www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
188.114.97.1200 OK 19 kB URL HTTP/1.1 www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7586)
Hash 638f064e28823dc68d378ebb07bd2657
2864aa4a68a416317d7d3fcc58ef701836309675
f6491bdea9ee81de70698ea43f3aca4cde7a72186b6eeefc085800d5f7e131b3
GET /videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; path=/; domain=.videojav.com; SameSite=Lax
kt_rt_ts=643530; expires=Mon, 29-Jan-2024 22:02:52 GMT; Max-Age=31104000; path=/; domain=.videojav.com; SameSite=Lax
kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; expires=Sat, 04-Feb-2023 22:02:52 GMT; Max-Age=86400; path=/; domain=.videojav.com; SameSite=Lax
kt_ips=91.90.42.154; expires=Sat, 04-Feb-2023 22:02:52 GMT; Max-Age=86400; path=/; domain=.videojav.com; SameSite=Lax
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p65OiwTNfgk4zEpTHHFVpkCrCciZcX8JzJPXhoGqM7tlz3VoYIbTQyvXRa8WraFPhE4poguRTELf%2FlaWS9ajWxf0bobSLg3Jjp0qY5oZQp0mO%2F3ins5IEFpx9p7wo9zAN4EW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793e6733c84bb4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3722
Expires: Fri, 03 Feb 2023 22:56:08 GMT
Date: Fri, 03 Feb 2023 21:54:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9536
Expires: Sat, 04 Feb 2023 00:33:02 GMT
Date: Fri, 03 Feb 2023 21:54:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 21:43:35 GMT
content-type: application/json
age: 631
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4752
Expires: Fri, 03 Feb 2023 23:13:18 GMT
Date: Fri, 03 Feb 2023 21:54:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: n1fiv5DNSmYGwCzwnmdqruF13JaC/Nwoi8BpQlrwYRkC4th6sLfKrVj843nQ1LOfx0nZfQtmS0M=
x-amz-request-id: 8N0NPM8GYC674C21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 21:52:34 GMT
age: 92
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.videojav.com/vpaid/videojs_5.vast.vpaid.min.js?v=1.2
188.114.97.1200 OK 32 kB URL HTTP/1.1 www.videojav.com/vpaid/videojs_5.vast.vpaid.min.js?v=1.2
IP 188.114.97.1:0
File type ASCII text, with very long lines (32057)
Hash 560633af767972e3920012cbf83c148b
7f4848825c8237cdac326b8ee74ef20fe1531c83
cc2f218efee95ea1599ff2c3879cc93bcf23e974210aef7f56694fa83861e9fa
GET /vpaid/videojs_5.vast.vpaid.min.js?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2020 08:50:06 GMT
Vary: Accept-Encoding
ETag: W/"5ea69cbe-19ebe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 11767684
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2F9YMnzbhrKxUD63AXju0I4znFPelVuFgcHk3VkVqNbtK05eW%2BG1uz%2BHeSewlrlmSuoF7bJ1nqmKGTGbOhB1DgRlMWkzdfqbQQQeBLqc7k%2BuxcEiLELnHyxb83ulOw7amIWl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793e67367bafb4fa-OSL
alt-svc: h2=":443"; ma=60
www.videojav.com/vpaid/videojs.vast.vpaid.min.css
188.114.97.1200 OK 773 B URL HTTP/1.1 www.videojav.com/vpaid/videojs.vast.vpaid.min.css
IP 188.114.97.1:0
File type ASCII text, with very long lines (1935)
Hash 6845152df80dd7d9aeb046f4e4a31772
5cd1f9eb1e2d19f7b0f46ccecf12d658a62ad324
937976cc423649a6506d474e36ee37a9c6dae07ec617296369f106a32159813e
GET /vpaid/videojs.vast.vpaid.min.css HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2020 08:50:06 GMT
Vary: Accept-Encoding
ETag: W/"5ea69cbe-7c7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 14889869
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xPmIY5k7m7dKEHiC%2FprSKRVUgVUmdwSXMkVyf6kYtn258d1IBrNy%2BHOxsDNhcb1nKesmDO2l2m6wXNNbYD1VOQckF3mLu6ChQu8po4c6yetPyo3KNxmOtq%2B5JKLkGSskVKm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793e67369bbab4fd-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5577
Cache-Control: max-age=148919
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Expires: Sun, 05 Feb 2023 15:16:05 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:08 GMT
Server: ECS (amb/6B9F)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5577
Cache-Control: max-age=148919
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Expires: Sun, 05 Feb 2023 15:16:05 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5577
Cache-Control: max-age=148919
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Expires: Sun, 05 Feb 2023 15:16:05 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
img.videojav.com/32638000/32638730/medium@2x/1.jpg
188.114.97.1200 OK 37 kB URL HTTP/2 img.videojav.com/32638000/32638730/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 45239cdb6bc915034ada98784345cf3e
211caad0e6e835aeecf21e8dc64748703d26cf81
e7da158e0145323e9ffc75200c9f031f9c86fdae765187f0bdff3c339eef6d59
GET /32638000/32638730/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 36698
last-modified: Mon, 04 May 2020 09:12:42 GMT
etag: "5eafdc8a-8f5a"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zdbvU9Nrn2k%2FAfNzK2DBvBTsaBU%2B9%2FiG8uwlYbEg41MomBQ3IKc3B529TvcMFa2kApBa5squOhTGxQbCgAe6EM%2BhXQae6CrEjkCOhkc0ZMA%2FJYHUZbrADt3yXn8Vcr47FwKy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378eb41c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32631000/32631403/medium@2x/1.jpg
188.114.97.1200 OK 40 kB URL HTTP/2 img.videojav.com/32631000/32631403/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 020c6683bc86bd4eadcab081ef3b50e3
c3e76f6d5f3ae26218f00439876d367f40a3c8bb
bb065759138f0b9b99dfaf60c67ad1c61962fed370d33764331904cc281cbd22
GET /32631000/32631403/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 39501
last-modified: Sat, 02 May 2020 10:54:59 GMT
etag: "5ead5183-9a4d"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7An1QX%2B8t0gwijnXLs4QYlOuBSLVm1NTnVmtPEDLrPHCyKGPMpujk%2B%2FzKb9t3SGtl24LPJirgxy%2BSoPTGv%2FG%2BH40GaNUV5Sq5abyJ%2BxWsj1xfm49f8S6Y7OclO64nA1yXJRa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ebd1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32659000/32659578/medium@2x/1.jpg
188.114.97.1200 OK 27 kB URL HTTP/2 img.videojav.com/32659000/32659578/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 1620296102071ac186c88186b0cedb74
cc790cd361f7375bc0e3150e574778417a1b64c3
324a913b626d50ccfe86ac89370a1801e402137c3312b84415e3ddb5b2c6ed30
GET /32659000/32659578/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 26964
last-modified: Fri, 19 Jun 2020 20:51:10 GMT
etag: "5eed253e-6954"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3gDB4wxwAZzhq%2BmbmuwILzgdIUKEDz%2B%2F6WhdGl6cL9p3kN94DemQtvg2oL5IoLip2FhBRoHUDGprhYuOGy%2F9iD%2Bn8%2Fjqn2EllT%2FMfBw8RZMhAA99NwaRAGvuWvvmWXLsAttR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ebb1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32644000/32644545/medium@2x/1.jpg
188.114.97.1200 OK 26 kB URL HTTP/2 img.videojav.com/32644000/32644545/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 1e68f83250d0822147bffa1dde30b4d0
577a13920770988a73ec82796b70abd2b8925590
ebd90291a307ad1c9eddb02b88a21924accaa190d905e82119a8bde6e1fabe2d
GET /32644000/32644545/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 25852
last-modified: Tue, 05 May 2020 13:12:54 GMT
etag: "5eb16656-64fc"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQkVd7H9WNnWpWqmICmAGgweSzG%2FOj%2BLZyc9k4eKvolZpTe5NFVomR%2BuTcF2JwvALI2cfG93RznaavV5yTJZZvXUipl0v55ZJTHchWKZLCf6z5MyVYJEc9HZsS4lmJSYD6wt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec81c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32642000/32642840/medium@2x/1.jpg
188.114.97.1200 OK 28 kB URL HTTP/2 img.videojav.com/32642000/32642840/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 5dd02bf122a3dcd6866b469e4fdabbe3
05f1f3ef305bfdde79cc38f7af6aff3f4d7e3c58
b5365f261b1bd209d53d366ce160d7e43d5d83f09afe8b707912e64545294ff7
GET /32642000/32642840/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 28190
last-modified: Tue, 05 May 2020 09:41:13 GMT
etag: "5eb134b9-6e1e"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oG%2BqT1nYorv5qx9Oc5kydZCH0pTXWy%2BeFQT93%2BV%2Blvv%2FxpW4ojXBDsvUnQoCPIy2OQMAtzLBPK3MyG2vuS0ykyAV7YTyrUCF8Uu2Hkl6i68p8k4REjdX8tX4xV1egM%2FRfunT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ecc1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32663000/32663066/medium@2x/1.jpg
188.114.97.1200 OK 32 kB URL HTTP/2 img.videojav.com/32663000/32663066/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash d441cce6c3fb78d76752bcd0fcb89dd0
3b630cc01e44fd2f37b6e4d04b221ff2437f6a92
2085c44923ed78f37fd8bf6d10aa4ad452099ec244181cfdc904376d41a0d3a3
GET /32663000/32663066/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 31472
last-modified: Sat, 20 Jun 2020 09:27:08 GMT
etag: "5eedd66c-7af0"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xfKbtpgulT9srUM5ivswloIeTc5r4oMz0e1HT1llScAPXWhrev4Kp4EYcV1gekAS6R3OD71dVyrnUMqcJDuwC7uvoxpEemckEw4uSKixNwgR9uQkZqe%2B8zrdXRe9txS4ykK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec91c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32633000/32633823/medium@2x/1.jpg
188.114.97.1200 OK 42 kB URL HTTP/2 img.videojav.com/32633000/32633823/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 1dfd7bd06b984a7c42e725f90e6fee0f
14dedb260992d51400cc628fe97382ae7fec1f2f
0e13e6f703f7ca9a6d54f9b3d30ac3175e60125c87281f2f5d2e01e97e1e9d30
GET /32633000/32633823/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 41792
last-modified: Sun, 03 May 2020 20:54:28 GMT
etag: "5eaf2f84-a340"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GaL8bAYREIiD%2FHlck5slMbCI2fqxj1WyhIbHVpEBbomjHAQu4IQdH%2F69zQyHnICyhPVWcej2YShHOLXbAT0XhHjqtIiRIgKQ4ZdQU2WYzMS%2FXhMaTdT%2FZIuAcG0B%2FmMSBQE4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec21c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32644000/32644413/medium@2x/1.jpg
188.114.97.1200 OK 27 kB URL HTTP/2 img.videojav.com/32644000/32644413/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash d1d04b4dea90ef90c8c60e893cb1c4cf
c9e7ef249f628a9c7537b29e43a2d1740454865a
7faba8b627855efca38666c59657d70e519f58aed4f8f41684f734ce2bdc950a
GET /32644000/32644413/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 26663
last-modified: Tue, 05 May 2020 13:04:39 GMT
etag: "5eb16467-6827"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LTJT%2BPTeRyyUOoPIN%2Faz9OJQ8sOaJ2AVHX%2BKC%2BnbvOs89rQgGKw9uhsuWrFIX1axM7UV6hBNAVgVygbNyevd6RjN8vTFefMH1yc2WkZW7TfgumMKSCWVxgrfFLP15gLP8ly7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec61c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32624000/32624940/medium@2x/1.jpg
188.114.97.1200 OK 36 kB URL HTTP/2 img.videojav.com/32624000/32624940/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.64.101", baseline, precision 8, 744x420, components 3\012- data
Hash b06c8d42fc17cdf2876b477ad78b1f83
25777092a577869dbb779daf05fffc3cb8327ad6
00874484147ae68364c72a26931c2f9756b864e6594983c9013a1e499b8b1821
GET /32624000/32624940/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 35842
last-modified: Fri, 08 May 2020 11:27:56 GMT
etag: "5eb5423c-8c02"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B%2BpRT9gMa7%2FhwxAgXbWRdHRkxQOU6nLiRUnJjiRYlo33TfCLGabW9wZSx4vLmRfU8KsLn4MSSVX81Yot84GbbeQcUA6LgUFKBh3%2FlEtFSLV%2BBiQcdcd7pRiZ1jtao%2FZvsi58"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ebf1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32626000/32626030/medium@2x/1.jpg
188.114.97.1200 OK 37 kB URL HTTP/2 img.videojav.com/32626000/32626030/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash c6b16ecf7c1c8f51de59b21d7af20c33
34146cba8807b058bfb40a51b6ce8f41eb7b266f
89632facca72c38858d69f14537dc0cde01852e84e8c9ca1b9cbb438c09a6565
GET /32626000/32626030/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 36557
last-modified: Fri, 08 May 2020 07:24:42 GMT
etag: "5eb5093a-8ecd"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kDORQdpLSL%2FAjDwQX6RUhYx06XKiOv8DqMd1r%2BLW%2BSnwASsu0oKGAWlL4GGCkPYz43S0cuVrD%2FmRozi2064Yj5IHCBamstbMtW9C4kP%2BiYPiNn%2BtNGkrpw04a5LMf2iGiIWx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec71c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32630000/32630820/medium@2x/1.jpg
188.114.97.1200 OK 23 kB URL HTTP/2 img.videojav.com/32630000/32630820/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 4f8e416744fe6826fe59be8b0d117ca9
92002b5a34a39159365d8b16f66883cdb51d90b8
13a25242387e975fefabb30b5bc0c51920cc211d598989a62682bf19a4c18a40
GET /32630000/32630820/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 22626
last-modified: Sat, 02 May 2020 09:35:28 GMT
etag: "5ead3ee0-5862"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xpaclc%2BMZlN7sBVxtwD8JK2BX0HvNRfLXCnQW3XBzDOh1E5vwoJGC5jtH30b8oB0TqV%2FhHMfwnBXIQRtjpEtmuqKspuVRBeFRREx3%2BnTBh9ytcmu2oCHL6dozPyKgM9ZwZKm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67379ed91c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32648000/32648409/medium@2x/1.jpg
188.114.97.1200 OK 37 kB URL HTTP/2 img.videojav.com/32648000/32648409/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash a65d1294c419beab4a3511bd2a00abdb
198264776dbd5e4315b338a2f714f4735460d110
1546f780a283d884acf0e398215e97a6c6e1f6fd35c8a74c332686d2dc231444
GET /32648000/32648409/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 37184
last-modified: Wed, 06 May 2020 14:33:48 GMT
etag: "5eb2cacc-9140"
expires: Fri, 03 Feb 2023 22:48:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=479WbfxbigqV541ZAaKXE3mggyeNv%2Bdog8t01oLQ6vvU0LlKu%2BaxKVM2DeaGDn5u7le7NpFhOYGk5J8NpagNbTo1l%2B%2FP9L9GXPsUZWVZUShS4fayebP%2FlpZDX32KHp8hs%2Bwp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378eb71c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32630000/32630633/medium@2x/1.jpg
188.114.97.1200 OK 34 kB URL HTTP/2 img.videojav.com/32630000/32630633/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash e5f68be43ed96f0de1e9bba85988e652
a90d912a02ae6b279e163210adf5cedf63ce7435
1550d773fa3e1f177932e5b553a6fe5dacd30e42ccc444788c271c707339cc68
GET /32630000/32630633/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 33626
last-modified: Sat, 02 May 2020 09:22:21 GMT
etag: "5ead3bcd-835a"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2BKa8DqffuqUIuHK7vZJX%2FT2xjIeB7XaANIUJttf0sZppwB0CMQLMa%2BeRJGpLKCnqGkG%2FQ%2FMEHY43%2F3CM1yp29fT4FXRgRNCr4wMJwmeWlwL2uDaxuRQtbFSf6lN%2BG%2Fo8zYD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec31c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32678000/32678537/medium@2x/1.jpg
188.114.97.1200 OK 36 kB URL HTTP/2 img.videojav.com/32678000/32678537/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash dbf1421a7146a2b9be70750d85985a8e
4679f566aefe7b1eaaae9a5e079ec914af8cfd96
4d79529a53483accad3bfdbb35da3a8e1dc5c345d96b5a65ba91445ce2f0cedd
GET /32678000/32678537/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 35909
last-modified: Thu, 30 Jul 2020 18:25:41 GMT
etag: "5f2310a5-8c45"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8cQiZ8NDNWU1tmz5OKMvjFMoUHiYvOkW7o9Xd3XrZs42xOhxIKc5EAmWut9lB8BaeA%2BBuhuWnasQGJlYF3XKVrI2iIExjhHn6Rn2ZbvCDY3itxQiaCoLvD%2BbZZTKYF3Oi1WC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378eb91c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5650
Cache-Control: max-age=162646
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd44c2-118"
Expires: Sun, 05 Feb 2023 19:04:52 GMT
Last-Modified: Fri, 03 Feb 2023 17:30:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 123
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Last-Modified: Fri, 03 Feb 2023 21:52:03 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 278
hegdcrxavrtk.cdnvideo3.com/gHEi7g5.js
135.181.208.216200 OK 52 kB URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/gHEi7g5.js
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash 4b5b61e0860975731f4e96c1bc4edffa
3162851aac08bb174dd954d3314f58f76dafec4c
2baf6123217cb85eea50bd1844bbba4bfe0712834919569871ea78f138df2b84
GET /gHEi7g5.js HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 11:45:01 GMT
ETag: W/"63dba23d-2a581"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 990c1aa70667fe4e8f93d88ac8400fc4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: Ek6UgNfuohJEdD8FpCc2lxiYjWT3ahdh_TSWLB6BxXJGhVRHtnpIWg==
Age: 206
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css
104.17.24.14200 OK 256 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css
IP 104.17.24.14:0
Hash 098110bd3ec60e725e6ac659dec292f3
2079d41c25bec276e4dcd4dcbc3c2cdd5c8cad25
13a4726b6560cb70580a6535e9b165bf3c0a447ea054c844043668d1e2ef5e6e
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: text/css; charset=utf-8
content-length: 256
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-36a"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 687497
expires: Wed, 24 Jan 2024 21:54:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w9ghi6DUQYivfzknca0LbSTKoGKyxnb4bbrnK%2FDS3uJu4RBALyIghBDaj5jMS0xswNprSJ69lxf7xA29AQILU9fQhFavzRE9T5wpli%2By6nRGsi1NUCuvnZOI3rmJs2JNAHiojbqU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793e6737eb84b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js
104.17.24.14200 OK 1.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js
IP 104.17.24.14:0
Hash 25262966b8186937356da73b4437077e
119334d19971c98dbb41ed0a074df6f9ee76414c
550053ac2111a284edfc27b8c6ed672dea9d9ae72e389e555620e1ab53e3fd78
GET /ajax/libs/videojs-thumbnails/0.1.1/videojs.thumbnails.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 1675
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-18dd"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 14097785
expires: Wed, 24 Jan 2024 21:54:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f1Oq1ctD%2Boh7nawwxUrDRv0FNk5Q6pqzd3AdPmeiJIcWcXbjx3boSBn0HhQKN54QcqIeOOyo%2BCj9E9gKFIVEpgwtueWzHjQA9IIh3bnJIXW%2FTK0M3vPQWs29DQQfvlwffjc7xyDX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793e6737eb83b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vjs.zencdn.net/7.5.5/video-js.css
151.101.2.217200 OK 10 kB URL HTTP/2 vjs.zencdn.net/7.5.5/video-js.css
IP 151.101.2.217:0
File type ASCII text, with very long lines (5636)
Hash 63ef1aa5ef8f1bb4fcb8019a9ad157cd
9cbb2b320cce447d40e3af5118042587263158d5
d5b5c765198056aece9fbee1b43a9873a8a6e0fe6a954f48d001bc030e106146
GET /7.5.5/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 13 Jun 2019 18:18:21 GMT
etag: "29daa9b197765c0111b16939ce1264a9"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Fri, 03 Feb 2023 21:54:06 GMT
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 4014
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10533
X-Firefox-Spdy: h2
