pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5
301 Moved Permanently 0 B URL HTTP/1.1 pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /prn247.com/peter-north-dvd/giant-juicy-juggs-05-5 HTTP/1.1
Host: pdoyl.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 22 Mar 2023 03:23:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 22 Mar 2023 04:23:34 GMT
Location: https://pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5
Server-Timing: cf-q-config;dur=5.9999999848515e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xVNXBx0fFXpbNox459QzY%2F8oZq2uRNZLagU8l0MUT8esxJLjuoAAQwXtr5vv1%2Bivix3K%2FcnNJs5fDfsbBFztG1RwbAWAPuk1zECqO3Y15JzB81POf%2F5loVZnTYM2pb0pKrDHRIRPYvY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7abb51146ca9b50f-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8839
Expires: Wed, 22 Mar 2023 05:50:53 GMT
Date: Wed, 22 Mar 2023 03:23:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11299
Expires: Wed, 22 Mar 2023 06:31:53 GMT
Date: Wed, 22 Mar 2023 03:23:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 22 Mar 2023 03:15:00 GMT
content-type: application/json
age: 514
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15243
Expires: Wed, 22 Mar 2023 07:37:37 GMT
Date: Wed, 22 Mar 2023 03:23:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5+dDqzVM8Z2zIz1QS6u6ib6wh82HblH3nDkxj6ObD4VDYOAYdY1DTsFSBJMM46W6jpVp8qa0El8=
x-amz-request-id: VF2QNAEHZ6C4D7NB
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 22 Mar 2023 02:53:28 GMT
age: 1806
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 03:23:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
staticbay.pages.dev/proxy/static/js/ads/invoke.js
404 Not Found 0 B URL HTTP/2 staticbay.pages.dev/proxy/static/js/ads/invoke.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /proxy/static/js/ads/invoke.js HTTP/1.1
Host: staticbay.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 22 Mar 2023 03:23:35 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VPTFAl9xrIH6Jmy3FHz%2FpQbROH08hgOSebfdz%2BpD4erwkjlsbnvm7jjIgpBVa3q5X36ftedJ3J%2ByBV2GsJ5O5fVbNKZ5V6nVq8TsUFyVBvBoJAWOtRyJwaTkE7CwwWnv5ZgqsVuV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7abb5118deab069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
staticbay.pages.dev/proxy/static/js/ads/pop.js
404 Not Found 0 B URL HTTP/2 staticbay.pages.dev/proxy/static/js/ads/pop.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /proxy/static/js/ads/pop.js HTTP/1.1
Host: staticbay.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 22 Mar 2023 03:23:35 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FJ0zFVmECeoyUCG2zf%2BY89hjbQ6Acdxb1S0ghXrD2N47gsvWrrerEd14vO%2FmcnCF7T2Xd55C3FBIes9X2lNFvFPJvtB91A%2BwUltTdP7tUTZFwdcv5RzxN4lmc8rVTtLvE2hUkt0o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7abb5118deaa069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 3.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
Hash a6cb88d774f9d09511f9a2a8cb496f79
b24fb55a654f1e0594f200375c28edee6c1b2cf7
459d87fe4a4e3fc07bb53b5082b7486d870535a85a6d5fc7f03098025e974182
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 22 Mar 2023 03:14:33 GMT
age: 542
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6193
Expires: Wed, 22 Mar 2023 05:06:48 GMT
Date: Wed, 22 Mar 2023 03:23:35 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 755 B IP
Hash a7bc53089451aa23245955a66a62680a
29558b19c2c1f2b0e7b947c3530b5955be38b548
b08c89171d4dac85644b33473f3c4f677b6ad7722870f04a9242fa47d6700e77
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 03:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD
200 OK 84 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD
IP
File type ASCII text, with very long lines (30260)
Hash ab735fe0e7de1c92770be40123d9e659
228fc72d420945a9948c0dbbd051cc83769ff7c2
a1d8271b4fdeae307e53ab406e26a05d1e8cbacbeb501a7d90afa46d0ecd5d59
GET /gtag/js?id=G-H55MMD7MCD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 22 Mar 2023 03:23:35 GMT
expires: Wed, 22 Mar 2023 03:23:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83751
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 49 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
Hash 28079acc55c478b08de661ff964f2faa
f40b2a79db23f5e24d7c25115c6ba839c39472b2
1a1f8ac5c09124d7dd6e90efe26eaec958bcfe9aa978b057fbd4e3529f236a01
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:35 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Mon, 20 Mar 2023 17:58:49 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7abb5118f965b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EGtNeTUTcbg3zwiJEIbP3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6pBf69xqBWJVBf93rCdVrcoG3+w=
ssl.p.jwpcdn.com/player/v/8.26.8/jwpsrv.js
200 OK 19 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.8/jwpsrv.js
IP
File type ASCII text, with very long lines (63720)
Hash 3af6ee47e5d3129f8625a1528321ab20
3a5f7ce94cb45a44065d0c03117e43f10800c6d4
af5eaa5e606f8c571c5d1ddb052c4012c7bc904695fed6b49bcc2d457a55535d
GET /player/v/8.26.8/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=900, immutable
last-modified: Tue, 07 Mar 2023 20:23:30 GMT
etag: "b05c870fc5d7c7e6a5d7e5dde188b9e9"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 22 Mar 2023 03:23:37 GMT
via: 1.1 varnish
age: 82
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1679455417.186465,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 19095
X-Firefox-Spdy: h2
ssl.p.jwpcdn.com/player/v/8.26.8/jwplayer.core.controls.html5.js
200 OK 97 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.26.8/jwplayer.core.controls.html5.js
IP
File type ASCII text, with very long lines (65143)
Hash 1a2bcdd7234e49476ceea62711b69198
7eebd9a0df4d43d76f893638773274dcea640ee8
403f63e83080feefd3f3b403efeffb9d3aad33edf983f6f6fa38b8774d4b6f74
GET /player/v/8.26.8/jwplayer.core.controls.html5.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Wed, 22 Feb 2023 19:06:15 GMT
etag: "3536c84e7f0c759a9fb9297ef95b86d6"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 22 Mar 2023 03:23:37 GMT
via: 1.1 varnish
age: 2352749
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 13584
x-timer: S1679455417.192474,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 97259
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Wed, 22 Mar 2023 05:33:16 GMT
Date: Wed, 22 Mar 2023 03:23:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Wed, 22 Mar 2023 05:33:16 GMT
Date: Wed, 22 Mar 2023 03:23:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 37 kB IP
ASN #20940 Akamai International B.V.
Hash ca6fe6e0ee81502556bf80922396328f
4065f9c0d79cb5ce0bd320609c3f4a41feb2d595
99695caecdf7aeb799e6a2affd6edef111a8556fec57a8838594a8559a48e567
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Wed, 22 Mar 2023 05:33:16 GMT
Date: Wed, 22 Mar 2023 03:23:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 943 B IP
ASN #20940 Akamai International B.V.
Hash 76b7476c6b03668c1155c49cae1fb9a9
78c2dfb9bb1501df639b7be2210347049e8a9a47
912b90fa23ed6ab51705d1f2224f3d7d2077b644bffffb9b10dd797f4758b464
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Wed, 22 Mar 2023 05:33:16 GMT
Date: Wed, 22 Mar 2023 03:23:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7779
Expires: Wed, 22 Mar 2023 05:33:16 GMT
Date: Wed, 22 Mar 2023 03:23:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 2e9Y7K5xIkpbhFR8a4kGAVX7X2-97lB13zHrjOuqlkalxzdbCDcfPA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:41:23 GMT
age: 20534
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43902d40-a241-4dfb-996d-6923d7f45960.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43902d40-a241-4dfb-996d-6923d7f45960.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d4f19d99d8cd53ca98063658a371edc
55a77e71fc7c324f7447071d6728f4e0fed32075
d195469c91dcdc56c78f821768e948a9813b6c0804345e67b382e49d4ed95414
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43902d40-a241-4dfb-996d-6923d7f45960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8507
x-amzn-requestid: ca96a0e7-b76c-43e5-9a51-cbf34683b22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJps-GsyIAMF5zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a231f-06d49b766daa7cd078c3a607;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:27 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: CcEddQzROf7QMwsffbFV4CRkCHhgarCDazUkr_j40l0kZm8hvPrLWw==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 22:01:10 GMT
age: 19347
etag: "55a77e71fc7c324f7447071d6728f4e0fed32075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ceeeb08-532b-488e-be1c-b788708d76a2.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ceeeb08-532b-488e-be1c-b788708d76a2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76347a0b2f0908b35321e7a53e5eb91c
2b6f011b911eb48604f22971afb21f61e4a14b70
ac892c186171836289a2ebd733ce96a2659d640f6408527bf8c6422ca31e713b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ceeeb08-532b-488e-be1c-b788708d76a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5686
x-amzn-requestid: 8e5120a5-ecfd-4850-9560-a71e7bd1940c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CHqH3GHwoAMFVSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641956fe-0a1578d857aa27bb521b4292;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 07:04:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: OLBdDXSEiTByfiQh1PHhDVU8PDQa7F9Irau-RrOJWC88bFMMt1FrEA==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 07:18:10 GMT
etag: "2b6f011b911eb48604f22971afb21f61e4a14b70"
content-type: image/jpeg
age: 72327
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg
200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a9178701002b637a130aec44024349b
d51674c9b6d98baa4ec3905e2982ffecfcb1e9cb
d3888f5cc4aef7239fe7d1ae8cee2f1ca94d1c1524b1629a1da5d6327376b5da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F725f0930-57cc-4b81-8685-8be1acf4b380.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: ac3a81e6-328d-4944-beda-d9c85de30aff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqP6F8gIAMFoww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a23ff-52d04e4a6adace9e17003e80;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:39:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: WzP3lkcd3AEE-N0bujYeE5UWkvfG5xmGfqLCbIv04YMkJ_E4OaThEg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:59:58 GMT
age: 19419
etag: "d51674c9b6d98baa4ec3905e2982ffecfcb1e9cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 412bd6aea60211324e649d7d920601d2
a813976bda850a584b5ab94d9a70bfe0da69aca0
d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DL7vQgu72hwpt7yHbmIKnAZnoIaR4CQPE1JJAjq8M4jg0REUsq5lOw==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:48:25 GMT
age: 20112
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1015d7fd-e40b-43e6-96a6-6aece54206eb.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1015d7fd-e40b-43e6-96a6-6aece54206eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12b24c5279fe815489141e47ee4d63e6
db3552b97a2904334f71d3200817a7b544e16528
dd4ab9d19b843881a476f533c8e52b2cdc3449479252a717320c3d286376d0fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1015d7fd-e40b-43e6-96a6-6aece54206eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5350
x-amzn-requestid: 1acb2fdd-666a-48c6-b178-0c0d8a30951d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqKLELqIAMF8IQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a23da-589ac4735f2f0afc4e0d726c;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: cxan7Y-kht0EyYxJ_wUsqfxBWIcrhXY-Iog5EbDUCKOc1T703JyzKw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 22:01:08 GMT
age: 19349
etag: "db3552b97a2904334f71d3200817a7b544e16528"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.realsrv.com/v1/api.php
200 OK 3.0 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (6471), with no line terminators
Hash 96a65ae576e7bee45410a8cfc212fd64
b1077b216834f21a76c8a9ba237d16718e2a128b
b33a5b353293aa0cc0b3af7f60c6ed0ce65b7a64572d28160abcf9cea275aa8f
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 329
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:37 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://pdoyl.latestcache.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%22641a74b961f236.08137703926043292%22%3B%7D; expires=Fri, 21-Mar-2025 03:23:37 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
prd.jwpltx.com/v1/error/ping.gif?h=1370988088&e=ers&n=2401907278877358&aid=ZgOVwB5mEeedFBKCk4Wcgw&=0&at=1&c=-1&ccp=0&cp=0&d=0&eb=0&ed=0&emi=yhk4pmc7b5fq&i=0&lid=zqkuy6xx1oln&lsa=set&mt=0&pbd=1&pbr=1&pgi=or53au1ph4a3&ph=1&pii=0&pl=0&plc=1&pli=1sgcxxs10l67&pp=&prc=1&ps=4&pss=0&pt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&pu=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&pv=8.26.8&pyc=0&s=0&sdk=0&ss=1&stc=1&stpe=0&tv=3.42.1&vl=90&wd=0&cme=0&erc=100013&flc=0&pogt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&sa=1679455421928
204 No Content 0 B URL HTTP/2 prd.jwpltx.com/v1/error/ping.gif?h=1370988088&e=ers&n=2401907278877358&aid=ZgOVwB5mEeedFBKCk4Wcgw&=0&at=1&c=-1&ccp=0&cp=0&d=0&eb=0&ed=0&emi=yhk4pmc7b5fq&i=0&lid=zqkuy6xx1oln&lsa=set&mt=0&pbd=1&pbr=1&pgi=or53au1ph4a3&ph=1&pii=0&pl=0&plc=1&pli=1sgcxxs10l67&pp=&prc=1&ps=4&pss=0&pt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&pu=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&pv=8.26.8&pyc=0&s=0&sdk=0&ss=1&stc=1&stpe=0&tv=3.42.1&vl=90&wd=0&cme=0&erc=100013&flc=0&pogt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&sa=1679455421928
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/error/ping.gif?h=1370988088&e=ers&n=2401907278877358&aid=ZgOVwB5mEeedFBKCk4Wcgw&=0&at=1&c=-1&ccp=0&cp=0&d=0&eb=0&ed=0&emi=yhk4pmc7b5fq&i=0&lid=zqkuy6xx1oln&lsa=set&mt=0&pbd=1&pbr=1&pgi=or53au1ph4a3&ph=1&pii=0&pl=0&plc=1&pli=1sgcxxs10l67&pp=&prc=1&ps=4&pss=0&pt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&pu=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&pv=8.26.8&pyc=0&s=0&sdk=0&ss=1&stc=1&stpe=0&tv=3.42.1&vl=90&wd=0&cme=0&erc=100013&flc=0&pogt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&sa=1679455421928 HTTP/1.1
Host: prd.jwpltx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
accept-ranges: bytes
date: Wed, 22 Mar 2023 03:23:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: MISS
x-cache-hits: 0
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0WPS05DMQxFt8IGGvmXj5kzBakSC0hfEjEobdV2QKW7ePIeAuJY8uf6yBYS3ZHuhJ9En+fXDOfgFEwCR8Pr2x7GuFxPYjks50+YJIqOnFxc4BoTE8yyuBdEKrDsrE7IRYtHSTCCgqZJVLM1CkRZJSWPc85ynjjCy/t+cwYHSpYghJmsG6wImzF9rZiWursNKxpH69xySyJ0oNqFU6ljFeLSzo9jONZ7v92Xunz0bXn6sUCZZcrktwBlUzHBjv8Sw3yErV1vj9MC/Mu3MxA3gsEKTRpGOSSuzamPlMfS24FM1KVXHpqpfgPSPlIQbgEAAA==
200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0WPS05DMQxFt8IGGvmXj5kzBakSC0hfEjEobdV2QKW7ePIeAuJY8uf6yBYS3ZHuhJ9En+fXDOfgFEwCR8Pr2x7GuFxPYjks50+YJIqOnFxc4BoTE8yyuBdEKrDsrE7IRYtHSTCCgqZJVLM1CkRZJSWPc85ynjjCy/t+cwYHSpYghJmsG6wImzF9rZiWursNKxpH69xySyJ0oNqFU6ljFeLSzo9jONZ7v92Xunz0bXn6sUCZZcrktwBlUzHBjv8Sw3yErV1vj9MC/Mu3MxA3gsEKTRpGOSSuzamPlMfS24FM1KVXHpqpfgPSPlIQbgEAAA==
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0WPS05DMQxFt8IGGvmXj5kzBakSC0hfEjEobdV2QKW7ePIeAuJY8uf6yBYS3ZHuhJ9En+fXDOfgFEwCR8Pr2x7GuFxPYjks50+YJIqOnFxc4BoTE8yyuBdEKrDsrE7IRYtHSTCCgqZJVLM1CkRZJSWPc85ynjjCy/t+cwYHSpYghJmsG6wImzF9rZiWursNKxpH69xySyJ0oNqFU6ljFeLSzo9jONZ7v92Xunz0bXn6sUCZZcrktwBlUzHBjv8Sw3yErV1vj9MC/Mu3MxA3gsEKTRpGOSSuzamPlMfS24FM1KVXHpqpfgPSPlIQbgEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%22641a74b961f236.08137703926043292%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://pdoyl.latestcache.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Fri, 21 Mar 2025 03:23:37 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/426059/c939fdb909578ebf7577341bb1723ce604f19d28.jpg
200 OK 32 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/426059/c939fdb909578ebf7577341bb1723ce604f19d28.jpg
IP
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 84d61f43ec1dc4b715ee00d2888a78fc
c939fdb909578ebf7577341bb1723ce604f19d28
4a81caa135ac5cacceaa88d1e96d64266fd640caf99911e3ba43a8e1691f61c0
GET /library/426059/c939fdb909578ebf7577341bb1723ce604f19d28.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: image/jpeg
content-length: 32171
last-modified: Thu, 15 Sep 2022 15:28:27 GMT
etag: "6323449b-7dab"
expires: Wed, 25 Oct 2023 20:53:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ1aA7//PZdbAA
x-77-nzt-ray: c0a4cc2849e07d9fb9741a645c03a522
x-accel-expires: @1704988924
x-cache: HIT
x-age: 6002493
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
static.addtoany.com/menu/svg/icons/twitter.js
200 OK 887 B URL HTTP/2 static.addtoany.com/menu/svg/icons/twitter.js
IP
File type ASCII text, with very long lines (695), with no line terminators
Hash 7eef93f572d0a338a022ff04014c3609
2a2fa59b41e5ee98cf4f0c7c09a5aacb7e4608d1
210ec84f1a5e2a02a52c8971ff3f512e30a94ad786e2265e9b5ad9e63859ad9b
GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"2b7-5edb43f86f378"
last-modified: Fri, 18 Nov 2022 01:01:39 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512729f12d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-H55MMD7MCD>m=45je33k0&_p=1982868485&cid=1508981560.1679455422&ul=en-us&sr=1280x1024&_s=1&sid=1679455421&sct=1&seg=0&dl=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&dt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-H55MMD7MCD>m=45je33k0&_p=1982868485&cid=1508981560.1679455422&ul=en-us&sr=1280x1024&_s=1&sid=1679455421&sct=1&seg=0&dl=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&dt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-H55MMD7MCD>m=45je33k0&_p=1982868485&cid=1508981560.1679455422&ul=en-us&sr=1280x1024&_s=1&sid=1679455421&sct=1&seg=0&dl=https%3A%2F%2Fpdoyl.latestcache.com%2Fprn247.com%2Fpeter-north-dvd%2Fgiant-juicy-juggs-05-5&dt=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Wed, 22 Mar 2023 03:23:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.linkfame.com/peternorthdvd/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&pg=149
301 Moved Permanently 20 B URL HTTP/1.1 www.linkfame.com/peternorthdvd/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&pg=149
IP
ASN #14720 GAMMANETWORKING-EAST
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /peternorthdvd/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&pg=149 HTTP/1.1
Host: www.linkfame.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Wed, 22 Mar 2023 03:23:37 GMT
Server: Apache
X-Powered-By: PHP/5.3.5
Location: https://www.peternorthdvd.com/track/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Content-Length: 20
Content-Type: text/html
www.pssy.xyz/twiant.com/bwpj
200 OK 2.4 kB URL HTTP/1.1 www.pssy.xyz/twiant.com/bwpj
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1235)
Hash d40b0d5a7633cdf6c55057d2c037d1fe
f1c1357f71f98633ccbd30ae4618de6c1195e468
f383e00860f443b0ee99e02a8867567805ee59826f0b9638427cca7d77f302b8
Analyzer Verdict Alert quad9 Sinkholed
GET /twiant.com/bwpj HTTP/1.1
Host: www.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Set-Cookie: PHPSESSID=b8e2f62ed11272f0e7ff6c213234850f; path=/
woa1quur7O=697b8d0c21e0bb9ed8131d33ba8e83ae211f69302271d75e10900bdfa4e8d5cf51a903e9065a8b14122a2186c047c9dcaa4f3d477a5a24eb8da8d940f905e07a; expires=Mon, 18-Sep-2023 03:23:37 GMT; Max-Age=15552000
prVi=cXaHhulGVjWWYvefdaGC1rWVlEcGLC9F; expires=Thu, 21-Mar-2024 03:23:37 GMT; Max-Age=31536000; path=/; domain=.plugrush.com
cp=1144995%2C1144986%2C1074970%2C1074959%2C1144691%2C1144686%2C1207188%2C1207172%2C1144949%2C1144945%2C1148300%2C1148273%2C1097593%2C1097592%2C1114086%2C1065300%2C1242775%2C1241892%2C1144994%2C1144985; expires=Wed, 22-Mar-2023 03:23:47 GMT; Max-Age=10
Cache-Control: no-cache, must-revalidate, no-transform
Expires: Tue, 31 Dec 2013 23:59:59 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www.pssy.xyz/twiant.com/dp3s
200 OK 2.5 kB URL HTTP/1.1 www.pssy.xyz/twiant.com/dp3s
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1235)
Hash 0f043f61f786f40602a02a21aaa7d7d9
8133a2942a9def9e2d886313e2fdfbf9f302956c
2b5cc2451adf3ff9947327ce1bbefb07f4a0367e1e7e26d092b208a0f6010f6f
Analyzer Verdict Alert quad9 Sinkholed
GET /twiant.com/dp3s HTTP/1.1
Host: www.pssy.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Set-Cookie: PHPSESSID=1bd292fcc797082bb4e25792f95d78c9; path=/
woa1quur7O=be1db6f41ded8424b70313e842b1c0fcf232f619def9156a3fbae9b12f9c294190d62dbb690098e54cbb2012337e8e4e6f796ec0e8385681051ea7daddd975c9; expires=Mon, 18-Sep-2023 03:23:38 GMT; Max-Age=15552000
prVi=33sHDVk4FufIxvm38O7LZGDM3qhivwoX; expires=Thu, 21-Mar-2024 03:23:38 GMT; Max-Age=31536000; path=/; domain=.plugrush.com
cp=1144995%2C1144986%2C1074970%2C1074959%2C1144692%2C1144687%2C1207188%2C1207172%2C1144949%2C1144945%2C1148300%2C1148273%2C1097593%2C1097592%2C1114086%2C1065300%2C1242775%2C1241892%2C1144994%2C1144985; expires=Wed, 22-Mar-2023 03:23:48 GMT; Max-Age=10
Cache-Control: no-cache, must-revalidate, no-transform
Expires: Tue, 31 Dec 2013 23:59:59 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 91e5edd560bb9744f53c5580a60b6e7d
4d8d7d83b8f2bed9b6a87428942ea61dd3495a48
4a0351c338f6d08224c2037388936635eff15f435c7cb8c8261cee9838872271
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A0351C338F6D08224C2037388936635EFF15F435C7CB8C8261CEE9838872271"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3938
Expires: Wed, 22 Mar 2023 04:29:16 GMT
Date: Wed, 22 Mar 2023 03:23:38 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 91e5edd560bb9744f53c5580a60b6e7d
4d8d7d83b8f2bed9b6a87428942ea61dd3495a48
4a0351c338f6d08224c2037388936635eff15f435c7cb8c8261cee9838872271
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A0351C338F6D08224C2037388936635EFF15F435C7CB8C8261CEE9838872271"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3938
Expires: Wed, 22 Mar 2023 04:29:16 GMT
Date: Wed, 22 Mar 2023 03:23:38 GMT
Connection: keep-alive
prstatics.com/prplugs/0/1144995/160x120.jpg
200 OK 8.6 kB URL HTTP/1.1 prstatics.com/prplugs/0/1144995/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 62bbee8b6a2d07c517f89f2041d962e1
f7d3615951b0e10cb49582101eac1836e7946b26
555c070ce22b2cde09c6c2129739e8178467f650300d8a2abb81f9658100da17
GET /prplugs/0/1144995/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 8642
Connection: keep-alive
Last-Modified: Wed, 04 Nov 2020 14:45:53 GMT
ETag: "5fa2bea1-21c2"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1207188/160x120.jpg
200 OK 8.6 kB URL HTTP/1.1 prstatics.com/prplugs/0/1207188/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 62bbee8b6a2d07c517f89f2041d962e1
f7d3615951b0e10cb49582101eac1836e7946b26
555c070ce22b2cde09c6c2129739e8178467f650300d8a2abb81f9658100da17
GET /prplugs/0/1207188/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 8642
Connection: keep-alive
Last-Modified: Sat, 16 Apr 2022 08:50:24 GMT
ETag: "625a8350-21c2"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1074970/160x120.jpg
200 OK 6.2 kB URL HTTP/1.1 prstatics.com/prplugs/0/1074970/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash f8e000465991401f23d0da6f55bce2ac
29e5c85c77ddd1b860fbf7825fe78f5529520b4e
d0f9ee89358db23bb396c19f500b72f44a7f4581cc28a2be6d95c30d02c20bb0
GET /prplugs/0/1074970/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 6183
Connection: keep-alive
Last-Modified: Tue, 20 Feb 2018 16:29:30 GMT
ETag: "5a8c4cea-1827"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
static.addtoany.com/menu/svg/icons/reddit.js
200 OK 8.2 kB URL HTTP/2 static.addtoany.com/menu/svg/icons/reddit.js
IP
File type ASCII text, with very long lines (929), with no line terminators
Hash c047e0df302e516265334c5a5b0961a1
4ab131f4a236bcc237f2a23accb7f404ecee5630
5d60ad71c13172813d7fe32b4c2b7d2414f5936f5341ba3e77a575a4b0da3661
GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"3a1-5edb43f7d1fd8"
last-modified: Fri, 18 Nov 2022 01:01:38 GMT
vary: Accept-Encoding
via: e3s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512749fd2d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prstatics.com/prplugs/0/1148300/160x120.jpg
200 OK 7.2 kB URL HTTP/1.1 prstatics.com/prplugs/0/1148300/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 3e353b2badf44089d2395258cfcf4cdf
5b27faa112ecc2e47d85bcd71a43397989f21cd3
9e461e9af6d171f23fb7a3debbde4f992e11db694dfb26917087f6db7d715393
GET /prplugs/0/1148300/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 7206
Connection: keep-alive
Last-Modified: Sat, 12 Dec 2020 20:37:21 GMT
ETag: "5fd52a01-1c26"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
c.statcounter.com/t.php?sc_project=10471727&u1=039E750B84074F98C68B674CC8C37CAA&java=1&security=368858c2&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5&t=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&invisible=1&sc_rum_e_s=3347&sc_rum_e_e=3358&get_config=true
200 OK 7.8 kB URL HTTP/2 c.statcounter.com/t.php?sc_project=10471727&u1=039E750B84074F98C68B674CC8C37CAA&java=1&security=368858c2&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5&t=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&invisible=1&sc_rum_e_s=3347&sc_rum_e_e=3358&get_config=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 34937d435e8cb607b9f57ff4f6fca094
ccb31b6821854a7ada96a3fe7f2811a1076d9974
7fa84387be987e911f0e2a3821d14585a9b9d6d502c1d590c2339475dab0f63b
GET /t.php?sc_project=10471727&u1=039E750B84074F98C68B674CC8C37CAA&java=1&security=368858c2&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5&t=Giant%20Juicy%20Juggs%20%2305%20-%20Peter%20North%20DVD%20Tube%20-%20XXX%20Porn%20Videos%20-%20HD%20Sex%20Movies&invisible=1&sc_rum_e_s=3347&sc_rum_e_e=3358&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:38 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc10471727.1679455417.0; SameSite=None; Secure; Expires=Sunday, 19-Mar-2028 20:23:37 PDT; Path=/; Domain=.statcounter.com
is_visitor_unique=1679455417365915021; SameSite=None; Secure; Expires=Thursday, 20-Mar-2025 20:23:37 PDT; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://pdoyl.latestcache.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7abb5129afa6b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
prstatics.com/prplugs/0/1097593/160x120.jpg
200 OK 8.9 kB URL HTTP/1.1 prstatics.com/prplugs/0/1097593/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 4e19ba90c7cede7eb517323b34379e6f
86d8adf7087f640df77c63a5041cf9b614b39fa3
f1fa73a4d1101f9c9d39c9cb1c9bdbaa9c37a362f3a10093877ab30aa1d8e571
GET /prplugs/0/1097593/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 8933
Connection: keep-alive
Last-Modified: Wed, 13 Mar 2019 17:18:54 GMT
ETag: "5c893b7e-22e5"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1114086/160x120.jpg
200 OK 5.5 kB URL HTTP/1.1 prstatics.com/prplugs/0/1114086/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 5ce09f94427b9ce0c4be4e4a371f75e4
7564ffb03f3449e74b0f0e42f0354549ff702786
29024cb21ff7c3e687e419f9bace8810afd518ccca69c8d4d32e408e6dd74aec
GET /prplugs/0/1114086/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 5518
Connection: keep-alive
Last-Modified: Wed, 07 Aug 2019 01:50:40 GMT
ETag: "5d4a2e70-158e"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1242775/160x120.jpg
200 OK 9.6 kB URL HTTP/1.1 prstatics.com/prplugs/0/1242775/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 4aaaa07cbb27d129b22b9df7c38f4660
115f757b48c40566b9ab56739a1a751b55aeda51
92c9e36870e3a9023300c02fe5eb63462ffc5d422b5ae8e80c3d0826abed53d0
GET /prplugs/0/1242775/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 9592
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 03:47:55 GMT
ETag: "641928eb-2578"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1144994/160x120.jpg
200 OK 6.6 kB URL HTTP/1.1 prstatics.com/prplugs/0/1144994/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash 86c3c08428fd3b352be1c9dd482f8aa3
dd8b6d99085c1969b387dc97d5e13cd87eed71c3
c1f455feca200e371731d28aafab5ad4f0b00748f971fc7e898566891156a60a
GET /prplugs/0/1144994/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 6556
Connection: keep-alive
Last-Modified: Wed, 04 Nov 2020 14:45:52 GMT
ETag: "5fa2bea0-199c"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
prstatics.com/prplugs/0/1144692/160x120.jpg
200 OK 9.3 kB URL HTTP/1.1 prstatics.com/prplugs/0/1144692/160x120.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 160x120, components 3\012- data
Hash d8d1653ffe1fd0ecff40bb690fd9ab02
dc2d73c5769abd3da5d723213362e64f612aedfd
e625b90db854be44c789a9649b4868c507a9c9f237afb635ae5759cf7c990070
GET /prplugs/0/1144692/160x120.jpg HTTP/1.1
Host: prstatics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pssy.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 03:23:38 GMT
Content-Type: image/jpeg
Content-Length: 9348
Connection: keep-alive
Last-Modified: Tue, 27 Oct 2020 12:06:57 GMT
ETag: "5f980d61-2484"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
static.addtoany.com/menu/modules/core.26680508.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/modules/core.26680508.js
IP
GET /menu/modules/core.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000, immutable
cf-bgj: minify
access-control-allow-origin: *
etag: W/"11452-5f1f2ae24215b"
last-modified: Wed, 11 Jan 2023 01:11:29 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb5126799d2d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.addtoany.com/menu/modules/overlays.26680508.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/modules/overlays.26680508.js
IP
GET /menu/modules/overlays.26680508.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000, immutable
cf-bgj: minify
access-control-allow-origin: *
etag: W/"20cd-5f1f2ae26637b"
last-modified: Wed, 11 Jan 2023 01:11:29 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512729e62d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.addtoany.com/menu/svg/icons/facebook.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/svg/icons/facebook.js
IP
GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"13e-5edb43f5ee978"
last-modified: Fri, 18 Nov 2022 01:01:36 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512729ee2d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.addtoany.com/menu/svg/icons/email.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/svg/icons/email.js
IP
GET /menu/svg/icons/email.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"189-5edb43f5e5cd8"
last-modified: Fri, 18 Nov 2022 01:01:36 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512749f82d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure.statcounter.com/counter/counter_xhtml.js
200 OK 0 B URL HTTP/2 secure.statcounter.com/counter/counter_xhtml.js
IP
GET /counter/counter_xhtml.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 21 Mar 2023 14:35:03 GMT
etag: W/"6419c097-aba5"
expires: Wed, 22 Mar 2023 15:22:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 54
server: cloudflare
cf-ray: 7abb5128cf13b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5
200 OK 0 B URL HTTP/2 pdoyl.latestcache.com/prn247.com/peter-north-dvd/giant-juicy-juggs-05-5
IP
Analyzer Verdict Alert fortinet Phishing
GET /prn247.com/peter-north-dvd/giant-juicy-juggs-05-5 HTTP/1.1
Host: pdoyl.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:34 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smL4ADLkC9XI%2B76cRA6rhhnhRuFPmnudTMmOWc2P8Rvs71gnFJpF5uVCb5rOw0ukdeWt7cbA55rS9OpxLnNCAslctus5InJnmQx2%2Bc0%2BP4iIHZUwLkkCamKpjixTjpjsRAuWvb2ODYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7abb5115febeb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.addtoany.com/menu/sm.24.html
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/sm.24.html
IP
GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: text/html; charset=utf-8
via: e3s
last-modified: Fri, 18 Nov 2022 00:47:55 GMT
etag: W/"2a5-5edb40e6d10d8"
cache-control: max-age=315360000, immutable
age: 674052
vary: Accept-Encoding
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7abb512669221600-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.addtoany.com/menu/svg/icons/pinterest.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/svg/icons/pinterest.js
IP
GET /menu/svg/icons/pinterest.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"323-5edb43f7a8f98"
last-modified: Fri, 18 Nov 2022 01:01:38 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512749fa2d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lp.peternorth.com/track/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&skin_id=17842&cs=lp&cl=%2Fatredirect
200 OK 0 B URL HTTP/2 lp.peternorth.com/track/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&skin_id=17842&cs=lp&cl=%2Fatredirect
IP
GET /track/go.php?pr=8&su=2&si=100&pa=index&ar=&ad=214009&campaign=238129&skin_id=17842&cs=lp&cl=%2Fatredirect HTTP/1.1
Host: lp.peternorth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: routing=%7B%22condition%22%3A5912%2C%22landing%22%3A17842%2C%22section%22%3A%22lp%22%2C%22productGroupId%22%3A0%2C%22preservePath%22%3Afalse%2C%22uri%22%3A%22%5C%2Fatredirect%22%2C%22adv_id%22%3A214009%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:38 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WoS%2FafHYFf8b7odmLdBaq%2BVCulN1O3V4Ja0uVJASdnNy6iQVXmr3v69jAt%2FyE7H9LVPBbC4oegoZDooaB8zWXixW4mF7lM086eS5ujbYyGhRW4fyyCyFymY7QIItkluzVvabUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7abb512c4d980afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.addtoany.com/menu/svg/icons/tumblr.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/svg/icons/tumblr.js
IP
GET /menu/svg/icons/tumblr.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pdoyl.latestcache.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 22 Mar 2023 03:23:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=7776000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"188-5edb43f864798"
last-modified: Fri, 18 Nov 2022 01:01:39 GMT
vary: Accept-Encoding
via: e1s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 53
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7abb512749fc2d59-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.194.169
104.21.36.134
23.36.77.32
185.76.9.17
95.211.229.247
66.152.76.212