8173c6753d8c","sha512":"baa4849d5b02130fd4161637aa2abc6a8e1031f813d9c27510c39da98ab2be730c8bcda010a12d6c52c676d82660b8320aba9208310099d7e5353ecc960f968e","ssdeep":"768:CrwvR9MwbRfJxT2ejNpZDHQuh4sYQGWuzcKjg6:59XcejNLDhFYQGWo906","tlshash":"2fc2f1c0a32dcf17fa8728fa4b41bf60160757404964f2bc7e449da56d89ab8f10cd69","first_seen":"2025-09-21T08:27:47.434963Z","last_seen":"2026-01-17T01:52:05.888119Z","times_seen":29,"resource_available":false,"data":null}},"time_used":755,"timings":{"blocked":744,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ansuko.net/wp-content/uploads/2024/12/poster-145.jpg","fqdn":"ansuko.net","domain":"ansuko.net","tld":"net"},"ip":{"addr":"172.67.138.117","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ansuko.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 08 Oct 2025 11:42:18 GMT","end":"Tue, 06 Jan 2026 12:39:58 GMT"},"fingerprint":{"sha1":"F5:7A:D2:13:21:CE:EB:03:E2:D6:BE:F2:03:73:1F:55:8F:6B:68:4A","sha256":"4E:51:47:18:74:38:C5:CD:59:59:6B:15:27:21:87:E4:21:5C:E7:A4:96:C3:F6:7A:F3:06:9F:82:BE:6B:3A:65"}}},"request":{"raw":"GET /wp-content/uploads/2024/12/poster-145.jpg HTTP/1.1\r\nHost: ansuko.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 384952\r\ncache-control: max-age=31536000\r\ncf-cache-status: HIT\r\nlast-modified: Sun, 12 Oct 2025 18:06:00 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Hwbix%2BsRaiMppHQEWnF%2B%2BkIk0f0vK9ujNgSxPnY1yxokFKUMfhCaQMrHYkKKEvgfChRcwQy%2FlDZlKLYj8FEyXKaHvkO9ZStLJnQ%3D\"}]}\r\ncf-ray: 98fd3d99aa0e783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51932,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 480x270, components 3","md5":"f935ca6f4b2f8acbf89624fe53bd8d35","sha1":"8df3d3bea97b15e0f06ee07c37076fa3d63ab880","sha256":"58b10cae30e7c28ac5ce87dc5f85631cbf9e04221c1a560737da5d37cad08d0b","sha512":"2d860850efa411a5a459332cdaa4b0196e88bf6d083e93ac622ae49608b6a2bad85c159ed053584ca3f43556bced8d9908e3d856370a117c9e1ab7457849b734","ssdeep":"1536:p6iXd91tE5xiITmXgolPN54/f1cSBme9M4w36:hXrK9CXBlPNUOSAoOK","tlshash":"cf33f21e214060a43e4b4378c3e46ff1eab65bf151e278ec93da7ab34d3155e26a035e","first_seen":"2025-07-25T18:18:10.366799Z","last_seen":"2026-01-21T00:43:43.297753Z","times_seen":15,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":95,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/007/240/10.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/007/240/10.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 10331\r\nLast-Modified: Sat, 23 Mar 2024 12:19:39 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8db-285b\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10331,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"4f0ebcb582213493715a020a712fa321","sha1":"c10140822ebf3c404910b5750b36d2b07c5bb41a","sha256":"0a5d2d5d27b08c55783141c5bbfa2a9c30e6ed3d541e9610d5eec854a39be8f7","sha512":"7b3b10d0fd1988e91005f8259c12bd11a18a5a94500b880e515dcd719cf4bb22119d22b5894172489955dbe8ae693fa53729c3662f9332bce3deec0a079dca31","ssdeep":"192:KbW6KTIz327cuzQeI8fbnMadf3nU2gDIVD+ieDel1BH/:Cj2jQGtXUvDIh/H/","tlshash":"6822af67edf01659d97de7388fe0019a863add03901957a808e15ab2f71c4c781951bf","first_seen":"2025-03-12T03:12:27.284086Z","last_seen":"2026-01-11T16:31:17.527281Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1814,"timings":{"blocked":1613,"dns":0,"connect":0,"send":0,"wait":200,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"anh.moe/favicon.ico","fqdn":"anh.moe","domain":"anh.moe","tld":"moe"},"ip":{"addr":"160.191.77.132","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"anh.moe","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 29 Sep 2025 07:26:07 GMT","end":"Sun, 28 Dec 2025 07:26:06 GMT"},"fingerprint":{"sha1":"85:FF:47:DD:73:3F:D5:36:00:DA:D7:7A:6D:DC:34:2E:73:A9:91:41","sha256":"47:4D:88:D3:BB:FB:22:85:8C:6D:6A:99:EF:84:D9:92:38:CB:C9:67:D2:9A:43:A6:8A:C4:BD:DC:D7:D7:8B:AB"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: anh.moe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:02:00 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2031,"timings":{"blocked":875,"dns":1,"connect":194,"send":0,"wait":198,"receive":0,"ssl":756},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shirouto.inran.jp/favicon.ico","fqdn":"shirouto.inran.jp","domain":"inran.jp","tld":"jp"},"ip":{"addr":"183.90.182.167","port":443,"asn":37907,"as":"DigiRock, Inc.","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.shirouto.inran.jp","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 20 Aug 2025 16:22:23 GMT","end":"Tue, 18 Nov 2025 16:22:22 GMT"},"fingerprint":{"sha1":"63:B0:C7:47:20:C8:EE:22:41:AC:99:0F:2B:79:07:FB:2C:66:83:42","sha256":"80:FD:DD:6A:5A:65:8F:48:CE:05:B7:A3:0F:4D:8F:56:72:7E:23:F9:8E:60:37:D9:D4:E0:FC:CC:6B:4D:11:C8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: shirouto.inran.jp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1251\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.redwap-cdn.com/238/238015/238015_320x180.jpg","fqdn":"img.redwap-cdn.com","domain":"redwap-cdn.com","tld":"com"},"ip":{"addr":"104.21.0.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"redwap-cdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 14 Sep 2025 03:11:33 GMT","end":"Fri, 12 Dec 2025 19:36:33 GMT"},"fingerprint":{"sha1":"34:89:BF:1C:99:C0:5D:91:01:C7:87:62:C8:6B:4B:D5:80:1D:CE:75","sha256":"B0:F5:7E:78:05:9D:CE:2F:1A:BE:31:9F:71:F8:32:25:50:F0:01:55:0E:9D:48:B9:75:5A:25:79:9A:B8:64:1F"}}},"request":{"raw":"GET /238/238015/238015_320x180.jpg HTTP/1.1\r\nHost: img.redwap-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13679\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nlast-modified: Wed, 03 Apr 2019 07:33:03 GMT\r\netag: 23b16a4d000b7c3c06481fe3ae1bee13\r\nx-timestamp: 1554276782.77567\r\nx-object-meta-mtime: 1457864447\r\nx-trans-id: tx9ae5d388de3544eeb1c30-005e64643f\r\nx-openstack-request-id: tx9ae5d388de3544eeb1c30-005e64643f\r\ncache-control: max-age=31536000\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\nexpires: Sun, 19 Oct 2025 03:00:12 GMT\r\nx-cdn-host-id: DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nage: 7303\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e8b8%2FhfRN4JgtobJ4uMFJhYcLq5ug5dWQeOMTHV9QKynyOUDeOROiDSPyCv3xCy4feGPeh9o8RM3ylgdHvv2TO5vBIU7uwBSLgZX8UyrwbapTw%3D%3D\"}]}\r\ncf-ray: 98fd3da40fce0883-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13679,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3","md5":"23b16a4d000b7c3c06481fe3ae1bee13","sha1":"b89dbb7900a43ae4dea8d2d8e374f4070a9e0cd4","sha256":"a293b3efa470063881ed8f12f92d6f10bccfcf8f8cd1edaac0e20c3dd93093cb","sha512":"fdde855cff9561fef19f1a2295d9045faccddacdc25e5264c7cdfdabf7e42cd01e8fc32f533e4741cd71dc4bdd18a9fe3707bef4070090fcb12a70c730142b10","ssdeep":"384:a6Mofmm1ih/jfud1aVECVJhpcVcDX6TaeegE:aSoDP5jrDPeRE","tlshash":"9b52c02d678503cabf1d8975c1e73daadcfca6529a1f4982ccde623411d59613fc402c","first_seen":"2024-12-08T10:57:50.548193Z","last_seen":"2025-10-17T05:03:07.250409Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1695,"timings":{"blocked":421,"dns":2,"connect":1,"send":0,"wait":6,"receive":1,"ssl":1261},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.twi-dl.net/favicon.ico","fqdn":"www.twi-dl.net","domain":"twi-dl.net","tld":"net"},"ip":{"addr":"104.21.2.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"twi-dl.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 30 Aug 2025 20:52:06 GMT","end":"Fri, 28 Nov 2025 21:50:21 GMT"},"fingerprint":{"sha1":"74:F4:24:BC:7F:05:50:9D:EF:DF:BE:AF:DA:AC:E3:B0:AA:AD:86:DD","sha256":"98:FE:B4:60:DC:C6:65:B9:4A:F2:CC:1B:E3:99:D1:49:52:19:DB:57:23:D8:AB:D0:93:62:2B:2A:2E:D7:64:22"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.twi-dl.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1ABEFQYoQHkiurkmJI2fPU%2Bp2KctJdOfnDmTqsaIcFT92ptWQhfqWG7xVsGhe2btk9yJshK7Bz%2FdKMvyW%2FnkZbmbMy%2BjrK0VGBJCn0cO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3dc5fd998be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":844,"timings":{"blocked":186,"dns":1,"connect":1,"send":0,"wait":5,"receive":0,"ssl":649},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.asiannudestube.com/favicon.ico","fqdn":"www.asiannudestube.com","domain":"asiannudestube.com","tld":"com"},"ip":{"addr":"104.21.63.239","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asiannudestube.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Sep 2025 21:27:35 GMT","end":"Fri, 26 Dec 2025 22:25:50 GMT"},"fingerprint":{"sha1":"B8:FD:FC:44:EA:65:A1:0F:60:EE:4D:7D:CD:A5:1D:2E:EE:29:28:71","sha256":"1F:59:10:82:17:8F:5F:17:B4:8D:E3:BB:ED:B8:2F:D3:47:9C:20:72:0F:87:1C:99:1E:BB:DF:61:CE:AF:1B:6B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.asiannudestube.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nserver: cloudflare\r\nlast-modified: Sun, 21 May 2023 03:46:34 GMT\r\netag: \"6469941a-47e\"\r\nexpires: Mon, 05 Oct 2026 00:22:13 GMT\r\naccept-ranges: bytes\r\ncache-control: public, max-age=31536000, no-transform\r\nage: 1053585\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XFyjuQKCWtRTznyYuUSVc0TspdDm7F%2FdRq2soN%2BmMbPXXAHt%2FKBMIm2sZHADpp%2BdDB8SaqDssEblrNNkspjowK8uobH11tQ%2BM6UYoECauMugQX%2BT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 98fd3dc08feeb4f3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"01c7f4a49643b15429e07fb982272acb","sha1":"d6f70a4a7d9c1b12846f4820b1f163db03384ce4","sha256":"3683c5277e90752d4f84918b7adf0d1a62137b33ae05599557f969bb144f6340","sha512":"0c5707bf057ee34b2bcd6e4877b7d029a741bd7e8f0d1aa08ceb0b200f0cf02a1d7a30637547e61423a55d2f5ecd397862e138390c2d847f88b87fccec6406e6","ssdeep":"","tlshash":"ce210e827ab946aadcd52f387934fa2a01bf4f94fc28bb856e4470937b733860014457","first_seen":"2025-06-28T08:11:01.556507Z","last_seen":"2026-04-03T21:47:16.591591Z","times_seen":52,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"incestmom.net/video/2019/jan/34.webp","fqdn":"incestmom.net","domain":"incestmom.net","tld":"net"},"ip":{"addr":"185.162.11.82","port":443,"asn":207728,"as":"EUROHOSTER Ltd.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"incestmom.net","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Aug 2025 23:30:52 GMT","end":"Fri, 28 Nov 2025 23:30:51 GMT"},"fingerprint":{"sha1":"67:3B:E3:35:58:4C:63:E3:F6:08:DF:27:67:B2:D4:21:F6:72:DE:C4","sha256":"82:46:DA:51:03:E7:C2:FC:D0:7F:58:71:BE:B2:73:DB:4C:0D:CD:D9:B9:DC:D6:BF:F4:23:D9:46:15:E9:25:B6"}}},"request":{"raw":"GET /video/2019/jan/34.webp HTTP/1.1\r\nHost: incestmom.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Length: 24284\r\nConnection: keep-alive\r\nLast-Modified: Mon, 07 Oct 2019 19:32:03 GMT\r\nETag: \"5edc-594571b37a952\"\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=9720000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24284,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"56cef4d1d1989b1a62e561e0fb50345c","sha1":"aad66b84b9c09c93fa9c1e559af8a6caeea0a718","sha256":"b58524a6964a08730a256d7ee50f4802daf7dad1e415eceb616bf5fdb29f97e1","sha512":"6c6c5031061afd2379ab25aec10968a28743923919f44d3ab60faa27f1938a62f600f521d7045460269db220a6eccb320a6213734089eb26cb4ef57c8f1a57dc","ssdeep":"384:FHoxX+GNRKeM8JqlCfp1P30Etn2JNAHTVGTzvUEdEwt2pzJ1HYu+GnbHFqscF4/V:FH8XFNMetLphDn2JeHT8TzvUEdJcpzjr","tlshash":"3db2d05c1324e3be99a9037ccac6d957e0c8d4b69d82d6427d3f63e21d346e0ac6bc25","first_seen":"2025-10-17T05:03:07.261775Z","last_seen":"2025-10-17T05:03:07.261775Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2916,"timings":{"blocked":1411,"dns":202,"connect":18,"send":0,"wait":20,"receive":19,"ssl":1240},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oedy9.com/favicon.ico","fqdn":"oedy9.com","domain":"oedy9.com","tld":"com"},"ip":{"addr":"176.65.149.167","port":443,"asn":0,"as":"","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"oedy9.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Sep 2025 07:53:11 GMT","end":"Sun, 14 Dec 2025 07:53:10 GMT"},"fingerprint":{"sha1":"3D:FB:B5:4F:9F:A2:E6:70:14:BA:B5:5D:CF:78:85:33:50:B3:A1:6D","sha256":"E4:22:EF:7A:E1:45:C4:34:71:10:5C:F6:D2:34:3B:9F:08:E0:31:3D:FB:C3:67:DF:EA:C4:98:C1:B5:9B:F1:31"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: oedy9.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 15406\r\nlast-modified: Fri, 12 Sep 2025 01:06:12 GMT\r\netag: \"68c37204-3c2e\"\r\nset-cookie: server_name_session=8b52007ac34f9f842729727b916f7e05; Max-Age=86400; httponly; path=/\nSITE_TOTAL_ID=b2eb8eab59e9cb2eb5adae6b99638f13; Path=/; Max-Age=259200000; HttpOnly\r\nserver: cdn\r\nx-cache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"873cb2cefd06621161b5d0badf276f9a","sha1":"8825d2ab21a8aa6d5ba6045ac201f82fc7fbdfa5","sha256":"77ba87f988860da018e51fa65f02b422a6cd03a42c6156e412ad7f4ebcffc751","sha512":"d66f5a20d10253f45abb2b4ec81ababbe00b803ead6dbf27b267a21122c495edaa9ab5e00acb56297f8ad8a198c9bebc335398329e1b5cb562a5bcc2ab14851b","ssdeep":"192:4flRn+U1dZv7t1nw2ydsYw7Ck2c3+uEt:4dRn+U1dZv7t1nw2ydsYw7CFc3+uEt","tlshash":"75621ea26b8e81e2f47268be19593a9b2383be232c549d41e750741406769ff473cf4f","first_seen":"2023-06-11T18:17:06Z","last_seen":"2026-04-03T17:43:35.520583Z","times_seen":1440,"resource_available":false,"data":null}},"time_used":581,"timings":{"blocked":-1,"dns":16,"connect":28,"send":0,"wait":21,"receive":22,"ssl":492},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fqjpg4.top/upload/vod/20240914-19/185fa131b0426e465b1aa73ead9645d0.jpg","fqdn":"fqjpg4.top","domain":"fqjpg4.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.466Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /upload/vod/20240914-19/185fa131b0426e465b1aa73ead9645d0.jpg HTTP/1.1\r\nHost: fqjpg4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2380,"timings":{"blocked":662,"dns":1718,"connect":1826,"send":0,"wait":0,"receive":0,"ssl":1340},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/003/455/3.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/003/455/3.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 19785\r\nLast-Modified: Sat, 23 Mar 2024 12:20:03 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8f3-4d49\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19785,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"35cfbfbfe7a358d7a7f3b38ee87cfb2a","sha1":"71f10300ad124f7c1377d2ad49d9ec192da8658a","sha256":"c6db12f1b5a613a2a56e5b5d9f10810d61f86373c9ac081b7e2c14433903e765","sha512":"8037f9fba08211a6aefd88fbb6a91dc183d9ac53cc73b412a360a774b4848d679c52f53f72276198b6f91322e6a49f526351640ed9bf8882f9ed0cb38a12c980","ssdeep":"384:WCJxapFl4Ndo/xzGHIrwcXsvv9jUX+uJBo+1sjrAy41TeCOkCCU:jxSkNdoHrwcXsvEDJqtUHTeC3U","tlshash":"f092d0f1dd2a549ad02d4ee765109aeb703a513008c9521ae72aaf7fab341e103fd7e4","first_seen":"2025-10-17T05:03:07.268949Z","last_seen":"2025-10-17T05:03:07.268949Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2161,"timings":{"blocked":1924,"dns":0,"connect":0,"send":0,"wait":227,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbzytpimg1.com:3519/upload/vod/20240611-1/e094f1f6c4b751df4c7f7242162e6e0f.jpg","fqdn":"sbzytpimg1.com","domain":"sbzytpimg1.com","tld":"com"},"ip":{"addr":"173.249.235.41","port":3519,"asn":11878,"as":"TZULO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sbzytpimg2.com","organization":""},"issuer":{"commonName":"SSL.com TLS Issuing RSA CA R1","organization":"SSL Corporation"},"validity":{"start":"Thu, 19 Dec 2024 14:08:44 GMT","end":"Mon, 19 Jan 2026 14:08:44 GMT"},"fingerprint":{"sha1":"E0:5A:30:EE:A9:EE:48:CA:04:0C:D5:AC:96:9B:6C:3D:39:FA:07:5F","sha256":"E3:46:AC:2A:8B:CE:10:19:17:F4:14:B7:8B:83:93:E5:64:E6:F4:1A:30:40:DB:D5:53:62:E4:86:34:A7:42:52"}}},"request":{"raw":"GET /upload/vod/20240611-1/e094f1f6c4b751df4c7f7242162e6e0f.jpg HTTP/1.1\r\nHost: sbzytpimg1.com:3519\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 103690\r\nlast-modified: Tue, 11 Jun 2024 04:00:35 GMT\r\nvary: Accept-Encoding\r\netag: \"6667cbe3-1950a\"\r\nexpires: Mon, 03 Nov 2025 03:56:10 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\ncache-control: max-age=2592000, public, max-age=15768000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":103690,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 718 x 404, 8-bit colormap, non-interlaced","md5":"0d4b0cf41e57ce32e1b6dfd2c362577e","sha1":"122496c70a7313031fbd06965f28bf73bea53958","sha256":"82884e380ca718b0a53f9e5f2302818e109cab7d04e5d5ffcdb6fd34875a8084","sha512":"4f7f4372004af333f5b8ea56e2bca5f25c504c9749edfa7a604e906967d0fe56d0d399eea89a4f07314bc97875a20627f41f55af728acd0062ba35076dd964b0","ssdeep":"3072:DjLX9oP8UlJviO2E+wcPLkkk5QpR81qAgXd0wl:XWp2E+rTDkA8NAl","tlshash":"30a312fdd35a1b5b06599ce8cfeccc4161b95d85d3a862232352f80c8400966abfefe5","first_seen":"2023-10-31T04:17:56Z","last_seen":"2025-12-18T23:51:27.828066Z","times_seen":69,"resource_available":false,"data":null}},"time_used":3311,"timings":{"blocked":893,"dns":1,"connect":156,"send":0,"wait":394,"receive":47,"ssl":1805},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.mymediaing.my/sdk/p/?zid=9801","fqdn":"cdn.mymediaing.my","domain":"mymediaing.my","tld":"my"},"ip":{"addr":"172.67.170.181","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:54.449Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mymediaing.my","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 27 Aug 2025 10:22:29 GMT","end":"Tue, 25 Nov 2025 11:04:47 GMT"},"fingerprint":{"sha1":"46:CC:D8:95:02:93:ED:C6:64:14:D9:9B:AB:20:99:8F:D4:B6:85:2E","sha256":"79:02:DB:BA:76:EA:87:1B:A1:5C:83:B0:CC:16:5E:DD:0D:5E:58:CD:5C:48:52:0C:BC:75:5B:DE:51:C6:46:5D"}}},"request":{"raw":"GET /sdk/p/?zid=9801 HTTP/1.1\r\nHost: cdn.mymediaing.my\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WN17l33FqM1ZHPWdepKRlQD2EZBXcRXX5AL9YqYZfmYmwGrvygRDrVYukN9kVrNnFf2w23pL%2FIYuiTQSCEcI3RxEpIbZYiRTgdKuEsin%2Fg%3D%3D\"}]}\r\nx-time: 1760677316\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 98fd3daa08255695-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52894,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (52408)","md5":"4e4e226523e5dc1d1a84c9f47b9b4d82","sha1":"39c535a1a7efdd9c686790b2de8684453fb0302e","sha256":"6ce12f9f2de28bf41b43507283f8225142de308c5fbfeded3af1e73699197f3b","sha512":"4c84ef18da3bd956e7a90b80e51aa360c2723d393833309b057fa1250ac353117d190282e65046c2010fd79c0cdcbfa667f7bfb5ad57a0b76961cf4be23e3dfb","ssdeep":"1536:nFiJtBRiqSJQUUBU1wpIbS0UboLxCSMzHUgNvFG:nDqSJQUUBU1wpIbS0UboLxCSMzHH+","tlshash":"603392982fd0b94053dbab7b772fb4e5f4571c2f6a81484fe225bc20359071beaa5930","first_seen":"2025-10-17T05:03:07.278786Z","last_seen":"2025-10-17T05:03:07.278786Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1772,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":50,"receive":0,"ssl":1714},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"18j.tv/favicon.ico","fqdn":"18j.tv","domain":"18j.tv","tld":"tv"},"ip":{"addr":"104.26.2.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"18j.tv","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 19:12:40 GMT","end":"Wed, 26 Nov 2025 20:12:33 GMT"},"fingerprint":{"sha1":"B1:9F:8B:63:17:FB:4F:E1:31:92:08:0A:1A:5D:E9:6B:57:A6:3B:C8","sha256":"D2:FD:C3:C6:D3:56:05:A1:15:2F:06:72:E9:74:0D:91:A1:AC:5D:40:31:E2:16:7B:75:22:55:05:74:32:11:1A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 18j.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\nx-frame-options: SAMEORIGIN\r\nvary: referer, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9trT6kK8%2Bx4eHjLSb8aPBeNLwRY3iLovQTgeFHO6ZxHb1fjErzAR34oYwgUUxlGaHVXbfEYx3pUoW%2FVdy5ahtjNNtA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3dc2295cb509-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":371,"timings":{"blocked":-1,"dns":11,"connect":8,"send":0,"wait":10,"receive":0,"ssl":327},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.aisan-porn.org/favicon.ico","fqdn":"www.aisan-porn.org","domain":"aisan-porn.org","tld":"org"},"ip":{"addr":"192.243.50.111","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aisan-porn.org","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Mon, 29 Sep 2025 00:00:00 GMT","end":"Sun, 28 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"48:D3:A0:1F:F3:D6:F2:2F:8B:80:70:3A:C1:0E:EB:82:14:E1:A8:6C","sha256":"2C:72:BB:5A:DD:18:B2:C7:98:10:4B:B9:4F:E5:32:FA:C9:89:B7:B5:58:C5:7E:14:6B:25:B1:C7:DA:0B:4C:04"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.aisan-porn.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: openresty\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":867,"timings":{"blocked":89,"dns":1,"connect":97,"send":0,"wait":92,"receive":0,"ssl":586},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.redwap-cdn.com/140/140416/140416_320x180.jpg","fqdn":"img.redwap-cdn.com","domain":"redwap-cdn.com","tld":"com"},"ip":{"addr":"104.21.0.219","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"redwap-cdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 14 Sep 2025 03:11:33 GMT","end":"Fri, 12 Dec 2025 19:36:33 GMT"},"fingerprint":{"sha1":"34:89:BF:1C:99:C0:5D:91:01:C7:87:62:C8:6B:4B:D5:80:1D:CE:75","sha256":"B0:F5:7E:78:05:9D:CE:2F:1A:BE:31:9F:71:F8:32:25:50:F0:01:55:0E:9D:48:B9:75:5A:25:79:9A:B8:64:1F"}}},"request":{"raw":"GET /140/140416/140416_320x180.jpg HTTP/1.1\r\nHost: img.redwap-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 11362\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nlast-modified: Fri, 24 Jun 2022 03:15:19 GMT\r\netag: 378bb73d8300a572f55cd19472548c72\r\nx-timestamp: 1656040518.90827\r\nx-trans-id: tx3cbb0ca6f50344ec834eb-0062b58033\r\nx-openstack-request-id: tx3cbb0ca6f50344ec834eb-0062b58033\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\ncache-control: max-age=31536000\r\nexpires: Sat, 18 Oct 2025 04:05:58 GMT\r\nx-cdn-host-id: ds9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nage: 89757\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZsaYLvpUbGs8g4pwvTMxgI1d1PI%2BeF0PZXC3b7lw2ZNBLJzT1XNq0i87Teh56xnnExX4FNlXo0ViCu02SkssT3DuajiyvoBFns9mJMq1ZcYZwQ%3D%3D\"}]}\r\ncf-ray: 98fd3da5dbb00883-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11362,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", progressive, precision 8, 320x180, components 3","md5":"378bb73d8300a572f55cd19472548c72","sha1":"7ed95069563675360c81d35ed49e70a0c8f10522","sha256":"24a0030c1ee7d5a30be9aeed50dbe44b3cc207cdca15dbe38311891ac3909b97","sha512":"34ae7b292f54776fc9faaba8881a0dfc01b8d38ef0fb92ca5b1067b2362be668d5439af0f37730800f48594aee998abcf02e3de125818b612be505dcde77c3fe","ssdeep":"192:pSAYwIa3hNvxap8jZAOB3hcC/pmkc5yxD4J5LPr7KlG0nOS0pY/vcr6xmXzaMD15:UBw1nvxaIWscC/0kcoIKlGzSSyvU6YXr","tlshash":"ff3290918eb2924ee89dcef002e687dbbf0d1b9570556373ef9195d0475b0fd8440e21","first_seen":"2024-10-19T16:33:53.249786Z","last_seen":"2025-11-28T22:38:44.367991Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2027,"timings":{"blocked":464,"dns":2,"connect":1,"send":0,"wait":9,"receive":1,"ssl":1529},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fqjpg4.top/upload/vod/20241110-1/dddea9e662b518f68ba50d342617ed13.jpg","fqdn":"fqjpg4.top","domain":"fqjpg4.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.518Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /upload/vod/20241110-1/dddea9e662b518f68ba50d342617ed13.jpg HTTP/1.1\r\nHost: fqjpg4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2312,"timings":{"blocked":598,"dns":1714,"connect":1825,"send":0,"wait":0,"receive":0,"ssl":1344},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ds2.obmenvsemfiles.net/fo/files_attachments/bf3/14c/bf314ca126eb457d1768e9f9b50cafa1.jpg","fqdn":"ds2.obmenvsemfiles.net","domain":"obmenvsemfiles.net","tld":"net"},"ip":{"addr":"85.17.28.50","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ds2.obmenvsemfiles.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Sep 2025 08:49:16 GMT","end":"Mon, 01 Dec 2025 08:49:15 GMT"},"fingerprint":{"sha1":"1F:1C:8C:98:5B:96:F1:54:F1:03:22:C6:5D:60:13:E9:E7:8A:7F:5B","sha256":"ED:D0:2A:47:2A:AD:13:E3:9C:6A:49:F2:2C:61:D2:E9:8E:24:F5:2E:2F:9D:2D:2E:00:49:3F:F8:2D:AD:BF:5C"}}},"request":{"raw":"GET /fo/files_attachments/bf3/14c/bf314ca126eb457d1768e9f9b50cafa1.jpg HTTP/1.1\r\nHost: ds2.obmenvsemfiles.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 33921\r\nlast-modified: Sun, 17 Apr 2016 08:22:27 GMT\r\netag: \"571347c3-8481\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33921,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 480x360, components 3","md5":"bf314ca126eb457d1768e9f9b50cafa1","sha1":"6f59ee22ffc6af80923f05bd86bc63252b29a687","sha256":"76867c71a2df4e88da93cbbfbc9ddb6a758239ed04e8728bb7d080a9145fb4a8","sha512":"c930302bb591c213fede14450c156fc4e164696f280ca1ead85b2bdc9ce2206f5d26b3709e2fc588960145aa435874ebb9ecf751f956a9306ec6dac44d593211","ssdeep":"768:3j4OZeDGGox2FqeI6sA7237ZuOky9GHijf:3EC0RjFqeIw76ZKOGH+","tlshash":"cfe2f25194ac14eaf6b4b6e930145db84cde39017d2902b62ed1c41381ff1ed3fa699f","first_seen":"2024-05-23T06:38:44Z","last_seen":"2026-01-14T21:59:06.752413Z","times_seen":17,"resource_available":false,"data":null}},"time_used":2817,"timings":{"blocked":985,"dns":13,"connect":37,"send":0,"wait":75,"receive":16,"ssl":1674},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"ds2.obmenvsemfiles.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidmo.org/favicon.ico","fqdn":"vidmo.org","domain":"vidmo.org","tld":"org"},"ip":{"addr":"89.248.193.244","port":443,"asn":49505,"as":"JSC Selectel","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"vidmo.org","organization":""},"issuer":{"commonName":"ZeroSSL ECC Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 05 Sep 2025 00:00:00 GMT","end":"Thu, 04 Dec 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B7:F0:9A:8B:EF:DD:7C:08:39:54:3A:9A:F1:30:12:01:FD:82:2C:29","sha256":"F4:0A:CA:DF:40:DF:5C:3A:27:7F:37:FB:87:22:BA:9A:8E:CB:D0:EB:E3:5C:F6:F0:91:A2:B6:EC:B5:66:BA:C7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: vidmo.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 5430\r\nlast-modified: Sun, 14 Oct 2012 21:41:38 GMT\r\netag: \"507b3192-1536\"\r\ncache-control: public, no-transform\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5430,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"6b6734885d5e4ff9dbb7d82ba6023598","sha1":"3c454d68a346b375ed7b59a131699061e7393b1f","sha256":"0f8e5edd4348eaa11881bf6150baf7b3182b1c3e29c6378e0e921afce7d91819","sha512":"e3d4562da250a2096981bd9a211efa643400ebe18a2d0765e750454b4cf75cb31e9594d8fccfa61a4c86e1c08bbf130dbc635c2974996838444cef029bf3eb50","ssdeep":"96:12lbcmeAscXXZCGv56cOtAe8CKfMibd+tLMiWMyuFa:0muCQpBQ6d+ti","tlshash":"a9b173c151c1e587e0274f38e237d750b1fa2c13bab0ea85156b7a555a731898317b1e","first_seen":"2023-05-05T08:02:57Z","last_seen":"2026-04-03T21:47:16.469436Z","times_seen":688,"resource_available":false,"data":null}},"time_used":879,"timings":{"blocked":-1,"dns":32,"connect":67,"send":0,"wait":142,"receive":0,"ssl":622},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn77-pic.xvideos-cdn.com/videos/thumbs169ll/35/e3/e4/35e3e47713f32ba3f9a584b2f35386e1/35e3e47713f32ba3f9a584b2f35386e1.1.jpg","fqdn":"cdn77-pic.xvideos-cdn.com","domain":"xvideos-cdn.com","tld":"com"},"ip":{"addr":"185.76.9.7","port":443,"asn":60068,"as":"Datacamp Limited","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.397Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xvideos.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Thu, 03 Oct 2024 00:00:00 GMT","end":"Mon, 03 Nov 2025 23:59:59 GMT"},"fingerprint":{"sha1":"27:E9:05:C0:A5:FC:40:B1:D6:44:DC:D3:39:EE:11:78:2C:E2:F0:78","sha256":"5F:C0:7A:63:35:DB:CB:28:20:1B:40:83:91:40:36:2B:7A:97:63:77:7A:67:2A:45:FF:4E:80:15:A3:03:3C:4A"}}},"request":{"raw":"GET /videos/thumbs169ll/35/e3/e4/35e3e47713f32ba3f9a584b2f35386e1/35e3e47713f32ba3f9a584b2f35386e1.1.jpg HTTP/1.1\r\nHost: cdn77-pic.xvideos-cdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:53 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13483\r\nx-frame-options: sameorigin\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nlast-modified: Tue, 20 Nov 2018 10:00:41 GMT\r\ncache-control: max-age=10368000, public\r\naccess-control-allow-origin: *\r\nx-77-nzt: EwwBuUwJBgH3QMl6AAwBJRPCNwH3aINCAAgBj/Q63QGB\r\nx-77-nzt-ray: 5451992dc9a176f7c1cdf168d922ce24\r\nx-accel-expires: @1762998081\r\nx-77-cache: HIT\r\nx-accel-date: 1752630401\r\nx-accel-date-max: 1700790072\r\nx-77-age: 8046912\r\nserver: CDN77-Turbo\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":13483,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 352x198, components 3","md5":"ba8419957c7a48ded359da2ffbfa8e63","sha1":"83eb2747ed19a9d292282aaa5d40db8956b8696e","sha256":"6528ae8b5859f57c28a557874801fdc41bf25f4f8e04a3bae19d2dbf15b18c18","sha512":"ddb77d7de79a2878028e1cb127cac4dcd1339c3cb23c38434a11c8b75be265220344b51f9f57baf27fff4a758c2fce22ee64614fdea7aab6068c090aeb2a8bff","ssdeep":"192:yntFiJPDaHs6UMW9o28Yah4vdxv0+3f09fRXAkgxpWN+xm7g006+bx:y/ihisP5OhMxvJUfpFygN+xmMh6Ix","tlshash":"7852cf2564bab7f0edff06e3400e3a9740a1a6e52502b96a4f4c48d2f744c564b297be","first_seen":"2025-10-17T05:03:07.300712Z","last_seen":"2025-10-17T05:03:07.300712Z","times_seen":1,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":217,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"media.crazyshit.com/content/2018/10/b3c7e3ef.jpg","fqdn":"media.crazyshit.com","domain":"crazyshit.com","tld":"com"},"ip":{"addr":"45.133.44.3","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"media.crazyshit.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 02:32:42 GMT","end":"Fri, 26 Dec 2025 02:32:41 GMT"},"fingerprint":{"sha1":"29:50:F0:B9:A2:CA:FE:80:44:45:00:A2:95:68:4A:73:E6:9E:5C:F4","sha256":"BA:98:1C:61:77:77:BE:AC:D5:18:45:30:01:AB:3E:40:5A:79:70:DD:E8:44:E6:25:EB:16:B6:69:C6:EE:82:F3"}}},"request":{"raw":"GET /content/2018/10/b3c7e3ef.jpg HTTP/1.1\r\nHost: media.crazyshit.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 315661\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1539617811.042736854\r\netag: 800dd86b0a620f360e7a3fa0408ec29c\r\nlast-modified: Mon, 05 Apr 2021 12:35:23 GMT\r\nx-timestamp: 1617626122.43685\r\nx-trans-id: tx9117040ef9cf43ed8ed91-00660d686b\r\nx-openstack-request-id: tx9117040ef9cf43ed8ed91-00660d686b\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\nexpires: Sun, 19 Oct 2025 05:01:55 GMT\r\ncache-control: max-age=172800\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":315661,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100\", baseline, precision 8, 720x540, components 3","md5":"800dd86b0a620f360e7a3fa0408ec29c","sha1":"51ff55b4e30c63e51de0dfc3da5cf7563a8b8f47","sha256":"ce009476cee53f0a2b14043432e8fdad5f49fed6a4f61865a0b5cdf40e398b24","sha512":"997572ff183451d826c428f933957f9538ec64b7c986c11d7eaafd1b73ac8c709d6208405291ab0e1a8aa494368609be680c18061a7a8f4a4d0cdc5855974d96","ssdeep":"6144:2tuIpkxMCNVtZVI2JlIOhq7fe/WoJ4VdvaxQxvZ5+gHQfjSJbB4r3ZbI:2Y3xrNjI2J+0WoJaFxx0j6B4i","tlshash":"b8642306c049c3f161f05751f7396ef1a09306118fa991bba4b61566f9e206cffc1afa","first_seen":"2025-10-17T05:03:07.30946Z","last_seen":"2025-10-17T05:03:07.30946Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2285,"timings":{"blocked":665,"dns":3,"connect":20,"send":0,"wait":40,"receive":88,"ssl":1466},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"muweimv.com/favicon.ico","fqdn":"muweimv.com","domain":"muweimv.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.789Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: muweimv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"catherineii.z00.monster/scj/thumbs/6/582_nata-005.jpg","fqdn":"catherineii.z00.monster","domain":"z00.monster","tld":"monster"},"ip":{"addr":"148.113.178.17","port":443,"asn":16276,"as":"OVH SAS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.443Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"catherineii.z00.monster","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Oct 2025 00:50:01 GMT","end":"Wed, 31 Dec 2025 00:50:00 GMT"},"fingerprint":{"sha1":"FB:DC:59:25:E9:6E:5E:73:EF:E1:5C:0E:8B:BD:26:B1:B3:80:07:9D","sha256":"AC:B6:EF:27:6C:BD:1B:D6:2C:4F:14:39:CF:BF:A3:41:D8:94:78:E8:0C:9D:97:CE:4E:08:87:93:54:20:29:3C"}}},"request":{"raw":"GET /scj/thumbs/6/582_nata-005.jpg HTTP/1.1\r\nHost: catherineii.z00.monster\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 8005\r\nlast-modified: Thu, 24 Jun 2021 01:57:08 GMT\r\netag: \"60d3e674-1f45\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8005,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x240, components 3","md5":"110bc337f218dc468f4036b808ad4168","sha1":"a12b49319b9ebeeb870308692b4cbee719c6894c","sha256":"1a82732c30e1cf5e49edb577b72cf592fdf67202b91782f07d7ea81e72c2b6ca","sha512":"cf72d21934c01dbbcf239f7251e6b0a6a68570234a4e1453408947a90e36e83f4c27bc1b4561efd78a450e687fb1c00ada58e9969e342c85fc8e836a859dbe42","ssdeep":"192:68+4IJHRSZ3qP8KG01+8/tK1sTKpVhCXO:68RWRSlZKf1+YtK16KnhuO","tlshash":"37f1cfbbac669911454e38713546376de53403d8c3f07d828aec3bb87b2a24cfda4431","first_seen":"2024-10-11T08:37:17.605516Z","last_seen":"2026-04-03T22:52:06.962278Z","times_seen":56,"resource_available":false,"data":null}},"time_used":3433,"timings":{"blocked":1449,"dns":1,"connect":98,"send":0,"wait":153,"receive":1,"ssl":1728},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fqjpg4.top/upload/vod/20241104-1/08b9ba4785030015776351b294457995.jpg","fqdn":"fqjpg4.top","domain":"fqjpg4.top","tld":"top"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.585Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /upload/vod/20241104-1/08b9ba4785030015776351b294457995.jpg HTTP/1.1\r\nHost: fqjpg4.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":2261,"timings":{"blocked":556,"dns":2,"connect":112,"send":0,"wait":0,"receive":0,"ssl":1586},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"fqjpg4.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"img.apian088.sbs/hd/media/videos/tmb/000/009/400/7.jpg","fqdn":"img.apian088.sbs","domain":"apian088.sbs","tld":"sbs"},"ip":{"addr":"104.238.221.35","port":443,"asn":23470,"as":"RELIABLESITE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.apian088.sbs","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 17:40:13 GMT","end":"Wed, 10 Dec 2025 17:40:12 GMT"},"fingerprint":{"sha1":"53:DC:8F:28:38:C9:D5:91:E4:CF:AC:96:11:AA:F9:35:7B:97:26:A8","sha256":"C2:42:F4:43:A9:A1:46:44:B1:D7:91:31:1E:D4:6B:51:CA:22:77:44:EF:9C:28:BF:EF:76:01:F2:F9:03:A5:FC"}}},"request":{"raw":"GET /hd/media/videos/tmb/000/009/400/7.jpg HTTP/1.1\r\nHost: img.apian088.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Fri, 17 Oct 2025 05:01:55 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 11268\r\nLast-Modified: Sat, 23 Mar 2024 12:19:02 GMT\r\nConnection: keep-alive\r\nETag: \"65fec8b6-2c04\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":11268,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x226, components 3","md5":"485c85a89fdcdcc0109b286e60865e44","sha1":"3909196c15251358f3aae6afacf317a69508742f","sha256":"0bfe056e38e37c71a19c1d3093d3d72deb9f9cf481b916c75c2d577cf6f93936","sha512":"67f3f4b2ed00ea4269ddf63025ee81ce3c3d8a53d94864892c9422cfd462ffab69b1339ae15a10db61f92e51fd71363b0822a702370e2f5e14ba96e394a61bd2","ssdeep":"192:jcC6JH/GGCLt3DDrL6Dybd7wCKKGGEcvomynC2f5SnUikzHHWhE:j76JHeG4h3LEyROPcv4CE50xhE","tlshash":"2432ae7b3238751bee6a42394ba2cb249f311b65bf8908b74d530df257e91f98841271","first_seen":"2025-07-26T12:58:47.826837Z","last_seen":"2026-01-11T16:31:17.653067Z","times_seen":11,"resource_available":false,"data":null}},"time_used":1623,"timings":{"blocked":1423,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.javvhub.com/favicon.ico","fqdn":"www.javvhub.com","domain":"javvhub.com","tld":"com"},"ip":{"addr":"185.197.163.38","port":443,"asn":60144,"as":"3W Infra B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"javvhub.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Aug 2025 03:12:27 GMT","end":"Fri, 28 Nov 2025 03:12:26 GMT"},"fingerprint":{"sha1":"F6:70:25:6B:D7:4E:D0:A6:4D:27:82:0E:92:7D:B9:D6:6A:DE:05:C0","sha256":"AB:27:F6:0D:0A:49:EA:CE:60:FE:3E:70:1F:5C:C3:3C:DD:D9:10:D8:27:3F:6D:65:A7:4B:27:A6:8D:B6:FC:CC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.javvhub.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.10.3\r\nDate: Fri, 17 Oct 2025 05:01:59 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 169\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.10.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":349,"timings":{"blocked":126,"dns":19,"connect":31,"send":0,"wait":22,"receive":0,"ssl":133},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jp.tub4us.top/","fqdn":"jp.tub4us.top","domain":"tub4us.top","tld":"top"},"ip":{"addr":"172.67.201.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-17T05:01:52.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tub4us.top","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 13:35:03 GMT","end":"Wed, 26 Nov 2025 14:32:51 GMT"},"fingerprint":{"sha1":"82:12:1F:04:D6:D7:7D:55:29:73:B4:67:1A:4D:52:25:69:B3:A5:BE","sha256":"20:A8:5E:E0:01:7E:9D:D1:BB:0E:B1:E3:61:F9:C9:E3:80:73:95:46:DC:C0:21:7F:05:9E:4D:C3:D5:E1:48:FD"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: jp.tub4us.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:52 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npdojs-line8: host-jp.tub4us.top4.194.8.20-myhost-jp.tub4us.top38.220.248/\r\nphost: jp.tub4us.top\r\npdojs-line358: notjp-jp-myhost-jp.tub4us.top-filteron-\r\npdojs-line966: notjp-jp-myhost-jp.tub4us.top-filteron-/\r\nline1288: URI-/-myhost-jp.tub4us.top-filteron-\r\nline1425: jp\r\nline1460: -jp\r\npdojs-line1515: host-96083\r\npdojs-line1516: host-128\r\npdojs-line1529: ibig--chname--filteron--txtlang--shows-389\r\ncache-control: public, max-age=14400\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f7Z%2FQ35k%2FyeqdFZHI%2FBGUsOGWu5Ds5u6tZKebubYvs%2BZov3JTcfPhqE9Ta6LWYbUTJpHY4JZd%2F5j1f5OZAYNqbQ%2FZF1eTzIspsV3\"}]}\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Cake\r\nx-proxy-cache-192g-la: EXPIRED\r\nxkey-192la: jp./-A-jp.tub4us.top-jp.tub4us.top-myzone---no\r\nx-proxy-cache-la2: HIT\r\nxkey-la2: jp./-A-jp.tub4us.top--my_zone\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\ncf-ray: 98fd3d93bb5cb4f1-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":108368,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (49581), with CRLF line terminators","md5":"853a01d2465ff8dd3108f8a5da918fe8","sha1":"7565c8a3e03bf1239f9a3e80b9135fdf080ce7f6","sha256":"157a32ddd3b3b4436ed1a33e153eda9ce574c7b47c18560e678691c20de807ab","sha512":"9da4a125c4320a78ed5bcfcbc65ccce2975d82126dd81d15b4f55876b19a9f872bf163b3c79c53914226db9b1a350620b0fa1deb8ca7c3062ffa53ec5471352a","ssdeep":"1536:PqGYJcwxftThVdHjUVawRXcENFhpGyJepmfvZvQtuMD8D7r53wPeTfClmX/Ro:PccQCLRXcENFhpGyApmf+tuMD8DM","tlshash":"26b3a53f5345387725c352d6f0d221bee833ea4dc9d66968b86da0e223cad7ee416434","first_seen":"2025-10-17T05:03:07.350305Z","last_seen":"2025-10-17T05:03:07.350305Z","times_seen":1,"resource_available":false,"data":null}},"time_used":525,"timings":{"blocked":69,"dns":1,"connect":1,"send":0,"wait":387,"receive":0,"ssl":64},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"jp.tub4us.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"static.bad.news/images/dm/9e63b5f3b4a320555d549cc6dc0bff00.jpg?secure=kmD0AEmU3C9VGzoHDFccVw==,1734229903","fqdn":"static.bad.news","domain":"bad.news","tld":"news"},"ip":{"addr":"104.26.13.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.430Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"323e0cdf.sni.cloudflaressl.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 11:39:48 GMT","end":"Thu, 25 Dec 2025 12:39:44 GMT"},"fingerprint":{"sha1":"E2:E7:D4:63:E3:68:65:9A:90:D2:DB:8F:EA:7F:17:3D:A9:CF:8A:88","sha256":"5F:22:3E:64:D7:DC:55:D3:E2:7C:AF:7D:83:9A:D0:97:DB:A5:71:24:B7:CC:B5:D1:FC:9D:79:E4:0E:8B:DA:DD"}}},"request":{"raw":"GET /images/dm/9e63b5f3b4a320555d549cc6dc0bff00.jpg?secure=kmD0AEmU3C9VGzoHDFccVw==,1734229903 HTTP/1.1\r\nHost: static.bad.news\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:54 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21393\r\nserver: cloudflare\r\ncf-cache-status: HIT\r\ncf-bgj: imgq:100,h2pri\r\naccept-ranges: bytes\r\ncf-polished: origSize=22559\r\netag: \"e6f19cde9438db1a64f206ae9f0c1ef8\"\r\nlast-modified: Fri, 13 Dec 2024 23:21:54 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c9OHfzDpC%2Fe4Syq66Sv%2F1H%2FFfef765ZZ7wSHQrgp1WVyrHXfBWgl9a6npuuFytUqAXqLIPGWvFd9X2IS9RiFCtZcxjDc7HdB5OtdiICs\"}]}\r\nage: 5942\r\ncache-control: max-age=31536000\r\ncf-ray: 98fd3d9d9c90b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21393,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 640x360, components 3","md5":"fc7cf2a7879744ae7f16e688c13bff5a","sha1":"c6e438f03c155d631ba4e0f2c45afdbc177070ac","sha256":"91e44cd10197ebc6c64123b7fd8b7b96ab2f9d7623ffbd4d9be23d826f81d354","sha512":"d0fabf798bb79a527b5b64f2bc927c6d9084482e158536880c400d9f4a8c7971b2c7ae7eb34fbd8e27a7c9b88078d33f41179772f6e29dbd9d4a26758327a31e","ssdeep":"384:M953R6wJbEKrkPUeIIbZjktqv60YsGQS5DXilq+bVQvTv:MEwJEVUeIwhv0sGJDXilqN","tlshash":"dba2d1fc7422966a8c73d23218118341acb6ec61f7351d3ca5c12be06c1b9e95ed69ac","first_seen":"2025-06-15T23:41:16.023575Z","last_seen":"2026-04-03T22:52:06.935409Z","times_seen":20,"resource_available":false,"data":null}},"time_used":1615,"timings":{"blocked":743,"dns":1,"connect":1,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.cdn2025.life/videos/202411/18/673aafc094b74ce10336ce5c/cover.webp","fqdn":"img.cdn2025.life","domain":"cdn2025.life","tld":"life"},"ip":{"addr":"107.167.21.106","port":443,"asn":46844,"as":"SHARKTECH","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"img.cdn2025.life","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 18:19:04 GMT","end":"Wed, 26 Nov 2025 18:19:03 GMT"},"fingerprint":{"sha1":"7C:8D:98:C2:8A:C4:61:08:48:E4:80:A1:43:5C:CC:D0:F7:E7:6D:51","sha256":"63:18:98:01:73:2B:F4:53:6B:FA:DE:07:0B:69:2E:FB:7A:16:03:D0:0B:0C:8B:68:9E:AB:3B:91:4D:F6:98:B0"}}},"request":{"raw":"GET /videos/202411/18/673aafc094b74ce10336ce5c/cover.webp HTTP/1.1\r\nHost: img.cdn2025.life\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 04:59:31 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21975\r\ncross-origin-opener-policy: same-origin\r\norigin-agent-cluster: ?1\r\nreferrer-policy: no-referrer\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-content-type-options: nosniff\r\nx-dns-prefetch-control: off\r\nx-download-options: noopen\r\nx-permitted-cross-domain-policies: none\r\nx-xss-protection: 0\r\naccess-control-allow-headers: X-Requested-With, Content-Type\r\ncache-control: max-age=43200\r\nlast-modified: Mon, 18 Nov 2024 03:08:44 GMT\r\netag: W/\"55d7-1933d3e7850\"\r\nexpires: Fri, 17 Oct 2025 16:59:31 GMT\r\nnginx-cache: HIT\r\naccess-control-allow-origin: *, *\r\naccess-control-allow-methods: POST, GET, OPTIONS, GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21975,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 426x239, components 3","md5":"9343d6eb66d9cec4a669fad0cafda74c","sha1":"0d9f2c9c6c61a106446d1361aa4226d9629e36df","sha256":"a3ad9b68c7dcc9924357aea2a1c300025b9c96253346a46e1b2a370be79da7f7","sha512":"986fa59b3fbcb57f66bd56c92a8a5216bca3a171f4688a71e6e1737dc56f14a44a47f413767a6c4d09b1c8390e67a6569cdcbf7636275e9940b628f5b23712f5","ssdeep":"384:hoYKFYECCdt1gbO5cTRbvJCbup6cb+XNKM85DXYtlGY5wFtwRlwHA8xDmBt+8YLb:h1KFYEbdt1X5c5vJC/9K95DXYtlFDlwp","tlshash":"4da2e1f24a58f39bbbfac5ebed0ab635ae0c4f25b9646d1511302414fd43da1928c923","first_seen":"2025-09-04T19:46:44.664723Z","last_seen":"2025-11-03T22:08:47.074086Z","times_seen":7,"resource_available":false,"data":null}},"time_used":2843,"timings":{"blocked":612,"dns":2,"connect":153,"send":0,"wait":154,"receive":157,"ssl":1739},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pics.urpussy.com/pics/48/293_first-touching-accidently.jpg","fqdn":"pics.urpussy.com","domain":"urpussy.com","tld":"com"},"ip":{"addr":"172.67.189.133","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"urpussy.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Sep 2025 01:34:31 GMT","end":"Mon, 15 Dec 2025 02:27:58 GMT"},"fingerprint":{"sha1":"62:A5:EE:F0:48:AF:28:AA:93:B0:AE:CE:47:4E:18:43:4C:81:DC:37","sha256":"92:A7:2F:DF:00:92:4F:CD:4E:5C:9C:6F:A4:E9:5C:D5:27:AC:B8:DE:6A:66:EE:2F:00:98:C8:26:68:6C:4B:5E"}}},"request":{"raw":"GET /pics/48/293_first-touching-accidently.jpg HTTP/1.1\r\nHost: pics.urpussy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 6863\r\nserver: cloudflare\r\nlast-modified: Fri, 23 Oct 2020 08:23:29 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"5f929301-1acf\"\r\nexpires: Thu, 23 Oct 2025 05:19:33 GMT\r\ncache-control: max-age=604800\r\naccept-ranges: bytes\r\nage: 85342\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6nv6eL4wufGl%2FqgLHx6OH0WJYdaXZUXAdHrv9hXodDdyzJ81NjujhX68DhnHMkOFm25CDU%2Fz3h7EDm2n2K7jBWmZUb3wi7MtKjSB3s%2Fo\"}]}\r\ncf-ray: 98fd3da70a1156ae-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6863,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 300x175, components 3","md5":"b8e9d6ad9ad3d75a68f217bd713bfe0f","sha1":"60ac6d282e2ae5a77d66d9e449d92528f6de1d2e","sha256":"eec61e1311221562106d303673e32f291f7cc3a0a22762d11d3056e457a22a04","sha512":"648069c8c627d30ec57f9bf8d9e71e373d148fa2ce95b3e61d20da318bb8eeafc7b271aaebdea0479dd97567fcdbe0ca6a2ac9fae0117b3bff04669640832435","ssdeep":"192:c7UF+v9Dn8+AZefG4wpG+RdB1RUBcGmHpoX:cI2AFkeBRUh","tlshash":"25e19ea81a079163f3bff87a573fe8b457410974b069c6c08a04a1e57b2e3e345e2326","first_seen":"2024-12-28T23:16:57.157388Z","last_seen":"2026-01-26T11:01:23.015253Z","times_seen":41,"resource_available":false,"data":null}},"time_used":1924,"timings":{"blocked":165,"dns":2,"connect":15,"send":0,"wait":12,"receive":1,"ssl":1714},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"play.baiwanbf.com/20241010/7y0lN3be/1.jpg","fqdn":"play.baiwanbf.com","domain":"baiwanbf.com","tld":"com"},"ip":{"addr":"172.67.200.101","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baiwanbf.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 Aug 2025 13:08:28 GMT","end":"Sat, 29 Nov 2025 14:06:38 GMT"},"fingerprint":{"sha1":"56:61:C5:4C:D4:B1:05:43:C9:10:E5:A5:30:2B:7D:83:6F:42:8E:54","sha256":"B8:A4:86:88:A5:41:15:70:61:91:21:AD:85:BC:D1:61:81:DC:88:EC:9A:43:6F:07:C8:B5:B3:58:C2:B6:4D:32"}}},"request":{"raw":"GET /20241010/7y0lN3be/1.jpg HTTP/1.1\r\nHost: play.baiwanbf.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:55 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 207343\r\naccept-ranges: bytes\r\naccess-control-allow-headers: X-Requested-With\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\naccess-control-allow-origin: *\r\ncontent-disposition: attachment; filename=\"1.jpg\"\r\netag: \"683f1372-329ef\"\r\nlast-modified: Wed, 15 Oct 2025 04:58:03 GMT\r\nserver: cloudflare\r\nx-cache: HIT, policy, disk\r\nage: 5138\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hkj9kdTNTCsRUEGdryoTTkRM%2FYnez6s5PhO8etTgdygjQLcdGDUbGq3xueWwiPXeFi6%2BPzgUyvRUkEBXQUAHEDxpGkP%2Frvvn7eLQXLCk1g%3D%3D\"}]}\r\ncf-ray: 98fd3da78b5d0b59-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":207343,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 540 x 302, 8-bit/color RGBA, non-interlaced","md5":"8bd3e8ddf8ad9cee5eef34da98c5a8ab","sha1":"ac2d373a42c15f7b99f58a316d69610d432483c5","sha256":"b40b9feea1f485df9c5d8220ec2c77f54bdd9cd9be6d58fc57d0d670defbc763","sha512":"29ca368ac0c63bb43f09f36b976d774efc2919e51d07b2a340fca9c312b8b82a8ea902a9c7aaacf74a0d39d2c27c52f571360e149de9dd9a28ae9fee2bb1c0ba","ssdeep":"3072:JeWhxDr4agsT/CL5A2jKpqjAEiQ8Gj47wGHJj2daponCixkZSV4w4VNUG1/CjFeI:n/fp3FT7w4JKdaSCFs4/NUGaFeUO9Kd","tlshash":"d2141301b293b4a2a7d19c84d5bf9895c1b57323f2d5afa640edf87d0c13632a7ca163","first_seen":"2025-06-03T02:09:38.226243Z","last_seen":"2025-11-08T13:15:11.337288Z","times_seen":10,"resource_available":false,"data":null}},"time_used":2332,"timings":{"blocked":462,"dns":2,"connect":16,"send":0,"wait":37,"receive":10,"ssl":1789},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"icdn05.4kpornvideos.tv/33279/1663903_1.jpg","fqdn":"icdn05.4kpornvideos.tv","domain":"4kpornvideos.tv","tld":"tv"},"ip":{"addr":"45.133.44.6","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"icdn05.4kpornvideos.tv","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 02:33:01 GMT","end":"Wed, 26 Nov 2025 02:33:00 GMT"},"fingerprint":{"sha1":"D0:06:98:C1:B0:BF:9B:C1:72:76:D0:10:BB:4C:8A:9F:20:B3:4D:DC","sha256":"DA:CA:A0:76:AC:4A:3F:1A:BC:FD:4A:83:E7:AD:52:26:7E:41:41:B2:6A:B2:BD:FE:11:D7:BE:22:95:EC:F4:A0"}}},"request":{"raw":"GET /33279/1663903_1.jpg HTTP/1.1\r\nHost: icdn05.4kpornvideos.tv\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 41435\r\nserver: nginx/1.24.0\r\nx-object-meta-mtime: 1602265193.577199961\r\netag: 0b25abc3e8be9f2ab796000c229fe3b2\r\nlast-modified: Fri, 04 Nov 2022 20:40:00 GMT\r\nx-timestamp: 1667594399.03049\r\nx-trans-id: txc16acb661f4740c0bf749-0067542fef\r\nx-openstack-request-id: txc16acb661f4740c0bf749-0067542fef\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS\r\naccess-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization\r\naccess-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp\r\ncache-control: max-age=2592000\r\nexpires: Sun, 16 Nov 2025 05:01:56 GMT\r\nx-cdn-host-id: ah1004,DS9225\r\nx-proxy-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":41435,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x169, components 3","md5":"0b25abc3e8be9f2ab796000c229fe3b2","sha1":"098d0e95d21e909fd118c3f943293c4f6990fa74","sha256":"2bf99ef2b5ae391fe79ba34a4ae1f6aad4bd2d2ede5e4cc96e5a71199493a85a","sha512":"ec8f7aadb17864d84b60fc8a72735988a511b543812e21dc55695193ccb8c081bb681248ea59c59873e573af465cff859d218746e52e04cbc9ee11dee409ca8f","ssdeep":"768:mwfBGYs7dertH5j4zNK+vS3CNR0XeEUxOzTiEW3xQPSw4zxvGUEpw:muNMdeb2ZS3CNR0Xe0zTdGu74zBt","tlshash":"15130220e5ffcd37b97df8b7b95c30b9c7d8549c0a5296443220985ee0fa59078a3932","first_seen":"2025-06-13T21:09:49.52853Z","last_seen":"2026-01-31T10:39:20.980079Z","times_seen":12,"resource_available":false,"data":null}},"time_used":2806,"timings":{"blocked":1052,"dns":5,"connect":25,"send":0,"wait":33,"receive":36,"ssl":1652},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jxjav.com/favicon.ico","fqdn":"jxjav.com","domain":"jxjav.com","tld":"com"},"ip":{"addr":"104.21.43.127","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jxjav.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Sep 2025 23:22:22 GMT","end":"Mon, 15 Dec 2025 00:17:31 GMT"},"fingerprint":{"sha1":"82:F8:3A:74:21:EC:96:5B:35:2B:D1:45:BB:82:3F:9F:3A:10:23:C6","sha256":"BE:0E:A5:CB:15:63:CC:74:C9:9C:B0:2B:5E:1E:52:45:9E:3E:AE:2D:9A:B9:67:72:93:E2:82:83:EA:EB:97:54"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jxjav.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: BYPASS\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YckGJpagHWBmKxfq4u7HTN52I5T7rV9ohgZ3tXzkhTy6X2ZLfaiuQeWt1%2BnHEhEpv8kVjDSQD7TnUMO9ZFcABWwn0dnrp2k%3D\"}]}\r\ncontent-encoding: br\r\nset-cookie: server_name_session=1e6cd64cb992427e9f747ef4d6b40ece; HttpOnly; Path=/; Max-Age=86400\nSITE_TOTAL_ID=f14171667672d5d9884ade4621ffc044; HttpOnly; Path=/; Max-Age=259200000\r\ncf-ray: 98fd3dc61c9556aa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":918,"timings":{"blocked":217,"dns":0,"connect":1,"send":0,"wait":143,"receive":0,"ssl":556},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"777.porn/images/45/704.jpg","fqdn":"777.porn","domain":"777.porn","tld":"porn"},"ip":{"addr":"172.67.144.187","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:53.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"777.porn","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 03 Oct 2025 07:08:23 GMT","end":"Thu, 01 Jan 2026 08:06:36 GMT"},"fingerprint":{"sha1":"AD:60:A0:4B:9D:FD:8C:50:D6:22:66:10:B7:E5:34:42:A6:83:BE:0D","sha256":"23:3A:2E:EF:CE:B6:65:AB:9A:59:76:87:5B:02:14:98:AD:72:AF:9E:31:9F:0D:E4:98:1B:62:7C:27:73:ED:4A"}}},"request":{"raw":"GET /images/45/704.jpg HTTP/1.1\r\nHost: 777.porn\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:01:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 18644\r\nserver: cloudflare\r\nlast-modified: Wed, 20 Sep 2023 11:40:26 GMT\r\netag: \"650ada2a-48d4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-request-id: c78aaad2935b20c42fc186a5f4f822de\r\naccept-ranges: bytes\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 2377698\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=80Pk5KMDMJxJ6QKW7siTFnadfY1o95xjyiOobzbgncYcaGioRSaniNen1Hei8cRb%2FPL8%2BPa%2B7Xf9VLT%2FElG1g6YUi2K1Iw%3D%3D\"}]}\r\ncf-ray: 98fd3dacdb925689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18644,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3","md5":"35b6505b2a5697e00c259af94f34eab3","sha1":"cdd8c686f0b88ed5ce241810d2e64c1d7dd2d11c","sha256":"aa273b4c48e1050ec2cb039e8825e2eeecae83d135336caff6a26ef1fc4e4a11","sha512":"bfb07bab66c195046fe70df9484fb2d22c3ec6a2f386639cbefc33e161025622921525bf9fc67a7a794f93b63ebd6b52e3fcd860554bcdcecb25c7b8fef8e1af","ssdeep":"384:IPmDlvockkDtOkWkm7bCdTiXNxjBTL3qjq5rToJ7DnAbWlM8F9n6IPLtJq:qUpmutVsnSTi1TsSoJAsrFAITfq","tlshash":"d882d1973c86c6e1fb4bcfba20397d0c96d84a5e75645bc817f2388a44ce0859052a98","first_seen":"2025-08-14T16:14:38.515804Z","last_seen":"2026-01-18T01:21:19.415509Z","times_seen":9,"resource_available":false,"data":null}},"time_used":2957,"timings":{"blocked":1067,"dns":3,"connect":1,"send":0,"wait":8,"receive":1,"ssl":1876},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.9188porn.com/favicon.ico","fqdn":"www.9188porn.com","domain":"9188porn.com","tld":"com"},"ip":{"addr":"104.21.17.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"9188porn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 04 Oct 2025 06:42:53 GMT","end":"Fri, 02 Jan 2026 07:31:59 GMT"},"fingerprint":{"sha1":"FA:0D:5D:6E:20:F3:6A:FC:5D:CF:E5:5B:87:A0:BD:8C:6E:F6:DF:D9","sha256":"20:6C:83:E8:06:18:9D:FD:64:DA:45:92:13:99:F6:45:64:B5:7D:69:EB:5C:B4:EC:15:98:15:45:A1:E5:69:34"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.9188porn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nreferrer-policy: same-origin\r\npriority: u=4,i=?0\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wfAdd2a%2Fq97Se184RiBcrwzrhF3rfG%2BpCIz%2FgDuxpsUBaVUdZizOM1kjXYihAxgGveCnooegGODUAKrayegGaKC87%2FczA7dZZYtR1XESrws%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Fri, 17 Oct 2025 05:01:59 GMT\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 98fd3dbf8aba49c5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ikikiv.uk/favicon.ico","fqdn":"ikikiv.uk","domain":"ikikiv.uk","tld":"uk"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ikikiv.uk\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T00:31:03.876566Z","times_seen":13308907,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.missvid.com/favicon.ico","fqdn":"www.missvid.com","domain":"missvid.com","tld":"com"},"ip":{"addr":"23.145.136.156","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jp.tub4us.top/","date":"2025-10-17T05:01:59.797Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.missvid.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Sep 2025 07:33:21 GMT","end":"Sun, 14 Dec 2025 07:33:20 GMT"},"fingerprint":{"sha1":"8E:18:A5:09:14:17:F4:F7:16:CA:2A:85:31:44:71:87:16:32:E1:C7","sha256":"C3:59:35:1B:FB:0D:C7:5D:5B:F7:46:AE:3A:69:F0:C2:B5:2C:AE:B2:04:DE:EA:5B:DF:75:73:2A:2A:6C:C3:B8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.missvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jp.tub4us.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 17 Oct 2025 05:02:00 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 15406\r\nlast-modified: Fri, 12 Sep 2025 01:06:12 GMT\r\netag: \"68c37204-3c2e\"\r\nset-cookie: server_name_session=cb19859ced870afc2dd80f317d1c1f6c; Max-Age=86400; httponly; path=/\nSITE_TOTAL_ID=1ac724c277388f0e5b60435b80e09bfb; Path=/; Max-Age=259200000; HttpOnly\r\nserver: cdn\r\nx-cache-status: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"873cb2cefd06621161b5d0badf276f9a","sha1":"8825d2ab21a8aa6d5ba6045ac201f82fc7fbdfa5","sha256":"77ba87f988860da018e51fa65f02b422a6cd03a42c6156e412ad7f4ebcffc751","sha512":"d66f5a20d10253f45abb2b4ec81ababbe00b803ead6dbf27b267a21122c495edaa9ab5e00acb56297f8ad8a198c9bebc335398329e1b5cb562a5bcc2ab14851b","ssdeep":"192:4flRn+U1dZv7t1nw2ydsYw7Ck2c3+uEt:4dRn+U1dZv7t1nw2ydsYw7CFc3+uEt","tlshash":"75621ea26b8e81e2f47268be19593a9b2383be232c549d41e750741406769ff473cf4f","first_seen":"2023-06-11T18:17:06Z","last_seen":"2026-04-03T17:43:35.520583Z","times_seen":1440,"resource_available":false,"data":null}},"time_used":1550,"timings":{"blocked":176,"dns":5,"connect":256,"send":0,"wait":502,"receive":1,"ssl":608},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}