img.videojav.com/32659000/32659630/medium@2x/1.jpg
188.114.97.1200 OK 38 kB URL HTTP/2 img.videojav.com/32659000/32659630/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 014d1308ae3f1dc734b759ffa1e6e89b
cacf094ec2481ef072fc09bf6ac68a45f0bbb254
fcfd8fb800b496d660972b8e93992e734f69aa3c3f9a7eb410825b434574718c
GET /32659000/32659630/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 38252
last-modified: Fri, 19 Jun 2020 20:54:05 GMT
etag: "5eed25ed-956c"
expires: Fri, 03 Feb 2023 22:48:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MxQrAkZITdSh14FhaUUjk7nPZgzCgdFvfKXuQU8dGxsglbhmluDm9JZH45d%2BUStO5v9vGMzZeEGQsfPSjYfnRyDTvXQsInEI1cMpqIOwhD8Cti5KbstEF%2FlV0kZH0%2BDwOgnv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378eb51c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32662000/32662295/medium@2x/1.jpg
188.114.97.1200 OK 31 kB URL HTTP/2 img.videojav.com/32662000/32662295/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash fcc17dad7b7269faef88c7ba4ece35a3
daf107d5ba7e57bd04dc693105bdfe753dfb1fb4
a9608fe91186731cbb3d10ebef12fd2240c0bf2caf8c23a6811c2318ed506456
GET /32662000/32662295/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 31076
last-modified: Sat, 20 Jun 2020 08:32:37 GMT
etag: "5eedc9a5-7964"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67Q3yqwV9HpkLZElcvjzFF6m1B5ncBIkSNoJR0pLpk%2FAz2HSIM2aMK67V86xT3OVy3t76QYqAYzkY%2Bc%2FHdF1bwi%2Bj3gS8JelIyCNO7zHhYYEPkl9Nrdg4cy9Y73kqXbWAIWV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6737ef191c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
d1nubxdgom3wqt.cloudfront.net/?xbund=958521
143.204.42.190200 OK 54 kB URL HTTP/1.1 d1nubxdgom3wqt.cloudfront.net/?xbund=958521
IP 143.204.42.190:0
File type Unicode text, UTF-8 text, with very long lines (15948)
Hash 39d16ba163f7618b71ce1da808312b2f
ee3893755f12ba12142093da0571952575da5c84
7fbfe6114215ae332b43727e6018361b58d13f83ae8b823b82f1a2d175896d5a
GET /?xbund=958521 HTTP/1.1
Host: d1nubxdgom3wqt.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Content-Length: 54057
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:06 GMT
access-control-allow-origin: *
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
Content-Encoding: gzip
Pragma: no-cache
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ha-LGIzPQvWB3h_Sno_NpHIvXipGxsAisZje84NVnTZyyyvvHf49Gw==
img.videojav.com/32689000/32689284/medium@2x/1.jpg
188.114.97.1200 OK 25 kB URL HTTP/2 img.videojav.com/32689000/32689284/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 0da58b4966e13afa4156a6edb07786a2
1119896cf495c6c58594bf0d0323e904d2513e59
f2d61fbd87dc87afd25cf6fb92776af8719147aec8eb4f9a302f6363c22ca086
GET /32689000/32689284/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 24711
last-modified: Mon, 17 Aug 2020 21:54:21 GMT
etag: "5f3afc8d-6087"
expires: Fri, 03 Feb 2023 22:48:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 365
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fl5x6tu9Vn2CsmwUve1xqLe953csdg0ipMVunMvL6RuEDh157p%2FnfmC99vPd6H%2FczEz0Tw%2FRv8lIXUPwXOk9ycBMOQkBumRZw%2Ff0nl59bNlm77eyARjT%2B3qd63%2BOckUPbXXA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6737ef171c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32657000/32657052/medium@2x/1.jpg
188.114.97.1200 OK 30 kB URL HTTP/2 img.videojav.com/32657000/32657052/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 0d40610e561aacea41890e5656ad09f7
8f1a2d1db2793529860b9170cc2987cdefa7a3bf
9d7c8153cebba4b36a8bf2dd49e2527bbdd0c7c08c0b5133c5b423595269c600
GET /32657000/32657052/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 29538
last-modified: Wed, 10 Jun 2020 20:06:02 GMT
etag: "5ee13d2a-7362"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KQKIBqWusq%2BCGwjLg%2F0wMgWjplDnwIcGUipEBnCvHwuwjjr88GnjsmIpKqZnA6bTbspk%2FoCU1epreV76f6nIIhbVWt%2Bn%2B6O5%2FcX0cNUGmgRbFBNVJ38UPf118rEnjEwMHAQG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6737ef1c1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.videojav.com/32642000/32642646/medium@2x/1.jpg
188.114.97.1200 OK 23 kB URL HTTP/2 img.videojav.com/32642000/32642646/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash d5fe0222f5d399cca64f138120862cf2
36cd0614534084672ea631eab0a8d27cdf17ee7c
7b94638462551dda000bb24019c2d902a3e3c5edaff66de3e4ca435ac76c24ea
GET /32642000/32642646/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 23421
last-modified: Tue, 05 May 2020 09:26:59 GMT
etag: "5eb13163-5b7d"
expires: Fri, 03 Feb 2023 22:48:00 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 366
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5lXAZoGwOMshb1HsOZR1zE6kfQJQJJocXsf1kkH2s7ZwKtnn0h%2FqtxHzBv9RRRwJyQHmg17iHrq5RDmi6y0D7Mq51rvjCDQedFcMPRXBSPymnaww72%2Bz%2B2RH1z00JjMGbcH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6737ef181c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5650
Cache-Control: max-age=162646
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd44c2-118"
Expires: Sun, 05 Feb 2023 19:04:52 GMT
Last-Modified: Fri, 03 Feb 2023 17:30:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
vjs.zencdn.net/7.5.5/video.js
151.101.2.217200 OK 425 kB URL HTTP/2 vjs.zencdn.net/7.5.5/video.js
IP 151.101.2.217:0
File type ASCII text, with very long lines (320)
Size 425 kB (425400 bytes)
Hash 27d95d95415e0e0c9998b88556837a98
be3f6b4f9eabec23d020293080c0398ddeb1b282
acebe3bf6d9fea91719845f6e0ab65ca822188593d68c478276df7d18390498a
GET /7.5.5/video.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 13 Jun 2019 18:18:22 GMT
etag: "865887bf5b49dc505cb0268884734c12"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Fri, 03 Feb 2023 21:54:06 GMT
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 425400
X-Firefox-Spdy: h2
img.videojav.com/32636000/32636767/medium@2x/1.jpg
188.114.97.1200 OK 36 kB URL HTTP/2 img.videojav.com/32636000/32636767/medium@2x/1.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.35.100", baseline, precision 8, 744x420, components 3\012- data
Hash 110e305ebc99449f03163db610765458
a51aaf62a7f291a12182fccf9323808eff32cb43
00a42a53308fa09931f0fca856802209d3e5b94928f9a44247c17fd89dc5c06d
GET /32636000/32636767/medium@2x/1.jpg HTTP/1.1
Host: img.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: image/jpeg
content-length: 36152
last-modified: Sun, 03 May 2020 16:04:41 GMT
etag: "5eaeeb99-8d38"
expires: Fri, 03 Feb 2023 22:54:06 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3sn1rN1bn%2FDOn5WACMLY%2FvIVIhLaoaML3R7HO7pokOxv2mxgECoNENJ5Mk6IADjiCVZcVHLIpZgSmYNjqRAsdQm9R4xpkMLmMDv4D39%2BqoGG2H9A47UFYDoaCQ7msXTnXJi4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e67378ec11c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 268130f091b44d74f9c6481ac8eb0098
3a53c546063a5c3d9cddcff5e5857d0607570a62
e82485399b3d0d2f353f385b83d4cd590aabdfa170d4a1399cacdbd29db57e5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2222
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Last-Modified: Fri, 03 Feb 2023 21:17:04 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5577
Cache-Control: max-age=148919
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Expires: Sun, 05 Feb 2023 15:16:05 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
d1nubxdgom3wqt.cloudfront.net/?xbund=958522
143.204.42.190200 OK 52 kB URL HTTP/1.1 d1nubxdgom3wqt.cloudfront.net/?xbund=958522
IP 143.204.42.190:0
File type Unicode text, UTF-8 text, with very long lines (15955)
Hash 9b2108be7afda7a9e4e52ae6bcfde2d4
eb38fcd96894629ef5d6cac68adf9daedd727134
812704392f96ad39785a1aae219915074ff910c889d0c9eefa8132eb40b8047a
GET /?xbund=958522 HTTP/1.1
Host: d1nubxdgom3wqt.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Content-Length: 51516
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:06 GMT
access-control-allow-origin: *
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
Content-Encoding: gzip
Pragma: no-cache
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hlNoqFKQiuHQ3orc0-mZwMVDXG3cmYrzzuPtVF9wK9iJwzRVQ5GJuw==
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 123
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Last-Modified: Fri, 03 Feb 2023 21:52:03 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
staggeredravehospitality.com/81/75/7d/81757de1aae7e6aa130b463b81c6956d.js
173.233.139.164200 OK 21 kB URL HTTP/1.1 staggeredravehospitality.com/81/75/7d/81757de1aae7e6aa130b463b81c6956d.js
IP 173.233.139.164:0
File type HTML document, ASCII text, with very long lines (60178), with no line terminators
Hash 9c1186bc4c175f1ee9b970d52b83b853
eda5cbea0e6249ec7cfbd2928da75219694c9433
7a3827821f3435611e659bfabb00ecfdbbaf26ada27e9c5569ffc26fddbc12c0
GET /81/75/7d/81757de1aae7e6aa130b463b81c6956d.js HTTP/1.1
Host: staggeredravehospitality.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e710bebb8fb40695b0f43470871ea51a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d37675bb1e8089529f27c610e8657397
3ea8e80d216d32067084fa7358ec217f94e516ee
7e94d232f2bdaaa0ad33ec4736796d0143ec27b6fe7288e351b7ee9984a994b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=143342
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd0f6c-116"
Expires: Sun, 05 Feb 2023 13:43:08 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:08 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b71b94b3682f35ef38e5d6af66035c3f
b3754599fe38b540c9364e2ecf9fc6b43271105a
992222e9324198de91c53dab70825a2852268f2833c2f5c0a02a4994c073a1a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5650
Cache-Control: max-age=162646
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dd44c2-118"
Expires: Sun, 05 Feb 2023 19:04:52 GMT
Last-Modified: Fri, 03 Feb 2023 17:30:42 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4c85bcca45651b4e40a184d2d3320c3a
36c309f11c75cc57126cd10fa6b7acf71df0b84b
6b37a16ddb8094af40a67e56f444d8953753b5a7738a1b1cff09f000e834c0e3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3082
Cache-Control: max-age=86294
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Etag: "63dc248a-116"
Expires: Sat, 04 Feb 2023 21:52:20 GMT
Last-Modified: Thu, 02 Feb 2023 21:00:58 GMT
Server: ECS (amb/6B9F)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hegdcrxavrtk.cdnvideo3.com/api/spots/329627?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 3.5 kB URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/329627?p=1&s1=%subid1%&kw=
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (712)
Hash 70315ab590444bd8c01b2487679e2779
e702add87f78e283f5735089af8d53c7d9e4bbbc
f19056feb3eb8e3e96f1a12d79b7c2ee0906776d939eb695981d2f4a719d6645
GET /api/spots/329627?p=1&s1=%subid1%&kw= HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=sOtpumZnqS3doOYuK4nO; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
edhimasifiwoery.xyz/popunder.gif
172.67.136.172301 Moved Permanently 0 B URL HTTP/1.1 edhimasifiwoery.xyz/popunder.gif
IP 172.67.136.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /popunder.gif HTTP/1.1
Host: edhimasifiwoery.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 21:54:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 Feb 2023 22:54:07 GMT
Location: https://edhimasifiwoery.xyz/popunder.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VCWORd%2BbA%2FdHvv%2FB6B0Gt7c07BlQC0JHkHN6lHjYVOQ6WJgrOj9yCLysb84kJwWGi6b9gA%2BFCayxRE8K4Z9eDsudGQ53YThfhRzmpCpFrXlmBvrFwcg1yXmA%2B7EVtRSXVxHtNiYq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793e673a6ab3b524-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 8.0 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
Hash 47677ed72704c2c6bdf31494bcbe3315
02aee51d3f609b8e1ae6634a7a94dd9a2025db80
6f41412c6b1df58d45d379d3524fdc9f741ef21bed802703f0816a8d57755e6d
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 21:49:06 GMT
age: 301
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fccfe85480943e75c92061cda7f8de93
4c547379f5d25e4715516d6935a85d1d04f97045
0469ee3520b2afe0beb69802c351928286e2817890e5feda9638db277d8b9717
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0469EE3520B2AFE0BEB69802C351928286E2817890E5FEDA9638DB277D8B9717"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3653
Expires: Fri, 03 Feb 2023 22:55:00 GMT
Date: Fri, 03 Feb 2023 21:54:07 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fccfe85480943e75c92061cda7f8de93
4c547379f5d25e4715516d6935a85d1d04f97045
0469ee3520b2afe0beb69802c351928286e2817890e5feda9638db277d8b9717
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0469EE3520B2AFE0BEB69802C351928286E2817890E5FEDA9638DB277D8B9717"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3653
Expires: Fri, 03 Feb 2023 22:55:00 GMT
Date: Fri, 03 Feb 2023 21:54:07 GMT
Connection: keep-alive
syndication.exosrv.com/ads-iframe-display.php?idzone=3661159&type=300x250&p=http%3A//www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/%3Fts%3D643530&dt=1675461279739&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22
95.211.229.245200 OK 52 B URL HTTP/1.1 syndication.exosrv.com/ads-iframe-display.php?idzone=3661159&type=300x250&p=http%3A//www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/%3Fts%3D643530&dt=1675461279739&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document, ASCII text, with no line terminators
Hash c3743cf5e9e53705dc66056f1a34f6ec
740253d7fe753ab9b7d71e1832fd1af41c0677c1
c184a4ce5928e23f286176d3c76a8d5c12c67a8957554c92fb144b1cdd2fb17c
GET /ads-iframe-display.php?idzone=3661159&type=300x250&p=http%3A//www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/%3Fts%3D643530&dt=1675461279739&sub=&tags=&cookieconsent=true&screen_resolution=1280x1024&el=%22 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2263dd827f265eb7.08992122777699114%22%3B%7D; expires=Sun, 02 Feb 2025 21:54:07 GMT; path=; domain=.exosrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
hegdcrxavrtk.cdnvideo3.com/api/spots/329629?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 3.5 kB URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/329629?p=1&s1=%subid1%&kw=
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (712)
Hash 02fa46208d2ca728a8c418191e93f3a7
7cc22b08c2dabb5edaa439ec480a4ad56e0ab4ab
e493bf01f8c171e130711f5f6057f8b3369ec5b3c8ebed3a326cb1cddb633d33
GET /api/spots/329629?p=1&s1=%subid1%&kw= HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=J67KZZl5HZExMIBZpjWs; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
hegdcrxavrtk.cdnvideo3.com/api/spots/334568?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 3.7 kB URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/334568?p=1&s1=%subid1%&kw=
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1346)
Hash 93eec3e273e49af5934d928b78af5740
4870caa3968f0c1a1528850e56728d264b3fdc7a
2f85cbbfa31b36e769499b387812772d2f2f12bba8d11309bc625067a71cee29
GET /api/spots/334568?p=1&s1=%subid1%&kw= HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: nauid=OEr7PaRvTPFY5OWnTHUA; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; SameSite=None
Cache-Control: private
Content-Encoding: gzip
unpkg.com/silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js
104.16.122.175302 Found 667 B URL HTTP/2 unpkg.com/silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js
IP 104.16.122.175:0
Hash bb77ded3890c8ac7a9c0c16564264f67
84925588af985ad16c56ee3dfd47266805840f5f
0ebb846a441cae928a0f293677fbadafff0f1acb066160f2a6832ca204e041af
GET /silvermine-videojs-quality-selector/dist/js/silvermine-videojs-quality-selector.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /silvermine-videojs-quality-selector@1.1.2/dist/js/silvermine-videojs-quality-selector.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRCM4ZXBPZ2241FBDB4XM1CJ-fra
cf-cache-status: HIT
age: 213
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793e6737eb11fac0-OSL
X-Firefox-Spdy: h2
wecouldle.com/utx?cb=08Gka0yaQfLp&top=www.videojav.com&tid=958521
65.9.44.110204 No Content 0 B URL HTTP/2 wecouldle.com/utx?cb=08Gka0yaQfLp&top=www.videojav.com&tid=958521
IP 65.9.44.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=08Gka0yaQfLp&top=www.videojav.com&tid=958521 HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: http://www.videojav.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Fri, 03 Feb 2023 21:55:07 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 58899c559ea4c71daeb5333a74914042.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 8gTuTBCwSGwSrJsmIblOTcamM8v5CZ8Ak9xLXunCoZcfx3hu70kJ3g==
X-Firefox-Spdy: h2
www.videojav.com/css/plugins.css?v=1.2
188.114.97.1200 OK 9.5 kB URL HTTP/2 www.videojav.com/css/plugins.css?v=1.2
IP 188.114.97.1:0
File type ASCII text, with very long lines (29529)
Hash f1ec2d20101de1144645f2fcbe3cfcd9
0bad0c124aa04c856a0a134ba47ab0bdfd3f775d
92251cf1d1cc91d64a3a4d01bf8104959e1001dcd96f62e8977c5946fcc8861a
GET /css/plugins.css?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: text/css
last-modified: Mon, 27 Apr 2020 09:02:47 GMT
vary: Accept-Encoding
etag: W/"5ea69fb7-c445"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 11082354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bamVn3T9zBk6sLR2fnl9Vh8I%2BEOHmVrArQ4s6USZ6Hw2u%2FtOLiJVsuKchyaRtlUeR7j5DpKmUFwhO%2B6YQqdOt3U7rY%2FULz7MnSOEYl5gLM8JDiDLg6f3xpwU34n0jCvTIuGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67388fb11c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
IP 142.250.74.163:0
Hash 42e4f9cd20c5a54a2fba4aff185c9246
4d289915e595e54e937c4e98869988f19ad5ab1e
be36468cea9bb9a7c639b14b45ce9ca48a17e86977c65d065b083d02f2d2141f
POST /s/gts1p5/Cc4-x5B-V-k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16608
Expires: Sat, 04 Feb 2023 02:30:55 GMT
Date: Fri, 03 Feb 2023 21:54:07 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
IP 142.250.74.163:0
Hash 42e4f9cd20c5a54a2fba4aff185c9246
4d289915e595e54e937c4e98869988f19ad5ab1e
be36468cea9bb9a7c639b14b45ce9ca48a17e86977c65d065b083d02f2d2141f
POST /s/gts1p5/Cc4-x5B-V-k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wecouldle.com/SnRDbXgrFiAARytJIUsNOBh+SEoMUXErHHsaNg8ALhMsAEs9BTdDGyYbNgkeOBstGVYkETdISgwuFQEtMBU5CkkFGHMjOjM9eztJEzYaX0gNIxIdDxpEAiguIy4sDjkcLAEuIno2ciQ/GjxzAisCNSs+KXIyGQM2LDcvNAArNhYiLiAiLCwTey4OBxsFLDtZEQAiNCw6GTl0Ow9/ERMXDB0wO1kSBDV3Ki4zA3s1Dy4uIF8ceywrNxUpNQUPPQkxezUpcywKPiEdIxIKTAMmGTc7DRAvJS45EBk/Gx0jEgoQGjJyCTwCOi4OLX4/GQRIDCw7XBQMDG43Igk3Egc+Jhx2N0ofMxE8EG9GBQ45DBYbFzV4IwI8HBA2Di8vPRguNykAFgA1NiQ1NFwqADABOzoPNjk3SxwVACo2fTVzXDYrRhJLEjkbLR1FCRosPwsNGCk9EQQ3Mw
65.9.44.110200 OK 1.2 kB URL HTTP/1.1 wecouldle.com/SnRDbXgrFiAARytJIUsNOBh+SEoMUXErHHsaNg8ALhMsAEs9BTdDGyYbNgkeOBstGVYkETdISgwuFQEtMBU5CkkFGHMjOjM9eztJEzYaX0gNIxIdDxpEAiguIy4sDjkcLAEuIno2ciQ/GjxzAisCNSs+KXIyGQM2LDcvNAArNhYiLiAiLCwTey4OBxsFLDtZEQAiNCw6GTl0Ow9/ERMXDB0wO1kSBDV3Ki4zA3s1Dy4uIF8ceywrNxUpNQUPPQkxezUpcywKPiEdIxIKTAMmGTc7DRAvJS45EBk/Gx0jEgoQGjJyCTwCOi4OLX4/GQRIDCw7XBQMDG43Igk3Egc+Jhx2N0ofMxE8EG9GBQ45DBYbFzV4IwI8HBA2Di8vPRguNykAFgA1NiQ1NFwqADABOzoPNjk3SxwVACo2fTVzXDYrRhJLEjkbLR1FCRosPwsNGCk9EQQ3Mw
IP 65.9.44.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3043), with no line terminators
Hash 90e7a5e5126e6dfb03ba38b7aa608607
179be802fdaca5790ef215c3ffbd3bd328d8c4cc
4f0d2df75e4b44a1f7539e0ccf488d4c398531e863e0a081250a6220bc09689f
GET /SnRDbXgrFiAARytJIUsNOBh+SEoMUXErHHsaNg8ALhMsAEs9BTdDGyYbNgkeOBstGVYkETdISgwuFQEtMBU5CkkFGHMjOjM9eztJEzYaX0gNIxIdDxpEAiguIy4sDjkcLAEuIno2ciQ/GjxzAisCNSs+KXIyGQM2LDcvNAArNhYiLiAiLCwTey4OBxsFLDtZEQAiNCw6GTl0Ow9/ERMXDB0wO1kSBDV3Ki4zA3s1Dy4uIF8ceywrNxUpNQUPPQkxezUpcywKPiEdIxIKTAMmGTc7DRAvJS45EBk/Gx0jEgoQGjJyCTwCOi4OLX4/GQRIDCw7XBQMDG43Igk3Egc+Jhx2N0ofMxE8EG9GBQ45DBYbFzV4IwI8HBA2Di8vPRguNykAFgA1NiQ1NFwqADABOzoPNjk3SxwVACo2fTVzXDYrRhJLEjkbLR1FCRosPwsNGCk9EQQ3Mw HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1192
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:07 GMT
Server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
P3P: CP="NID DSP ALL COR"
content-encoding: gzip
Accept-CH: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Cache: Miss from cloudfront
Via: 1.1 cb05e10ed4a973b87ff15498c30d269c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
X-Amz-Cf-Id: Wckj9rVD71TDSPxBYXp6ZVu7xzOpfP6oxd4i6gX8FiT4N2tuI0ELng==
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.videojav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 431527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fccfe85480943e75c92061cda7f8de93
4c547379f5d25e4715516d6935a85d1d04f97045
0469ee3520b2afe0beb69802c351928286e2817890e5feda9638db277d8b9717
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0469EE3520B2AFE0BEB69802C351928286E2817890E5FEDA9638DB277D8B9717"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3653
Expires: Fri, 03 Feb 2023 22:55:00 GMT
Date: Fri, 03 Feb 2023 21:54:07 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.videojav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 559638
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
edhimasifiwoery.xyz/WWdNY0t2WC4QdgNVJVIaaS0YNh4fVyk1LwA1IyEzDAt4Jy8RBGsXIj1adFZzbFV/RTswA3BQeX8UOQI/LBRwUm0wCSsMdn8RcFNlYEl8TXt/EnBSbS0XLAR2aEE9Fz81WnxVfGxTe1J5bl51W34
172.67.136.172204 No Content 5.6 kB URL HTTP/2 edhimasifiwoery.xyz/WWdNY0t2WC4QdgNVJVIaaS0YNh4fVyk1LwA1IyEzDAt4Jy8RBGsXIj1adFZzbFV/RTswA3BQeX8UOQI/LBRwUm0wCSsMdn8RcFNlYEl8TXt/EnBSbS0XLAR2aEE9Fz81WnxVfGxTe1J5bl51W34
IP 172.67.136.172:0
Hash 778d6d0e30388f8d407e288cbc041545
e6d0903a25c3af323971311bc08f6fd0e9ddb73b
aa5f65543574e1ac4f9c1c5e613405ac2ebcb036387de4737689c82366021c6c
GET /WWdNY0t2WC4QdgNVJVIaaS0YNh4fVyk1LwA1IyEzDAt4Jy8RBGsXIj1adFZzbFV/RTswA3BQeX8UOQI/LBRwUm0wCSsMdn8RcFNlYEl8TXt/EnBSbS0XLAR2aEE9Fz81WnxVfGxTe1J5bl51W34 HTTP/1.1
Host: edhimasifiwoery.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RmddxngFLl4JuYd56ybyatQKqh0WKzgY8hN%2Fmpjo62FnZg6XTpW44aL4GDeAc66NSJUMDtm20qu%2FJW2LfUOqi9tgpq2u%2B9z%2BwZioHHZddeIe3hlPaTRTJdnDGnqDRWVFSxyTXf%2B3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e673ba8030afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.videojav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 290701
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
edhimasifiwoery.xyz/eDRLMGRXCyhDWRpYJAQzPXITUSVJRS52EBJweVwTLwYscgYwU21EDRwJcgVcTQZ6FhQRUHYBQgtAKkQRCwl6Fg0WUiQNQg4Jeh5XTBp4AUpKEj4NVV5AO1EDRQVtQBAMWHYBUk8BfwZVSgNyB1ZP
172.67.136.172204 No Content 0 B URL HTTP/2 edhimasifiwoery.xyz/eDRLMGRXCyhDWRpYJAQzPXITUSVJRS52EBJweVwTLwYscgYwU21EDRwJcgVcTQZ6FhQRUHYBQgtAKkQRCwl6Fg0WUiQNQg4Jeh5XTBp4AUpKEj4NVV5AO1EDRQVtQBAMWHYBUk8BfwZVSgNyB1ZP
IP 172.67.136.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eDRLMGRXCyhDWRpYJAQzPXITUSVJRS52EBJweVwTLwYscgYwU21EDRwJcgVcTQZ6FhQRUHYBQgtAKkQRCwl6Fg0WUiQNQg4Jeh5XTBp4AUpKEj4NVV5AO1EDRQVtQBAMWHYBUk8BfwZVSgNyB1ZP HTTP/1.1
Host: edhimasifiwoery.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bm4kWRovUST4vpoF1NjEGx6NyNOMqFhQNZr3wLDqIGOxWPdvlQcAyBLJ7sQIo3WUAH6A8QgMSpNUpBNBXBFYYLsN%2B5EgVJIugr6eNPMA9238TNqLlyxjxR8Es9q46t7QdZspDJb3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e673bafff0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530&video_id=32636767&mode=async&action=js_stats&rand=1675461280056
188.114.97.1200 OK 43 B URL HTTP/1.1 www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530&video_id=32636767&mode=async&action=js_stats&rand=1675461280056
IP 188.114.97.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530&video_id=32636767&mode=async&action=js_stats&rand=1675461280056 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_81757de1aae7e6aa130b463b81c6956d=1; kt_tcookie=1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: kt_is_visited=1; expires=Sat, 04-Feb-2023 22:02:53 GMT; Max-Age=86400; path=/; domain=.videojav.com; SameSite=Lax
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MrukUZH46yaiXpadgXmWJEJ%2Fl3fUItbIX%2BMdmQpTcZcYA%2BMLBqXDHVVAfpRhKv4hLudOzflwVH59uCzzhAGw%2B5xN2nd0F0ALn%2BgQox0unr7K43svBahSPYBf58bPpJGyCYp%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793e673c4c5ab4fd-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.videojav.com/get_country.php?v=0.5826512498739105.1675461280074
188.114.97.1200 OK 43 B URL HTTP/1.1 www.videojav.com/get_country.php?v=0.5826512498739105.1675461280074
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 674d6399d11ab9bf30ec1744d68b7b20
0b3be43fa2d41a618372a345d73558585d42b196
8173dcd03400243f1f760f7d0acf798a601443fe65e7862260a56c911e3ce1b8
GET /get_country.php?v=0.5826512498739105.1675461280074 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_81757de1aae7e6aa130b463b81c6956d=1; kt_tcookie=1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LP77VkVAQSoF49VOGnwHArQ2su5YFtddMso3yugyingm%2FUAFaCnpcmDV4NqaZmfpVfetU2jkLrntFs9sT7vLe8oPgjSn%2FPPQQ6z2cc%2BHIV3Q50khZ%2BoiLzK%2BdLZQIJ9u6ije"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 793e673c5ca5b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
edhimasifiwoery.xyz/VHd4MmZ7SBtBWzAjPmMyPjk/cSEGQjp3MxYuSwInBTYcXwMFLl5GDzBKQQdeYUVKFBY9E0UBVHIEDFMSIQRFAFZkQF5bCDIYRQBAIkpIHF96RlYCQCFKSRQSJBYfD1dyBwxGCmlGTgVTYEFJAFFtT0AL
172.67.136.172204 No Content 0 B URL HTTP/2 edhimasifiwoery.xyz/VHd4MmZ7SBtBWzAjPmMyPjk/cSEGQjp3MxYuSwInBTYcXwMFLl5GDzBKQQdeYUVKFBY9E0UBVHIEDFMSIQRFAFZkQF5bCDIYRQBAIkpIHF96RlYCQCFKSRQSJBYfD1dyBwxGCmlGTgVTYEFJAFFtT0AL
IP 172.67.136.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /VHd4MmZ7SBtBWzAjPmMyPjk/cSEGQjp3MxYuSwInBTYcXwMFLl5GDzBKQQdeYUVKFBY9E0UBVHIEDFMSIQRFAFZkQF5bCDIYRQBAIkpIHF96RlYCQCFKSRQSJBYfD1dyBwxGCmlGTgVTYEFJAFFtT0AL HTTP/1.1
Host: edhimasifiwoery.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U4zxqi%2FxMQFZklhpbRvz4SmO%2BzHfgiILlccSDuRY8d5KdyAM14K040tJU0PZZ4G4miVhRZN6xToAZYsl2KL27FPDemXW5sbaLZNtjF0%2BasykhXc7c8i2tH7ZzVARZEo7PksOjL7b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e673c38920afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Cc4-x5B-V-k
IP 142.250.74.163:0
Hash 42e4f9cd20c5a54a2fba4aff185c9246
4d289915e595e54e937c4e98869988f19ad5ab1e
be36468cea9bb9a7c639b14b45ce9ca48a17e86977c65d065b083d02f2d2141f
POST /s/gts1p5/Cc4-x5B-V-k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hegdcrxavrtk.cdnvideo3.com/api/settings/377395
135.181.208.216200 OK 53 B URL HTTP/2 hegdcrxavrtk.cdnvideo3.com/api/settings/377395
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 74c23c47d95b21ebd5c9d99d218acdb3
46380fd05437327dc917cbc3dade9d20d02b2601
a40005b2fb25878369adce9dee810f6ef75acc2790a850bbacd0f6a6aac1e3da
GET /api/settings/377395 HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
wecouldle.com/b0ZISjEOJCsnDg57KmxEHSp1bwMpY3oMVVwifX5bWDUhfkYANyRkUgMpPS5XHSkmPh8BIzxvAykjLCZdFxIcH2chLnA4cggPPwxpLgsZeHcqID8YYCIxASNmGBwjAmM9BAcOeBUKCSlLIT8jE1Q+Ay4cSwMWDSdjLSd5IWkhPhI9dBcLew9fLgMdDlY5Cj8icgkxHXNmB3cjCEs9Cw4OCTYJDgdSISorfmcqNXgCWwslDyBkPicJKUYNAHFzdCoUOB1lHyUPDgEKCSMQZQ52DSBgOQg6G2kYAB8NXTogJi5lDnYNfGktLj4YZggBBgJJKyAde3ANEGUYFF0ELHt/HRccc3U6dCc9Vy4QDC4BKS0ND2MfACEiZicSEh9XXAgNK2QtfwofVR8XDy15PSxwE2FeBxkEVgMpCjBzABcQLVM9KHAPUi4XbiBCACg4d102MgYhcw50DSRpOgo/DA
65.9.44.110200 OK 1.2 kB URL HTTP/1.1 wecouldle.com/b0ZISjEOJCsnDg57KmxEHSp1bwMpY3oMVVwifX5bWDUhfkYANyRkUgMpPS5XHSkmPh8BIzxvAykjLCZdFxIcH2chLnA4cggPPwxpLgsZeHcqID8YYCIxASNmGBwjAmM9BAcOeBUKCSlLIT8jE1Q+Ay4cSwMWDSdjLSd5IWkhPhI9dBcLew9fLgMdDlY5Cj8icgkxHXNmB3cjCEs9Cw4OCTYJDgdSISorfmcqNXgCWwslDyBkPicJKUYNAHFzdCoUOB1lHyUPDgEKCSMQZQ52DSBgOQg6G2kYAB8NXTogJi5lDnYNfGktLj4YZggBBgJJKyAde3ANEGUYFF0ELHt/HRccc3U6dCc9Vy4QDC4BKS0ND2MfACEiZicSEh9XXAgNK2QtfwofVR8XDy15PSxwE2FeBxkEVgMpCjBzABcQLVM9KHAPUi4XbiBCACg4d102MgYhcw50DSRpOgo/DA
IP 65.9.44.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3049), with no line terminators
Hash 0a2677cecd4f206fb4334f9567eb5d28
c34b4d5dba96967e883a77b79f23d43db981d2d8
2b2d5d97a7e2978013a65ea3f1426cdaa9ddda60976f146707bea0c9658763a5
GET /b0ZISjEOJCsnDg57KmxEHSp1bwMpY3oMVVwifX5bWDUhfkYANyRkUgMpPS5XHSkmPh8BIzxvAykjLCZdFxIcH2chLnA4cggPPwxpLgsZeHcqID8YYCIxASNmGBwjAmM9BAcOeBUKCSlLIT8jE1Q+Ay4cSwMWDSdjLSd5IWkhPhI9dBcLew9fLgMdDlY5Cj8icgkxHXNmB3cjCEs9Cw4OCTYJDgdSISorfmcqNXgCWwslDyBkPicJKUYNAHFzdCoUOB1lHyUPDgEKCSMQZQ52DSBgOQg6G2kYAB8NXTogJi5lDnYNfGktLj4YZggBBgJJKyAde3ANEGUYFF0ELHt/HRccc3U6dCc9Vy4QDC4BKS0ND2MfACEiZicSEh9XXAgNK2QtfwofVR8XDy15PSxwE2FeBxkEVgMpCjBzABcQLVM9KHAPUi4XbiBCACg4d102MgYhcw50DSRpOgo/DA HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 1198
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:07 GMT
Server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
Pragma: no-cache
P3P: CP="NID DSP ALL COR"
content-encoding: gzip
Accept-CH: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Cache: Miss from cloudfront
Via: 1.1 cb05e10ed4a973b87ff15498c30d269c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
X-Amz-Cf-Id: wGlSwibpfIhG205XrvGm9k71pEOx7ZgUDL2BJ8YvTUlDYwYh83CA_w==
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 51587a23f66c8249b593bdd3bc316c26
a44589aa9cf9e0a703e280f130f13783a4dce154
9d3982efed953d409b9ff9e88be9f517be1f563d0569bc8f39ca9c75be104477
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 21:54:07 GMT
Last-Modified: Fri, 03 Feb 2023 20:34:33 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vnDKJ8Q4twJGwpVQFjGDL1mabLQU22D9EHYLKulompdgpxtXiT-OXg==
Age: 4774
hegdcrxavrtk.cdnvideo3.com/api/click/11273405113764471095?c=90
135.181.208.216200 OK 0 B URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/click/11273405113764471095?c=90
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/11273405113764471095?c=90 HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/api/spots/329627?p=1&s1=%subid1%&kw=
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: private
pogothere.xyz/asd100.bin
172.64.132.29200 OK 102 kB IP 172.64.132.29:0
Size 102 kB (102400 bytes)
Hash 4c6426ac7ef186464ecbb0d81cbfcb1e
5a6918eebd9d635e8f632e3ef34e3792b1b5ec13
f627ca4c2c322f15db26152df306bd4f983f0146409b81a4341b9b340c365a16
Analyzer Verdict Alert quad9 Sinkholed
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: binary/octet-stream
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Fri, 03 Feb 2023 21:54:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hohL71DUC3W9iPafuciqK6%2B1WTkU8yOxOrhin5fIFX1tCovxECP8gurNpXA%2Fzz2ak7Q%2BmDwx1Dm0xNfVlQfcAO8oAIjECjm22GccKJ5%2BkKw8uUAIToG89tyCVqHIHVmt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e673aeb517743-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash d92eec2d55b46172a15a99fad28b8d8d
3631b4cdd3f97ab492333a08b15c986144e9c488
0b7e4e5355f6f9b35fcc8414ab441bbc3644e7320dfef3ecb10caef5f2122e28
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
set-cookie: uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1; expires=Mon, 31 Jan 2033 21:54:07 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
naveljutmistress.com/98/00/e5/9800e5fc6ff3aca35add05938f7ac2c8.js
173.233.139.164200 OK 13 kB URL HTTP/1.1 naveljutmistress.com/98/00/e5/9800e5fc6ff3aca35add05938f7ac2c8.js
IP 173.233.139.164:0
File type ASCII text, with very long lines (37128), with no line terminators
Hash 02950a90244d83f3bbb2e40aabb19b44
6127a07ea45f6cfe4196455de15fc1a627f67b99
e6a823231818df402e936bfdca90551d6dd637c2562185f624fbbf0d862ab9ff
Analyzer Verdict Alert quad9 Sinkholed
GET /98/00/e5/9800e5fc6ff3aca35add05938f7ac2c8.js HTTP/1.1
Host: naveljutmistress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6978aaf72c684a174c992d231384a470
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.videojav.com/favicon-16x16.png
188.114.97.1200 OK 1.5 kB URL HTTP/1.1 www.videojav.com/favicon-16x16.png
IP 188.114.97.1:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 552872354755cb050014a9501cfec4fa
fd05b4d7002b52e705344db04db723495910e4c7
88ef331642f08aaee6990894bd8015032891181d446faa6c4bbec095a56aba8d
GET /favicon-16x16.png HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_81757de1aae7e6aa130b463b81c6956d=1; kt_tcookie=1; rvt_inlpush_cnt_4101=1; rvt_inlpush_max_4101=100; kt_is_visited=1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: image/png
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2020 09:02:49 GMT
ETag: "5ea69fb9-5d1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 14889394
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lWjt4uiIhIcBGRmRnNm8LvA80vmK2yXfLjQq7uEJFMXCAgUTEUdqlnUD2K6nKKyDb%2FR6kBE1gkqI952jNvgLW0t4J%2BDOSd5MA1NyTsaOkLfQdETroXBs2YzegoQoyDXRgd4q"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793e673d8eb6b4fa-OSL
alt-svc: h2=":443"; ma=60
www.videojav.com/apple-touch-icon.png
188.114.97.1200 OK 14 kB URL HTTP/1.1 www.videojav.com/apple-touch-icon.png
IP 188.114.97.1:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 302003967bcce57931c372aa26310c88
526045f535e90a6d7b19240532f9100c9535beee
117477b129e4ca959b0afd092f7edca8f460ff25120b8dbe2011a88d9f48bef8
GET /apple-touch-icon.png HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/videos/32636767/80f8fc4a807bf62d8357dd1ff38ef249/?ts=643530
Cookie: PHPSESSID=g1et6qi04vv3397dmsd0u0se1r; kt_rt_ts=643530; kt_qparams=id%3D32636767%26dir%3D80f8fc4a807bf62d8357dd1ff38ef249%26ts%3D643530; kt_ips=91.90.42.154; show_pops2=true2; show_pops1=true1; ppu_show_on_81757de1aae7e6aa130b463b81c6956d=1; kt_tcookie=1; rvt_inlpush_cnt_4101=1; rvt_inlpush_max_4101=100; kt_is_visited=1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: image/png
Content-Length: 13713
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2020 09:02:49 GMT
ETag: "5ea69fb9-3591"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 14889869
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PiYDFOH5Pew6fWdh%2BWehoOg9Kva3IUBsCvF41E0vRUJ3S6K1c%2FIpk5p7zHHouG79eHooj4Dgcu%2F%2BJhcpymvPlMS0z05P5V2U%2FD8gluubRM4cun1M6skKfcAAy7nLUyJIKE3C"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793e673d8e36b4fd-OSL
alt-svc: h2=":443"; ma=60
cdn.bonertraffic12.pro/sdk/push_web/?zid=4101
188.114.97.1200 OK 33 kB URL HTTP/2 cdn.bonertraffic12.pro/sdk/push_web/?zid=4101
IP 188.114.97.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06fd0d469dacb18a65d454c39ae69ec2
64ae7464aa2fbb4d40302eb96a266be3e39ceacf
c23a32871b6489e4677caf0734474782ab2b2480b74b147c9947fba9095eca27
GET /sdk/push_web/?zid=4101 HTTP/1.1
Host: cdn.bonertraffic12.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
x-time: 1675461246
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EviTGpN3zOi64sDs35m8n2YZ912gBMTf40t21LSuu9Cg9BJdoqtX30RpQoc1lxPB0IES%2B8X5Wm2XNKdB0OiY5PLfCts%2BtyUTKSyWZRKw2%2Fp8ABHhiM7kMyFI2bx5%2BIJ8Aq94y4zY6%2B7W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6738bd8cfabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.69.117101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.69.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m4X9uzGvepXL7dFgjbywjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SQ/LKJBrIHk2TI9mfDfWX81u7GI=
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash d92eec2d55b46172a15a99fad28b8d8d
3631b4cdd3f97ab492333a08b15c986144e9c488
0b7e4e5355f6f9b35fcc8414ab441bbc3644e7320dfef3ecb10caef5f2122e28
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3217
Cache-Control: max-age=125684
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:48:51 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
a.realsrv.com/ad-provider.js
185.76.9.19200 OK 43 kB URL HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (52184)
Hash 06ea95d4f1ac64a6a85ad54dae9369ec
8f6e8e58c8a951ee9a10328178ec008ca5edfa83
f6f59d1e9865409871ded6ac8658bca2d487d88a84c0e256cf478b53613fe270
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: application/javascript
etag: W/"e2bbca1c479226a45392909d6a4"
expires: Thu, 02 Feb 2023 18:45:33 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1675471610
server: CDN77-Turbo
x-77-nzt: AblMCQ3uynb/tQEAAA
x-77-nzt-ray: c0a4cc28c9fd955a7f82dd637de7f521
x-cache: HIT
x-age: 437
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.videojav.com/js/videojs.persistvolume.js?v=1.2
188.114.97.1200 OK 1.9 kB URL HTTP/2 www.videojav.com/js/videojs.persistvolume.js?v=1.2
IP 188.114.97.1:0
Hash bf31f05312108963f912091b7607f02a
9303b7cda382e780a38f88cc0a94c0ac6492485c
d32585503fe32b1943aec4090eb4bbd2aa94b0b186ca57b809f6af28447b958b
GET /js/videojs.persistvolume.js?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
last-modified: Mon, 27 Apr 2020 09:02:47 GMT
vary: Accept-Encoding
etag: W/"5ea69fb7-e5f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 11767683
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxKA%2BV3UWi3OcD1mgJmmgIPMW%2FIR6eAiBp5LWBLgry%2FU8tfyWQSRy%2F%2Fva6Wza%2FK6j3ivbqva1NVgctncke5bzhxC%2BWLmIrJJFLiyLvayNf3pHzufoI6wFG6j1H2kXRn5kvpU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6737ef1f1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found 393 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380)
Hash 9dce7460364a8d235dd0bf4287c65015
bfe858791988cc13ce46b9ceae39c763d548a977
5b11b002479f8b1609061fa6bbb9acfb49ffc087906d95288c36c41045fab719
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Feb 2023 21:54:07 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1023412892%3A1675461247693027&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AWnogHdpV72gse732rDNsPTaHUv7n6SAOuUqgAaFC0K30uZ8zehsLolus_Cqzp80Nz-F_okzPwVVTA
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-YZj0vKS3Vp22MCft7N6pRw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 393
server: GSE
set-cookie: __Host-GAPS=1:sdTbPBfFlK0w7iSSS7AW_kObKswzhw:-w8skGxR-5gHk5jK;Path=/;Expires=Sun, 02-Feb-2025 21:54:07 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wecouldle.com/utx?cb=ANrnKjqjSDIH&top=www.videojav.com&tid=958522
65.9.44.110204 No Content 0 B URL HTTP/2 wecouldle.com/utx?cb=ANrnKjqjSDIH&top=www.videojav.com&tid=958522
IP 65.9.44.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=ANrnKjqjSDIH&top=www.videojav.com&tid=958522 HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: http://www.videojav.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Fri, 03 Feb 2023 21:55:07 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 58899c559ea4c71daeb5333a74914042.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: umCkINQ_k8Ez4AvZ1qUCYYvghVAWMBJIl44XweRds4317cxZyvD-iw==
X-Firefox-Spdy: h2
wecouldle.com/utx?cb=xQwceFaKConv&top=www.videojav.com&tid=958521
65.9.44.110204 No Content 0 B URL HTTP/2 wecouldle.com/utx?cb=xQwceFaKConv&top=www.videojav.com&tid=958521
IP 65.9.44.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=xQwceFaKConv&top=www.videojav.com&tid=958521 HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 21:54:07 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: http://www.videojav.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Fri, 03 Feb 2023 21:55:07 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 58899c559ea4c71daeb5333a74914042.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 7WJvTUy_zr0DwvvpUr5DqVvm_TozKswXGIukIcWNo6bIO6Ue78iPFQ==
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
185.76.9.19200 OK 15 kB URL HTTP/2 a.realsrv.com/nativeads-v2.js
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type C source, ASCII text, with very long lines (59492)
Hash c3d07213c78527edba92d8702fecba3d
6d334cd214e0e0ea8af8b3167c80d93de88019fb
caf140eed26ad14ca7bfba051e522b2576d58060a59facf4bccd44cae6a19a65
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: application/javascript
etag: W/"21b43fd9d304f2027f605b8ad4d"
expires: Thu, 02 Feb 2023 18:45:28 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1675471611
server: CDN77-Turbo
x-77-nzt: AblMCQ2HvXn/tAEAAA
x-77-nzt-ray: c0a4cc28c9fd955a7f82dd63ef7fc022
x-cache: HIT
x-age: 436
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.realsrv.com/splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=http%3A%2F%2Fwww.videojav.com%2F
95.211.229.248200 OK 4.7 kB URL HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=http%3A%2F%2Fwww.videojav.com%2F
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (9044), with no line terminators
Hash f5a67a074bc2863644f758fa3ad69cfc
5ca966c518a885f5ea90bf7a60b60fadcd21ce2d
3753341a61af2f624f8e5366c244965c6d50d4cb225ba3f22ee54037ab7d0aac
GET /splash.php?native-settings=1&idzone=4348472&cookieconsent=true&&p=http%3A%2F%2Fwww.videojav.com%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://hegdcrxavrtk.cdnvideo3.com
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://hegdcrxavrtk.cdnvideo3.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A31%3A%2263dd827faa38f8.7467124472778823%22%3B%7D; expires=Sun, 02 Feb 2025 21:54:07 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
impressions=oslmrxbrnxgxamrcraoxsgeicxbmsbcenxgxamrcremlrgeimmccrbebnxgxamcbexxbmgeioslmrxbmnxgxamrcaxocmgeicxbmsbocnxgxamrcraoxsgeimmccrlaonxgxamrcremlrgeimmccrlacnxgxamcmlarclgeicxbmsboenxgxamrscrmeogeioslmrxlrnxgxamslescrogeimmccrbxenxgxamrescroogeislsaroornxgxamccolacbgeioslmroemnxgxamrcremlrgeioslmrxlsnxgxamroamsoegeicmmsxrbonxgxamsoeamlmgeimmccrlaenxgxamrsxxxmrgeimmccrbeanxgxamcssabxegeicaocmrmanxgxamolcrcergeimcclsxronxgxamsscrmclgeimcclsxmenxgxamrceerargeialbserebnxgxamccrrssogeimcclsxaonxgxamsxsxllxgeicxbmsbxcnxgxamrcaxocmgeimrblxebenxgxamselmborgeimcclsxconxgxamrcraoxsgeirbabxabbnxgxamrescroogeimcclsxacnxgxamsscrmclgeicmmsxaeenxgxamcmrmsrmgeialbsereanxgxamsoeabscgeicaxsscmbnxgxamsosomemgeimcclosconxgxamrcremlrgeimcclsoeonxgxamrcraoxsgeimcclsxlcnxgxamrceerargeimcclossbnxgxamcscxaesgeimcclsxscnxgxamsmoooeegeimcclsxlenxgxamcbrorxbgeimaecseaenxgxamrcremlrgeimaecsxcbnxgxamsmoooeegeimcclsxoanxgxamclrbcelgeimcclsxlbnxgxamcrbalrageimccloscanxgxamrceerargeiclsmrbsonxgxamsmmrbmbgeiclsmarsenxgxamsmmrbmbgeiccmmllebnxgxamclarlmmgeimcclsxsbnxgxamrcremlrgeiclsmrbxonxgxamsbebceegeiclsmrbxcnxgxamsbebceegeiclsmarscnxgxamsbebceegeiccmmlmlcnxgxamsbebceegeiclsmarrenxgxamsbebceegeicaormbaonxgxamsbxxbsrgeicaormlrenxgxamcememscgeimcclsxlonxgxamcsmlmxcgeimrblelronxgxamsbremaegeimaecsxobnxgxamsbremaegeiclsmrbrcnxgxamsbroemmgeiclsmrraanxgxamclsslaegeiclsmrmxbnxgxamsbroemmgeimccloscenxgxamrcraoxsgeimcclsxxonxgxamslescrogeimrblelxbnxgxamslescrogeimcclsoeenxgxamclrbcelgeimrblelmonxgxamcxcrasxgeimrbleloenxgxamcxcrasxgeiclsmrrmanxgxamcxabcxbgeiclsmrbeonxgxamcxabcxbgeiclsmrrcenxgxamcxabcxbgeiclsmrmxanxgxamcxabcxbgeiclsmrbxenxgxamcxabcxbgeiclsmaroonxgxamcxabcxbgeialbserxenxgxamcosraregeimcclsxsenxgxamrcraoxsgeimcclsxlanxgxamcblrlbcgeiccmmlleanxgxamccrrssogeicaormlabnxgxamcrllsmageicaormlconxgxamcrllsmageiclsmarsonxgxamclsslaegeiclsmrmlbnxgxamclsslaegeiclsmrmocnxgxamclsslaegeiccmmllecnxgxamclsslaegeimcclsxcanxgxamrceerscgeimrblelcenxgxamclrbcelgeimaecsxrcnxgxamclrbcelgeialbserxonxgxamclarlmmgeimcclosscnxgxamrceerscgeimaecobronxgxamrescroogeimaecobeenxgxamrescroogeimcclosccnxgxamrescroogeimaecoboonxgxamrescroogeimrblxelenxgxamrescroogeimesoasbanxgxamrsboxccgxcceimxesoxcbnxgxamrsboxccgxcceialrexeoonxgxamrsbsbsagxcceialrexexbnxgxamrsbsbsagxcceimblrcssonxgxamrsbmosegxcceimblrcsscnxgxamrsbmosegxcceimxlbmxbbnxgxamrsbbexbgxcceimbbcemobncgxamrsbbexlgxcceimaoobbebnxgxamrsbbexlgxcceimxlbmoscnogxamrslosssgxcceimbsblroanxegxamrslosssgxcceixaoosscrnxgxamrslcexrgxcceicmarxbbonsgxamrslcexrgxcceimbrscsxcnsgxamrslaersgxcceimcssmlrcnsgxamrslamrrgxcceimxlbalscnxgxamrslamrrgxcceimblelambnxgxamrslamrrgxcceimaooloranxgxamrslboacgxcceimclsaoxbncgxamrslboacgxcceimlxocxoanogxamrceerscgxcceimbleabcanogxamrceerscgxcceiceecmorsnxgxamrceerscgxcceixaoossalnxgxamrceerargxcceimxlbmosenogxamrceerargxcceimxlbmosonogxamrceeraagxcceialaroxrcnxgxamrceeraagxcceimeembescnogxamrcxorsmgxcceimsacexoonxgxamrcxbbmsgxcceimeembecenxgxamrcxbbmsgxcceimeembesonxgxamrcoxcmagxcceimxeemblenogxamrcoxcmagxcceimcssmlrenogxamrcoxcbegxcceimxeemleonogxamrcoxcbegxcceimblraeabnsgxamrcooeelgxcceimrmaobxanogxamrcooeelgxcceimxlbmxlcnogxamrcoscrlgxcceimaoolslanxgxamrcobllogxcceirarrrcaenxgxamrcceorxgxcceimexexabbnxgxamrccrbsogxcceimbscxmxanxgxamrccarblgxcceimxlbmosanogxamrccmecbgxcceicxmecmcanxgxamrccmecbgxcceimcssmlronsgxamrcresmegxcceimrbxmxmanxgxamrcremlrgxcceimaecsxccnxgxamrcremlrgeimocbmmmbnxgxamrcrxblmgxcceimocbmmacnxgxamrcrxblmgxcceimocbmmaanxgxamrcrxblmgxcceimrxccosanxgxamrcrolmegxcceimrxccosenxgxamrcrolmegxcceimrxccoscnxgxamrcrolmegxcceimxlbmoconogxamrcraoxsgxcceimxeoxsacnogxamrcraoxsgxcceimlxbaxlonxgxamrcraoxsgeimxlbalsbnxgxamrcrblsagxcceimlxbaxbanxgxamrcaxocmgeimxlbmxlenxgxamrcaxocmgxcce; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C79186186%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C71987190%7C100644%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C71021364%7C110382%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C41873814%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C23975187%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:07 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eeca9de144128804a77f65ba394b3fa8
8739f1b6590264e9850d84a427c8b52f2ac16dd1
875ffe96979aad0ec29ff7feba6bf0134e8ae18a14b8b3d91436255ad39ae096
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "875FFE96979AAD0EC29FF7FEBA6BF0134E8AE18A14B8B3D91436255AD39AE096"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3304
Expires: Fri, 03 Feb 2023 22:49:11 GMT
Date: Fri, 03 Feb 2023 21:54:07 GMT
Connection: keep-alive
d1nubxdgom3wqt.cloudfront.net/ZVlUzazg1Ol0NByI8V1YBY20GWQpwP0AEViZocAVXBCZ0B1IGPH0oSHAhSQ8FZnNfClYxaBUOVjVoAk1ZMjcOXx4iJVwABSM7Vw5ePztWDx4jNA4GVyw8XwdZc2d1XhZmcAFbECE8XQ9XISYWWQg4IRZZCGdlHVsdZRcWWQghPF1dDHNmcU4KZi0FXx1lFx-ZZCCQjFlh5Z2UGRQh/cAFbXzM2WAQdZBMBWwlmZQJbCXNnAw1RJDBVBEBzZ3VaCGN7A01Na2Q
143.204.42.190200 OK 363 B URL HTTP/1.1 d1nubxdgom3wqt.cloudfront.net/ZVlUzazg1Ol0NByI8V1YBY20GWQpwP0AEViZocAVXBCZ0B1IGPH0oSHAhSQ8FZnNfClYxaBUOVjVoAk1ZMjcOXx4iJVwABSM7Vw5ePztWDx4jNA4GVyw8XwdZc2d1XhZmcAFbECE8XQ9XISYWWQg4IRZZCGdlHVsdZRcWWQghPF1dDHNmcU4KZi0FXx1lFx-ZZCCQjFlh5Z2UGRQh/cAFbXzM2WAQdZBMBWwlmZQJbCXNnAw1RJDBVBEBzZ3VaCGN7A01Na2Q
IP 143.204.42.190:0
File type ASCII text, with very long lines (457), with no line terminators
Hash eefc84120cbf1e74e6cd856aca8b6e2a
97dbcf46fcad543e5f509c6cebe480b5b0d18c14
ca87d9b1f3fd6c8c4f60efa2f49a163593978bf015c0b5a6f604376e0437037e
GET /ZVlUzazg1Ol0NByI8V1YBY20GWQpwP0AEViZocAVXBCZ0B1IGPH0oSHAhSQ8FZnNfClYxaBUOVjVoAk1ZMjcOXx4iJVwABSM7Vw5ePztWDx4jNA4GVyw8XwdZc2d1XhZmcAFbECE8XQ9XISYWWQg4IRZZCGdlHVsdZRcWWQghPF1dDHNmcU4KZi0FXx1lFx-ZZCCQjFlh5Z2UGRQh/cAFbXzM2WAQdZBMBWwlmZQJbCXNnAw1RJDBVBEBzZ3VaCGN7A01Na2Q HTTP/1.1
Host: d1nubxdgom3wqt.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wecouldle.com/
HTTP/1.1 200 OK
Content-Length: 363
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:07 GMT
access-control-allow-origin: *
Cache-Control: max-age=31556926
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8M4TIgEaq2EAvFwgeQKCoP7DHcpw8Z6qp11e1qefBjqTUVt7xS3WyA==
syndication.realsrv.com/v1/api.php
95.211.229.248200 OK 2.8 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (5754), with no line terminators
Hash a07ae554797d8e167819f701ccbacaec
d3bf96c96ba222a5a8346eb2ac7ea27e27b2b264
a962a61496db82502b3b675641fba6a2fb67b1a5eb21155cb7ad934cda333e0a
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 334
Origin: http://hegdcrxavrtk.cdnvideo3.com
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://hegdcrxavrtk.cdnvideo3.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263dd827fa2f536.428531754256397595%22%3B%7D; expires=Sun, 02-Feb-2025 21:54:07 GMT; Max-Age=63072000; path=/; domain=realsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.realsrv.com/v1/api.php
95.211.229.248200 OK 2.8 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (6148), with no line terminators
Hash 97ce47af0fbf1099fed335c003bf50b7
c5e660e1c0360ff9116cf731c15fbf2c08a01880
c14c47765f71fd5a66a95f4ea957d1d4b8230fc4c272f054cd54580f8eebd70f
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 334
Origin: http://hegdcrxavrtk.cdnvideo3.com
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://hegdcrxavrtk.cdnvideo3.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263dd827fa32209.371680523542570373%22%3B%7D; expires=Sun, 02-Feb-2025 21:54:07 GMT; Max-Age=63072000; path=/; domain=realsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
friendshipmale.com/sfp.js
172.64.203.23200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 172.64.203.23:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: d89326e5543cd1c484a3fd62689b3572
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Fri, 03 Feb 2023 21:54:07 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5o57Zuy2HTvy54ZKFx2Ike34j1cPmsnP2F6ItB2007K7WtTB8AFe6J%2BoTxkNcKta%2Fm9Ay5J4RzC6uOoqBRscVYNV2tbAgekNgmFZWjkd87mtS4ujaxI%2FbkxDnmHIX%2BXp9MypzE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793e673e2c2e71d4-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
d3d54j7si4woql.cloudfront.net/edllxTTUVNh8rCgIwFXAMQ2FEfwRQMwIiWwZkHRRBODIzLAczNykYeQEfVzlPEmRBa1kXNxZwExM3EnAEUDgVLwhCfwU9Wh1kBzRMFD8YOFMcNlc4VEs0HjdcGjUQaAcwbF99EERpWTpcGD0eOkZTa0EjQVNrQXwFWGlUfndTa0E6XBhvRWgGNHxDfU1AbV-R+d1NrQT9DU2owfAVDd0FkEERpFihWHTZUf3NEaUB9BUdpQGgHRj8YP1AQNgloBzBoQXgbRn8EcAQ
143.204.42.146200 OK 469 B URL HTTP/1.1 d3d54j7si4woql.cloudfront.net/edllxTTUVNh8rCgIwFXAMQ2FEfwRQMwIiWwZkHRRBODIzLAczNykYeQEfVzlPEmRBa1kXNxZwExM3EnAEUDgVLwhCfwU9Wh1kBzRMFD8YOFMcNlc4VEs0HjdcGjUQaAcwbF99EERpWTpcGD0eOkZTa0EjQVNrQXwFWGlUfndTa0E6XBhvRWgGNHxDfU1AbV-R+d1NrQT9DU2owfAVDd0FkEERpFihWHTZUf3NEaUB9BUdpQGgHRj8YP1AQNgloBzBoQXgbRn8EcAQ
IP 143.204.42.146:0
File type ASCII text, with very long lines (651), with no line terminators
Hash 653d9410e940fde3c97e42b31f6e5de6
7abf8590bc8d73e9b4ff4ee04863c58549fdfd9c
416119ab42b68ce1abf13e8dd7e47fb87bd4ff18c49a7d447dc113f7903de172
GET /edllxTTUVNh8rCgIwFXAMQ2FEfwRQMwIiWwZkHRRBODIzLAczNykYeQEfVzlPEmRBa1kXNxZwExM3EnAEUDgVLwhCfwU9Wh1kBzRMFD8YOFMcNlc4VEs0HjdcGjUQaAcwbF99EERpWTpcGD0eOkZTa0EjQVNrQXwFWGlUfndTa0E6XBhvRWgGNHxDfU1AbV-R+d1NrQT9DU2owfAVDd0FkEERpFihWHTZUf3NEaUB9BUdpQGgHRj8YP1AQNgloBzBoQXgbRn8EcAQ HTTP/1.1
Host: d3d54j7si4woql.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wecouldle.com/
HTTP/1.1 200 OK
Content-Length: 469
Connection: keep-alive
Date: Fri, 03 Feb 2023 21:54:07 GMT
access-control-allow-origin: *
Cache-Control: max-age=31556926
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ExATVjFT7JZx4mAb0NYcaa0w-m-IurQAxiF7mZ7wCw-wD8gpl-peXw==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3217
Cache-Control: max-age=125684
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:07 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:48:51 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
rvmessages.top/feed/?zid=4101&v=2&h=27549197310000&ver=1&cnt=1
78.140.187.215200 OK 661 B URL HTTP/2 rvmessages.top/feed/?zid=4101&v=2&h=27549197310000&ver=1&cnt=1
IP 78.140.187.215:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (652)
Hash 278e74c3ca6944320febaac0baf2dd66
d6745fd869d91b02decac9e3ba3cf89ce0f3ea2b
0c7ddd69014859357e89d0f948b1ef641070dbae8f63a3c0d20b966624986907
GET /feed/?zid=4101&v=2&h=27549197310000&ver=1&cnt=1 HTTP/1.1
Host: rvmessages.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: application/json
content-length: 661
set-cookie: _trd_=a8be247e042ec8; Expires=Sat, 03-Feb-24 21:54:07 GMT; Domain=rvmessages.top; Path=/; Secure; SameSite=None
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1636031?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
135.181.208.216200 OK 711 B URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1636031?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (463)
Hash a06b560d9fa77f62d5c5e80dc3a311e0
44adcb3f272fa144e49d5b84445868a0d8092a15
d8f431671e0084c947d114b4bbbb2e6bc8a8ecdb2d92abb376a7f44d25c27a2f
GET /api/spots/16958644255045169095/1636031?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.videojav.com
Cache-Control: private
Content-Encoding: gzip
hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1635938?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
135.181.208.216200 OK 103 kB URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1635938?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Size 103 kB (102949 bytes)
Hash 3f14d3aeb9bd29228d192bbc90247d89
e58d762a58112f64c6bf48f2c28bdceb616f604e
0ea88c733361afc526bcd229853b41cd82e6562ca4624ad3d5358f0bdc31e72e
GET /api/spots/16958644255045169095/1635938?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.videojav.com
Cache-Control: private
Content-Encoding: gzip
banquetunarmedgrater.com/advertisers.js
173.233.137.36200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bc957a0e9387fb778bce2ee5321ca9f3
Strict-Transport-Security: max-age=0; includeSubdomains
hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1636043?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
135.181.208.216200 OK 528 B URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/api/spots/16958644255045169095/1636043?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
File type XML 1.0 document text\012- XML document, ASCII text
Hash 31dd78edbef87d5b26f962ab3d0842ed
a584e67ea1868e2cc7d4da9cb27eb21d650f3b84
d601e9b3508a1a6c58fc95175d14dab6b944f640043a792c21d08ec8e9c136f8
GET /api/spots/16958644255045169095/1636043?fill=0&kw=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:07 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://www.videojav.com
Cache-Control: private
Content-Encoding: gzip
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash d92eec2d55b46172a15a99fad28b8d8d
3631b4cdd3f97ab492333a08b15c986144e9c488
0b7e4e5355f6f9b35fcc8414ab441bbc3644e7320dfef3ecb10caef5f2122e28
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2Pa0oDQRCEr+IFdujnPPJb/ypEcoBxZzeKJCtRQoQ6vLMbcHoeRdNFfSMkOpAMpA8cd247SigcCgWTwG54ftnDGF/L5XxcwricEFNMpUCUUxJkKjknmIqbE5xyP5JizkhccixG6FtBvcTVbFWBiM3ZkDKeDnscXh97s3ARMITQ7zV4ldv8bXXXOGmz2rQlsayStRG3ludG9c1Nu4nwPh3beLnV6+XnM4ztfP1o06IbeKeTqAQmiitGYI1pzdvY7jXw9vRF2FT9/j2PwP/AnR++uTqt9c8xkN1TtWmmMUaP1HpSmqu4UBUqTf4AEuOZdWgBAAA=
95.211.229.248200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2Pa0oDQRCEr+IFdujnPPJb/ypEcoBxZzeKJCtRQoQ6vLMbcHoeRdNFfSMkOpAMpA8cd247SigcCgWTwG54ftnDGF/L5XxcwricEFNMpUCUUxJkKjknmIqbE5xyP5JizkhccixG6FtBvcTVbFWBiM3ZkDKeDnscXh97s3ARMITQ7zV4ldv8bXXXOGmz2rQlsayStRG3ludG9c1Nu4nwPh3beLnV6+XnM4ztfP1o06IbeKeTqAQmiitGYI1pzdvY7jXw9vRF2FT9/j2PwP/AnR++uTqt9c8xkN1TtWmmMUaP1HpSmqu4UBUqTf4AEuOZdWgBAAA=
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2Pa0oDQRCEr+IFdujnPPJb/ypEcoBxZzeKJCtRQoQ6vLMbcHoeRdNFfSMkOpAMpA8cd247SigcCgWTwG54ftnDGF/L5XxcwricEFNMpUCUUxJkKjknmIqbE5xyP5JizkhccixG6FtBvcTVbFWBiM3ZkDKeDnscXh97s3ARMITQ7zV4ldv8bXXXOGmz2rQlsayStRG3ludG9c1Nu4nwPh3beLnV6+XnM4ztfP1o06IbeKeTqAQmiitGYI1pzdvY7jXw9vRF2FT9/j2PwP/AnR++uTqt9c8xkN1TtWmmMUaP1HpSmqu4UBUqTf4AEuOZdWgBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://hegdcrxavrtk.cdnvideo3.com
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://hegdcrxavrtk.cdnvideo3.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Sun, 02 Feb 2025 21:54:08 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg
185.76.9.26200 OK 26 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 314bcd4331908cbfa418f46b4cad7cdc
e6b37a342b7f9f52955204fb467a456d07cdbd4a
af1239a1443d757bbd7ffa6bee10752a848ba47b381038563ed0e9c0dbe33d48
GET /library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: image/jpeg
Content-Length: 26414
Connection: keep-alive
Last-Modified: Tue, 23 Mar 2021 10:37:35 GMT
ETag: "6059c4ef-672e"
Expires: Fri, 30 Jun 2023 11:23:20 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195258
Server: CDN77-Turbo
X-Robots-Tag: noindex, follow
X-77-NZT: AblMCRRaF9//RuUeAQ
X-77-NZT-Ray: af5856307cae39968082dd639f85d505
X-Cache: HIT
X-Age: 18801990
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
s3t3d2y8.afcdn.net/library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg
185.76.9.26200 OK 22 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash d4b9732fd542e3a185a10dd918050880
69de0359a701f5e50de85549f099c8b5332ee52c
8de3226c3deb48795f20ac0c838efafee55911dbd9d1704046e6366223eb39ec
GET /library/676799/69de0359a701f5e50de85549f099c8b5332ee52c.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: image/jpeg
Content-Length: 22261
Connection: keep-alive
Last-Modified: Mon, 24 Jan 2022 19:06:03 GMT
ETag: "61eef89b-56f5"
Expires: Fri, 30 Jun 2023 18:49:17 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195261
Server: CDN77-Turbo
X-Robots-Tag: noindex, follow
X-77-NZT: AblMCRSDa9T/Q+UeAQ
X-77-NZT-Ray: af5856307cae39968082dd6327032107
X-Cache: HIT
X-Age: 18801987
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDQQx8FV+gR752k/hb/ypU+gDXvbsqYk+qlAp5eHMruGE3Q5jZmRAQ74B2wHdY74vcg4bj4DAIDVgknp73IRif6+V8Woe2fkTVqu5BjKoUBm6mIUxFkl7A8pJWs1B0U0wgEByQRYVFNjQAoFTWUIvHwz4OLw85dHQKDILIdzPeYOffNvUMVWSZiRYka2A4Lz5yM2pH94nGFEG8zqepXW7j9fL9PrTpfH2b5pV7cIhClSEQto/SD7na5tez/dUOe8sD0dH49XNuEf8Ett5KV2VayeUw87JLUzliq+5cximjVaOJlqMpgP4ClpHmmmgBAAA=
95.211.229.248200 OK 183 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDQQx8FV+gR752k/hb/ypU+gDXvbsqYk+qlAp5eHMruGE3Q5jZmRAQ74B2wHdY74vcg4bj4DAIDVgknp73IRif6+V8Woe2fkTVqu5BjKoUBm6mIUxFkl7A8pJWs1B0U0wgEByQRYVFNjQAoFTWUIvHwz4OLw85dHQKDILIdzPeYOffNvUMVWSZiRYka2A4Lz5yM2pH94nGFEG8zqepXW7j9fL9PrTpfH2b5pV7cIhClSEQto/SD7na5tez/dUOe8sD0dH49XNuEf8Ett5KV2VayeUw87JLUzliq+5cximjVaOJlqMpgP4ClpHmmmgBAAA=
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 51e4e44bd7dde9843433580c799d31a5
b51384fc92597b880b5a35d673c1fa77cc675a1d
fcd0619d8b3148ea5d1dae5682e5bb283863f103f683685a215265b0b58634c2
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1P7UoDQQx8FV+gR752k/hb/ypU+gDXvbsqYk+qlAp5eHMruGE3Q5jZmRAQ74B2wHdY74vcg4bj4DAIDVgknp73IRif6+V8Woe2fkTVqu5BjKoUBm6mIUxFkl7A8pJWs1B0U0wgEByQRYVFNjQAoFTWUIvHwz4OLw85dHQKDILIdzPeYOffNvUMVWSZiRYka2A4Lz5yM2pH94nGFEG8zqepXW7j9fL9PrTpfH2b5pV7cIhClSEQto/SD7na5tez/dUOe8sD0dH49XNuEf8Ett5KV2VayeUw87JLUzliq+5cximjVaOJlqMpgP4ClpHmmmgBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://hegdcrxavrtk.cdnvideo3.com
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://hegdcrxavrtk.cdnvideo3.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Sun, 02 Feb 2025 21:54:08 GMT; path=/; domain=.realsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
rvmessages.top/s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21
78.140.187.215302 Found 158 B URL HTTP/2 rvmessages.top/s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21
IP 78.140.187.215:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff800f7c0fbcc0a1b3a01222155d46a
33555b5351d9740ef0f943c7a5aa6282601eadf9
39c7f77e186fa5ff07bd1bf2bb39281a6778e5b7cda6b72e08da6a7a688dd8e3
GET /s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21 HTTP/1.1
Host: rvmessages.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: _trd_=a8be247e042ec8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: text/html
content-length: 158
location: https://static.pixinform.com/65/6547/1666704755374__icon.jpg
set-cookie: f4LdY-TnfAAAAAAA_img=1; Expires=Sat, 04-Feb-23 03:54:08 GMT; Domain=newsinform.net; Path=/
_trd_=a8be247e042ec8; Expires=Sat, 03-Feb-24 21:54:08 GMT; Domain=rvmessages.top; Path=/; Secure; SameSite=None
_uqt2745136324=1; Expires=Sat, 04-Feb-23 00:00:00 GMT; Domain=rvmessages.top; Path=/; Secure; SameSite=None
_uqp3268470317=1; Expires=Sat, 04-Feb-23 00:00:00 GMT; Domain=rvmessages.top; Path=/; Secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/761560/aad6e3fccb3e5150198cfc9d5a3ff7ddb8930bef.webp
185.76.9.26200 OK 10 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/761560/aad6e3fccb3e5150198cfc9d5a3ff7ddb8930bef.webp
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3165fff4442f5a2a408edbf2e0748f0c
aad6e3fccb3e5150198cfc9d5a3ff7ddb8930bef
79a4957d7933a92908a173497368b9f4a7876e09e89491a429fc8f290f3ed169
GET /library/761560/aad6e3fccb3e5150198cfc9d5a3ff7ddb8930bef.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/webp
content-length: 10282
last-modified: Thu, 03 Mar 2022 12:22:54 GMT
etag: "6220b31e-282a"
expires: Fri, 15 Sep 2023 09:35:51 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
x-accel-expires: @1694771310
server: CDN77-Turbo
x-77-nzt: AblMCRTNs+f/ko26AA
x-77-nzt-ray: af58563031b2f0968082dd63e1616e0d
x-cache: HIT
x-age: 12225938
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?idzone=4646908
95.211.229.248200 OK 2.7 kB URL HTTP/1.1 syndication.realsrv.com/splash.php?idzone=4646908
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1562)
Hash d17af356bb170ece6614443fcd6d6fe4
8b176b614488db76cf7ba7a2ef37eff9515fdc92
18853218badc7e55e19ad4c42b0225c9f1114878a65573b0bb8b8e5875b77e6e
GET /splash.php?idzone=4646908 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A31%3A%2263dd827faa38f8.7467124472778823%22%3B%7D; impressions=oslmrxbrnxgxamrcraoxsgeicxbmsbcenxgxamrcremlrgeimmccrbebnxgxamcbexxbmgeioslmrxbmnxgxamrcaxocmgeicxbmsbocnxgxamrcraoxsgeimmccrlaonxgxamrcremlrgeimmccrlacnxgxamcmlarclgeicxbmsboenxgxamrscrmeogeioslmrxlrnxgxamslescrogeimmccrbxenxgxamrescroogeislsaroornxgxamccolacbgeioslmroemnxgxamrcremlrgeioslmrxlsnxgxamroamsoegeicmmsxrbonxgxamsoeamlmgeimmccrlaenxgxamrsxxxmrgeimmccrbeanxgxamcssabxegeicaocmrmanxgxamolcrcergeimcclsxronxgxamsscrmclgeimcclsxmenxgxamrceerargeialbserebnxgxamccrrssogeimcclsxaonxgxamsxsxllxgeicxbmsbxcnxgxamrcaxocmgeimrblxebenxgxamselmborgeimcclsxconxgxamrcraoxsgeirbabxabbnxgxamrescroogeimcclsxacnxgxamsscrmclgeicmmsxaeenxgxamcmrmsrmgeialbsereanxgxamsoeabscgeicaxsscmbnxgxamsosomemgeimcclosconxgxamrcremlrgeimcclsoeonxgxamrcraoxsgeimcclsxlcnxgxamrceerargeimcclossbnxgxamcscxaesgeimcclsxscnxgxamsmoooeegeimcclsxlenxgxamcbrorxbgeimaecseaenxgxamrcremlrgeimaecsxcbnxgxamsmoooeegeimcclsxoanxgxamclrbcelgeimcclsxlbnxgxamcrbalrageimccloscanxgxamrceerargeiclsmrbsonxgxamsmmrbmbgeiclsmarsenxgxamsmmrbmbgeiccmmllebnxgxamclarlmmgeimcclsxsbnxgxamrcremlrgeiclsmrbxonxgxamsbebceegeiclsmrbxcnxgxamsbebceegeiclsmarscnxgxamsbebceegeiccmmlmlcnxgxamsbebceegeiclsmarrenxgxamsbebceegeicaormbaonxgxamsbxxbsrgeicaormlrenxgxamcememscgeimcclsxlonxgxamcsmlmxcgeimrblelronxgxamsbremaegeimaecsxobnxgxamsbremaegeiclsmrbrcnxgxamsbroemmgeiclsmrraanxgxamclsslaegeiclsmrmxbnxgxamsbroemmgeimccloscenxgxamrcraoxsgeimcclsxxonxgxamslescrogeimrblelxbnxgxamslescrogeimcclsoeenxgxamclrbcelgeimrblelmonxgxamcxcrasxgeimrbleloenxgxamcxcrasxgeiclsmrrmanxgxamcxabcxbgeiclsmrbeonxgxamcxabcxbgeiclsmrrcenxgxamcxabcxbgeiclsmrmxanxgxamcxabcxbgeiclsmrbxenxgxamcxabcxbgeiclsmaroonxgxamcxabcxbgeialbserxenxgxamcosraregeimcclsxsenxgxamrcraoxsgeimcclsxlanxgxamcblrlbcgeiccmmlleanxgxamccrrssogeicaormlabnxgxamcrllsmageicaormlconxgxamcrllsmageiclsmarsonxgxamclsslaegeiclsmrmlbnxgxamclsslaegeiclsmrmocnxgxamclsslaegeiccmmllecnxgxamclsslaegeimcclsxcanxgxamrceerscgeimrblelcenxgxamclrbcelgeimaecsxrcnxgxamclrbcelgeialbserxonxgxamclarlmmgeimcclosscnxgxamrceerscgeimaecobronxgxamrescroogeimaecobeenxgxamrescroogeimcclosccnxgxamrescroogeimaecoboonxgxamrescroogeimrblxelenxgxamrescroogeimesoasbanxgxamrsboxccgxcceimxesoxcbnxgxamrsboxccgxcceialrexeoonxgxamrsbsbsagxcceialrexexbnxgxamrsbsbsagxcceimblrcssonxgxamrsbmosegxcceimblrcsscnxgxamrsbmosegxcceimxlbmxbbnxgxamrsbbexbgxcceimbbcemobncgxamrsbbexlgxcceimaoobbebnxgxamrsbbexlgxcceimxlbmoscnogxamrslosssgxcceimbsblroanxegxamrslosssgxcceixaoosscrnxgxamrslcexrgxcceicmarxbbonsgxamrslcexrgxcceimbrscsxcnsgxamrslaersgxcceimcssmlrcnsgxamrslamrrgxcceimxlbalscnxgxamrslamrrgxcceimblelambnxgxamrslamrrgxcceimaooloranxgxamrslboacgxcceimclsaoxbncgxamrslboacgxcceimlxocxoanogxamrceerscgxcceimbleabcanogxamrceerscgxcceiceecmorsnxgxamrceerscgxcceixaoossalnxgxamrceerargxcceimxlbmosenogxamrceerargxcceimxlbmosonogxamrceeraagxcceialaroxrcnxgxamrceeraagxcceimeembescnogxamrcxorsmgxcceimsacexoonxgxamrcxbbmsgxcceimeembecenxgxamrcxbbmsgxcceimeembesonxgxamrcoxcmagxcceimxeemblenogxamrcoxcmagxcceimcssmlrenogxamrcoxcbegxcceimxeemleonogxamrcoxcbegxcceimblraeabnsgxamrcooeelgxcceimrmaobxanogxamrcooeelgxcceimxlbmxlcnogxamrcoscrlgxcceimaoolslanxgxamrcobllogxcceirarrrcaenxgxamrcceorxgxcceimexexabbnxgxamrccrbsogxcceimbscxmxanxgxamrccarblgxcceimxlbmosanogxamrccmecbgxcceicxmecmcanxgxamrccmecbgxcceimcssmlronsgxamrcresmegxcceimrbxmxmanxgxamrcremlrgxcceimaecsxccnxgxamrcremlrgeimocbmmmbnxgxamrcrxblmgxcceimocbmmacnxgxamrcrxblmgxcceimocbmmaanxgxamrcrxblmgxcceimrxccosanxgxamrcrolmegxcceimrxccosenxgxamrcrolmegxcceimrxccoscnxgxamrcrolmegxcceimxlbmoconogxamrcraoxsgxcceimxeoxsacnogxamrcraoxsgxcceimlxbaxlonxgxamrcraoxsgeimxlbalsbnxgxamrcrblsagxcceimlxbaxbanxgxamrcaxocmgeimxlbmxlenxgxamrcaxocmgxcce; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C23975187%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A31%3A%2263dd827faa38f8.7467124472778823%22%3B%7D; expires=Sun, 02 Feb 2025 21:54:08 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C4348472%7C23975187%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7Cfa14e04d6d24d7684c7d5bb08d862024%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%2C%22tag-video%22%3A%22v3%7C%7CNOR%7C4646908%7C59504696%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C0%7C0%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C63dd827faa38f8.7467124472778823%7C%7C0%7Cvideojav.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 04 Feb 2023 21:54:08 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: http://www.videojav.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/e4fa134b450d41ad3b8131c3a33708e50608df20.webp
185.76.9.26200 OK 8.6 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/676799/e4fa134b450d41ad3b8131c3a33708e50608df20.webp
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 83cf5cafa169ae93cbbbb7d55092815e
e4fa134b450d41ad3b8131c3a33708e50608df20
2b78ef12de98ab7202613f761506300a44cd1f646d484e6e0d58db49fd1ea00d
GET /library/676799/e4fa134b450d41ad3b8131c3a33708e50608df20.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/webp
content-length: 8626
last-modified: Wed, 10 Nov 2021 17:06:19 GMT
etag: "618bfc0b-21b2"
expires: Tue, 24 Oct 2023 22:51:08 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
x-accel-expires: @1698640472
server: CDN77-Turbo
x-77-nzt: AblMCRTVTZP/qIN/AA
x-77-nzt-ray: af58563031b2f0968082dd636447030e
x-cache: HIT
x-age: 8356776
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/358224/f68f7ce0cc9357a25ec4b2d470117dee961ec564.webp
185.76.9.26200 OK 6.2 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/358224/f68f7ce0cc9357a25ec4b2d470117dee961ec564.webp
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 29481daba6e53a6ceecf00673bece316
f68f7ce0cc9357a25ec4b2d470117dee961ec564
7ef8e3b5ebcffb40bbc2a12bed2d851fbeed632b970bbf756b96df4ba336c167
GET /library/358224/f68f7ce0cc9357a25ec4b2d470117dee961ec564.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/webp
content-length: 6154
last-modified: Mon, 23 Jan 2023 17:05:17 GMT
etag: "63cebe4d-180a"
expires: Tue, 23 Jan 2024 17:11:45 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
x-accel-expires: @1706722647
server: CDN77-Turbo
x-77-nzt: AblMCRT1lzn/qTAEAA
x-77-nzt-ray: af58563031b2f0968082dd6355d23d0e
x-cache: HIT
x-age: 274601
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp
185.76.9.26200 OK 6.8 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac7f0a83b67d9661811c62d68cdd2074
26c94b1b9322fb1f2558083727af47e58151007e
24c3c958813cf663205712c9a41003d3c5f304d3a90301d63847ab46047fc66f
GET /library/623611/26c94b1b9322fb1f2558083727af47e58151007e.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/webp
content-length: 6782
last-modified: Wed, 03 Nov 2021 19:29:43 GMT
etag: "6182e327-1a7e"
expires: Tue, 24 Oct 2023 13:33:06 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
x-accel-expires: @1702062165
server: CDN77-Turbo
x-77-nzt: AblMCRShEUz/q01LAA
x-77-nzt-ray: af58563031b2f0968082dd6324cb4d0e
x-cache: HIT
x-age: 4935083
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/140058/b69b0ad953e27d2318d3b7783f89b2f03cac130e.webp
185.76.9.26200 OK 9.6 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/140058/b69b0ad953e27d2318d3b7783f89b2f03cac130e.webp
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 070a232d0b0e025bfc65d90c1f5ece91
b69b0ad953e27d2318d3b7783f89b2f03cac130e
bd774d7c7edcc81fd3f49a59ed1ef48868b2531bba2ee9762213e2b023f4c5de
GET /library/140058/b69b0ad953e27d2318d3b7783f89b2f03cac130e.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hegdcrxavrtk.cdnvideo3.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/webp
content-length: 9562
last-modified: Wed, 03 Nov 2021 11:53:34 GMT
etag: "6182783e-255a"
expires: Fri, 30 Jun 2023 11:09:49 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195281
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCRSXhKn/L+UeAQ
x-77-nzt-ray: af58563031b2f0968082dd630a035f0e
x-cache: HIT
x-age: 18801967
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 02ce5b133ccf7308941d753b4327e1f4
89ac58b32e2417eaff44b37faf0fc1a364a4b32f
f9d2be9123cd04fb5ba91168ccf0146ac168ff7dfa42d10da578241d668a449c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3045
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:08 GMT
Last-Modified: Fri, 03 Feb 2023 21:03:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e69146b2b3cc4fedc68b10de5fa1c071
90d9d81bb5513e701edac6b93fea10d0d536e2f1
f3706f157fe37709ef692f56e8bbd7763e372b0a02926ce27892769860f7e9f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:08 GMT
Last-Modified: Fri, 03 Feb 2023 20:14:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c60a627a5cbc914afbd955597f03adc4
c0cb91de4a8439318da22dba758230266a5e9c5f
f1e8e9a72f75c0aad9f3d683536403d78cee9d3d03b2818208c7eab0ec43bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1E8E9A72F75C0AAD9F3D683536403D78CEE9D3D03B2818208C7EAB0EC43BD74"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6629
Expires: Fri, 03 Feb 2023 23:44:37 GMT
Date: Fri, 03 Feb 2023 21:54:08 GMT
Connection: keep-alive
static.pixinform.com/65/6547/1666704755374__icon.jpg
8.254.252.214200 OK 11 kB URL HTTP/2 static.pixinform.com/65/6547/1666704755374__icon.jpg
IP 8.254.252.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2022:07:22 15:00:23], baseline, precision 8, 192x192, components 3\012- data
Hash 345e1b344578f00362d69d3c6125515d
f95ee4b3070b83e15b9b5d4c14990d695ebeec08
b7833aaec96899cde02c2d014442b9ce519ffcb9b16b1cbcee9c56038e0aafd1
GET /65/6547/1666704755374__icon.jpg HTTP/1.1
Host: static.pixinform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: image/jpeg
content-length: 11445
etag: "6357e573-2cb5"
last-modified: Tue, 25 Oct 2022 13:32:35 GMT
server: openresty/1.13.6.2
age: 8756492
accept-ranges: bytes
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOprprultdVdVLTXdW6VzqpbXUzOodTK6V0rpXT1UU0uldK6V0zpXSuldK6Z0rpXTOro22tns4zzot4tjsprsmnppsnssttnoc6VyO9tw.Zoj1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4646908&p1=4581850&skipOffset=00:00:05
104.18.51.106302 Found 0 B URL HTTP/2 go.xlivrdr.com/smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOprprultdVdVLTXdW6VzqpbXUzOodTK6V0rpXT1UU0uldK6V0zpXSuldK6Z0rpXTOro22tns4zzot4tjsprsmnppsnssttnoc6VyO9tw.Zoj1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4646908&p1=4581850&skipOffset=00:00:05
IP 104.18.51.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOprprultdVdVLTXdW6VzqpbXUzOodTK6V0rpXT1UU0uldK6V0zpXSuldK6Z0rpXTOro22tns4zzot4tjsprsmnppsnssttnoc6VyO9tw.Zoj1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4646908&p1=4581850&skipOffset=00:00:05 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 21:54:08 GMT
content-length: 0
location: https://go.xlivrdr.com/api/models/vast?campaignId=165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af&campaignType=smartpop&creativeId=1aa4022af61bfad6ec7c637003dfb79b6edb7465c731eac0e6955245fc823c00&duration=00%3A00%3A30&endpoint=room&iterationId=397613&masterSmartpopId=2683&memberId=ooc4ASOprprultdVdVLTXdW6VzqpbXUzOodTK6V0rpXT1UU0uldK6V0zpXSuldK6Z0rpXTOro22tns4zzot4tjsprsmnppsnssttnoc6VyO9tw.Zoj1D.5zpXSuldK6V0rpXSulcH2A-&p1=4581850&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=3564&sourceId=4646908&tag=-girls%2Findian&userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&variationId=30208&videosList=oil-show11
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=7868025.30208; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCdcdyuoKGiEHEbzYNWwqkWs7scT6; SameSite=None; Secure; path=/; expires=Sat, 04-Feb-23 20:54:08 GMT; HttpOnly
server: cloudflare
cf-ray: 793e67425a8e0b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e69146b2b3cc4fedc68b10de5fa1c071
90d9d81bb5513e701edac6b93fea10d0d536e2f1
f3706f157fe37709ef692f56e8bbd7763e372b0a02926ce27892769860f7e9f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5957
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:08 GMT
Last-Modified: Fri, 03 Feb 2023 20:14:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
hegdcrxavrtk.cdnvideo3.com/api/click/17417997083333143095?kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25&t=5&ab=0&keywords=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&w=1280&h=1024&domain=www.videojav.com&rnd=0.5867075210580885
135.181.208.216200 OK 942 B URL HTTP/2 hegdcrxavrtk.cdnvideo3.com/api/click/17417997083333143095?kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25&t=5&ab=0&keywords=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&w=1280&h=1024&domain=www.videojav.com&rnd=0.5867075210580885
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash 48702ef14307f59c9e9248cfd8318e80
b88b6c8864817e0259f8db08db32ea288c952bbf
94ead3858dc977fb1f25e20cd1b7f24b832445f1bf0f4b34bd35b611060b366c
GET /api/click/17417997083333143095?kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25&t=5&ab=0&keywords=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&w=1280&h=1024&domain=www.videojav.com&rnd=0.5867075210580885 HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: nauid=3ETAEoCyTwlLALDrys3x
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
tsyndicate.com/do2/5cb88775434f4889bb921e0d5254481d/vast?
136.243.43.25200 OK 2.4 kB URL HTTP/2 tsyndicate.com/do2/5cb88775434f4889bb921e0d5254481d/vast?
IP 136.243.43.25:0
ASN #24940 Hetzner Online GmbH
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (5226)
Hash b21bb4f3d9181a52039d67705374dfa8
f83a974092ddd04a0a938da2b3d70d8410fea89b
b3a07b75d06d258d284f3e70a2a04db7dce87f1a22fe0e0a8fbb6128510b49f9
GET /do2/5cb88775434f4889bb921e0d5254481d/vast? HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: http://www.videojav.com
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: dffc662f5fe60f73
set-cookie: ts_uid=3c914dcb-41ef-40b6-a974-e6fc36860e84; expires=Thu, 03 Aug 2023 21:54:08 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
bfq=APeIECNCx5YZMWjMwDHDRhcWIsYU3BLjoYgyE2PYuFGjBo0bNmjg6NJH; expires=Sat, 04 Feb 2023 21:54:08 GMT; domain=.tsyndicate.com; path=/; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 1.4 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 98521266c33d3da4971452d52eccd8c6
49b1359234d4eb7494b3c9c92eec9663ae832799
598855c711e405678da059ab3664205d4c7861d9249490796070f1a7f1e522c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89B7D731D17A2AADEA74386B5CA8DDC92E0E38BA0A8F3E0159A6A8648F2F3306"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2895
Expires: Fri, 03 Feb 2023 22:42:23 GMT
Date: Fri, 03 Feb 2023 21:54:08 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/JOSWRLamYCo
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JOSWRLamYCo
IP 142.250.74.163:0
Hash 3e9bf2fb0e9e10fd3623aa930edc660a
362aa013c42aba964bb4ed37ccb2f0520b2b4d74
7c230af75e7b3b4cfb32c383dfdeab8c1d07bde36320dd91242c3fc643d0e2f4
POST /s/gts1p5/JOSWRLamYCo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
go.xlirdr.com/easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&contentType=video/mp4&no_bb=1
104.18.51.106302 Found 0 B URL HTTP/2 go.xlirdr.com/easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&contentType=video/mp4&no_bb=1
IP 104.18.51.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /easy?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&xhVersion=1&skipOffset=00:00:05&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&contentType=video/mp4&no_bb=1 HTTP/1.1
Host: go.xlirdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 21:54:08 GMT
content-length: 0
location: https://go.xlirdr.com/api/models/vast?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=easylink&contentType=video%2Fmp4&creativeId=1aa4022af61bfad6ec7c637003dfb79b6edb7465c731eac0e6955245fc823c00&duration=00%3A00%3A30&endpoint=room&iterationId=397726&masterSmartpopId=2683&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&no_bb=1&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=5347&tag=-girls%2Findian&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=30208&videosList=oil-show11&xhVersion=1
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=67247758.30208; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCdcdyuoKGiEHEbzYNWwqkWs7scT6; SameSite=None; Secure; path=/; expires=Sat, 04-Feb-23 20:54:08 GMT; HttpOnly
server: cloudflare
cf-ray: 793e67444dcc1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rvmessages.top/s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21
78.140.187.215302 Found 158 B URL HTTP/2 rvmessages.top/s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21
IP 78.140.187.215:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff800f7c0fbcc0a1b3a01222155d46a
33555b5351d9740ef0f943c7a5aa6282601eadf9
39c7f77e186fa5ff07bd1bf2bb39281a6778e5b7cda6b72e08da6a7a688dd8e3
GET /s4/pgo/3-6665/ar7yfxldf3eegacoj4aaaaaa4ttxyae2fjnfwbajdiaaaaowjaaaaaaaaaaa?ver=21 HTTP/1.1
Host: rvmessages.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: _trd_=a8be247e042ec8; _uqt2745136324=1; _uqp3268470317=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/html
content-length: 158
location: https://static.pixinform.com/65/6547/1666704755374__icon.jpg
set-cookie: f4LdY-TnfAAAAAAA_img=1; Expires=Sat, 04-Feb-23 03:54:08 GMT; Domain=newsinform.net; Path=/
_trd_=a8be247e042ec8; Expires=Sat, 03-Feb-24 21:54:08 GMT; Domain=rvmessages.top; Path=/; Secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.pixinform.com/65/6547/1666704755374__icon.jpg
8.254.252.214304 Not Modified 0 B URL HTTP/2 static.pixinform.com/65/6547/1666704755374__icon.jpg
IP 8.254.252.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /65/6547/1666704755374__icon.jpg HTTP/1.1
Host: static.pixinform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 25 Oct 2022 13:32:35 GMT
If-None-Match: "6357e573-2cb5"
TE: trailers
HTTP/2 304 Not Modified
date: Fri, 03 Feb 2023 21:54:08 GMT
etag: "6357e573-2cb5"
last-modified: Tue, 25 Oct 2022 13:32:35 GMT
server: openresty/1.13.6.2
age: 8756492
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/JOSWRLamYCo
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JOSWRLamYCo
IP 142.250.74.163:0
Hash 3e9bf2fb0e9e10fd3623aa930edc660a
362aa013c42aba964bb4ed37ccb2f0520b2b4d74
7c230af75e7b3b4cfb32c383dfdeab8c1d07bde36320dd91242c3fc643d0e2f4
POST /s/gts1p5/JOSWRLamYCo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2928
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:54:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2928
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 21:54:08 GMT
Connection: keep-alive
hegdcrxavrtk.cdnvideo3.com/api/spots/309158?host=www.videojav.com&ev=204&wh=939&ww=1280&uuid=&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25
135.181.208.216200 OK 962 B URL HTTP/2 hegdcrxavrtk.cdnvideo3.com/api/spots/309158?host=www.videojav.com&ev=204&wh=939&ww=1280&uuid=&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
Hash 94fd99087623838c79cede7275728d9c
74f130b40467c48d8170fe9361ab372dc4cf32c6
410829574ef8984f1a4013a29c790a958e611faad736d20bdea3b5ae9cf670b8
GET /api/spots/309158?host=www.videojav.com&ev=204&wh=939&ww=1280&uuid=&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&s1=%25subid1%25 HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=3ETAEoCyTwlLALDrys3x; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84882
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 86054
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
go.xlirdr.com/api/models/vast?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=easylink&contentType=video%2Fmp4&creativeId=1aa4022af61bfad6ec7c637003dfb79b6edb7465c731eac0e6955245fc823c00&duration=00%3A00%3A30&endpoint=room&iterationId=397726&masterSmartpopId=2683&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&no_bb=1&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=5347&tag=-girls%2Findian&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=30208&videosList=oil-show11&xhVersion=1
104.18.51.106200 OK 14 kB URL HTTP/2 go.xlirdr.com/api/models/vast?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=easylink&contentType=video%2Fmp4&creativeId=1aa4022af61bfad6ec7c637003dfb79b6edb7465c731eac0e6955245fc823c00&duration=00%3A00%3A30&endpoint=room&iterationId=397726&masterSmartpopId=2683&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&no_bb=1&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=5347&tag=-girls%2Findian&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=30208&videosList=oil-show11&xhVersion=1
IP 104.18.51.106:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1869), with no line terminators
Hash 5a80f7f71ad71f108a0d99dbb8c16bc6
112a401c49c49af7383b973b95a6e817df2b8eb8
9909c5c217449953a9dbed059304624343faf258bd1ad6cb66563c27b6c838d6
GET /api/models/vast?campaignId=56887531e20ffc8ec4b32f114752cd5e087f0e1a66a28e88fe82ad1f38a4c7c1&campaignType=easylink&contentType=video%2Fmp4&creativeId=1aa4022af61bfad6ec7c637003dfb79b6edb7465c731eac0e6955245fc823c00&duration=00%3A00%3A30&endpoint=room&iterationId=397726&masterSmartpopId=2683&memberId=1792ce14-db6a-4f00-9fca-3b341ea8d566&no_bb=1&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=5347&tag=-girls%2Findian&userId=a29e4fa1023dd45be975c4ab2c3f63fc721842490735020a0d0703eb57f7300d&variationId=30208&videosList=oil-show11&xhVersion=1 HTTP/1.1
Host: go.xlirdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Referer: http://www.videojav.com/
Connection: keep-alive
Cookie: __cflb=02DiuDfsBaY2bRYJiCdcdyuoKGiEHEbzYNWwqkWs7scT6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/xml; charset=utf-8
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793e67449e211bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 86179
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 85205
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 364
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=9800e5fc6ff3aca35add05938f7ac2c8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=9800e5fc6ff3aca35add05938f7ac2c8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=9800e5fc6ff3aca35add05938f7ac2c8&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3ef9fdcca8d3e060f099953b4a94f188
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=81757de1aae7e6aa130b463b81c6956d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=81757de1aae7e6aa130b463b81c6956d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=81757de1aae7e6aa130b463b81c6956d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:08 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bac5860352656b9325be53b15fa31077
Strict-Transport-Security: max-age=0; includeSubdomains
choreinevitable.com/sbar.json?key=9800e5fc6ff3aca35add05938f7ac2c8&uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef%3A1%3A1
192.243.59.13200 OK 4.5 kB URL HTTP/1.1 choreinevitable.com/sbar.json?key=9800e5fc6ff3aca35add05938f7ac2c8&uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef%3A1%3A1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6180), with no line terminators
Hash 278bbe215b4c6e5f4d27c062a5a1cdb5
bf83e4dcb2ef76ed6360b58174fcc7f224446e86
6017fea13e6d4d6088c1520e045f6437ad3f72277965823aae1be8185693e4b7
GET /sbar.json?key=9800e5fc6ff3aca35add05938f7ac2c8&uuid=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef%3A1%3A1 HTTP/1.1
Host: choreinevitable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:09 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://www.videojav.com
Access-Control-Allow-Origin: http://www.videojav.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17371661; expires=Sat, 04 Feb 2023 21:54:08 GMT; secure; SameSite=None
uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1; expires=Fri, 10 Feb 2023 21:54:08 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 04 Feb 2023 21:54:09 GMT; secure; SameSite=None
uncs=1; expires=Sat, 04 Feb 2023 21:54:09 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 04 Feb 2023 21:54:09 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 04 Feb 2023 21:54:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 004f891e682565b2cb70a997db1cfcc3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
choreinevitable.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcMBEFIbISQOCAtxKBJxZm1vYrdCFSEERZQ0aoty4TI7P5wh653VzK7XySm0AuWAqOHEcfM5aQRUqP0DkNCGC4o4xBxQDs0%2FgegZ2bFkeNLue2%2B%2Bd%2Fi%2B772v9rNzQpGxs%2FVPzI6OIjYfVGnl2oaOhcldZe1exadVeqOyoeOFxo1Kb%2FSz3es%2BDar0ncpHkm%2BZ%2BRr1KfWpX1nRVirTmx%2Bj0Mnjll9t0WqjVvWDBnr2%2F73LPDjmQXTPySy0GL6w%2BftTaF4i7jxZlm4rNcm7H3ayiKXGoiuOPo23YpPH6ExLZT2o%2BGgyDeOGhHx%2FCSY%2BmiiA6R6MFCDUQ%2BL95SOMjyY0EXYPL5iGEWSMULyMvFtCRiU0K8HNA2hxSgAusHYbcefRmrE5275A2Qgdkpnnf0PnQzLz7FXEnZ%2BXIt2r3DVRlmoTO%2FRUAd0rodslkuwY6Y4HnR%2BDp%2FehBUHcKaDF2dt%2ByGRN%2BXSuoXhtrhFKOhcGrDYX0EaDtRRtNaUaW6N1Ca1KRLIP5jxko097yJSHLPHQEWcVFrQUpYsqVPV6s8E5r9c5D5oLIhD1RlNRZHzEvY806YNHfXC7i8TuYkt%2FdxrMni4%2Fh81%2Bhdss4IQHlxJ0RYFcEuSOIGcEuSbIU4K8WxyKyNVc8UhELgv9Sa5Ncr0YmLS9zw5N2pYx2U%2FOydWRbd6Ls69gS55VWk1KZaD4glJ1xlk9YELQoFVvqkXGa7wJpwtod2ksdkcPydXXvkSih%2BQS%2BwMhO4aLjsH1FbDsDbB8sFijYJuDRpNiJ37SlXZbWSkTY%2BMqNx0IUyBJZ5Bue%2FvROXl9vMLr712B5Cc3hw8%2Fu%2FZP%2BRDcFkhsgc%2F1bwTtaG9wx%2BTk4I7JHXl6O0l1R%2B%2Bw0XrvpiyVl3%2F8WG7nxorVZdf%2F4X0%2BAkbl43vSpbdYLHTcduSnJS2EtCvGckl%2BWXUbMlzP3OZSZuMsubX%2BwcpqJ7HSOW3iEkyfuq%2FB9ZC8tPfN%2BHDffMtC2xI2K9DJTsgkoE0JnuzCJVP2zhDYaDoTJh7yrBjYWjh9jDRBJKc9Cwu4%2F%2FThtN53e2hbDyx9MD7Xri3QjQqwqA%2BXXR6kiT25%2BWd9HAgjbxBG1jsIIxt9e2Gt02cVGSiqJK3JULVCtcioaKlGK2QtXy6GAfORuiF%2Fdv%2BLfwEAAP%2F%2FAQAA%2F%2F9EfJyAkAQAAA%3D%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 choreinevitable.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcMBEFIbISQOCAtxKBJxZm1vYrdCFSEERZQ0aoty4TI7P5wh653VzK7XySm0AuWAqOHEcfM5aQRUqP0DkNCGC4o4xBxQDs0%2FgegZ2bFkeNLue2%2B%2Bd%2Fi%2B772v9rNzQpGxs%2FVPzI6OIjYfVGnl2oaOhcldZe1exadVeqOyoeOFxo1Kb%2FSz3es%2BDar0ncpHkm%2BZ%2BRr1KfWpX1nRVirTmx%2Bj0Mnjll9t0WqjVvWDBnr2%2F73LPDjmQXTPySy0GL6w%2BftTaF4i7jxZlm4rNcm7H3ayiKXGoiuOPo23YpPH6ExLZT2o%2BGgyDeOGhHx%2FCSY%2BmiiA6R6MFCDUQ%2BL95SOMjyY0EXYPL5iGEWSMULyMvFtCRiU0K8HNA2hxSgAusHYbcefRmrE5275A2Qgdkpnnf0PnQzLz7FXEnZ%2BXIt2r3DVRlmoTO%2FRUAd0rodslkuwY6Y4HnR%2BDp%2FehBUHcKaDF2dt%2ByGRN%2BXSuoXhtrhFKOhcGrDYX0EaDtRRtNaUaW6N1Ca1KRLIP5jxko097yJSHLPHQEWcVFrQUpYsqVPV6s8E5r9c5D5oLIhD1RlNRZHzEvY806YNHfXC7i8TuYkt%2FdxrMni4%2Fh81%2Bhdss4IQHlxJ0RYFcEuSOIGcEuSbIU4K8WxyKyNVc8UhELgv9Sa5Ncr0YmLS9zw5N2pYx2U%2FOydWRbd6Ls69gS55VWk1KZaD4glJ1xlk9YELQoFVvqkXGa7wJpwtod2ksdkcPydXXvkSih%2BQS%2BwMhO4aLjsH1FbDsDbB8sFijYJuDRpNiJ37SlXZbWSkTY%2BMqNx0IUyBJZ5Bue%2FvROXl9vMLr712B5Cc3hw8%2Fu%2FZP%2BRDcFkhsgc%2F1bwTtaG9wx%2BTk4I7JHXl6O0l1R%2B%2Bw0XrvpiyVl3%2F8WG7nxorVZdf%2F4X0%2BAkbl43vSpbdYLHTcduSnJS2EtCvGckl%2BWXUbMlzP3OZSZuMsubX%2BwcpqJ7HSOW3iEkyfuq%2FB9ZC8tPfN%2BHDffMtC2xI2K9DJTsgkoE0JnuzCJVP2zhDYaDoTJh7yrBjYWjh9jDRBJKc9Cwu4%2F%2FThtN53e2hbDyx9MD7Xri3QjQqwqA%2BXXR6kiT25%2BWd9HAgjbxBG1jsIIxt9e2Gt02cVGSiqJK3JULVCtcioaKlGK2QtXy6GAfORuiF%2Fdv%2BLfwEAAP%2F%2FAQAA%2F%2F9EfJyAkAQAAA%3D%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcMBEFIbISQOCAtxKBJxZm1vYrdCFSEERZQ0aoty4TI7P5wh653VzK7XySm0AuWAqOHEcfM5aQRUqP0DkNCGC4o4xBxQDs0%2FgegZ2bFkeNLue2%2B%2Bd%2Fi%2B772v9rNzQpGxs%2FVPzI6OIjYfVGnl2oaOhcldZe1exadVeqOyoeOFxo1Kb%2FSz3es%2BDar0ncpHkm%2BZ%2BRr1KfWpX1nRVirTmx%2Bj0Mnjll9t0WqjVvWDBnr2%2F73LPDjmQXTPySy0GL6w%2BftTaF4i7jxZlm4rNcm7H3ayiKXGoiuOPo23YpPH6ExLZT2o%2BGgyDeOGhHx%2FCSY%2BmiiA6R6MFCDUQ%2BL95SOMjyY0EXYPL5iGEWSMULyMvFtCRiU0K8HNA2hxSgAusHYbcefRmrE5275A2Qgdkpnnf0PnQzLz7FXEnZ%2BXIt2r3DVRlmoTO%2FRUAd0rodslkuwY6Y4HnR%2BDp%2FehBUHcKaDF2dt%2ByGRN%2BXSuoXhtrhFKOhcGrDYX0EaDtRRtNaUaW6N1Ca1KRLIP5jxko097yJSHLPHQEWcVFrQUpYsqVPV6s8E5r9c5D5oLIhD1RlNRZHzEvY806YNHfXC7i8TuYkt%2FdxrMni4%2Fh81%2Bhdss4IQHlxJ0RYFcEuSOIGcEuSbIU4K8WxyKyNVc8UhELgv9Sa5Ncr0YmLS9zw5N2pYx2U%2FOydWRbd6Ls69gS55VWk1KZaD4glJ1xlk9YELQoFVvqkXGa7wJpwtod2ksdkcPydXXvkSih%2BQS%2BwMhO4aLjsH1FbDsDbB8sFijYJuDRpNiJ37SlXZbWSkTY%2BMqNx0IUyBJZ5Bue%2FvROXl9vMLr712B5Cc3hw8%2Fu%2FZP%2BRDcFkhsgc%2F1bwTtaG9wx%2BTk4I7JHXl6O0l1R%2B%2Bw0XrvpiyVl3%2F8WG7nxorVZdf%2F4X0%2BAkbl43vSpbdYLHTcduSnJS2EtCvGckl%2BWXUbMlzP3OZSZuMsubX%2BwcpqJ7HSOW3iEkyfuq%2FB9ZC8tPfN%2BHDffMtC2xI2K9DJTsgkoE0JnuzCJVP2zhDYaDoTJh7yrBjYWjh9jDRBJKc9Cwu4%2F%2FThtN53e2hbDyx9MD7Xri3QjQqwqA%2BXXR6kiT25%2BWd9HAgjbxBG1jsIIxt9e2Gt02cVGSiqJK3JULVCtcioaKlGK2QtXy6GAfORuiF%2Fdv%2BLfwEAAP%2F%2FAQAA%2F%2F9EfJyAkAQAAA%3D%3D HTTP/1.1
Host: choreinevitable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: u_pl=17371661; uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:09 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 315818ce8718af050453c27df7e4471c
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358c0cc441f7401b74509340db8b0014
19c0c7970d9a01d09daa48fd89a756d3da76a4d8
f4b0f1711cc67ff151c6ce05827d1663b2569b55a669e8bb4a1dd21b3972dfea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4B0F1711CC67FF151C6CE05827D1663B2569B55A669E8BB4A1DD21B3972DFEA"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10202
Expires: Sat, 04 Feb 2023 00:44:11 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
voluum.prom-xcams.com/2ef365e2-3c6a-4e02-9b75-24aa2a5d0830?campid=30853&placeid=54948&domain=&keyword=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&sitename=Videojav.com&sideid=7405&country=NO&cost=0.0008&s2sParam=892a2b4a-f649-4fbf-9bd3-1c2692501edb
18.184.38.55302 Found 0 B URL HTTP/2 voluum.prom-xcams.com/2ef365e2-3c6a-4e02-9b75-24aa2a5d0830?campid=30853&placeid=54948&domain=&keyword=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&sitename=Videojav.com&sideid=7405&country=NO&cost=0.0008&s2sParam=892a2b4a-f649-4fbf-9bd3-1c2692501edb
IP 18.184.38.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2ef365e2-3c6a-4e02-9b75-24aa2a5d0830?campid=30853&placeid=54948&domain=&keyword=Japanese,Asian,hd,straight,Pissing,squirting/shiofuki,lesbian/rezubian&sitename=Videojav.com&sideid=7405&country=NO&cost=0.0008&s2sParam=892a2b4a-f649-4fbf-9bd3-1c2692501edb HTTP/1.1
Host: voluum.prom-xcams.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twinrdsrv.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 21:54:09 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://ptp.prom-xcams.com/ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com
pragma: no-cache
set-cookie: 2ef365e2-3c6a-4e02-9b75-24aa2a5d0830-v4=1aecKitBtkAlKA_AY_VtAP4cRCz7yHTX8vLRCkkhGXo; Max-Age=86400; Expires=Sat, 04-Feb-2023 21:54:09 GMT; Domain=voluum.prom-xcams.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=GAByDqPLewugWBUOHVo4Gq8Rnn%2FN3Adfac%2FWfTBkEzhFzK1Kq9YOiYY0cnUzzRjKK0IJtk0Xw2FtCDwqCIXfURmKgv3jxHR9Oid4UyqGkPG%2Ftl%2Bcojzs55uXgqJ%2BhyzEin1H5%2BGA%2FSYmmngI5uL%2FPQ%3D%3D; Max-Age=31536000; Expires=Sat, 03-Feb-2024 21:54:09 GMT; Domain=voluum.prom-xcams.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de26603d2dd53bbc97ab84a98a423fc8
0ef00c310251712fe1993300278436541a835629
a751738f67caaaf0a6be71b9a542dc444fe76fa18cadbaa963090627d01e894d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A751738F67CAAAF0A6BE71B9A542DC444FE76FA18CADBAA963090627D01E894D"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3057
Expires: Fri, 03 Feb 2023 22:45:06 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de26603d2dd53bbc97ab84a98a423fc8
0ef00c310251712fe1993300278436541a835629
a751738f67caaaf0a6be71b9a542dc444fe76fa18cadbaa963090627d01e894d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A751738F67CAAAF0A6BE71B9A542DC444FE76FA18CADBAA963090627D01E894D"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3057
Expires: Fri, 03 Feb 2023 22:45:06 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de26603d2dd53bbc97ab84a98a423fc8
0ef00c310251712fe1993300278436541a835629
a751738f67caaaf0a6be71b9a542dc444fe76fa18cadbaa963090627d01e894d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A751738F67CAAAF0A6BE71B9A542DC444FE76FA18CADBAA963090627D01E894D"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3057
Expires: Fri, 03 Feb 2023 22:45:06 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 03 Feb 2023 21:54:09 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
wecouldle.com/floater?cs=REt4NlB3ckwBZ3R7SwVjcX1OAWU&abt=0&red=1&sm=83&k=pretty%20oriental%20female%20perfroming%20video%20pissing&v=0.9.1.0&sts=0&prn=0&emb=0&tid=958522&rxy=1280_1024&u=46305653738680&agec=1675461247&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=107.5268817204301&ref=http%3A%2F%2Fwww.videojav.com%2Fvideos%2F32636767%2F80f8fc4a807bf62d8357dd1ff38ef249%2F%3Fts%3D643530&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi3_&_Zbia=1675461281111&crc=1
65.9.44.110200 OK 4.1 kB URL HTTP/2 wecouldle.com/floater?cs=REt4NlB3ckwBZ3R7SwVjcX1OAWU&abt=0&red=1&sm=83&k=pretty%20oriental%20female%20perfroming%20video%20pissing&v=0.9.1.0&sts=0&prn=0&emb=0&tid=958522&rxy=1280_1024&u=46305653738680&agec=1675461247&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=107.5268817204301&ref=http%3A%2F%2Fwww.videojav.com%2Fvideos%2F32636767%2F80f8fc4a807bf62d8357dd1ff38ef249%2F%3Fts%3D643530&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi3_&_Zbia=1675461281111&crc=1
IP 65.9.44.110:0
File type ASCII text, with very long lines (6547), with no line terminators
Hash 9ac26e285cd7875fe28f4524f8f0b80e
f7fbc0ba038b2d04b12011a5faed7cf951515df1
f40c01612993160ad3c9c7b2dcda1ad9fa53f8eed0babdb1e486a266cc5489a4
GET /floater?cs=REt4NlB3ckwBZ3R7SwVjcX1OAWU&abt=0&red=1&sm=83&k=pretty%20oriental%20female%20perfroming%20video%20pissing&v=0.9.1.0&sts=0&prn=0&emb=0&tid=958522&rxy=1280_1024&u=46305653738680&agec=1675461247&fs=1&t=600&m=2&ns=1&ndp=1&asi=1&mbkb=107.5268817204301&ref=http%3A%2F%2Fwww.videojav.com%2Fvideos%2F32636767%2F80f8fc4a807bf62d8357dd1ff38ef249%2F%3Fts%3D643530&jst=0&enr=0&lcua=mozilla%2F5.0%20(windows%20nt%2010.0%3B%20win64%3B%20x64%3B%20rv%3A105.0)%20gecko%2F20100101%20firefox%2F105.0&tzd=0&uloc=&if=0&aa=oi3_&_Zbia=1675461281111&crc=1 HTTP/1.1
Host: wecouldle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
content-length: 4080
date: Fri, 03 Feb 2023 21:54:09 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: http://www.videojav.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=c9bc9810-a4b1-4866-b3d0-09ab3358ed24
csu=46305653738680
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 58899c559ea4c71daeb5333a74914042.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: rmv7QTPaN6C-vLm-brpCdgvor5HPfuUlB638tFAcbSyH2ommtZcvAw==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 604c3cbda1f304eef93aa15329e8e7ac
d9f25abc81500d2740265d4a2b11fa7e2d251d1f
5b0938197333a46575fa5d665e649f70b3268e27d0f3cbcac04065cc70acf9c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B0938197333A46575FA5D665E649F70B3268E27D0F3CBCAC04065CC70ACF9C5"
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13655
Expires: Sat, 04 Feb 2023 01:41:44 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de26603d2dd53bbc97ab84a98a423fc8
0ef00c310251712fe1993300278436541a835629
a751738f67caaaf0a6be71b9a542dc444fe76fa18cadbaa963090627d01e894d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "A751738F67CAAAF0A6BE71B9A542DC444FE76FA18CADBAA963090627D01E894D"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3057
Expires: Fri, 03 Feb 2023 22:45:06 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8686fa0a26eda2946103a378ee170745
90182d9c0d6c1686f1a762fa153eeae461d96fc7
70c5ff11e9778ee4505009219b99edfd1e8f6690235e1537a912464182957d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70C5FF11E9778EE4505009219B99EDFD1E8F6690235E1537A912464182957D27"
Last-Modified: Wed, 01 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17591
Expires: Sat, 04 Feb 2023 02:47:20 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
cdn.cloudimagesb.com/si/ae/aa/f6/aeaaf64c11bf62877f097a925a641d6b/1669388807.png
45.133.44.10200 OK 91 kB URL HTTP/2 cdn.cloudimagesb.com/si/ae/aa/f6/aeaaf64c11bf62877f097a925a641d6b/1669388807.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c1718772ca810c6c121fa1d02672bb44
22c20701dcd78b1bd41ada8b04576f73d3e42253
91561b48a3e4957afb6aaefbfa5c6463534db30a9bdc2a0f0aabbeef28486a33
GET /si/ae/aa/f6/aeaaf64c11bf62877f097a925a641d6b/1669388807.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: image/png
content-length: 91434
server: nginx/1.17.6
last-modified: Fri, 25 Nov 2022 15:06:56 GMT
etag: "6380da10-1652a"
expires: Sun, 05 Feb 2023 21:54:09 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ptp.prom-xcams.com/ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com
91.237.218.86200 OK 1.3 kB URL HTTP/2 ptp.prom-xcams.com/ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com
IP 91.237.218.86:0
ASN #212882 dnx network sarl
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783)
Hash 3a5aab68264ae442371db6d477507021
f451c505c910efe1c4e2b184eb4f4d865d671d66
974dde885089db3ff503e5b7b3e37fc6d5b50f005bcbb630ced683db378ed9ba
GET /ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com HTTP/1.1
Host: ptp.prom-xcams.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twinrdsrv.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: text/html; charset=UTF-8
content-length: 1283
vary: Accept-Encoding
content-encoding: gzip
server: TurboProxy
x-forwarded-proto: https
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5379
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:09 GMT
Last-Modified: Fri, 03 Feb 2023 20:24:30 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ptp.prom-xcams.com/assets/ct/registration-d-v1/css/main.css
91.237.218.86200 OK 1.2 kB URL HTTP/2 ptp.prom-xcams.com/assets/ct/registration-d-v1/css/main.css
IP 91.237.218.86:0
ASN #212882 dnx network sarl
Hash 3f4cc7eb391cf249b7aff38386497317
c65490b57c1189421bb71adb41a979360ad0ea5d
919aaf06c6417470eed8ac10fd300006d9954958567b80fa09e47dfd1e232950
GET /assets/ct/registration-d-v1/css/main.css HTTP/1.1
Host: ptp.prom-xcams.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ptp.prom-xcams.com/ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: text/css
content-length: 1203
last-modified: Fri, 13 May 2022 07:57:57 GMT
etag: "fa6-5dee0085805c0-gzip"
vary: Accept-Encoding
content-encoding: gzip
server: TurboProxy
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/img/close.svg
172.64.167.9200 OK 888 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/img/close.svg
IP 172.64.167.9:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 29bebc8c846ccd4da82e8c25812143e8
6929e928e70c90fac16afd0da22d777a0ba96228
86b2caa4dec6bd06c620a2aa665c2aef22b0b38c1c240ef21180873b0a3517f5
GET /sb/ssp/utility/social-media/facebook/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: image/svg+xml
last-modified: Thu, 11 Feb 2021 15:13:59 GMT
etag: W/"602549b7-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 714908
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M4St7tGqO6ra9NY%2FzWoR%2FJ10zPSD931nmFMdAsWRNPFiyia%2FgzzxVmIbbsy3WgoTT55Tcwa4887Siw1OHuHXJ%2B4kAbgQeQCcP9eBas1aCkI2WomvfAeL47W8OorspfYYBpT54JD3v2kO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6749396a7321-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ptp.prom-xcams.com/assets/ct/chat-d-v1/images/logo.png
91.237.218.86200 OK 4.8 kB URL HTTP/2 ptp.prom-xcams.com/assets/ct/chat-d-v1/images/logo.png
IP 91.237.218.86:0
ASN #212882 dnx network sarl
File type PNG image data, 145 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash a119c7cdd7d2de9e8171a0fc5d689670
5510eb82fa94a6d3e6af0856931a0ecafeafef67
4ccde783cc752fa1723f430699d91a0b4bd0be7b4bde19c5e0769bd499d68367
GET /assets/ct/chat-d-v1/images/logo.png HTTP/1.1
Host: ptp.prom-xcams.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ptp.prom-xcams.com/ct/registration-d-v1/index.php/?comfrom=1020726&cf2=voluum&cfsa2=wlp4d6vvmiu4adcmicln96k6&cfsa1=Videojav.com;TwinRed;voluum.prom-xcams.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: image/png
content-length: 4818
last-modified: Fri, 13 May 2022 07:57:57 GMT
etag: "12d2-5dee00855a45d"
server: TurboProxy
accept-ranges: bytes
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
142.250.74.74200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (32061)
Hash b90b3d2618cce9d766152cd3092b5c27
496339457cd00caab8118e2e1f30ea18dc05b9f4
b7b155aa8c6b5db28f9a6b41e88c96e9462c196c700add426f8ef32c9ce1ed41
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ptp.prom-xcams.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:38:24 GMT
expires: Fri, 02 Feb 2024 00:38:24 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 162945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5379
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:09 GMT
Last-Modified: Fri, 03 Feb 2023 20:24:30 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression\012- data
Hash f36485ed5979638317269cd05924ef8f
b2094e3efeb738dde3cb568329316c7843070760
0d1edccfb1c81cf9887b06249ef3958f72fbe2da0551e15c424749630acc55e2
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 00:13:21 GMT
Expires: Fri, 02 Feb 2024 00:13:21 GMT
Cache-Control: public, max-age=31536000
Age: 164448
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 03 Feb 2023 18:19:39 GMT
Expires: Sat, 03 Feb 2024 18:19:39 GMT
Cache-Control: public, max-age=31536000
Age: 12870
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
choreinevitable.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuJBRUiCCB7EQTxEcCfVvzIzCRKMcWUxbpYkshcv1VXVs%2BX2dDVV3dOze1oTlD2IGT157P1mN4saJPkDBOn1IouHHQ%2Byh%2Bw%2FIeYsMzsw%2BqD7vVffO3zf995XO8UJoSjY8conelMlCbscNmnj0qpKhS5tY%2Flew6VNeq2xqtIrwbXGYPIz%2FasuDZv0ncZHkq%2Fryx51KXWp21hURsZ6cHmKQmWPO26zQ5uB13TDAAPz%2F94WDixzIPon5CKUGL%2Bw9vtTKF4j7T25Ke16rrN3P%2BwVCcu1QV%2Fsf5qup7pM0ZuXsXEQp%2FuzaWg7JuT7M9Dp%2FkwBdH93ogCRGhPnLxdRuj%2Bjiai%2Fd8o0SiBTROJllP0aMqmhWA2uH0CJIwJwgeXbSHuPlrUp2cYpyibomJx7%2FjdUOSbnnr2KtPfzjUQNGnd1UuRKpxaDuIIa1FDdGllxgHzTgSoPwPP7UIIg7VVQ4vhtN2LSi126EMTcWwgiSReikHkLIQ0C1olppy3jqTVK1VBxjUQOwayDYvIpB0XsoMgc9MRxg4WdmNJWHMW%2B3w44577Pedi%2BIkLhB%2B2YouAT7kPk2RA8GYKbLWRmC%2Bvqu6Pw4tHN5zDFr7BrFaxwYHOCvqhQSoLSEpSMoFQEZU5Q9qs9kVjPVo9EYovInWVvlv1qpPPuDtvTeVemZCc7IRcmtjkvXnwF6%2FK40WlTKsOYX4ljn3Hmh0wIGnb8dtxi3ONtWFVB2TNTsZtqTC689iUyNSZn2B%2BI2AFscgCuzoMVb4CVo5ZHwdZGQZtiM33Sl2YjNlJm2qRNrnsQukKWn0O%2B4ewkJ%2BT16Qqvvncekh9eHz%2F87NI%2F9UNwUyEzFT5XvxF0k%2B3RHV2S3Tu6tOTp7SxXPbXJJuu9m7Ncnv3xY7lRaiOWbtrhD%2B%2FzCTApH9%2BTNr%2FFUqHSriU%2F3VBCSLOoDZfklyW7KqOVwq7dKExaZLdWPlhc6mVGWqt0WoOpI%2Fs1uBqTl7a%2FmR7um28ZKFPDFBV6xSGZBZSuwbMt2GzO3moCk8xnosxBWVQj40Xzx0QRJHLes6iC%2FU8fzesdu42uccDyB9Nz7ZsK%2FaQCS4awxdlRnpnD63%2F600CUOKMoMc5ulJjk21NrrTpuhG4g21G7xYWIJBduy%2FPbPqWeEEGrI90Ocjvmz%2B5%2F8S8AAAD%2F%2FwEAAP%2F%2FUHQSZpAEAAA%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 choreinevitable.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuJBRUiCCB7EQTxEcCfVvzIzCRKMcWUxbpYkshcv1VXVs%2BX2dDVV3dOze1oTlD2IGT157P1mN4saJPkDBOn1IouHHQ%2Byh%2Bw%2FIeYsMzsw%2BqD7vVffO3zf995XO8UJoSjY8conelMlCbscNmnj0qpKhS5tY%2Flew6VNeq2xqtIrwbXGYPIz%2FasuDZv0ncZHkq%2Fryx51KXWp21hURsZ6cHmKQmWPO26zQ5uB13TDAAPz%2F94WDixzIPon5CKUGL%2Bw9vtTKF4j7T25Ke16rrN3P%2BwVCcu1QV%2Fsf5qup7pM0ZuXsXEQp%2FuzaWg7JuT7M9Dp%2FkwBdH93ogCRGhPnLxdRuj%2Bjiai%2Fd8o0SiBTROJllP0aMqmhWA2uH0CJIwJwgeXbSHuPlrUp2cYpyibomJx7%2FjdUOSbnnr2KtPfzjUQNGnd1UuRKpxaDuIIa1FDdGllxgHzTgSoPwPP7UIIg7VVQ4vhtN2LSi126EMTcWwgiSReikHkLIQ0C1olppy3jqTVK1VBxjUQOwayDYvIpB0XsoMgc9MRxg4WdmNJWHMW%2B3w44577Pedi%2BIkLhB%2B2YouAT7kPk2RA8GYKbLWRmC%2Bvqu6Pw4tHN5zDFr7BrFaxwYHOCvqhQSoLSEpSMoFQEZU5Q9qs9kVjPVo9EYovInWVvlv1qpPPuDtvTeVemZCc7IRcmtjkvXnwF6%2FK40WlTKsOYX4ljn3Hmh0wIGnb8dtxi3ONtWFVB2TNTsZtqTC689iUyNSZn2B%2BI2AFscgCuzoMVb4CVo5ZHwdZGQZtiM33Sl2YjNlJm2qRNrnsQukKWn0O%2B4ewkJ%2BT16Qqvvncekh9eHz%2F87NI%2F9UNwUyEzFT5XvxF0k%2B3RHV2S3Tu6tOTp7SxXPbXJJuu9m7Ncnv3xY7lRaiOWbtrhD%2B%2FzCTApH9%2BTNr%2FFUqHSriU%2F3VBCSLOoDZfklyW7KqOVwq7dKExaZLdWPlhc6mVGWqt0WoOpI%2Fs1uBqTl7a%2FmR7um28ZKFPDFBV6xSGZBZSuwbMt2GzO3moCk8xnosxBWVQj40Xzx0QRJHLes6iC%2FU8fzesdu42uccDyB9Nz7ZsK%2FaQCS4awxdlRnpnD63%2F600CUOKMoMc5ulJjk21NrrTpuhG4g21G7xYWIJBduy%2FPbPqWeEEGrI90Ocjvmz%2B5%2F8S8AAAD%2F%2FwEAAP%2F%2FUHQSZpAEAAA%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuJBRUiCCB7EQTxEcCfVvzIzCRKMcWUxbpYkshcv1VXVs%2BX2dDVV3dOze1oTlD2IGT157P1mN4saJPkDBOn1IouHHQ%2Byh%2Bw%2FIeYsMzsw%2BqD7vVffO3zf995XO8UJoSjY8conelMlCbscNmnj0qpKhS5tY%2Flew6VNeq2xqtIrwbXGYPIz%2FasuDZv0ncZHkq%2Fryx51KXWp21hURsZ6cHmKQmWPO26zQ5uB13TDAAPz%2F94WDixzIPon5CKUGL%2Bw9vtTKF4j7T25Ke16rrN3P%2BwVCcu1QV%2Fsf5qup7pM0ZuXsXEQp%2FuzaWg7JuT7M9Dp%2FkwBdH93ogCRGhPnLxdRuj%2Bjiai%2Fd8o0SiBTROJllP0aMqmhWA2uH0CJIwJwgeXbSHuPlrUp2cYpyibomJx7%2FjdUOSbnnr2KtPfzjUQNGnd1UuRKpxaDuIIa1FDdGllxgHzTgSoPwPP7UIIg7VVQ4vhtN2LSi126EMTcWwgiSReikHkLIQ0C1olppy3jqTVK1VBxjUQOwayDYvIpB0XsoMgc9MRxg4WdmNJWHMW%2B3w44577Pedi%2BIkLhB%2B2YouAT7kPk2RA8GYKbLWRmC%2Bvqu6Pw4tHN5zDFr7BrFaxwYHOCvqhQSoLSEpSMoFQEZU5Q9qs9kVjPVo9EYovInWVvlv1qpPPuDtvTeVemZCc7IRcmtjkvXnwF6%2FK40WlTKsOYX4ljn3Hmh0wIGnb8dtxi3ONtWFVB2TNTsZtqTC689iUyNSZn2B%2BI2AFscgCuzoMVb4CVo5ZHwdZGQZtiM33Sl2YjNlJm2qRNrnsQukKWn0O%2B4ewkJ%2BT16Qqvvncekh9eHz%2F87NI%2F9UNwUyEzFT5XvxF0k%2B3RHV2S3Tu6tOTp7SxXPbXJJuu9m7Ncnv3xY7lRaiOWbtrhD%2B%2FzCTApH9%2BTNr%2FFUqHSriU%2F3VBCSLOoDZfklyW7KqOVwq7dKExaZLdWPlhc6mVGWqt0WoOpI%2Fs1uBqTl7a%2FmR7um28ZKFPDFBV6xSGZBZSuwbMt2GzO3moCk8xnosxBWVQj40Xzx0QRJHLes6iC%2FU8fzesdu42uccDyB9Nz7ZsK%2FaQCS4awxdlRnpnD63%2F600CUOKMoMc5ulJjk21NrrTpuhG4g21G7xYWIJBduy%2FPbPqWeEEGrI90Ocjvmz%2B5%2F8S8AAAD%2F%2FwEAAP%2F%2FUHQSZpAEAAA%3D HTTP/1.1
Host: choreinevitable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: u_pl=17371661; uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:09 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 798d7da6da890972acd3ad4327ab3543
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 859b454c27c90606121bac3d6fc39363
c36d4154285b289ea7f73d10028e63479df2af50
a8eb67540cf185a1306bb4f548c990358da0c0d82d9bcf26044f1ea6fa651a05
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8EB67540CF185A1306BB4F548C990358DA0C0D82D9BCF26044F1EA6FA651A05"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6698
Expires: Fri, 03 Feb 2023 23:45:47 GMT
Date: Fri, 03 Feb 2023 21:54:09 GMT
Connection: keep-alive
choreinevitable.com/pixel/sbs?c=1
192.243.59.13200 OK 0 B URL HTTP/1.1 choreinevitable.com/pixel/sbs?c=1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: choreinevitable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Cookie: u_pl=17371661; uid_id2=1bae2f10-4fc2-4be0-b5a2-5044a9f098ef:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 03 Feb 2023 21:54:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de6325424b40307b4855f6daf3a7e7f1
d14d016a2c49881108a3b5cbaa31fecc36a1be51
8ab91d0545f3a631d6c98dad704c8b3baeec8a3b39cd19efb6af9d426184a8b4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8AB91D0545F3A631D6C98DAD704C8B3BAEEC8A3B39CD19EFB6AF9D426184A8B4"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7327
Expires: Fri, 03 Feb 2023 23:56:17 GMT
Date: Fri, 03 Feb 2023 21:54:10 GMT
Connection: keep-alive
cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
45.133.44.3200 OK 5.4 kB URL HTTP/2 cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Hash 35eb9730c445673dc5549be4c66a6c77
e83821a128667e991d8a6d1aaff62e5fcf276698
34335b2f628bd65a2be4b600d877999871c7056851b6f2812ae82213b438250b
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 09:27:09 GMT
etag: W/"602f846d-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 03 Feb 2023 22:54:09 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/css/style.css
172.64.167.9200 OK 1.5 kB URL HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/css/style.css
IP 172.64.167.9:0
Hash 908dce303e802b45f99455bfa3c26ef2
2f064693d34a6eac3903455fc3de8477c4554e40
60eed66130c70fbeb214c6ab5a7f747cfaaad001a5f10d33d3da7d57f70d6f98
GET /sb/ssp/utility/social-media/facebook/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 12:19:14 GMT
etag: W/"6128d842-18be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HvjLtbI01F65hQI2HC3Bw2sRBsdg6a9%2Fm6wKPvt7ipchnLOuD6qxEH974vi3Knqp3syIepBTJ9mXVoYkRXdBeodICvzyBNBH7JReaJsDLGfMpGJlmRHX0UWwD%2B2nNeb%2B7fEHFk7Ex4dk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6748e89888bc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
IP 142.250.74.163:0
Hash 33c76adf477c5e5a16879651933fd993
ed24e758a8c339fb84ebb82b17df9f061a339cf9
a6e69717b80b9a5fafcfc4837b2c158e38fb2c665e1a72c566f37d4c267f9eb1
POST /s/gts1p5/ISScEAKWoTw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
IP 142.250.74.163:0
Hash 33c76adf477c5e5a16879651933fd993
ed24e758a8c339fb84ebb82b17df9f061a339cf9
a6e69717b80b9a5fafcfc4837b2c158e38fb2c665e1a72c566f37d4c267f9eb1
POST /s/gts1p5/ISScEAKWoTw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xml.serve-servee.com/thumbnail?i=EZFe*m5wWIw_0&p=1675461249.221566&imgt=icon
172.64.162.38302 Found 0 B URL HTTP/2 xml.serve-servee.com/thumbnail?i=EZFe*m5wWIw_0&p=1675461249.221566&imgt=icon
IP 172.64.162.38:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thumbnail?i=EZFe*m5wWIw_0&p=1675461249.221566&imgt=icon HTTP/1.1
Host: xml.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 21:54:10 GMT
content-length: 0
location: https://static.serve-servee.com/n337/ad/300x300_Wg3cKTLuRj8HdExmdUYY.png
cache-control: no-store
age: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NIAjeewGnksw5dObpBCkOgVM3wiPQCkmtWpo8%2FvHEBp5riaBf4tW5QKdQUeu2zvES2fIahMu9gnj0k7OFnQqp8pB%2F2CjlzcRa95CoPJLo0pCOaj9oTwnhvQO%2BMgifhZt2OojJQ5hxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6750795676f0-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sheetvibe.com/winnotice?sid=H4sIAAAAAAAC%2F1RTTYgcRRSuifFgAoJ%2FoBhDHxVk0j09vfaYQzDGlWBM1k1kj1JdVb373J6upqp7enZPi6J4kgEvHjzUfpvdRY1ibh4UpdeL7Clz0QXds6CHoOBZZjJm9EHV%2B%2Fne4av3vnp%2FuzpmPip%2BtPS63qQs4%2Beitu89u0K51LX1rt7wAr%2Ftn%2FdWKF%2FonveGk8sMXgz8qO0%2F572qxLo%2B1%2FED3w%2F8wFsko1I9PDdFQcWtXtDu%2Be1upx1EXQyNg61asLwFOThmj4Lk%2BMG1H2%2BDRIO8%2F9UlZddLXTz%2FSr%2FKeKkNBnL%2FzXw913WO%2FjxMTQtpvj%2FrhrZjxj4%2BAZ3vz1hDD25OWCOhMWv9FCDJ92fUkAx277FLMqgciTyNetBAZQ2INxD6XZC8wwAhcfUa8v7eVW1qvnEP5RN0zE7%2B%2FReoHrOTvz6OvP%2FlxYyG3nWdVSXp3GKYOtCwAa02KKoDlJsMVB9AlO%2BAJEPedyDppq8makBpg0yNwC1DNTnEUKUtVEULfXnk8aiX%2Bv4LaZKGYdwVQoShEFG8ICMZduPURyUmtEYoixFENoIwWyjMFtZpBFN9CLINKu5AhUNh93pRHHU6UOLwwm9v%2FP7e2a%2BXwenIi4Koky6INAzTOBYBD6NIip4fxbESgZQKCR1eeOyPxYd%2FPvUkMmJQ%2FPC7u2xqsLlDXrmd3JCDUYdsZjtGlocX7netOVjJYEuGgXSoFUNtGWrOUBNDXTLUA7crM9uxbk9mtkqCme%2FMfOh2dLnqdnW5qnK2XRyzR6Y7%2BVO8hXV15IUBD8J4wVdxHMo4joJYxaqjAr%2BbBpHsdWDp3wmQPQFuW9ikMXvil7soJnKRHyHhB7DZAQR54NUZ8NqBrzls5g5Sf2HXlCoHlKi20H0U5UMoN1rb2TF7akok3jvzv9kK41AYh7fpB4bV7IOdZV2zm8u6tuz2taKkPm3yiXCul7xUD3z2mtqotZGXL9nRpy%2BJCTAJb91QtrzCc0n5qmWfXyQplVnURij27WW7opKlyq5drExeFVeWXl683C%2BMspZ03oDTneIbCBqzU08%2FM%2F0SZ09%2FAjINTOXQr%2B7vCqQbiGILtpjXrGYw2TxPCoa6cjumk8yLEzVk86WDJw72P3kyj7ft97DkUFr2DwAAAP%2F%2FAQAA%2F%2F920sb5fAQAAA%3D%3D&ap=${AUCTION_PRICE}&l=3712540&sub3=1675461249&pid=91283&sub2=icon&auid=5152f6cf33f88c1a355dc90588ec1dde&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
188.114.97.1307 Temporary Redirect 0 B URL HTTP/2 sheetvibe.com/winnotice?sid=H4sIAAAAAAAC%2F1RTTYgcRRSuifFgAoJ%2FoBhDHxVk0j09vfaYQzDGlWBM1k1kj1JdVb373J6upqp7enZPi6J4kgEvHjzUfpvdRY1ibh4UpdeL7Clz0QXds6CHoOBZZjJm9EHV%2B%2Fne4av3vnp%2FuzpmPip%2BtPS63qQs4%2Beitu89u0K51LX1rt7wAr%2Ftn%2FdWKF%2FonveGk8sMXgz8qO0%2F572qxLo%2B1%2FED3w%2F8wFsko1I9PDdFQcWtXtDu%2Be1upx1EXQyNg61asLwFOThmj4Lk%2BMG1H2%2BDRIO8%2F9UlZddLXTz%2FSr%2FKeKkNBnL%2FzXw913WO%2FjxMTQtpvj%2FrhrZjxj4%2BAZ3vz1hDD25OWCOhMWv9FCDJ92fUkAx277FLMqgciTyNetBAZQ2INxD6XZC8wwAhcfUa8v7eVW1qvnEP5RN0zE7%2B%2FReoHrOTvz6OvP%2FlxYyG3nWdVSXp3GKYOtCwAa02KKoDlJsMVB9AlO%2BAJEPedyDppq8makBpg0yNwC1DNTnEUKUtVEULfXnk8aiX%2Bv4LaZKGYdwVQoShEFG8ICMZduPURyUmtEYoixFENoIwWyjMFtZpBFN9CLINKu5AhUNh93pRHHU6UOLwwm9v%2FP7e2a%2BXwenIi4Koky6INAzTOBYBD6NIip4fxbESgZQKCR1eeOyPxYd%2FPvUkMmJQ%2FPC7u2xqsLlDXrmd3JCDUYdsZjtGlocX7netOVjJYEuGgXSoFUNtGWrOUBNDXTLUA7crM9uxbk9mtkqCme%2FMfOh2dLnqdnW5qnK2XRyzR6Y7%2BVO8hXV15IUBD8J4wVdxHMo4joJYxaqjAr%2BbBpHsdWDp3wmQPQFuW9ikMXvil7soJnKRHyHhB7DZAQR54NUZ8NqBrzls5g5Sf2HXlCoHlKi20H0U5UMoN1rb2TF7akok3jvzv9kK41AYh7fpB4bV7IOdZV2zm8u6tuz2taKkPm3yiXCul7xUD3z2mtqotZGXL9nRpy%2BJCTAJb91QtrzCc0n5qmWfXyQplVnURij27WW7opKlyq5drExeFVeWXl683C%2BMspZ03oDTneIbCBqzU08%2FM%2F0SZ09%2FAjINTOXQr%2B7vCqQbiGILtpjXrGYw2TxPCoa6cjumk8yLEzVk86WDJw72P3kyj7ft97DkUFr2DwAAAP%2F%2FAQAA%2F%2F920sb5fAQAAA%3D%3D&ap=${AUCTION_PRICE}&l=3712540&sub3=1675461249&pid=91283&sub2=icon&auid=5152f6cf33f88c1a355dc90588ec1dde&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
IP 188.114.97.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /winnotice?sid=H4sIAAAAAAAC%2F1RTTYgcRRSuifFgAoJ%2FoBhDHxVk0j09vfaYQzDGlWBM1k1kj1JdVb373J6upqp7enZPi6J4kgEvHjzUfpvdRY1ibh4UpdeL7Clz0QXds6CHoOBZZjJm9EHV%2B%2Fne4av3vnp%2FuzpmPip%2BtPS63qQs4%2Beitu89u0K51LX1rt7wAr%2Ftn%2FdWKF%2FonveGk8sMXgz8qO0%2F572qxLo%2B1%2FED3w%2F8wFsko1I9PDdFQcWtXtDu%2Be1upx1EXQyNg61asLwFOThmj4Lk%2BMG1H2%2BDRIO8%2F9UlZddLXTz%2FSr%2FKeKkNBnL%2FzXw913WO%2FjxMTQtpvj%2FrhrZjxj4%2BAZ3vz1hDD25OWCOhMWv9FCDJ92fUkAx277FLMqgciTyNetBAZQ2INxD6XZC8wwAhcfUa8v7eVW1qvnEP5RN0zE7%2B%2FReoHrOTvz6OvP%2FlxYyG3nWdVSXp3GKYOtCwAa02KKoDlJsMVB9AlO%2BAJEPedyDppq8makBpg0yNwC1DNTnEUKUtVEULfXnk8aiX%2Bv4LaZKGYdwVQoShEFG8ICMZduPURyUmtEYoixFENoIwWyjMFtZpBFN9CLINKu5AhUNh93pRHHU6UOLwwm9v%2FP7e2a%2BXwenIi4Koky6INAzTOBYBD6NIip4fxbESgZQKCR1eeOyPxYd%2FPvUkMmJQ%2FPC7u2xqsLlDXrmd3JCDUYdsZjtGlocX7netOVjJYEuGgXSoFUNtGWrOUBNDXTLUA7crM9uxbk9mtkqCme%2FMfOh2dLnqdnW5qnK2XRyzR6Y7%2BVO8hXV15IUBD8J4wVdxHMo4joJYxaqjAr%2BbBpHsdWDp3wmQPQFuW9ikMXvil7soJnKRHyHhB7DZAQR54NUZ8NqBrzls5g5Sf2HXlCoHlKi20H0U5UMoN1rb2TF7akok3jvzv9kK41AYh7fpB4bV7IOdZV2zm8u6tuz2taKkPm3yiXCul7xUD3z2mtqotZGXL9nRpy%2BJCTAJb91QtrzCc0n5qmWfXyQplVnURij27WW7opKlyq5drExeFVeWXl683C%2BMspZ03oDTneIbCBqzU08%2FM%2F0SZ09%2FAjINTOXQr%2B7vCqQbiGILtpjXrGYw2TxPCoa6cjumk8yLEzVk86WDJw72P3kyj7ft97DkUFr2DwAAAP%2F%2FAQAA%2F%2F920sb5fAQAAA%3D%3D&ap=${AUCTION_PRICE}&l=3712540&sub3=1675461249&pid=91283&sub2=icon&auid=5152f6cf33f88c1a355dc90588ec1dde&icon=https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg HTTP/1.1
Host: sheetvibe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Fri, 03 Feb 2023 21:54:10 GMT
content-length: 0
location: https://cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
x-request-id: 3ae69cce5c3e238dcb24e675ac72fc41
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jgLPvv%2BuswtGIzyNxuayWmH53132Dj0eoITiJUiDMEaTjaDGzm19yueYvy%2F%2FVUHQy%2BuJ1DlU%2FL8JRt6zSg2c4L1%2FcoUQvNsH9a0XSC%2F7mQXjdISe9QIWPA%2Bd0k847tvS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6750dd8e0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.serve-servee.com/n337/ad/300x300_Wg3cKTLuRj8HdExmdUYY.png
172.64.162.38200 OK 57 kB URL HTTP/2 static.serve-servee.com/n337/ad/300x300_Wg3cKTLuRj8HdExmdUYY.png
IP 172.64.162.38:0
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 8fb7974a9de3f02e9f39d1f4c17db32f
104f49b5b0cdfea9be62c26f23e69a182e76fd51
66ce08a16a71f8c8a8df525201f2e3bbb0ddd71e65fc3f69242014378e6c82f0
GET /n337/ad/300x300_Wg3cKTLuRj8HdExmdUYY.png HTTP/1.1
Host: static.serve-servee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:10 GMT
content-type: image/png
content-length: 56756
last-modified: Sat, 12 Nov 2022 11:18:07 GMT
accept-ranges: bytes
etag: "636f80ef-ddb4"
cache-control: max-age=86400
x-sp-metadata: HS256.CJKh9p4GEksKJDU1MzE3ZmFlLWE1ZTQtNDYzYi1iM2Q5LWMwMWZhYmQ0NDJkNhDA0sGB2rP8AhoGCIKF9p4GIgwxNzIuNzAuODUuNTco5qwCMAIaLAgBEiQxMGVjZDI5Ni1hNmZiLTQyY2UtYjIyYy01NmFlNTI1OTM0YzMYtLsDIhgIAhIUY2RzMzIwLmxvNC5od2Nkbi5uZXQ=.hapyZ3u58rmv0xQoT9oNQ4D1qIO9eu/epeKN/B1WYOw=
x-hw: 1675461250.cds082.lo4.h2,1675461250.cds320.lo4.c
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KaM0W7ZIxzjhUjpUb4nwaw3uVrd%2BEul5bjl71ai3yQMHia9cSym4r8Ek8T5DqAitNBdC7wacy5%2BLVgRQ2JwLX8Gpn7RhWCWu%2Fm8SAGeIhSCyXLUi9qbduwtkD43hfZ06Bw0kSat2DVeMkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67517aa676f0-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
45.133.44.10200 OK 33 kB URL HTTP/2 cdn.cloudimagesb.com/cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2020:05:18 19:19:17], baseline, precision 8, 200x200, components 3\012- data
Hash 70cf8250da1a25a7b445231428af7828
a849d338423d2919949340838c768bba90b9081c
b7060bc46dc459a00d4124523a26f0cbf31fba31d41fccae9f82bedaf22c1186
GET /cti/34/74/d7/3474d78aff0bf2df5207c5e1bcb89147/1591703087.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:10 GMT
content-type: image/jpeg
content-length: 33103
server: nginx/1.17.6
last-modified: Tue, 09 Jun 2020 11:44:50 GMT
etag: "5edf7632-814f"
expires: Sun, 05 Feb 2023 21:54:10 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de6325424b40307b4855f6daf3a7e7f1
d14d016a2c49881108a3b5cbaa31fecc36a1be51
8ab91d0545f3a631d6c98dad704c8b3baeec8a3b39cd19efb6af9d426184a8b4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8AB91D0545F3A631D6C98DAD704C8B3BAEEC8A3B39CD19EFB6AF9D426184A8B4"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7327
Expires: Fri, 03 Feb 2023 23:56:17 GMT
Date: Fri, 03 Feb 2023 21:54:10 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ISScEAKWoTw
IP 142.250.74.163:0
Hash 33c76adf477c5e5a16879651933fd993
ed24e758a8c339fb84ebb82b17df9f061a339cf9
a6e69717b80b9a5fafcfc4837b2c158e38fb2c665e1a72c566f37d4c267f9eb1
POST /s/gts1p5/ISScEAKWoTw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 21:54:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ptp.prom-xcams.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 20908003
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793e674afacfb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edhimasifiwoery.xyz/popunder.gif
172.67.136.172200 OK 0 B URL HTTP/2 edhimasifiwoery.xyz/popunder.gif
IP 172.67.136.172:0
GET /popunder.gif HTTP/1.1
Host: edhimasifiwoery.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 6762
last-modified: Fri, 03 Feb 2023 20:01:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ro%2F1SbOj0QQ6x1F%2BuiIJzE131gxo90Y3fot5uBBM7sYfdjVJRJ%2B9ZCsqp4FUmK2q%2FYaDcAYCIjfln80O%2B489xe1l%2F8RUqML4Gko3NKDGosz%2B79YtzHQnrF4tKdbujWSV1vqGvNm1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e673cc9150afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/
172.64.132.29200 OK 0 B IP 172.64.132.29:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:07 GMT
content-type: text/plain
set-cookie: csu=46305653738680@1@1675461247; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: http://www.videojav.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ffEA7JaUzEF9Y5NzYceb7S8BbUD%2BEP7eqgVyvan9cJtff9b7ASPUmLPcxvsYKdgTXtQgJQ%2FAEfOOrec8nH9AAFhoy3ev5aPt7RQYpT%2FA7nQVeMyGGxnmccKJO8KhTtq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e673adb347743-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.videojav.com/js/kvs/main.min.js?v=1.2
188.114.97.1200 OK 0 B URL HTTP/2 www.videojav.com/js/kvs/main.min.js?v=1.2
IP 188.114.97.1:0
GET /js/kvs/main.min.js?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
last-modified: Mon, 27 Apr 2020 09:02:48 GMT
vary: Accept-Encoding
etag: W/"5ea69fb8-444ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 11767684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TU7lTzj20sqO4sLpo5umQgarELaP8tw2VE1PTT42oO59sg2oKt5NpNgxvEFSA6nuHnkGZU3pUZmiRZzqbgMzs%2B83Im1lW2ToYxCQf9%2Fw6P19Mdd9w8S0EmPqPKb1JlLG91zF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6737ef211c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.videojav.com/js/plugins.js?v=1.2
188.114.97.1200 OK 0 B URL HTTP/2 www.videojav.com/js/plugins.js?v=1.2
IP 188.114.97.1:0
GET /js/plugins.js?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
last-modified: Mon, 27 Apr 2020 09:02:48 GMT
vary: Accept-Encoding
etag: W/"5ea69fb8-20860"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 11767684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KmxozudPPEpSxjciRd4nbJZ4rNwQN4h3VKakJLASmIhYyJzJl9Umqp2h10J3wTszF5w1wV6ENS0r8xfMefzLuiJR7ihoInkzwntMv4QwDh4stlJzdKhCOGDzqeIDBWmG2jBi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6737ef1d1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hegdcrxavrtk.cdnvideo3.com/HKrbJwa.js
135.181.208.216200 OK 0 B URL HTTP/1.1 hegdcrxavrtk.cdnvideo3.com/HKrbJwa.js
IP 135.181.208.216:0
ASN #24940 Hetzner Online GmbH
GET /HKrbJwa.js HTTP/1.1
Host: hegdcrxavrtk.cdnvideo3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.videojav.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 21:54:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 11:45:01 GMT
ETag: W/"63dba23d-47ec6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Vary: Accept-Encoding, Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 3a4d5aad46ae3a82da414d69565389aa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN54-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: _wxgcqM3pUR7BJMiy7jxaBIoI7SIGZrKyqf-i8YZIpwaax6-gAY5Zw==
Age: 144
Content-Encoding: gzip
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP 157.240.205.35:0
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net 'unsafe-inline' blob: data: 'self' 'unsafe-eval';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: /fghes7zIxohWI19FLyUQfD67Rkv+LiIfKZBh1eRAyI+Fb2UbQllfnvV/kMkTrfPSVg6dzWWh4tKJTvp2Nr5oA==
date: Fri, 03 Feb 2023 21:54:07 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
twinrdsrv.com/preroll.engine?id=de9319ce-c948-4420-b00f-01013a3c1f77&zid=52155&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
172.66.43.59200 OK 0 B URL HTTP/2 twinrdsrv.com/preroll.engine?id=de9319ce-c948-4420-b00f-01013a3c1f77&zid=52155&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight}
IP 172.66.43.59:0
GET /preroll.engine?id=de9319ce-c948-4420-b00f-01013a3c1f77&zid=52155&cvs={ClientVideoSupport}&time={TimeOffset}&stdtime={StdTimeOffset}&abr={IsAdblockRequest}&pageurl={PageUrl}&tid={TrackingId}&res={Resolution}&bw={BrowserWidth}&bh={BrowserHeight}&kw=Japanese%2CAsian%2Chd%2Cstraight%2CPissing%2Csquirting%2Fshiofuki%2Clesbian%2Frezubian&referrerUrl={ReferrerUrl}&pw={PlayerWidth}&ph={PlayerHeight} HTTP/1.1
Host: twinrdsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.videojav.com/
Origin: http://www.videojav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:08 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: private, no-transform
access-control-allow-credentials: true
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: http://www.videojav.com
set-cookie: IKSR={}; path=/; SameSite=None; secure
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Oimk07Lm0VPiJAn1EdYDV3nbYLvbUFirARqm12AFIhLJha34K4a1KRm0TMNH7OO2db3mMN5HZQCMK9bbploi1FWSCIQStHZQIyRCyA5m6XgW8oVnSrAUtWx64zLLiv8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e6741b8f1b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.media-rendering1.com/market2/livecams/custom/videos/4/BellaHanson_4.mp4
91.237.218.88206 Partial Content 0 B URL HTTP/2 img.media-rendering1.com/market2/livecams/custom/videos/4/BellaHanson_4.mp4
IP 91.237.218.88:0
ASN #212882 dnx network sarl
GET /market2/livecams/custom/videos/4/BellaHanson_4.mp4 HTTP/1.1
Host: img.media-rendering1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://ptp.prom-xcams.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: video/mp4
content-length: 2194186
last-modified: Tue, 08 Feb 2022 10:07:04 GMT
etag: "620240c8-217b0a"
x-processed-by: marketcdn02.dnx.lu
server: TurboProxy
content-range: bytes 0-2194185/2194186
X-Firefox-Spdy: h2
www.videojav.com/extension/aine/hum/g.php
188.114.97.1200 OK 0 B URL HTTP/2 www.videojav.com/extension/aine/hum/g.php
IP 188.114.97.1:0
GET /extension/aine/hum/g.php HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NuRRjD9RLhr9qmht1G4V2gf2rHZFV2hxPnA1uuakZxdbrv6cwBHl9BnMxZQqgybMn430GVzvngifXSgxuGyX%2BWPhTPn12DH6CRAZrJ8sGsh3Fbwtql5iyQbvCXlNGk6Sz4pi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67377eaa1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.exosrv.com/ads.js
185.76.9.17200 OK 0 B IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /ads.js HTTP/1.1
Host: a.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript
etag: W/"b60fdcc211f42a1f246a8c80b56"
expires: Thu, 02 Feb 2023 18:45:33 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1675471611
server: CDN77-Turbo
x-77-nzt: AblMCQ196jn/swEAAA
x-77-nzt-ray: c0a4cc28400eaf517e82dd635b14882b
x-cache: HIT
x-age: 435
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css
104.16.85.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css
IP 104.16.85.20:0
GET /npm/silvermine-videojs-quality-selector@1.1.2/dist/css/quality-selector.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.1.2
x-jsd-version-type: version
etag: W/"299-rLWKZXMtTX2vbGY6rnhXUEYaKx8"
x-served-by: cache-fra19134-FRA, cache-bma1626-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 27606722
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CS6qD1Ngo9nd0injY%2BruXDuuavFiJBPEcFONfz4p%2B279J5R33pDmmYCqX9Qf8uDryDnjlcyK1uthBJq52Fj6bqyVKkzGkbOl4%2B6UC1paOURX0N4YuXXgWYj4aAsK7ovh6e8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67387cf8b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/js/script.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/facebook/js/script.js
IP 172.64.167.9:0
GET /sb/ssp/utility/social-media/facebook/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.videojav.com
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:09 GMT
content-type: application/javascript
last-modified: Sat, 20 Feb 2021 08:47:14 GMT
etag: W/"6030cc92-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CqmLVO245Q9Ok1k%2FYd7fSVBIBE7LJGSdwKuRTxz%2BYr8sRYwyf5BbJgzWcYKFUtdW61jz6orLhqonwZzXxa4BcM1w9v54%2B1aw6IUCjXfX3qgR0scQD1q51TrL77k%2BFwtvN2RViJxhQDWN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793e6748d87d88bc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700
IP 142.250.74.106:0
GET /css?family=Roboto:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 21:54:06 GMT
date: Fri, 03 Feb 2023 21:54:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.videojav.com/css/main.css?v=1.2
188.114.97.1200 OK 0 B URL HTTP/2 www.videojav.com/css/main.css?v=1.2
IP 188.114.97.1:0
GET /css/main.css?v=1.2 HTTP/1.1
Host: www.videojav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: text/css
last-modified: Mon, 23 May 2022 12:39:46 GMT
vary: Accept-Encoding
etag: W/"628b8092-13093"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 11767684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vue%2BtTPQ3AiF2HzDQAMHR5JqsLnFM7tPo0aeWeOtXJWXWVXDsZMYeDVQkaBJ2JNvbvNP2SGOFU%2FZYn3L1S6m9Xf8YIgjtBwMpo6ek9Vl%2FwJP9HKIJbV6OZhUHfDH5qH0aMNi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67377ea71c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js
104.16.85.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/npm/js-cookie@2/src/js.cookie.min.js
IP 104.16.85.20:0
GET /npm/js-cookie@2/src/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.videojav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 21:54:06 GMT
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.2.1
x-jsd-version-type: version
etag: W/"79f-7pVBzxqV0qiF+LFDoQXKqgjKnJ0"
fastly-original-body-size: 1062
x-served-by: cache-fra19127-FRA, cache-cdg20741-CDG
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 9628
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UceWf4cY%2FtAYY3v8UYKxznjhhXg45AZtPPuJOyL%2FwEMT6YbY6t8omj%2BmxegAFciyOnQpq8%2BuU%2Br8a0HTFOfsB4v8yBPgTFDGw3q5YfhFhd%2F5R0JPIu0jkvZQ5vmsSNH11AI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793e67389d0fb512-OSL
content-encoding: br
X-Firefox-Spdy: h2