Report - Alljb.mov

Report Overview

Visited public
2025-05-08 13:44:33
Tags
URL
Alljb.mov
Finishing URL
alljb.mov/ajb/jb-girls-solo/
IP / ASN
65.21.99.147
#24940 Hetzner Online GmbH
Title
401 Authorization Required

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
alljbads.live	unknown	2024-12-18	2025-02-04	2025-02-20	9.3 kB	66 kB	172.67.197.98
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-05-07	2.0 kB	81 kB	104.16.79.73
alljb.mov	unknown	unknown	2025-05-08	2025-05-08	4.9 kB	306 kB	65.21.99.147
jimperial.top	unknown	2019-12-03	2020-02-28	2025-02-04	425 B	3.7 kB	103.109.101.94
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-07	2.2 kB	162 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-07	526 B	27 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	alljb.mov/functions.js?ver=1	ScriptElement	1.3 kB	2023-03-08	2025-06-13
Pretty URL alljb.mov/functions.js?ver=1 IP 65.21.99.147 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:16 Last Seen2025-06-13 20:33 Times Seen47 Hash c22c7caaa9c3697e91ac035a0b3ed6e5 61a87cc0c843ffa73b3210ef3b9e20886a1bf9c3 ee5d738d637e6ae6e5f7683fa41aadc91e1b9ff9e722d474f2192c66dc955925 Loading...

	alljb.mov/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-06-24
Pretty URL alljb.mov/jquery.min.js?ver=3.7.1 IP 65.21.99.147 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-06-24 04:29 Times Seen108535 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	alljb.mov/	ScriptElement	1 B	2023-03-07	2025-06-24
Pretty URL alljb.mov/ IP 65.21.99.147 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 04:25 Times Seen68959 Hash 68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b Loading...

	alljb.mov/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-06-24
Pretty URL alljb.mov/jquery-migrate.min.js?ver=3.4.1 IP 65.21.99.147 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-06-24 04:29 Times Seen120097 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-24
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-24 04:28 Times Seen67319 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-24
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-24 04:28 Times Seen67319 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-24
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-24 04:28 Times Seen67319 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-06-24
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-06-24 04:28 Times Seen67319 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

HTTP Transactions (37)

	URL	IP	Response	Size
	GET alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190	172.67.197.98	200 OK	1.6 kB
URL GET alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type HTML document, ASCII text, with very long lines (691) Size 1.6 kB (1562 bytes) Hash d1e0571aa03cdb3e6f2cb932bc26a18b 5d295bd1f9d7d61e01b7e02d339923a5fa4191fd dac5d321271d84177426da78911dadea47f75da9e20de63fd8128ce512abebca HTTP Headers GET /ads/www/delivery/afr.php?zoneid=4&cb=6308190 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/html; charset=UTF-8 server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 93c963f7c96db529-OSL pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" content-encoding: br vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wxfVZUDkQ%2FiGroGps%2FmBxKFBkzpTl1zCjaOBc2gmhtktQuSkTKDUaKecmoQmOwfwHkFz6pmmWPDP5ZCHKZl7yvoNU9io3q0rC%2FQ0323LOjcyuKPOzBeyHTDfl%2B8Ap8Ya"}],"group":"cf-nel","max_age":604800} set-cookie: OAID=01000111010001000101000001010010; SameSite=None; Secure; Path=/; Max-Age=31536000; Expires=Fri, 08 May 2026 13:44:13 GMT alt-svc: h3=":443"; ma=86400 server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=4162&min_rtt=397&rtt_var=1830&sent=18&recv=17&lost=0&retrans=0&sent_bytes=7799&recv_bytes=1601&delivery_rate=3698595&cwnd=256&unsent_bytes=0&cid=0eba2637c3ec8d8c&ts=456&x=0" X-Firefox-Spdy: h2

	GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	104.16.79.73	200 OK	20 kB
URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Certificate IssuerGoogle Trust Services Subjectcloudflareinsights.com FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators Size 20 kB (19948 bytes) Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f HTTP Headers `GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2024.6.1" last-modified: Thu, 06 Jun 2024 15:52:56 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 93c963fcfad40b51-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	104.16.79.73	200 OK	20 kB
URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Certificate IssuerGoogle Trust Services Subjectcloudflareinsights.com FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators Size 20 kB (19948 bytes) Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f HTTP Headers `GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2024.6.1" last-modified: Thu, 06 Jun 2024 15:52:56 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 93c963fceacd0b51-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET alljb.mov/style.css?ver=1	65.21.99.147	200 OK	30 kB
URL GET alljb.mov/style.css?ver=1 IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type Unicode text, UTF-8 text, with very long lines (602) Size 30 kB (29607 bytes) Hash 54313e60497b6146c6f0b29399933c75 1bc8773374b0ea3d59c3cdf883d72100b98d0702 097458642eaa0d97c4ca695a08c0023284cbdb6ebdf772552d4669bbc2970cee HTTP Headers `GET /style.css?ver=1 HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: text/css content-length: 29607 last-modified: Tue, 29 Apr 2025 20:30:50 GMT etag: "681136fa-73a7" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET jimperial.top/topl.png	103.109.101.94	200 OK	3.5 kB
URL GET jimperial.top/topl.png IP 103.109.101.94:443 ASN #206264 Amarutu Technology Ltd Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectjimperial.top Fingerprint8B:BB:5F:13:D6:1F:B0:01:21:9A:65:BE:5B:CF:0C:50:A0:14:DA:2F ValidityFri, 14 Mar 2025 18:47:40 GMT - Thu, 12 Jun 2025 18:47:39 GMT File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced Size 3.5 kB (3473 bytes) Hash 979abce1b714b378e3e6b7ce1d7b66d2 81f34390516044a0602e5fe4c422f19e1b0d7f2d 733e6ac763fe405d689358693a695028063af3e1c48fcf52c9b9ba78c0caaa2b HTTP Headers `GET /topl.png HTTP/1.1 Host: jimperial.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 08 May 2025 13:44:14 GMT Server: Apache Last-Modified: Sun, 25 Jun 2023 12:54:58 GMT Accept-Ranges: bytes Content-Length: 3473 Keep-Alive: timeout=5 Connection: Keep-Alive Content-Type: image/png`

	GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	142.250.74.35	200 OK	48 kB
URL GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80 ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0 Size 48 kB (48236 bytes) Hash 015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa HTTP Headers GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://alljb.mov DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 May 2025 13:41:03 GMT expires: Fri, 08 May 2026 13:41:03 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Dec 2023 02:08:40 GMT content-type: font/woff2 age: 189 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET alljbads.live/ads/www/delivery/lg.php?bannerid=24&campaignid=2&zoneid=2&loc=https%3A%2F%2Falljb.mov%2F&cb=144f257a68	172.67.197.98	200 OK	43 B
URL GET alljbads.live/ads/www/delivery/lg.php?bannerid=24&campaignid=2&zoneid=2&loc=https%3A%2F%2Falljb.mov%2F&cb=144f257a68 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers GET /ads/www/delivery/lg.php?bannerid=24&campaignid=2&zoneid=2&loc=https%3A%2F%2Falljb.mov%2F&cb=144f257a68 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/gif nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Roc1lr583vQnXeqpkkgrKq4pezLbeeUB89pdibLOWMzv1qzU13Wyk1EuFvtk6PHHPE%2FmfqtfnDVSwJ6MxSEV8whwBz%2BCIuI%2F0vRTHBoxH1leD3PQwTAG7VloW3nqE7ZJ"}],"group":"cf-nel","max_age":604800} pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 08 May 2026 13:44:13 GMT; Max-Age=31536000; path=/; secure; SameSite=none cf-cache-status: DYNAMIC cf-ray: 93c963fc1c1d56ca-OSL server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3112&min_rtt=2383&rtt_var=859&sent=88&recv=49&lost=0&retrans=0&sent_bytes=55747&recv_bytes=5751&delivery_rate=2256499&cwnd=39600&unsent_bytes=0&cid=dd23ba15665f06f6&ts=659&x=16"

	GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	104.16.79.73	200 OK	20 kB
URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Certificate IssuerGoogle Trust Services Subjectcloudflareinsights.com FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators Size 20 kB (19948 bytes) Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f HTTP Headers `GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2024.6.1" last-modified: Thu, 06 Jun 2024 15:52:56 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 93c963fceaca0b51-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET alljbads.live/ads/www/images/fdee163b913a33a5747a38f9d2b818ef.jpg	172.67.197.98	200 OK	8.8 kB
URL GET alljbads.live/ads/www/images/fdee163b913a33a5747a38f9d2b818ef.jpg IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 468x60, components 3 Size 8.8 kB (8823 bytes) Hash fdee163b913a33a5747a38f9d2b818ef 7cad00fbdeafbb55b73b15a8fb24e00b74384d87 26ff1f06e6bd60a876c563ae6008e9f124c2bffc85cb6f3364c5ddcd621150ad HTTP Headers GET /ads/www/images/fdee163b913a33a5747a38f9d2b818ef.jpg HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/jpeg content-length: 8823 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5rBXbSQ15L1%2FfO8Pe3spP0JHduy6zYOkPZOPHSOXsBkVF%2FOReyZLUd3sM6%2BNfG%2B5ervbDodCPZCteb79kYa0XwJ%2FCKChm2Kot5ccZJ%2Bl9Zl5JDhRtBt6xO35sIQAET6K"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 19 Dec 2024 09:41:12 GMT etag: "6763ea38-2277" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 accept-ranges: bytes age: 1353427 cf-cache-status: HIT cf-ray: 93c963fc3c2256ca-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3041&min_rtt=2383&rtt_var=959&sent=78&recv=48&lost=0&retrans=0&sent_bytes=45248&recv_bytes=5704&delivery_rate=3107832&cwnd=39600&unsent_bytes=0&cid=dd23ba15665f06f6&ts=337&x=16"

	GET alljb.mov/ajb/jb-girls-solo/	65.21.99.147	401 Unauthorized	172 B
URL User Request GET alljb.mov/ajb/jb-girls-solo/ IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type HTML document, ASCII text, with CRLF line terminators Size 172 B (172 bytes) Hash 28c5f434e4ab2e2a682400cb005fb08b 57b3c46199c99c6a3e6442a31519b097126c61fc 9371176869a945e2958e43b349397210a1b72b83f11c67e02e0be1f950254ef2 HTTP Headers GET /ajb/jb-girls-solo/ HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://alljb.mov/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Sec-Fetch-User: ?1 Pragma: no-cache Cache-Control: no-cache `HTTP/2 401 Unauthorized server: nginx date: Thu, 08 May 2025 13:44:23 GMT content-type: text/html content-length: 172 www-authenticate: Basic realm="Restricted Content" X-Firefox-Spdy: h2`

	GET alljb.mov/jquery.min.js?ver=3.7.1	65.21.99.147	200 OK	88 kB
URL GET alljb.mov/jquery.min.js?ver=3.7.1 IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type JavaScript source, ASCII text, with very long lines (65447) Size 88 kB (87553 bytes) Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf HTTP Headers `GET /jquery.min.js?ver=3.7.1 HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: application/javascript content-length: 87553 last-modified: Tue, 29 Apr 2025 20:30:35 GMT etag: "681136eb-15601" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET alljb.mov/thecamstop.jpeg	65.21.99.147	200 OK	1.4 kB
URL GET alljb.mov/thecamstop.jpeg IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type JPEG image data, baseline, precision 8, 88x31, components 3 Size 1.4 kB (1352 bytes) Hash ea5519b398b6aa9b7dc7591257d9d4a4 51d1a32d6f1e1d516db6223f445370e6f1cc89b7 467b2caf8555e465d11d06c3378ba64c70130f70dbb5868f602b82210c1353f8 HTTP Headers `GET /thecamstop.jpeg HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://alljb.mov/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: image/jpeg content-length: 1352 last-modified: Tue, 29 Apr 2025 20:30:55 GMT etag: "681136ff-548" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET fonts.gstatic.com/s/ptserif/v18/EJRVQgYoZZY2vCFuvAFWzr8.woff2	142.250.74.35	200 OK	33 kB
URL GET fonts.gstatic.com/s/ptserif/v18/EJRVQgYoZZY2vCFuvAFWzr8.woff2 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80 ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT File type Web Open Font Format (Version 2), TrueType, length 33116, version 1.0 Size 33 kB (33116 bytes) Hash 48b1fa647f5ccfa511cc07a10fc22e55 12e1e0d36983a8d900bc66b4784a6f9b9ace4b60 4271064a37f3ffc0aac5f3806db8a72acc23e19447d1804e4e80d8796cbf6330 HTTP Headers GET /s/ptserif/v18/EJRVQgYoZZY2vCFuvAFWzr8.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://alljb.mov DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 33116 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 02 May 2025 19:32:58 GMT expires: Sat, 02 May 2026 19:32:58 GMT cache-control: public, max-age=31536000 age: 497474 last-modified: Tue, 02 May 2023 15:52:25 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903	172.67.197.98	200 OK	1.6 kB
URL GET alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type HTML document, ASCII text, with very long lines (715) Size 1.6 kB (1586 bytes) Hash 35b747f5de685c30c6235d7a47e03055 c099e1e1dccc9a0fdd0a83c8e20742b0c39aaf36 da3f4d07a60db5aba5b8469b007275948e26e357023ada3d635a64b869707721 HTTP Headers GET /ads/www/delivery/afr.php?zoneid=1&cb=5834903 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/html; charset=UTF-8 server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 93c963f7d97cb529-OSL pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" content-encoding: br vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xmNyrUYfPX%2BBIccZ4sqf9jKXcO6SZTYvEhHBUTcvRcNoyg1YgtKRt6EZbfZds%2B53zBSYVPFfzJA%2FIPNiSQskqiHtGeFDIiNnuQ%2B1cylYsI3OmB4JK8LZGQCXbvUoNxYc"}],"group":"cf-nel","max_age":604800} set-cookie: OAID=01000111010001000101000001010010; SameSite=None; Secure; Path=/; Max-Age=31536000; Expires=Fri, 08 May 2026 13:44:13 GMT alt-svc: h3=":443"; ma=86400 server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=4133&min_rtt=397&rtt_var=2363&sent=12&recv=16&lost=0&retrans=0&sent_bytes=5045&recv_bytes=1601&delivery_rate=3698595&cwnd=256&unsent_bytes=0&cid=0eba2637c3ec8d8c&ts=448&x=0" X-Firefox-Spdy: h2

	GET alljb.mov/li.svg	65.21.99.147	200 OK	1.6 kB
URL GET alljb.mov/li.svg IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type SVG Scalable Vector Graphics image Size 1.6 kB (1627 bytes) Hash f6e477878c7640ef73d801042553483a f11509beb81dba3fd81588cc6b7588bf2cfd277c b9389cb6583f0d743318d61d4f74c3029eb5d8ed7e96b04712ebadfb2c3ad850 HTTP Headers `GET /li.svg HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/style.css?ver=1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: image/svg+xml content-length: 1627 last-modified: Tue, 29 Apr 2025 20:30:40 GMT etag: "681136f0-65b" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	104.16.79.73	200 OK	20 kB
URL GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Certificate IssuerGoogle Trust Services Subjectcloudflareinsights.com FingerprintEA:C7:0D:68:3A:45:CB:AD:C5:33:41:B6:DF:F1:60:64:E1:0F:52:6A ValiditySun, 27 Apr 2025 18:18:02 GMT - Sat, 26 Jul 2025 19:17:55 GMT File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators Size 20 kB (19948 bytes) Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f HTTP Headers `GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2024.6.1" last-modified: Thu, 06 Jun 2024 15:52:56 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 93c963fcfadd0b51-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	POST alljbads.live/cdn-cgi/rum?	172.67.197.98	204 No Content	0 B
URL POST alljbads.live/cdn-cgi/rum? IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1105 Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 204 No Content date: Thu, 08 May 2025 13:44:13 GMT x-content-type-options: nosniff access-control-allow-origin: https://alljbads.live access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 93c963fe9c5856ca-OSL x-frame-options: DENY`

	POST alljbads.live/cdn-cgi/rum?	172.67.197.98	204 No Content	0 B
URL POST alljbads.live/cdn-cgi/rum? IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1105 Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 204 No Content date: Thu, 08 May 2025 13:44:13 GMT x-content-type-options: nosniff access-control-allow-origin: https://alljbads.live access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 93c963feac5a56ca-OSL x-frame-options: DENY`

	GET alljb.mov/style.min.css?ver=6.4.1	65.21.99.147	200 OK	110 kB
URL GET alljb.mov/style.min.css?ver=6.4.1 IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type ASCII text, with very long lines (57084) Size 110 kB (110035 bytes) Hash 99ab466e0866c823ae5db517d59cebd1 5595a586cbd42b31377681b9d35293278d75d336 698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340 HTTP Headers `GET /style.min.css?ver=6.4.1 HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: text/css content-length: 110035 last-modified: Tue, 29 Apr 2025 20:30:52 GMT etag: "681136fc-1add3" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET fonts.googleapis.com/css?family=PT+Serif%3A400%2C700%7COpen+Sans%3A400%2C400italic%2C700%2C700italic&subset=latin%2Ccyrillic&ver=1	142.250.74.10	200 OK	26 kB
URL GET fonts.googleapis.com/css?family=PT+Serif%3A400%2C700%7COpen+Sans%3A400%2C400italic%2C700%2C700italic&subset=latin%2Ccyrillic&ver=1 IP 142.250.74.10:443 ASN #15169 GOOGLE Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67 ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT File type ASCII text, with very long lines (1572) Size 26 kB (25984 bytes) Hash 86d17a1e6e5a14b493db7827a65bc2c7 e5a14d5378d151a39fef940204622df0beb04e76 93a413a557529be624f4c0c742a5efaaef301593b6b90e6e7f1971f5c5e6d17e HTTP Headers GET /css?family=PT+Serif%3A400%2C700%7COpen+Sans%3A400%2C400italic%2C700%2C700italic&subset=latin%2Ccyrillic&ver=1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 08 May 2025 13:44:12 GMT date: Thu, 08 May 2025 13:44:12 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872	172.67.197.98	200 OK	1.6 kB
URL GET alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type HTML document, ASCII text, with very long lines (695) Size 1.6 kB (1566 bytes) Hash 9c6a404d65f89b1a77a090be6240734e 3426ce8dd8a6165bc8dfab426989c9461bac047c 2b642d4eb99b4be56709f721cc7f8a811acb89465e56f36070265d9d11320f72 HTTP Headers GET /ads/www/delivery/afr.php?zoneid=3&cb=8234872 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/html; charset=UTF-8 server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 93c963f7c96ab529-OSL pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" content-encoding: br vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uOF1h1Gg723Kn45hBfClilf%2BqfE9SV4L3p35vgk2v5VrPyQ9IqK8%2FO0ABa%2BOCXKSBy6r2e8qCWLEdfCbBd1xN03%2F4DIeCbFghEoQQ2QUy1CmdBB0LA50FiXzqBzz%2BDGn"}],"group":"cf-nel","max_age":604800} set-cookie: OAID=01000111010001000101000001010010; SameSite=None; Secure; Path=/; Max-Age=31536000; Expires=Fri, 08 May 2026 13:44:13 GMT alt-svc: h3=":443"; ma=86400 server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=5054&min_rtt=397&rtt_var=2277&sent=8&recv=14&lost=0&retrans=0&sent_bytes=3277&recv_bytes=1601&delivery_rate=3647355&cwnd=254&unsent_bytes=0&cid=0eba2637c3ec8d8c&ts=444&x=0" X-Firefox-Spdy: h2

	GET alljb.mov/favicon.ico	65.21.99.147	200 OK	15 kB
URL GET alljb.mov/favicon.ico IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size 15 kB (15406 bytes) Hash fdb42d5e905356edf6c268db653492e6 6da27785f6624204e0ba8ee623ac5ecde93d8f53 7591196342e00f01705216038c46bba40f05063a32d99f68db8c456bb3c0f435 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://alljb.mov/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:13 GMT content-type: image/x-icon content-length: 15406 last-modified: Tue, 29 Apr 2025 20:30:26 GMT etag: "681136e2-3c2e" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET alljbads.live/ads/www/images/18531455bb3880013d5e02ec2ddcc0c0.gif	172.67.197.98	200 OK	18 kB
URL GET alljbads.live/ads/www/images/18531455bb3880013d5e02ec2ddcc0c0.gif IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type GIF image data, version 89a, 300 x 250 Size 18 kB (17597 bytes) Hash 18531455bb3880013d5e02ec2ddcc0c0 66212b18b625f5438a519d3fb6d14fae582b9559 a1520c0ed954ca478664c2bbdf81a806e1713a8b61271e52cb2dd950a687feb3 HTTP Headers GET /ads/www/images/18531455bb3880013d5e02ec2ddcc0c0.gif HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/gif content-length: 17597 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oXJwkuEoXPaWbY5JNwbaFVizEH8NIy%2BAkgZcW%2BAS3nhFfuf1Z21oxrh8QB1gy%2Fk%2BMpizxCYr59C9NBuD2MA6SWDfD8ObrSWy19obld%2BOcbLm8UzLws0KAoefAyzgreei"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 19 Dec 2024 09:41:12 GMT etag: "6763ea38-44bd" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 cf-cache-status: HIT age: 12046713 accept-ranges: bytes cf-ray: 93c963fc0c1a56ca-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3108&min_rtt=2472&rtt_var=1136&sent=40&recv=44&lost=0&retrans=0&sent_bytes=5111&recv_bytes=4836&delivery_rate=2068&cwnd=12000&unsent_bytes=0&cid=dd23ba15665f06f6&ts=317&x=16"

	GET alljbads.live/ads/www/images/15f52227ecfddc31b1a446e232569b90.jpg	172.67.197.98	200 OK	12 kB
URL GET alljbads.live/ads/www/images/15f52227ecfddc31b1a446e232569b90.jpg IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 468x60, components 3 Size 12 kB (11905 bytes) Hash 15f52227ecfddc31b1a446e232569b90 5098ffb9010f33ef4e635a71f8c4007d2eb1e2a6 fc634f900fe72785e94dcd29fe4f29d25a7fe8d598e8f0b725b829ada14933d3 HTTP Headers GET /ads/www/images/15f52227ecfddc31b1a446e232569b90.jpg HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/jpeg content-length: 11905 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HUuQz7Qx6Kv%2FuZ%2BHpkhBNjSZCC8yUBm0tnToOeYd1mRzLjkMeFEL4LLjMaRcwYTaw5xGmQd0L5VeuSB8HeeNIdbnnN%2FRQZiMeHBpnsjSkIm5E2SLwqcQQpR1A0QJ1R3q"}],"group":"cf-nel","max_age":604800} last-modified: Thu, 19 Dec 2024 09:41:12 GMT etag: "6763ea38-2e81" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 cf-cache-status: HIT age: 12076530 accept-ranges: bytes cf-ray: 93c963fc2c1f56ca-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3236&min_rtt=2472&rtt_var=1108&sent=66&recv=46&lost=0&retrans=0&sent_bytes=32364&recv_bytes=5612&delivery_rate=377814&cwnd=24000&unsent_bytes=0&cid=dd23ba15665f06f6&ts=325&x=16"

	GET alljbads.live/ads/www/images/a7eab5ee71f5d2bc44f5763a16f76ba5.jpg	172.67.197.98	200 OK	7.6 kB
URL GET alljbads.live/ads/www/images/a7eab5ee71f5d2bc44f5763a16f76ba5.jpg IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 468x60, components 3 Size 7.6 kB (7613 bytes) Hash a7eab5ee71f5d2bc44f5763a16f76ba5 6d632c0fad951dd24202e6e43294b631423e8a19 7e5a1934a73212b05d5cb5799aa180900c34a8c037ae43596611ee4002d3a3ca HTTP Headers GET /ads/www/images/a7eab5ee71f5d2bc44f5763a16f76ba5.jpg HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/jpeg content-length: 7613 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sFBlEo4hmZ%2B4jtVUlKJOTW7yZmaggPo2EqjGfAr67%2FvgWYyI2qKRieFEy8WTio6RmQ4mfQWfE7PXZXShSwHbKunHy%2BupIF7zC5gU7WL5vWgem%2Bvniyu5IGYxmJfVb1eA"}],"group":"cf-nel","max_age":604800} last-modified: Sat, 11 Jan 2025 19:48:06 GMT etag: "6782caf6-1dbd" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 cf-cache-status: HIT age: 10086317 accept-ranges: bytes cf-ray: 93c963fc1c1c56ca-OSL server: cloudflare vary: Accept-Encoding nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3108&min_rtt=2472&rtt_var=1136&sent=51&recv=44&lost=0&retrans=0&sent_bytes=17111&recv_bytes=4836&delivery_rate=2068&cwnd=12000&unsent_bytes=0&cid=dd23ba15665f06f6&ts=321&x=16"

	GET alljbads.live/ads/www/delivery/lg.php?bannerid=15&campaignid=4&zoneid=4&loc=https%3A%2F%2Falljb.mov%2F&cb=581a109e47	172.67.197.98	200 OK	43 B
URL GET alljbads.live/ads/www/delivery/lg.php?bannerid=15&campaignid=4&zoneid=4&loc=https%3A%2F%2Falljb.mov%2F&cb=581a109e47 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers GET /ads/www/delivery/lg.php?bannerid=15&campaignid=4&zoneid=4&loc=https%3A%2F%2Falljb.mov%2F&cb=581a109e47 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=4&cb=6308190 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/gif nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xsExIn3BIj5KASN7ROlbAJFsMdg%2Bgr2bY6v1DBXnBWu9lFNm6QbDMBzLLII6MT3DtYKJlUCa3tHQHEhedkLvq%2FANTkrbSNBrdz5jStdkOuZL3blEpv1NuN4FyT%2FYB9Gx"}],"group":"cf-nel","max_age":604800} pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 08 May 2026 13:44:13 GMT; Max-Age=31536000; path=/; secure; SameSite=none cf-cache-status: DYNAMIC cf-ray: 93c963fc3c2156ca-OSL server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=2723&min_rtt=1198&rtt_var=1175&sent=92&recv=51&lost=0&retrans=0&sent_bytes=57367&recv_bytes=5844&delivery_rate=106721&cwnd=39600&unsent_bytes=0&cid=dd23ba15665f06f6&ts=670&x=16"

	GET alljb.mov/favicon.ico	65.21.99.147	200 OK	15 kB
URL GET alljb.mov/favicon.ico IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ajb/jb-girls-solo/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size 15 kB (15406 bytes) Hash fdb42d5e905356edf6c268db653492e6 6da27785f6624204e0ba8ee623ac5ecde93d8f53 7591196342e00f01705216038c46bba40f05063a32d99f68db8c456bb3c0f435 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ajb/jb-girls-solo/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:25 GMT content-type: image/x-icon content-length: 15406 last-modified: Tue, 29 Apr 2025 20:30:26 GMT etag: "681136e2-3c2e" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET alljb.mov/jquery-migrate.min.js?ver=3.4.1	65.21.99.147	200 OK	14 kB
URL GET alljb.mov/jquery-migrate.min.js?ver=3.4.1 IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type JavaScript source, ASCII text, with very long lines (13479) Size 14 kB (13577 bytes) Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 HTTP Headers `GET /jquery-migrate.min.js?ver=3.4.1 HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: application/javascript content-length: 13577 last-modified: Tue, 29 Apr 2025 20:30:38 GMT etag: "681136ee-3509" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018	172.67.197.98	200 OK	1.6 kB
URL GET alljbads.live/ads/www/delivery/afr.php?zoneid=2&cb=3482018 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type HTML document, ASCII text, with very long lines (724) Size 1.6 kB (1592 bytes) Hash 8ad19490dd91d4b797d108675af39c8c 40cd7c6bf98415836fc75ffb5aa4372fb89502fd 35685d78e91ba00a165ec90f9859a8af0ea08079759daacc3de7e463f2279860 HTTP Headers GET /ads/www/delivery/afr.php?zoneid=2&cb=3482018 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljb.mov/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: text/html; charset=UTF-8 server: cloudflare nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} cf-ray: 93c963f7c96cb529-OSL pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" content-encoding: br vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3YIwr4CNf0QhqZH7Y6GvQtz78R20Y73AU7cjKEmbSyvWefPW%2BiGCIk8p0fqwt05EN6OCHqaa45rX3aSF%2BZS5A1DwXzTHEZ0iXBpg%2Fs%2FhOjQePHhhtUymdXXSwLTmP4nC"}],"group":"cf-nel","max_age":604800} set-cookie: OAID=01000111010001000101000001010010; SameSite=None; Secure; Path=/; Max-Age=31536000; Expires=Fri, 08 May 2026 13:44:13 GMT alt-svc: h3=":443"; ma=86400 server-timing: cfCacheStatus;desc="DYNAMIC", cfL4;desc="?proto=TCP&rtt=4133&min_rtt=397&rtt_var=2363&sent=15&recv=16&lost=0&retrans=0&sent_bytes=6423&recv_bytes=1601&delivery_rate=3698595&cwnd=256&unsent_bytes=0&cid=0eba2637c3ec8d8c&ts=449&x=0" X-Firefox-Spdy: h2

	GET fonts.gstatic.com/s/ptserif/v18/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2	142.250.74.35	200 OK	30 kB
URL GET fonts.gstatic.com/s/ptserif/v18/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80 ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT File type Web Open Font Format (Version 2), TrueType, length 29588, version 1.0 Size 30 kB (29588 bytes) Hash cd87c62c9c9c1728e4ce6069e20b1104 0480db0094dec698acf12620a246bd9134766119 bf23a7a4eebedbb87d4084a69496b29815914a18e339a00f5dc73a03c9c9328f HTTP Headers GET /s/ptserif/v18/EJRSQgYoZZY2vCFuvAnt66qSVys.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://alljb.mov DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 29588 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 May 2025 10:24:25 GMT expires: Fri, 08 May 2026 10:24:25 GMT cache-control: public, max-age=31536000 age: 11987 last-modified: Tue, 02 May 2023 15:28:35 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET alljb.mov/	65.21.99.147	200 OK	28 kB
URL User Request GET alljb.mov/ IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type HTML document, ASCII text, with very long lines (9462) Size 28 kB (27938 bytes) Hash e610da09ecf7ac0ab55086dd6e26933b a65edb3936736adcfded09e6a0dc916698b4725d addedaf46463c972e464e7e758bdcae85fb2a6a21f098e21df39a0219bde64b7 HTTP Headers `GET / HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: text/html content-length: 27938 last-modified: Tue, 29 Apr 2025 20:30:33 GMT etag: "681136e9-6d22" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	142.250.74.35	200 OK	48 kB
URL GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://alljb.mov/ Certificate IssuerGoogle Trust Services Subject.gstatic.com Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80 ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0 Size 48 kB (48236 bytes) Hash 015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa HTTP Headers GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://alljb.mov DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48236 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 May 2025 13:41:03 GMT expires: Fri, 08 May 2026 13:41:03 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Dec 2023 02:08:40 GMT content-type: font/woff2 age: 189 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	POST alljbads.live/cdn-cgi/rum?	172.67.197.98	204 No Content	0 B
URL POST alljbads.live/cdn-cgi/rum? IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1105 Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 204 No Content date: Thu, 08 May 2025 13:44:13 GMT x-content-type-options: nosniff access-control-allow-origin: https://alljbads.live access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 93c963fe9c5756ca-OSL x-frame-options: DENY`

	GET alljbads.live/ads/www/delivery/lg.php?bannerid=22&campaignid=3&zoneid=3&loc=https%3A%2F%2Falljb.mov%2F&cb=c4af49cb38	172.67.197.98	200 OK	43 B
URL GET alljbads.live/ads/www/delivery/lg.php?bannerid=22&campaignid=3&zoneid=3&loc=https%3A%2F%2Falljb.mov%2F&cb=c4af49cb38 IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers GET /ads/www/delivery/lg.php?bannerid=22&campaignid=3&zoneid=3&loc=https%3A%2F%2Falljb.mov%2F&cb=c4af49cb38 HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/gif nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Ou2Ft9gbmDIRtfsRQFq71BqxPfq6JqZDiFyGC0%2FKre7tQMFEnFIN98Iu1bU1K20%2BSk0xKT%2FMDEBkNEx5R0Hd3KlXhe%2FZ2eRmwarNCcCclVtxEZg%2FTV%2Fkp9A9B2kE8V0"}],"group":"cf-nel","max_age":604800} pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 08 May 2026 13:44:13 GMT; Max-Age=31536000; path=/; secure; SameSite=none cf-cache-status: DYNAMIC cf-ray: 93c963fc2c2056ca-OSL server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3112&min_rtt=2383&rtt_var=859&sent=90&recv=49&lost=0&retrans=0&sent_bytes=56555&recv_bytes=5751&delivery_rate=2256499&cwnd=39600&unsent_bytes=0&cid=dd23ba15665f06f6&ts=661&x=16"

	POST alljbads.live/cdn-cgi/rum?	172.67.197.98	204 No Content	0 B
URL POST alljbads.live/cdn-cgi/rum? IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1105 Origin: https://alljbads.live DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=3&cb=8234872 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/3 204 No Content date: Thu, 08 May 2025 13:44:13 GMT x-content-type-options: nosniff access-control-allow-origin: https://alljbads.live access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 93c963feac5956ca-OSL x-frame-options: DENY`

	GET alljb.mov/functions.js?ver=1	65.21.99.147	200 OK	1.3 kB
URL GET alljb.mov/functions.js?ver=1 IP 65.21.99.147:443 ASN #24940 Hetzner Online GmbH Requested by https://alljb.mov/ Certificate IssuerLet's Encrypt Subjectalljb.mov Fingerprint85:5C:E2:73:CE:0D:C0:00:55:2B:08:08:55:68:66:E8:32:F8:D3:6B ValidityTue, 29 Apr 2025 19:31:07 GMT - Mon, 28 Jul 2025 19:31:06 GMT File type JavaScript source, ASCII text Size 1.3 kB (1323 bytes) Hash c22c7caaa9c3697e91ac035a0b3ed6e5 61a87cc0c843ffa73b3210ef3b9e20886a1bf9c3 ee5d738d637e6ae6e5f7683fa41aadc91e1b9ff9e722d474f2192c66dc955925 HTTP Headers `GET /functions.js?ver=1 HTTP/1.1 Host: alljb.mov User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://alljb.mov/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Thu, 08 May 2025 13:44:12 GMT content-type: application/javascript content-length: 1323 last-modified: Tue, 29 Apr 2025 20:30:29 GMT etag: "681136e5-52b" accept-ranges: bytes X-Firefox-Spdy: h2`

	GET alljbads.live/ads/www/delivery/lg.php?bannerid=1&campaignid=1&zoneid=1&loc=https%3A%2F%2Falljb.mov%2F&cb=027c9ed28b	172.67.197.98	200 OK	43 B
URL GET alljbads.live/ads/www/delivery/lg.php?bannerid=1&campaignid=1&zoneid=1&loc=https%3A%2F%2Falljb.mov%2F&cb=027c9ed28b IP 172.67.197.98:443 ASN #13335 CLOUDFLARENET Requested by https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Certificate IssuerGoogle Trust Services Subjectalljbads.live FingerprintD7:FC:4F:D2:53:BD:0F:AD:D3:A0:26:E4:7D:AF:F3:66:02:C3:00:F5 ValidityTue, 15 Apr 2025 14:43:09 GMT - Mon, 14 Jul 2025 15:40:51 GMT File type GIF image data, version 89a, 1 x 1 Size 43 B (43 bytes) Hash b4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49 HTTP Headers GET /ads/www/delivery/lg.php?bannerid=1&campaignid=1&zoneid=1&loc=https%3A%2F%2Falljb.mov%2F&cb=027c9ed28b HTTP/1.1 Host: alljbads.live User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://alljbads.live/ads/www/delivery/afr.php?zoneid=1&cb=5834903 Cookie: OAID=01000111010001000101000001010010 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Thu, 08 May 2025 13:44:13 GMT content-type: image/gif nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Dg2Bus27pHQoVGnXAlpWXTHXc3Jefs2PncHmjhSwmlKwPihnD7pVMCvaUkIEIIsz9FezDNjrXFA%2B%2BB26koYgDlWzs9omqIij6btDxHj3xEWeihoQVvSmyEjnhT3RLrX"}],"group":"cf-nel","max_age":604800} pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 access-control-allow-origin: * p3p: CP="CUR ADM OUR NOR STA NID" set-cookie: OAID=01000111010001000101000001010010; expires=Fri, 08 May 2026 13:44:13 GMT; Max-Age=31536000; path=/; secure; SameSite=none cf-cache-status: DYNAMIC cf-ray: 93c963fc0c1956ca-OSL server: cloudflare alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=3112&min_rtt=2383&rtt_var=859&sent=87&recv=49&lost=0&retrans=0&sent_bytes=54968&recv_bytes=5751&delivery_rate=2256499&cwnd=39600&unsent_bytes=0&cid=dd23ba15665f06f6&ts=653&x=16"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (37)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP