Report - rule34.dev/r34/week?ysclid=lsp2k1nnam728203306

Report Overview

Visited public
2024-02-16 19:55:57
Tags
URL
rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Finishing URL
rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
IP / ASN
104.21.3.192
#13335 CLOUDFLARENET
Title
Best of week

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
analyzer54.fc2.com	unknown	1999-05-20	2012-07-26 17:17:27	2024-02-05 08:34:04	1.4 kB	16 kB	44.242.25.68
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-02-16 17:41:20	559 B	34 kB	142.250.74.106
counter1-cdn-ssl.fc2.com	unknown	1999-05-20	2017-01-22 17:23:38	2024-02-05 08:34:04	2.4 kB	8.3 kB	95.140.228.2
cjvdfw.com	332488	2021-06-03	2021-08-31 14:56:03	2024-02-04 17:40:04	437 B	0 B	0.0.0.0
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2024-02-16 17:39:08	465 B	23 kB	151.101.129.229
bat.bing.com	387	1996-01-29	2014-04-08 11:23:16	2024-02-16 17:45:22	1.3 kB	1.5 kB	13.107.21.200
cdn.rule34.dev	unknown	2022-05-31	2023-04-06 17:33:29	2024-01-23 16:28:29	826 B	95 kB	104.21.3.192
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-02-16 17:39:07	1.0 kB	68 kB	142.250.74.67
s.pemsrv.com	unknown	2023-08-01	2023-08-04 15:10:46	2024-02-16 19:58:22	385 B	282 B	95.211.229.248
a.pemsrv.com	unknown	2023-08-01	2023-08-05 14:08:36	2024-02-16 17:44:30	369 B	100 kB	185.76.9.16
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2024-02-16 17:39:14	543 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2024-02-16 17:44:03	1.4 kB	834 B	216.239.34.36
rule34.dev	unknown	2022-05-31	2020-04-15 16:35:44	2024-02-03 17:30:32	9.3 kB	3.3 MB	172.67.131.31
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-02-16 17:40:55	786 B	140 kB	142.250.74.168
counter1.fc2.com	621449	1999-05-20	2012-06-20 05:14:27	2024-02-05 08:34:04	792 B	9.8 kB	104.244.99.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-02-16	medium	cjvdfw.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	From	Size	First Seen	Last Seen
	analyzer54.fc2.com/ana/processor.php?uid=2906472	ScriptElement	9.8 kB	2023-12-20	2024-12-22
Pretty URL analyzer54.fc2.com/ana/processor.php?uid=2906472 IP 44.242.25.68 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:41 Last Seen2024-12-22 23:44 Times Seen113 Hash dfaa724559e8b7b8ebde28c6aa156bc4 1c17dce8cd7e190b414a6d501ff4795169f01a98 1c94db2becc9415f571eecf8594a6a74b3b1856ce0baa7ee22b431005f5e3762 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5V39ZNQ	ScriptElement	123 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5V39ZNQ IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 066a177e1e1c5385b487f94e47d1cebb b612c61faf2c4bbaba7dc3ba5e75d4e9dbfb42a4 e8e60871cce2a5da0554cafc2592be44a16565394286d4af072ddb9f9d62c030 Loading...

	a.pemsrv.com/popunder1000.js	ScriptElement	99 kB	2024-02-15	2024-08-20
Pretty URL a.pemsrv.com/popunder1000.js IP 185.76.9.16 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-15 18:15 Last Seen2024-08-20 09:35 Times Seen43 Hash c37a442b0d58b8e8bd696e11a7c8ff72 88383d92e161c538412f89a62751310fcb977fe6 0bce9f2ccbd000d9af454adc26120c730450117cf8ad50d14d9a6dcef9bcefda Loading...

	counter1.fc2.com/counter_js.php?id=39365686&main=1&lang=0&visitor=2	ScriptElement	5.9 kB	2024-08-20	2024-08-20
Pretty URL counter1.fc2.com/counter_js.php?id=39365686&main=1&lang=0&visitor=2 IP 104.244.99.193 ASN #63210 FC2-INC-2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 9d7821f4e384c9642d21d461dee1deff 849ac26f2d9d51e2b9a334e7815ecd0984b01a4b 5e9ebca5109fe4033ee189d453acfec153dde5146f93a5142ed0e9efdab19e9d Loading...

	rule34.dev/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-05-10
Pretty URL rule34.dev/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 01:27 Times Seen31241 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	ScriptElement	340 B	2024-02-16	2024-12-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-16 20:55 Last Seen2024-12-22 23:44 Times Seen111 Hash c7bb833be47a7061277d37840cb135bd 5bcbb1122017e4e6c4841b41ffe535ce5421e052 7601841d94c324afe867f5414f5d89430e16e2003e40dacc9d55b0aad8baf9d2 Loading...

	unknown	Function	98 B	2023-04-12	2024-08-21
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 12:52 Last Seen2024-08-21 09:40 Times Seen850 Hash 9c2355c1862f27be33f1d1c490852011 df4b4ecfcbcb400ba65c6db887bb7b0c34967fc2 cd886e4500625ef3ab17e2ecc8d0d25c8545ab87769755796aa71a412f19c2f3 Loading...

	rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_ssgManifest.js	ScriptElement	77 B	2023-03-07	2025-05-10
Pretty URL rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_ssgManifest.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-10 02:30 Times Seen68348 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	rule34.dev/_next/static/chunks/pages/%5Bprovider%5D/week-3fa494ec0964831a.js	ScriptElement	6.2 kB	2024-08-20	2024-08-20
Pretty URL rule34.dev/_next/static/chunks/pages/%5Bprovider%5D/week-3fa494ec0964831a.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash cbd23aed3027f7a65e1f84f49a22df6e b0c021a2b786fc16dffd6b1c94c5362975a9930f 036d30ef717ef44149c03fd718dc9dde9efa4496278066a42538bc01058031c5 Loading...

	rule34.dev/_next/static/chunks/framework-5429a50ba5373c56.js	ScriptElement	140 kB	2024-01-21	2024-08-20
Pretty URL rule34.dev/_next/static/chunks/framework-5429a50ba5373c56.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-21 11:31 Last Seen2024-08-20 11:37 Times Seen3 Hash e9e10a5d69c0fffcd1c37da4c05dc5d7 5045fed7dfaaa5bc11f5bc7750eee479f67e56a6 43578ae7c5c86a7adf1b6028f471d016a4777830c19170991552994edeccbe51 Loading...

	rule34.dev/_next/static/chunks/main-72cd581c1e9bd837.js	ScriptElement	109 kB	2024-01-21	2024-08-20
Pretty URL rule34.dev/_next/static/chunks/main-72cd581c1e9bd837.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-21 11:31 Last Seen2024-08-20 11:37 Times Seen3 Hash 08254e485d1643aedaf26e44348e179e 9440a6c29731ada22f4e5f7a9b608d52d9511806 266f66d79acdf0399987caf7f1e9d754373313657b5ab0fe1b42a623f6aa62cd Loading...

	unknown	ScriptElement	180 B	2023-08-02	2025-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-02 19:34 Last Seen2025-04-23 12:35 Times Seen125 Hash 4f98d26051129a03761f1207c101cfab 45d7eaa27a2349009c9476898a349cb8e92df83f 21dfad68de6ba3ee7d73abf619c8c484a4949f8c194ad0f7189ef98ba4883e1b Loading...

	unknown	ScriptElement	281 B	2024-02-16	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-16 20:55 Last Seen2024-08-20 09:30 Times Seen2 Hash 522839fb03c58a0a6498ea607b73a2d3 eb52c41207da056f1414070652d030f928c6b823 f91c45b7764f93423b2a3ec8df654869da707c2ea26d4cd12decf18f067af11b Loading...

	rule34.dev/cdn-cgi/apps/head/HWmfrGmiiH539tPLPeAjxNr2OfA.js	ScriptElement	4.2 kB	2023-05-21	2024-08-21
Pretty URL rule34.dev/cdn-cgi/apps/head/HWmfrGmiiH539tPLPeAjxNr2OfA.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 13:40 Last Seen2024-08-21 08:34 Times Seen14 Hash b3ae2579499d89d6a08d517eba9e346b fe9656a7c03bcf543a18798f6fca4ee968c22fbd c403a4ce39d995d820cb0787eb0a8c3a922aa6c5da2d6c9ffbad5b02e8d0f317 Loading...

	unknown	ScriptElement	387 B	2023-08-02	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-02 19:34 Last Seen2024-08-21 08:34 Times Seen15 Hash 3d86be928396081ecd7d37da84ac20da eb863fcbf3da1e7b8e501a25ffe1f4b57de91e4f a64e4830e447bee04e14d1c959d3d6d6ff21f7e48059d0dd9cbb6aa15eca16dc Loading...

	rule34.dev/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQmVzdCUyMG9mJTIwd2VlayUyMiUyQyUyMnglMjIlM0EwLjk0OTI0OTA4NTk2NTY3NSUyQyUyMnclMjIlM0ExMjgwJTJDJTIyaCUyMiUzQTEwMjQlMkMlMjJqJTIyJTNBMTAyNCUyQyUyMmUlMjIlM0ExMjgwJTJDJTIybCUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGcnVsZTM0LmRldiUyRnIzNCUyRndlZWslM0Z5c2NsaWQlM0Rsc3AyazFubmFtNzI4MjAzMzA2JTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EyNCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==	ScriptElement	5.2 kB	2024-08-20	2024-08-20
Pretty URL rule34.dev/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQmVzdCUyMG9mJTIwd2VlayUyMiUyQyUyMnglMjIlM0EwLjk0OTI0OTA4NTk2NTY3NSUyQyUyMnclMjIlM0ExMjgwJTJDJTIyaCUyMiUzQTEwMjQlMkMlMjJqJTIyJTNBMTAyNCUyQyUyMmUlMjIlM0ExMjgwJTJDJTIybCUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGcnVsZTM0LmRldiUyRnIzNCUyRndlZWslM0Z5c2NsaWQlM0Rsc3AyazFubmFtNzI4MjAzMzA2JTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EyNCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA== IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 3dc96b62494b9e21e2351aba8ca27a96 6c90eb315a1664a143314154e02e1bcff7ecf25d efe2795ec4a80b16e91cb7c12e4efab928ab43784f1abc5d2899c366ae401ab5 Loading...

	rule34.dev/_next/static/chunks/pages/_app-ee8fb5a4bb68431d.js	ScriptElement	700 kB	2024-08-20	2024-08-20
Pretty URL rule34.dev/_next/static/chunks/pages/_app-ee8fb5a4bb68431d.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash b17a999e14b76d79db4cbea1bfa35d22 6e88d2b86b467eb012b11b2ae457a1318496f3a8 430de525461b88d4f87682e8741a008ea2da0707702d96a916fcb747afa5edc6 Loading...

	rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_buildManifest.js	ScriptElement	3.2 kB	2024-08-20	2024-08-20
Pretty URL rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_buildManifest.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash b63e2215e0dc2005d0f8c6cdba46d8ea 8b69a6ec4a0766645f64f79d7ed932b401cd5449 6bc3e594ba128eedf4a2e3da5cbebc12e0d74cdd44758536427238a5b22bba2b Loading...

	unknown	ScriptElement	609 B	2024-02-05	2024-12-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-05 08:34 Last Seen2024-12-22 23:44 Times Seen112 Hash ceb3a397d3ff0f2d9606c59124bf2b9a a544a3d4b024b80c52202dae91cd839a92791617 83e8a4a4b7ed44cdbc5d858a03b5b79ee27ea7267eea412e5da930825cf618d8 Loading...

	rule34.dev/script.js	ScriptElement	17 kB	2024-08-20	2024-08-20
Pretty URL rule34.dev/script.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 3f426e094ced3ed9b119cfa837f7be5b 98a76380b591a6ea34a1cfcaddd3113932b822a7 f46713442ee8dde66aceb3b6c7f712e5e6cc0ca2909fc8e71b3abf391e03f164 Loading...

	analyzer54.fc2.com/ana/analyzer.php?uid=2906472&pid=0&idsess=&ref=&href=https%3A//rule34.dev/r34/week%3Fysclid%3Dlsp2k1nnam728203306&wid=1280&hei=1024&col=24&visitor=1-1000189568-1708113332-0-1-1-0&ssl=0	ScriptElement	1.2 kB	2024-08-20	2024-08-20
Pretty URL analyzer54.fc2.com/ana/analyzer.php?uid=2906472&pid=0&idsess=&ref=&href=https%3A//rule34.dev/r34/week%3Fysclid%3Dlsp2k1nnam728203306&wid=1280&hei=1024&col=24&visitor=1-1000189568-1708113332-0-1-1-0&ssl=0 IP 44.242.25.68 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 9baba60dbe8a947f01c97780e5ddd0f4 816dd3be5af49546add481ecbec73fe14b92a8c6 61ef4ab2c9db73e1bd945a4f3713f5375e9223d87a8e96ec45c290d22b5b51ed Loading...

	rule34.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-10
Pretty URL rule34.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 02:10 Times Seen68269 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	rule34.dev/_next/static/chunks/webpack-d1f6ae8dbd6b2ad7.js	ScriptElement	2.3 kB	2023-09-06	2025-01-17
Pretty URL rule34.dev/_next/static/chunks/webpack-d1f6ae8dbd6b2ad7.js IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-06 12:58 Last Seen2025-01-17 15:38 Times Seen9 Hash 5badc1beb9307c9ac4aa9356761ddecc 6ae0ef609e6a92e8c972ca080e4849c1f78015f7 8788b3d4c5bc70933054825733eb98439f055147f4df0d88236caac7342f6481 Loading...

	www.googletagmanager.com/gtag/js?id=G-7SW37TYKPH	ScriptElement	270 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-7SW37TYKPH IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:30 Last Seen2024-08-20 09:30 Times Seen1 Hash 5ab7be478e3db428afb07d3fff52e136 37f661f5e75367e07e374acf81f5a6ac1b7da379 1a7157d0fa913f208a6d998e4be2da7dba3af73d5eaa09b57a2dd4355f11695e Loading...

	counter1.fc2.com/counter.php?id=39365686&main=1	ScriptElement	3.3 kB	2023-12-20	2024-08-20
Pretty URL counter1.fc2.com/counter.php?id=39365686&main=1 IP 104.244.99.193 ASN #63210 FC2-INC-2 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:41 Last Seen2024-08-20 15:24 Times Seen5 Hash 6b2359bfb3e1899b3bc1a9be1d05dedd 16fc8297982439bec338c79971544bbda009cb52 aae1a64fe0bd317fba3c27448cac62178d62e24615ed13b3d71baa96929f90a7 Loading...

	rule34.dev/r34/week?ysclid=lsp2k1nnam728203306	ScriptElement	1.5 kB	2024-02-16	2024-08-20
Pretty URL rule34.dev/r34/week?ysclid=lsp2k1nnam728203306 IP 172.67.131.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-16 16:25 Last Seen2024-08-20 09:31 Times Seen18 Hash 5e10cfdb7cb236647a265ce39f7fb80a 783af8c72194a57c06f503af8c8cc112d1d5f4ce c1a1849c5c0be2a18506a2a138d2ca4b241574c1c3581e54682bd1d944cf7b17 Loading...

HTTP Transactions (48)

URL IP Response Size

cdn.jsdelivr.net/npm/openplayerjs/dist/openplayer.min.css

151.101.129.229

200 OK

22 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/openplayerjs/dist/openplayer.min.css
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (40844)
Size
22 kB (22396 bytes)
Hash
43d516c0b2cace6800514c6c262c24fe
5e73559854cd7c3442738d60ee9faf5efccde249
44c3d35df904533315fd15933bb9680a31d7b60ff6d065a3300dd55da52811f8

HTTP Headers

GET /npm/openplayerjs/dist/openplayer.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Referer: https://rule34.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 2.14.2
x-jsd-version-type: version
etag: W/"12fb1-XnNVmFTNfDRCc41g7p+vXvzN4kk"
content-encoding: br
accept-ranges: bytes
date: Fri, 16 Feb 2024 19:55:31 GMT
age: 12725
x-served-by: cache-fra-eddf8230067-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22396
X-Firefox-Spdy: h2

rule34.dev/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.131.31

200 OK

32 kB

URL GET HTTP/2
rule34.dev/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
gzip compressed data, from Unix
Size
32 kB (31804 bytes)
Hash
03766819e4deff7e5c6070ab00f9987d
d158d923d0d62213b1c09dbc35d2aa65746c3fdf
bf8d7dabc86dcb584687d607b4314290c3681d93e9cbafebad927bc3c50b41c7

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript
last-modified: Tue, 13 Feb 2024 18:12:13 GMT
etag: W/"65cbb0fd-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JbEL6KqnThdjAky4POrY39EqJrMDhWCUQP%2FnUpFVyKks3SJTiQXGJaiDIschWB7rMEHMvySgEdp4PLWRRZi1edS6T0XhUSR0iztBpZgTIH4yZMH5cYGOoiLlxJrY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 856859414a17569a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 18 Feb 2024 19:55:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_buildManifest.js

172.67.131.31

200 OK

68 kB

URL GET HTTP/2
rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_buildManifest.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with very long lines (3230), with no line terminators
Size
68 kB (67703 bytes)
Hash
b63e2215e0dc2005d0f8c6cdba46d8ea
8b69a6ec4a0766645f64f79d7ed932b401cd5449
6bc3e594ba128eedf4a2e3da5cbebc12e0d74cdd44758536427238a5b22bba2b

HTTP Headers

GET /_next/static/9unHsnVg39t6m7PjQ1YPG/_buildManifest.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942bc30569a-OSL
cf-cache-status: HIT
age: 522920
etag: W/"c9e-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tXrP0IJEUleTP6yhZlH8RSlf8dqktdDVjeCZlExAb3b65uXqRo%2FSBxR7e7QcxcWYfRd06iK61PIu8FS%2FsvfNsxTcoIEdSlIFdv3viryrMEhQl04Vd8aS1YJ0SwAM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.67

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
ValidityMon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 02:59:04 GMT
expires: Fri, 14 Feb 2025 02:59:04 GMT
cache-control: public, max-age=31536000
age: 147387
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.67

200 OK

33 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
ValidityMon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33092, version 1.0
Size
33 kB (33092 bytes)
Hash
057478083c1d55ea0c2182b24f6dd72f
caf557cd276a76992084efc4c8857b66791a6b7f
bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b

HTTP Headers

GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 02:59:04 GMT
expires: Fri, 14 Feb 2025 02:59:04 GMT
cache-control: public, max-age=31536000
age: 147387
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rule34.dev/_next/static/css/ef7ef6f6a1258c5e.css

172.67.131.31

200 OK

4.3 kB

URL GET HTTP/2
rule34.dev/_next/static/css/ef7ef6f6a1258c5e.css
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with very long lines (13230), with no line terminators
Size
4.3 kB (4314 bytes)
Hash
897319a6096798620516f9e2c09d7446
ec768ac22c31278fd9984c852e99c391e0c41c9c
ba19ed6c7f0cebce1efdf95398077fda4129a9d64e0b12620176e87db28a4f2f

HTTP Headers

GET /_next/static/css/ef7ef6f6a1258c5e.css HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: text/css; charset=UTF-8
cf-ray: 856859414a10569a-OSL
cf-cache-status: HIT
age: 660830
etag: W/"33c5-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=13253
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aFvlBYKevitdjDT2rk9lw%2F7fMKfpU6jgvzL7IKlHcepk2KewsF8%2B0ee%2FxS%2FRyzGOCHv93x9OwSQiLdkzpzF7DYEG8XOUNjbEqAQ2TyD6XrMFaeLkFxBgPpx56hcM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bat.bing.com/action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=77027&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=7a92948e-791e-451c-86e8-a17897eec869&msclkid=N

13.107.21.200

204 No Content

0 B

URL GET HTTP/2
bat.bing.com/action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=77027&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=7a92948e-791e-451c-86e8-a17897eec869&msclkid=N
IP
13.107.21.200:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintD4:21:A2:0C:39:30:81:9E:26:BC:BA:AE:74:30:44:21:9C:90:5E:B2
ValiditySun, 21 Jan 2024 13:42:33 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=77027&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=7a92948e-791e-451c-86e8-a17897eec869&msclkid=N HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2FF3F998EAF56F7425C1EDBFEB006E97; domain=.bing.com; expires=Wed, 12-Mar-2025 19:55:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4595C960499C44DF89EB320A46B3A3A5 Ref B: OSL30EDGE0217 Ref C: 2024-02-16T19:55:31Z
date: Fri, 16 Feb 2024 19:55:31 GMT
X-Firefox-Spdy: h2

cdn.rule34.dev/file/rule34dev/imgs/baixados.webp

104.21.3.192

200 OK

26 kB

URL GET HTTP/3
cdn.rule34.dev/file/rule34dev/imgs/baixados.webp
IP
104.21.3.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintDD:7E:45:CC:1C:86:1D:0A:38:C6:8A:E1:67:82:A8:AA:8D:A3:39:DF
ValidityFri, 26 Jan 2024 18:36:53 GMT - Thu, 25 Apr 2024 18:36:52 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x1000, Scaling: [none]x[none], YUV color, decoders should clamp
Size
26 kB (25812 bytes)
Hash
514d0e8189aa9f68fe2bba0e6fc565af
73c73ba0e9ecd7741c6c6447442c8fb0ff4d2f05
aa4415200bf3fe36a75f8efadbf2a2dccf7cb9d5fdca9e081448d9ea313f7d7a

HTTP Headers

GET /file/rule34dev/imgs/baixados.webp HTTP/1.1
Host: cdn.rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: image/png
content-length: 25812
cf-ray: 856859446e3456bb-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 1587573
last-modified: Thu, 18 Jan 2024 01:52:25 GMT
strict-transport-security: max-age=63072000
vary: Accept-Encoding
x-bz-content-sha1: 73c73ba0e9ecd7741c6c6447442c8fb0ff4d2f05
x-bz-file-id: 4_z8e33fa69739fcf6b889e0713_f116957dc720f1636_d20240118_m015124_c005_v0501016_t0021_u01705542684966
x-bz-file-name: imgs/baixados.webp
x-bz-info-src_last_modified_millis: 1694533125666
x-bz-upload-timestamp: 1705542684966
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=df%2B%2FcUA%2BmnH%2FymZuW23DQRcgaC2R6PG3%2BNguHKTzexO5Yxfu6fSNwS3G2tR%2BcUzjVVfOeUFXsOwNFN4cQQMF37Jh7aAvzVCvbCw%2FJelUoeXnaAofOjfa4qgf8%2Fn7tuvS3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=86400, max-age=1800, max-age=1800
server: cloudflare
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-7SW37TYKPH

142.250.74.168

200 OK

91 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-7SW37TYKPH
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintD2:5E:3F:2C:F8:42:4E:EA:5B:53:F5:8D:01:98:53:7D:A7:18:D6:E7
ValidityMon, 29 Jan 2024 08:04:47 GMT - Mon, 22 Apr 2024 08:04:46 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
91 kB (91436 bytes)
Hash
5ab7be478e3db428afb07d3fff52e136
37f661f5e75367e07e374acf81f5a6ac1b7da379
1a7157d0fa913f208a6d998e4be2da7dba3af73d5eaa09b57a2dd4355f11695e

HTTP Headers

GET /gtag/js?id=G-7SW37TYKPH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Feb 2024 19:55:32 GMT
expires: Fri, 16 Feb 2024 19:55:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91436
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-5V39ZNQ

142.250.74.168

200 OK

47 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5V39ZNQ
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintD2:5E:3F:2C:F8:42:4E:EA:5B:53:F5:8D:01:98:53:7D:A7:18:D6:E7
ValidityMon, 29 Jan 2024 08:04:47 GMT - Mon, 22 Apr 2024 08:04:46 GMT

File type
JavaScript source, ASCII text, with very long lines (2213)
Size
47 kB (47289 bytes)
Hash
066a177e1e1c5385b487f94e47d1cebb
b612c61faf2c4bbaba7dc3ba5e75d4e9dbfb42a4
e8e60871cce2a5da0554cafc2592be44a16565394286d4af072ddb9f9d62c030

HTTP Headers

GET /gtm.js?id=GTM-5V39ZNQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Feb 2024 19:55:32 GMT
expires: Fri, 16 Feb 2024 19:55:32 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Feb 2024 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47289
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s.pemsrv.com/venor.php

95.211.229.248

200 OK

21 B

URL GET HTTP/1.1
s.pemsrv.com/venor.php
IP
95.211.229.248:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintF9:2C:4B:D0:2B:5C:31:3D:E0:1A:D9:45:C6:73:7D:D9:7B:BA:AB:C5
ValidityMon, 18 Dec 2023 09:33:24 GMT - Sun, 17 Mar 2024 09:33:23 GMT

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9

HTTP Headers

GET /venor.php HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Feb 2024 19:55:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Accept-CH: 
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

counter1.fc2.com/counter.php?id=39365686&main=1

104.244.99.193

200 Ok

3.3 kB

URL GET HTTP/1.1
counter1.fc2.com/counter.php?id=39365686&main=1
IP
104.244.99.193:443
ASN
#63210 FC2-INC-2

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
3.3 kB (3348 bytes)
Hash
6b2359bfb3e1899b3bc1a9be1d05dedd
16fc8297982439bec338c79971544bbda009cb52
aae1a64fe0bd317fba3c27448cac62178d62e24615ed13b3d71baa96929f90a7

HTTP Headers

GET /counter.php?id=39365686&main=1 HTTP/1.1
Host: counter1.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 Ok
Server: nginx
Date: Fri, 16 Feb 2024 19:55:32 GMT
Content-Type: application/x-javascript
Content-Length: 3348
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache

analyzer54.fc2.com/ana/processor.php?uid=2906472

44.242.25.68

200 Ok

9.8 kB

URL GET HTTP/1.1
analyzer54.fc2.com/ana/processor.php?uid=2906472
IP
44.242.25.68:443
ASN
#16509 AMAZON-02

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerAmazon
Subject*.fc2.com
FingerprintC1:5F:B2:27:2A:7D:25:BD:9B:65:A6:5E:54:72:71:42:84:35:74:19
ValidityWed, 10 Jan 2024 00:00:00 GMT - Fri, 07 Feb 2025 23:59:59 GMT

File type
ASCII text, with very long lines (346)
Size
9.8 kB (9765 bytes)
Hash
dfaa724559e8b7b8ebde28c6aa156bc4
1c17dce8cd7e190b414a6d501ff4795169f01a98
1c94db2becc9415f571eecf8594a6a74b3b1856ce0baa7ee22b431005f5e3762

HTTP Headers

GET /ana/processor.php?uid=2906472 HTTP/1.1
Host: analyzer54.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 Ok
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Type: application/x-javascript
Date: Fri, 16 Feb 2024 19:55:32 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Server: nginx/1.1.19
Content-Length: 9765
Connection: keep-alive

counter1.fc2.com/counter_js.php?id=39365686&main=1&lang=0&visitor=2

104.244.99.193

200 Ok

5.9 kB

URL GET HTTP/1.1
counter1.fc2.com/counter_js.php?id=39365686&main=1&lang=0&visitor=2
IP
104.244.99.193:443
ASN
#63210 FC2-INC-2

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2704)
Size
5.9 kB (5865 bytes)
Hash
9d7821f4e384c9642d21d461dee1deff
849ac26f2d9d51e2b9a334e7815ecd0984b01a4b
5e9ebca5109fe4033ee189d453acfec153dde5146f93a5142ed0e9efdab19e9d

HTTP Headers

GET /counter_js.php?id=39365686&main=1&lang=0&visitor=2 HTTP/1.1
Host: counter1.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 Ok
Server: nginx
Date: Fri, 16 Feb 2024 19:55:32 GMT
Content-Type: application/x-javascript
Content-Length: 5865
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache

bat.bing.com/action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=689704&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=2456578e-a4c1-46ee-8e9a-2fcbe3a9ef6d&msclkid=N

13.107.21.200

204 No Content

0 B

URL GET HTTP/2
bat.bing.com/action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=689704&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=2456578e-a4c1-46ee-8e9a-2fcbe3a9ef6d&msclkid=N
IP
13.107.21.200:443
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintD4:21:A2:0C:39:30:81:9E:26:BC:BA:AE:74:30:44:21:9C:90:5E:B2
ValiditySun, 21 Jan 2024 13:42:33 GMT - Thu, 27 Jun 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /action/0?evt=pageLoad&ti=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&tl=Best+of+week&rn=689704&sw=1280&sh=1024&lg=en-US&p=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&Ver=2&mid=2456578e-a4c1-46ee-8e9a-2fcbe3a9ef6d&msclkid=N HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=11B05F4B8DC0617832884B6C8C356066; domain=.bing.com; expires=Wed, 12-Mar-2025 19:55:33 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EB382A03453448B88AA688EC8A03E006 Ref B: OSL30EDGE0217 Ref C: 2024-02-16T19:55:32Z
date: Fri, 16 Feb 2024 19:55:32 GMT
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7SW37TYKPH&cid=446097421.1708113332&gtm=45je42e0v888933128za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l3l1&npa=0&z=534435485

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7SW37TYKPH&cid=446097421.1708113332&gtm=45je42e0v888933128za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l3l1&npa=0&z=534435485
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint87:62:54:3E:38:7C:25:79:8F:06:DE:9B:88:68:C1:19:2A:4F:42:6C
ValidityMon, 29 Jan 2024 08:22:51 GMT - Mon, 22 Apr 2024 08:22:50 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7SW37TYKPH&cid=446097421.1708113332&gtm=45je42e0v888933128za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l3l1&npa=0&z=534435485 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Feb 2024 19:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/l.gif

95.140.228.2

200 OK

1.2 kB

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/l.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 30 x 20
Size
1.2 kB (1234 bytes)
Hash
5bfe0528d02baebe2ecba2bb26db802a
a8037ba68de8d7f8fdfeba162293f4d663f99b69
66614062c3f11b34b97548d2079b7752e0bb0e6c785fb55e15faecedf00344ec

HTTP Headers

GET /cimg/17/00002317/l.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: 963f9ade98a6aa3267bca2d61a33fd23
age: 2489168
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Mon, 19 Feb 2024 00:29:25 GMT
content-length: 1234
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/pornhub-7c3364d67656f6c1.js

172.67.131.31

200 OK

3.9 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/pornhub-7c3364d67656f6c1.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (7084), with no line terminators
Size
3.9 kB (3924 bytes)
Hash
54f25575d14f15c3f47ab805607b5747
b4027dfb38466f5509f67015e90a22fe5bb86e90
5c8731dd3827971156f7becd28c4dc6929fb31557e7b43545416dc2339f964b7

HTTP Headers

GET /_next/static/chunks/pages/pornhub-7c3364d67656f6c1.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 856859470a59569a-OSL
cf-cache-status: HIT
age: 2565436
etag: W/"1bac-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ICgZs5PZIreEn1rXpIemWg68lRpi0VUNLA17lM2blA6FWn14wvsr4f7dr61Mkb4a70AIhSOOhL8IsCQQBBGLry%2BqSJgqrl35m3Tww5DSsoTUh1ir9rMo6zRdWTu6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/2.gif

95.140.228.2

200 OK

1.1 kB

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/2.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 20 x 20
Size
1.1 kB (1072 bytes)
Hash
bbf69029e82bbf25858ba7d43a649ae1
db94a4f27579388ba0a33aec803cd1cf02aebe4e
db161d632d850c281f18744780a8ad337bd4150c7165c0d890621c2ddf8edea9

HTTP Headers

GET /cimg/17/00002317/2.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: 2afda433f98b52d02622c44f472f3fc1
age: 2239918
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Wed, 21 Feb 2024 21:43:35 GMT
content-length: 1072
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/6.gif

95.140.228.2

200 OK

1.1 kB

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/6.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 20 x 20
Size
1.1 kB (1077 bytes)
Hash
03c1bb815992283609b0888edf9065e9
74a2591cd78cf0b480a68b2ba46b4ffe5a7faf9f
840db467bb516d147ca6e6b43e119256b3fda74e13065ca72acf369d38b9b8ad

HTTP Headers

GET /cimg/17/00002317/6.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: f5828b9e474db151ecc5e1b94004e575
age: 2488656
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Mon, 19 Feb 2024 00:37:57 GMT
content-length: 1077
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/1.gif

95.140.228.2

200 OK

670 B

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/1.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 20 x 20
Size
670 B (670 bytes)
Hash
3efa4ae5e92d44de0462e9de6fc64094
40e722cd2ace714b0d8593cca27b5617bbec1b63
5b01a3846428cd6caedf619ce6c3cd0efee0285fc0650dedcd885efeca1ba548

HTTP Headers

GET /cimg/17/00002317/1.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: daf23811a5692613ada4dddd5f40a85b
age: 2238756
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Wed, 21 Feb 2024 22:02:57 GMT
content-length: 670
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/8.gif

95.140.228.2

200 OK

676 B

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/8.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 20 x 20
Size
676 B (676 bytes)
Hash
5f557048586fac8d2c38f7d7926c1822
7246e36fa55b09412df8d10a9c3fc83d56affb47
764b7d3f756a404529eccfae0312b27370ae6ba406e0c94b154f14e8bc4dc36d

HTTP Headers

GET /cimg/17/00002317/8.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: 965de5b24f8f0ec4fa0f121d4cbe0c4d
age: 945584
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Thu, 07 Mar 2024 21:15:49 GMT
content-length: 676
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&_gaz=1&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1882

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&_gaz=1&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1882
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintD2:5E:3F:2C:F8:42:4E:EA:5B:53:F5:8D:01:98:53:7D:A7:18:D6:E7
ValidityMon, 29 Jan 2024 08:04:47 GMT - Mon, 22 Apr 2024 08:04:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&_gaz=1&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1882 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: null
date: Fri, 16 Feb 2024 19:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

analyzer54.fc2.com/ana/analyzer.php?uid=2906472&pid=0&idsess=&ref=&href=https%3A//rule34.dev/r34/week%3Fysclid%3Dlsp2k1nnam728203306&wid=1280&hei=1024&col=24&visitor=1-1000189568-1708113332-0-1-1-0&ssl=0

44.242.25.68

200 Ok

1.2 kB

URL GET HTTP/1.1
analyzer54.fc2.com/ana/analyzer.php?uid=2906472&pid=0&idsess=&ref=&href=https%3A//rule34.dev/r34/week%3Fysclid%3Dlsp2k1nnam728203306&wid=1280&hei=1024&col=24&visitor=1-1000189568-1708113332-0-1-1-0&ssl=0
IP
44.242.25.68:443
ASN
#16509 AMAZON-02

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerAmazon
Subject*.fc2.com
FingerprintC1:5F:B2:27:2A:7D:25:BD:9B:65:A6:5E:54:72:71:42:84:35:74:19
ValidityWed, 10 Jan 2024 00:00:00 GMT - Fri, 07 Feb 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
1.2 kB (1240 bytes)
Hash
9baba60dbe8a947f01c97780e5ddd0f4
816dd3be5af49546add481ecbec73fe14b92a8c6
61ef4ab2c9db73e1bd945a4f3713f5375e9223d87a8e96ec45c290d22b5b51ed

HTTP Headers

GET /ana/analyzer.php?uid=2906472&amp;pid=0&amp;idsess=&amp;ref=&amp;href=https%3A//rule34.dev/r34/week%3Fysclid%3Dlsp2k1nnam728203306&amp;wid=1280&amp;hei=1024&amp;col=24&amp;visitor=1-1000189568-1708113332-0-1-1-0&amp;ssl=0 HTTP/1.1
Host: analyzer54.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 Ok
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Type: application/x-javascript
Date: Fri, 16 Feb 2024 19:55:33 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Server: nginx/1.1.19
Content-Length: 1240
Connection: keep-alive

analyzer54.fc2.com/ana/icon62.gif

44.242.25.68

200 OK

3.6 kB

URL GET HTTP/1.1
analyzer54.fc2.com/ana/icon62.gif
IP
44.242.25.68:443
ASN
#16509 AMAZON-02

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerAmazon
Subject*.fc2.com
FingerprintC1:5F:B2:27:2A:7D:25:BD:9B:65:A6:5E:54:72:71:42:84:35:74:19
ValidityWed, 10 Jan 2024 00:00:00 GMT - Fri, 07 Feb 2025 23:59:59 GMT

File type
GIF image data, version 89a, 40 x 15
Size
3.6 kB (3592 bytes)
Hash
e638c8112dc38d56696dba97921fcf8d
268a29f196902b5cb69f7af17982b54d0d5c4aad
cc873ae205d567764c454e868e0ae7b91f7c5fc091ed4cfcfd710de2d1a18c01

HTTP Headers

GET /ana/icon62.gif HTTP/1.1
Host: analyzer54.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Content-Type: image/gif
Date: Fri, 16 Feb 2024 19:55:33 GMT
Expires: Sun, 17 Mar 2024 19:55:33 GMT
Last-Modified: Wed, 08 Feb 2006 08:31:00 GMT
Server: nginx/1.1.19
Content-Length: 3592
Connection: keep-alive

region1.analytics.google.com/g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=scroll&epn.percent_scrolled=90&tfd=6903

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=scroll&epn.percent_scrolled=90&tfd=6903
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintD2:5E:3F:2C:F8:42:4E:EA:5B:53:F5:8D:01:98:53:7D:A7:18:D6:E7
ValidityMon, 29 Jan 2024 08:04:47 GMT - Mon, 22 Apr 2024 08:04:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7SW37TYKPH&gtm=45je42e0v888933128za200&_p=1708113332149&gcd=13l3l3l3l1&npa=0&dma_cps=sypham&dma=1&cid=446097421.1708113332&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1708113332&sct=1&seg=0&dl=https%3A%2F%2Frule34.dev%2Fr34%2Fweek%3Fysclid%3Dlsp2k1nnam728203306&dt=Best%20of%20week&en=scroll&epn.percent_scrolled=90&tfd=6903 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: null
date: Fri, 16 Feb 2024 19:55:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

rule34.dev/r34/week?ysclid=lsp2k1nnam728203306

172.67.131.31

200 OK

23 kB

URL User Request GET HTTP/2
rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
HTML document, ASCII text, with very long lines (15980)
Size
23 kB (22667 bytes)
Hash
8b8ad7e2173b844608c49a4ee3049f07
0caf9755b25573fefc9dcdb00827d9c957f3a149
9dea098cb5b940f723fce4172769cb16c46401a05ba245c5e5028eb95f444511

HTTP Headers

GET /r34/week?ysclid=lsp2k1nnam728203306 HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: text/html; charset=utf-8
cf-ray: 8568593bead9569a-OSL
cf-cache-status: DYNAMIC
vary: Accept-Encoding
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
x-powered-by: Next.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eAQTqZA%2BccvjbrzgvLvnouCjioc%2Fw3oyR63zmoaWHDpL641aLKNZmsteo6%2BMjPaWll23c7MVuywGZvFxvtnCabJK6fV2p21iL%2B%2BApD0hO%2Br6EnxDRCpqbuOXgh91"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, s-maxage=60, stale-while-revalidate=59, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/main-72cd581c1e9bd837.js

172.67.131.31

200 OK

109 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/main-72cd581c1e9bd837.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
109 kB (109138 bytes)
Hash
08254e485d1643aedaf26e44348e179e
9440a6c29731ada22f4e5f7a9b608d52d9511806
266f66d79acdf0399987caf7f1e9d754373313657b5ab0fe1b42a623f6aa62cd

HTTP Headers

GET /_next/static/chunks/main-72cd581c1e9bd837.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942cc3f569a-OSL
cf-cache-status: HIT
age: 3294845
etag: W/"1aa53-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=109139
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5UePPJheSGc77iWFLr%2BMwh0GF9sppJuuxiYN62nH9FOMiNa7GDGd4%2Baab8G5MFRnvydOJgfMf2tz4K2YVbDyqpAsyg3X6br6eJHLd1kx5f%2BHtzBDid1adU7RSaaN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/eh/toplist/%5Btime%5D/%5Bpage%5D-6c2b2eb4b27b3fd3.js

172.67.131.31

200 OK

7.3 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/eh/toplist/%5Btime%5D/%5Bpage%5D-6c2b2eb4b27b3fd3.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with very long lines (7713), with no line terminators
Size
7.3 kB (7345 bytes)
Hash
655f59d7417cacc4e1c6d1dca903fec8
c4714774a45d3731efcf2dbe2268d9f84ce9399a
31c6c6008140b81f12563ca8330d6175eb6cefb80180b28bb20debf9d65bcf05

HTTP Headers

GET /_next/static/chunks/pages/eh/toplist/%5Btime%5D/%5Bpage%5D-6c2b2eb4b27b3fd3.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 856859470a58569a-OSL
cf-cache-status: HIT
age: 3294844
etag: W/"1cb1-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6RjgY%2F2PLrxdIr%2FD0rUkml7uHO9V3k%2BhR0Y2yHITgRSBNycqYdGQbEdYQ%2BaUxoVF4tBAk7%2BDme7S8qpl77ojuzPk4gVeBeVb4Orj8FY5j0kKJPtVg%2BCZxIV3IPts"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

172.67.131.31

200 OK

1.2 kB

URL GET HTTP/2
rule34.dev/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript
last-modified: Tue, 13 Feb 2024 18:12:13 GMT
etag: W/"65cbb0fd-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UKdfuzy00oFz4C7Xq2AwDwzYZw2tqx9Db2BTT8O7A%2BTjH5akxktZHzqF5MNoRKREJxEmqIsnMybM3%2BRHn%2FXkaE%2Byos8z7p%2F5uPU32Umh1koGfAH5gr9zOuS8BauM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 856859414a15569a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 18 Feb 2024 19:55:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

rule34.dev/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQmVzdCUyMG9mJTIwd2VlayUyMiUyQyUyMnglMjIlM0EwLjk0OTI0OTA4NTk2NTY3NSUyQyUyMnclMjIlM0ExMjgwJTJDJTIyaCUyMiUzQTEwMjQlMkMlMjJqJTIyJTNBMTAyNCUyQyUyMmUlMjIlM0ExMjgwJTJDJTIybCUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGcnVsZTM0LmRldiUyRnIzNCUyRndlZWslM0Z5c2NsaWQlM0Rsc3AyazFubmFtNzI4MjAzMzA2JTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EyNCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==

172.67.131.31

200 OK

5.2 kB

URL GET HTTP/2
rule34.dev/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQmVzdCUyMG9mJTIwd2VlayUyMiUyQyUyMnglMjIlM0EwLjk0OTI0OTA4NTk2NTY3NSUyQyUyMnclMjIlM0ExMjgwJTJDJTIyaCUyMiUzQTEwMjQlMkMlMjJqJTIyJTNBMTAyNCUyQyUyMmUlMjIlM0ExMjgwJTJDJTIybCUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGcnVsZTM0LmRldiUyRnIzNCUyRndlZWslM0Z5c2NsaWQlM0Rsc3AyazFubmFtNzI4MjAzMzA2JTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EyNCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (5339), with no line terminators
Size
5.2 kB (5238 bytes)
Hash
2762dccb938bfd6f9c11161404f8adef
461b5125cd695a82541ad414f5dc1c9bcc89f1ec
a0ff81ca6efc1a66e07dcdf1f8ccbb34f929f1cfcc98ecf607b1f3e0d77881a8

HTTP Headers

GET /cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQmVzdCUyMG9mJTIwd2VlayUyMiUyQyUyMnglMjIlM0EwLjk0OTI0OTA4NTk2NTY3NSUyQyUyMnclMjIlM0ExMjgwJTJDJTIyaCUyMiUzQTEwMjQlMkMlMjJqJTIyJTNBMTAyNCUyQyUyMmUlMjIlM0ExMjgwJTJDJTIybCUyMiUzQSUyMmh0dHBzJTNBJTJGJTJGcnVsZTM0LmRldiUyRnIzNCUyRndlZWslM0Z5c2NsaWQlM0Rsc3AyazFubmFtNzI4MjAzMzA2JTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EyNCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA== HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: https://rule34.dev
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Set-Cookie, Cache-Control
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 600
x-robots-tag: none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C8w%2Bkfk93GCkBCuO1dgRG%2Bz3409X4uRHJas9xNzc7OFu561%2FpaxwlGDqOEDuKNLqZUGSptPJTQV4lhnOtta8aszTu9%2BLHtQ9Emmu06X0%2F6xCQMTtGyZ8WqFy94LN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=1800
server: cloudflare
cf-ray: 856859435d12569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/favorites-f0c56128e1a999c3.js

172.67.131.31

200 OK

250 B

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/favorites-f0c56128e1a999c3.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with no line terminators
Size
250 B (250 bytes)
Hash
58d7eddd7010ba042a5e67165ee6ffce
072448206a0edd1791e7bbeac4b99398a19b042b
d5b7cfaf02977f365cd8ceadb8940ca1f749762d05a3dc2a850a02cdd33d4443

HTTP Headers

GET /_next/static/chunks/pages/favorites-f0c56128e1a999c3.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 856859471a70569a-OSL
cf-cache-status: HIT
age: 3294844
etag: W/"fa-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DjchQZ5BkBV6N1ImiMq8JVsuwBkFd9nb9p8PLD8AUKE4qmvjhByrJpt%2Bx7U6XOQmzzQ%2FrwTpt2TZHzSY7jNDLHxWIwTWXvUk0ir3Oh%2F3u3LnyjDOY5LK03jxsHv6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

counter1-cdn-ssl.fc2.com/cimg/17/00002317/r.gif

95.140.228.2

200 OK

1.2 kB

URL GET HTTP/2
counter1-cdn-ssl.fc2.com/cimg/17/00002317/r.gif
IP
95.140.228.2:443
ASN
#22822 LLNW

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerDigiCert Inc
Subject*.fc2.com
Fingerprint88:B8:C1:50:08:2A:3A:99:94:8A:E2:5D:CB:02:4D:65:2D:0F:EB:83
ValidityFri, 09 Jun 2023 00:00:00 GMT - Mon, 08 Jul 2024 23:59:59 GMT

File type
GIF image data, version 89a, 30 x 20
Size
1.2 kB (1234 bytes)
Hash
5bfe0528d02baebe2ecba2bb26db802a
a8037ba68de8d7f8fdfeba162293f4d663f99b69
66614062c3f11b34b97548d2079b7752e0bb0e6c785fb55e15faecedf00344ec

HTTP Headers

GET /cimg/17/00002317/r.gif HTTP/1.1
Host: counter1-cdn-ssl.fc2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/gif
cache-control: max-age=2678400
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
x-llid: 228075933a25770f678b6e265877e12f
age: 2489168
date: Fri, 16 Feb 2024 19:55:33 GMT
last-modified: Thu, 26 Jan 2006 05:02:00 GMT
expires: Mon, 19 Feb 2024 00:29:25 GMT
content-length: 1234
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/webpack-d1f6ae8dbd6b2ad7.js

172.67.131.31

200 OK

2.3 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/webpack-d1f6ae8dbd6b2ad7.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (2293), with no line terminators
Size
2.3 kB (2269 bytes)
Hash
c9862a3f613b0acabd6526d2505a32b7
612c6aad2e846b8e0a33d4d9f9c0e1df48b94aaf
9df6a387139b26e760fda1a5212c4a8b58d06d0f814b16075e54ccad3a3d6f81

HTTP Headers

GET /_next/static/chunks/webpack-d1f6ae8dbd6b2ad7.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942cc47569a-OSL
cf-cache-status: HIT
age: 3294845
etag: W/"8dd-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f53pejt284X9%2BICnClxjXVzmvLMRmzrwL2A71EeZutP9%2B%2B9%2FSpoNvR4XInnVQayc2V1uuYdDSje2vhjuZnVgP1GGqjk7j8MAoShvieGFWES0%2BANuM6ztsA4SddqB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/games-287a05b438772a80.js

172.67.131.31

200 OK

2.2 MB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/games-287a05b438772a80.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type

Size
2.2 MB (2181064 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/games-287a05b438772a80.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 856859471a6f569a-OSL
cf-cache-status: HIT
age: 3268998
etag: W/"2147c8-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y78F6O0xBcUEtrnvW2GQ%2FvCZWktwFAijEqyaZc%2Fx2IhFjsn63Jywc0SPMEmbnCFZOltbiNz36%2Bykmf1OMxtSnx%2Bd9SKrTJQIoTs8dKJRGWVCARq9nkWBSugUx5qw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cjvdfw.com/code/native.js?h=waWQiOjExNTk3NTEsInNpZCI6MTIzOTAzNSwid2lkIjo0NjQzNzEsInNyYyI6Mn0=eyJ

0.0.0.0

0 B

URL GET
cjvdfw.com/code/native.js?h=waWQiOjExNTk3NTEsInNpZCI6MTIzOTAzNSwid2lkIjo0NjQzNzEsInNyYyI6Mn0=eyJ
IP
0.0.0.0:0
ASN
#0

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /code/native.js?h=waWQiOjExNTk3NTEsInNpZCI6MTIzOTAzNSwid2lkIjo0NjQzNzEsInNyYyI6Mn0=eyJ HTTP/1.1
Host: cjvdfw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

rule34.dev/cdn-cgi/zaraz/t

172.67.131.31

200 OK

391 B

URL POST HTTP/2
rule34.dev/cdn-cgi/zaraz/t
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (403), with no line terminators
Size
391 B (391 bytes)
Hash
071bc085f84a50c8a5f5b85fec730f27
30532cdbbd53c56b62a8aa25cf612114d5ad5286
2e2e500b1ef59d0afcb35e8cd3ae3234a04f6dc63f5d9f408a58dcac262b59be

HTTP Headers

POST /cdn-cgi/zaraz/t HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 281
Origin: https://rule34.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/json
access-control-allow-origin: https://rule34.dev
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Set-Cookie, Cache-Control
access-control-allow-methods: GET, HEAD, POST, OPTIONS
access-control-max-age: 600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PPSW0SC%2Fjr12tcjORBJbzBnJ07bAKxWTNmOnyQzN0Cj4nd5OQeKelNokKQGOOZsXKQWlRnH7fljnD5lq1XG2xllkhZQXV668ApiHHUAM9kJ4ycOHj8E1UTkysqSo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685946695a569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/index-bbf2aa662ead77a7.js

172.67.131.31

200 OK

240 B

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/index-bbf2aa662ead77a7.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with no line terminators
Size
240 B (240 bytes)
Hash
c1c4f62de9cc69ad2db8728fe4214391
21b64a04f9e9a4f00c0549bae51aa42331d3947c
e67efe2351fb893ef626d8ff873e43bc48f85234cbbf124fe0c21d8b70054fcb

HTTP Headers

GET /_next/static/chunks/pages/index-bbf2aa662ead77a7.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 856859470a56569a-OSL
cf-cache-status: HIT
age: 3294844
etag: W/"f0-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q78IxJIvzdMlgGJ9ufvqA45dsh5muzLiR%2FmOA0QoPkgVDNrhgbfDwVYj5mx7Q8cqLXpi5cNKDIngToXkw80u9catGixkOCEcSa3T%2FaKgq%2Bk85Fn3msaHgN9ABvRq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/%5Bprovider%5D/week-3fa494ec0964831a.js

172.67.131.31

200 OK

6.2 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/%5Bprovider%5D/week-3fa494ec0964831a.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with very long lines (6540), with no line terminators
Size
6.2 kB (6196 bytes)
Hash
a9f3739d7d58b7d6699e1706072a3eb1
9ba931387498d0480ba75967f61c7a6c9e784efc
47967409cb8993486c0bc7eb6c8a21bb6a13da820b1b215f21c569b58d606da7

HTTP Headers

GET /_next/static/chunks/pages/%5Bprovider%5D/week-3fa494ec0964831a.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942bc33569a-OSL
cf-cache-status: HIT
age: 659910
etag: W/"1834-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fq6ghmBhFgvxJFtnNIvlUy%2B0ahJm87vPNWY%2ByH6QnKmBTkf9JQKn%2FX2zWRnyTUeFvZTshMkfrB789SoVsf9RFLLGqFmzIt3hNsYsS3ZoUjoMcJbFOxRSBtoK25m6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

a.pemsrv.com/popunder1000.js

185.76.9.16

200 OK

99 kB

URL GET HTTP/2
a.pemsrv.com/popunder1000.js
IP
185.76.9.16:443
ASN
#60068 Datacamp Limited

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintF9:2C:4B:D0:2B:5C:31:3D:E0:1A:D9:45:C6:73:7D:D9:7B:BA:AB:C5
ValidityMon, 18 Dec 2023 09:33:24 GMT - Sun, 17 Mar 2024 09:33:23 GMT

File type

Size
99 kB (99334 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /popunder1000.js HTTP/1.1
Host: a.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"88383d92e161c538412f89a6275"
accept-ch: 
expires: Fri, 16 Feb 2024 18:08:13 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3JhkAAAwBuUwKCQH3BAAAAAwBisclwQH3AwAAAA
x-77-nzt-ray: c0a4cc28b1ab3139b4bdcf6594703e1f
x-accel-expires: @1708117694
x-accel-date: 1708106894
x-77-cache: HIT
x-77-age: 6445
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 6438
x-77-pop: stockholmSE
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

142.250.74.106

200 OK

33 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint06:40:93:2C:C7:11:8F:E2:38:AB:FF:48:FC:7A:C5:3C:C3:FF:99:0A
ValidityMon, 29 Jan 2024 08:19:51 GMT - Mon, 22 Apr 2024 08:19:50 GMT

File type
ASCII text
Size
33 kB (33066 bytes)
Hash
a7c1149b624e8b1baca2d519a62c6267
c84ccb9b2a262ea9eb48345a86605d9401d40a04
51698055502813cd29205292dfcb7517bd803cf9deb22e21d06bd24fb3bcdf4b

HTTP Headers

GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rule34.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Feb 2024 19:55:31 GMT
date: Fri, 16 Feb 2024 19:55:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
content-security-policy-report-only: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/bcfae741e379a885f2ab2cf83ebe6d32/mr
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_ssgManifest.js

172.67.131.31

200 OK

77 B

URL GET HTTP/2
rule34.dev/_next/static/9unHsnVg39t6m7PjQ1YPG/_ssgManifest.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e

HTTP Headers

GET /_next/static/9unHsnVg39t6m7PjQ1YPG/_ssgManifest.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942bc2e569a-OSL
cf-cache-status: HIT
age: 522920
etag: W/"4d-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BiyNji%2FgetGi1iSjMyk01KLsm7FtkkVBMLCJAeUnY8hKhFDNPj3mqZu%2FOHYOqL8gDP%2Fv0knjcv%2Byga9qad96heL%2F0qn0m%2F3MC5OkHR5YLzlIIjQpbHXILx9JH%2Fqh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/_app-ee8fb5a4bb68431d.js

172.67.131.31

200 OK

700 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/_app-ee8fb5a4bb68431d.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type

Size
700 kB (700111 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/pages/_app-ee8fb5a4bb68431d.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942bc3c569a-OSL
cf-cache-status: HIT
age: 522920
etag: W/"aaff0-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=700400
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQbK2utCoQDxccFGyZk4GXk432WsWuoj1zIZXhxKF2PebSFEH3phNvOLEt9LiS9XkqvyYeu2oslOtxYgRZabQJG%2FAefYJkKapiG3ue1ZpC4Th3hDKHKXFWooIen%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/script.js

172.67.131.31

200 OK

17 kB

URL GET HTTP/2
rule34.dev/script.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type

Size
17 kB (16832 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 8568594618d0569a-OSL
cf-cache-status: EXPIRED
etag: W/"41c0-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AuaB2wa8cxqzxkIzKhh54EEE6zXYcTY15Ywiso3cSODIPfUuFBprxx4p812SB8u3XLzzoxLa%2FIHJVltA4AQiLe79sZ1maToyOzS6nWC%2BX%2FgbFec4991%2BbnI0tADP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=14400, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/cdn-cgi/apps/head/HWmfrGmiiH539tPLPeAjxNr2OfA.js

172.67.131.31

200 OK

4.2 kB

URL GET HTTP/2
rule34.dev/cdn-cgi/apps/head/HWmfrGmiiH539tPLPeAjxNr2OfA.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (4283), with no line terminators
Size
4.2 kB (4210 bytes)
Hash
559f95ffb92dc1480971b91a47344261
b245df76acc46d788e860fe42fabe81875ce13ab
ff7d604883fe710355b00d13cac614927c509c38d9e202ab6599f36c1eb14c0d

HTTP Headers

GET /cdn-cgi/apps/head/HWmfrGmiiH539tPLPeAjxNr2OfA.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: WQcMAiFbNCLPiS0tx/tNCBYUR8isw/88+cgYVfmP93g81GLmFIHwpmRQeIVWpubKujY+bgkvRnA=
x-amz-request-id: VY9YNKW5ER6QGCFD
last-modified: Mon, 08 May 2023 16:03:18 GMT
x-amz-version-id: dqcUkaz_KL8_y.wXHp7eC8bt5I3vjrz5
etag: W/"630fc64e5734e8d4f4b2683500bc410f"
cf-cache-status: HIT
age: 3099234
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hre4QdMg2HxCBd02%2F3LYRq4KC9rVNMaw1uakUJFwdcJSvLzXbim%2BuVSXvTyRHcagpRpO3fnYBC%2F13O2erR970hZ4mcUCwiXtjVUEF%2FyrxvnzOiTHblJJs9iSW9xW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: public, max-age=31536000, max-age=1800
server: cloudflare
cf-ray: 856859413a05569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.rule34.dev/file/rule34dev/imgs/icon.webp

104.21.3.192

200 OK

67 kB

URL GET HTTP/2
cdn.rule34.dev/file/rule34dev/imgs/icon.webp
IP
104.21.3.192:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintDD:7E:45:CC:1C:86:1D:0A:38:C6:8A:E1:67:82:A8:AA:8D:A3:39:DF
ValidityFri, 26 Jan 2024 18:36:53 GMT - Thu, 25 Apr 2024 18:36:52 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x930, Scaling: [none]x[none], YUV color, decoders should clamp
Size
67 kB (66646 bytes)
Hash
ff4b5be0dd9929a5bb515c119deeac94
b389c066acf80118d3556f5b4f203656b8aa36db
af3cf9d70e0c8199d0ca08dbc3dc8186809d01aaf48d939c6a8e298331c31dde

HTTP Headers

GET /file/rule34dev/imgs/icon.webp HTTP/1.1
Host: cdn.rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: image/png
content-length: 66646
cf-ray: 856859433872569b-OSL
cf-cache-status: HIT
accept-ranges: bytes
age: 2566527
last-modified: Thu, 18 Jan 2024 01:54:01 GMT
strict-transport-security: max-age=63072000
vary: Accept-Encoding
x-bz-content-sha1: b389c066acf80118d3556f5b4f203656b8aa36db
x-bz-file-id: 4_z8e33fa69739fcf6b889e0713_f10888ff742178b2e_d20240118_m015355_c005_v0501003_t0034_u01705542835520
x-bz-file-name: imgs/icon.webp
x-bz-info-src_last_modified_millis: 1694533125670
x-bz-upload-timestamp: 1705542835520
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zkFHfdzgKVbgN9GwNGLAro5lw0Fn49Y2moKb9HwoVPAdNs7DxnbVUk0GhplAwnhyI48SZqKp0I8kZmSn0M7IoIS0kTqeCVyuIxVLQQTWM95wr%2BzAE47OsVbck5kZqFDnEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=86400, max-age=1800, max-age=1800
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/pages/4ch-4ccb1d388731b14e.js

172.67.131.31

200 OK

6.6 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/pages/4ch-4ccb1d388731b14e.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
ASCII text, with very long lines (7067), with no line terminators
Size
6.6 kB (6649 bytes)
Hash
88c4c49eefaaa9620527adfb67c81e94
fded09b6d49baafd67f4d1109f218cc96ec30418
608d75fa6fb7cf03e6d7911816a2e963a45ffd44e3766bee4dd3138638338ff2

HTTP Headers

GET /_next/static/chunks/pages/4ch-4ccb1d388731b14e.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:32 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685946b9da569a-OSL
cf-cache-status: HIT
age: 874390
etag: W/"19f9-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FXT1v6O3U7QAYte7Ju%2BvhckZcq9HNQGPXvO3eAZ2H4TeHfDZu6qVvU9jtqK2%2BRQEeh1a31q1uFxpicgU8PrtVBcvMs%2FS56g6joBwkwjNt7falOv0RVPxlW1SexxX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rule34.dev/_next/static/chunks/framework-5429a50ba5373c56.js

172.67.131.31

200 OK

140 kB

URL GET HTTP/2
rule34.dev/_next/static/chunks/framework-5429a50ba5373c56.js
IP
172.67.131.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://rule34.dev/r34/week?ysclid=lsp2k1nnam728203306
Certificate
IssuerGoogle Trust Services LLC
Subjectrule34.dev
FingerprintF6:79:A1:4E:CE:23:C3:D2:28:01:BE:1E:5B:1D:89:1A:B8:03:C6:21
ValidityFri, 05 Jan 2024 13:11:34 GMT - Thu, 04 Apr 2024 13:11:33 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
140 kB (140018 bytes)
Hash
e9e10a5d69c0fffcd1c37da4c05dc5d7
5045fed7dfaaa5bc11f5bc7750eee479f67e56a6
43578ae7c5c86a7adf1b6028f471d016a4777830c19170991552994edeccbe51

HTTP Headers

GET /_next/static/chunks/framework-5429a50ba5373c56.js HTTP/1.1
Host: rule34.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:55:31 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 85685942cc45569a-OSL
cf-cache-status: HIT
age: 3294845
etag: W/"226b8-49773873e8"
last-modified: Tue, 01 Jan 1980 00:00:01 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=140984
x-do-app-origin: 8c2f7e49-bbc8-4742-9354-c5dc9acba1c2
x-do-orig-status: 200
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BM0gyKw53OsG%2BYHaNWh2ewzWeDAowBFfoqCasP3OXw0%2BFyNwhYZEQrIwgij6AwunGi42wjaj19tVJzEcwJRcTH9i7FsElbXByIbj5diW8YyZ6ZkKgIVlcuxZKOVp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable, max-age=1800, max-age=1800
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN