tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/
86.111.241.39301 Moved Permanently 0 B URL HTTP/1.1 tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /http:/tube.play69.pl/mature/oiled-sex/ HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 05:13:03 GMT
Server: Apache
X-Pingback: http://tube.play69.pl/xmlrpc.php
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://tube.play69.pl/mature/oiled-sex/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
tube.play69.pl/mature/oiled-sex/
86.111.241.39200 OK 8.3 kB URL HTTP/1.1 tube.play69.pl/mature/oiled-sex/
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 57f1064f073c3f73c902303cdbcf56c2
d81a715f655f77a663557860f14935725df69496
1f2e91b9e8c4b1e8558b54efd1e97b7cbac575375b909a8e4ec49054c0af9abc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /mature/oiled-sex/ HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
X-Pingback: http://tube.play69.pl/xmlrpc.php
Link: <http://tube.play69.pl/wp-json/>; rel="https://api.w.org/", <http://tube.play69.pl/?p=15846>; rel=shortlink
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22
142.250.74.106200 OK 865 B URL HTTP/1.1 fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22
IP 142.250.74.106:0
Hash 19555ddfb705a50b12814f918f2ba230
daab4e02d5ef08f0d218666c5a2dc1210eedda8b
e6fb711b01681f9e4b27671eaa13993d2685662505efaed34af83a13b98565da
GET /css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 08 Dec 2022 05:13:04 GMT
Date: Thu, 08 Dec 2022 05:13:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
86.111.241.39200 OK 14 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
Hash 14c1da6b40cf5f9138d1dfed58ed8cb1
3d08fc3cd402a5193187750cb59ae16929ba6e23
45559844e894c4aa83352c60fb19599b5cd9d276e19fde217693b682313a70fe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/detube/style.css?ver=1.4.3 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:19:42 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14015
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Thu, 08 Dec 2022 05:13:04 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
tube.play69.pl/wp-content/themes/detube/responsive.css?ver=1.4.3
86.111.241.39200 OK 1.9 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/responsive.css?ver=1.4.3
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
Hash d7fc51f6ffe0535d8786da85f42fa6d3
e10edd692ee866e2dfae11f0e9f44baa1e571ce1
cd48d6747367f656b2617e7722350e638e7ea965ea9f7f0e7f7f4c82e73c5199
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/detube/responsive.css?ver=1.4.3 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:19:41 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1851
Keep-Alive: timeout=5, max=100
Content-Type: text/css
tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14
86.111.241.39200 OK 452 B URL HTTP/1.1 tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (1401), with no line terminators
Hash 2d36a18c6fe23149715f8aafc282e14d
945ccb1c13aea1290890292eb54ad78a7858ae3f
870feb623eeb98e0d63d3c2756effa33252b49fc148d113a4fa995e772d74514
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:18:33 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 452
Keep-Alive: timeout=5, max=100
Content-Type: text/css
tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
86.111.241.39200 OK 4.0 kB URL HTTP/1.1 tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (9959)
Hash a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 18:23:31 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0
86.111.241.39200 OK 130 B URL HTTP/1.1 tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with no line terminators
Hash b620cce56ebb554e6e979f1bf1c0d6cf
dd8ca5b737b098417a8a47066194f4b70cb52913
b5804ffcdc13a4ee5693170c79c0d9b5036d212a4beefa1121baf64d9b7dd723
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:18:33 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 130
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2
86.111.241.39200 OK 5.8 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type HTML document, ASCII text, with very long lines (13673)
Hash a0868edfa48586fe2501b728e48a355b
56ee6d2537f20554a455b9a53c331af3464304b0
956ecbca5319110251f845d6ff752e8874a32be127e5ad3fb89d7efa3d5c2043
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5830
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1244
Cache-Control: max-age=101670
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:04 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:27:34 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116325 bytes)
Hash ff4671f71c958029bbf6d9694284da70
7535744f2dbaf99902a54fc529e760b08a73f265
123f781673b2e45e18df36b64984674f489a5f3541c69e295f01f554b8d3c738
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116325
date: Thu, 08 Dec 2022 05:13:04 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4
86.111.241.39200 OK 34 kB URL HTTP/1.1 tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (31997)
Hash 6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Sep 2019 08:40:55 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6
86.111.241.39200 OK 3.7 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (6309)
Hash 92525514e1331726fe7c5a221fd74eac
1f49290f11e1ee35e70b148874e347e04959e878
ca548a80029a9df596a60c58792c3c53cdc979536b6cc89ba46d97f3216c2d65
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3697
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2
86.111.241.39200 OK 8.5 kB URL HTTP/1.1 tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (28817)
Hash 25309b355cc141316c0cc8040bc53ec4
fa8fe7646937a6bae2204aa0b099a498c4d84766
2401e0a375cf7f6a4a278bd0ed84ac2b16c8e17d672634944a7f8c3934042f1c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:22:32 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8525
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0
86.111.241.39200 OK 2.4 kB URL HTTP/1.1 tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (7855), with no line terminators
Hash d32403263bb01c17b9b69d3f9d01f3fc
6a7810f026de39a8d37516d2ec56aabaf4f39cab
9c50bd091d05620a8c6678d800cb50bf64c862102a33b4ad19f914ceaa0b02cd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2435
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0
86.111.241.39200 OK 1.4 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type HTML document, ASCII text, with very long lines (363)
Hash b9cca4a8244670bc55279f4bd03d9cae
ad1fbfe68ef478d1a405293f3daddf3ef1e7bc27
19f7e3c3c5a39613fc3439ea5bb12494fabdb5e04e4d0171ac5e0adedb5a6180
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:58 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1359
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6
86.111.241.39200 OK 3.3 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
Hash c7b3bb6de9a1a0aee6c979b0170e22d6
c38aacb0483b432954ab7d3e7edc659ced8a8b3f
40c2f9764accd031c5724362d8570b4d331ec545db0715974e1a826673373ea3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/detube/js/theme.js?ver=1.4.6 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3274
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22
86.111.241.39200 OK 580 B URL HTTP/1.1 tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (1076), with no line terminators
Hash 03610c833b0a8cd39a5cfd87a20dd104
038ccb657a60f77c5eaf6a707bd4d0834d08da42
9feb345568ea18a6f4cee3c910adb99c956a06161a6c75e2c3a1a916f2129baa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/comment-reply.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22
86.111.241.39200 OK 739 B URL HTTP/1.1 tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-content/uploads/2016/07/thumb-16090-160x90.jpg
86.111.241.39200 OK 4.3 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-16090-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x821c3a3d", baseline, precision 8, 160x90, components 3\012- data
Hash 81ea068b787852e4d2fa1c1ff40a4385
17ec4bfae5737b0f90c6bd827c7c68935bda27ec
7b2268dc1eba98444a10307fa32c4fd52eb9e1cb652b74777dfeb023aa9941f5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-16090-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:34:53 GMT
ETag: "10be-568f51fc78940"
Accept-Ranges: bytes
Content-Length: 4286
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
86.111.241.39200 OK 4.3 kB URL HTTP/1.1 tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type ASCII text, with very long lines (9063)
Hash bc89387b6a6f886f99511cca233b5071
77c1103c6d84263a73bff007bd635750d5b26296
baf8e3410e57e5650ad72f25eb93d82ea36ac8bd51904948e3d2f2a05faa3e78
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4347
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
tube.play69.pl/wp-content/uploads/2016/07/thumb-15884-160x90.jpg
86.111.241.39200 OK 3.2 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15884-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", baseline, precision 8, 160x90, components 3\012- data
Hash 92e83091f3476d353762ba57316f7eed
48d3fdf02a7666007d5635975469d5ade7ad106a
39fcbe3bf0e46e7ad54b6c344ab6ad9a788d6bc5c7f8ace5aba28b3aeebaacc0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15884-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:01:56 GMT
ETag: "c67-568f580848d00"
Accept-Ranges: bytes
Content-Length: 3175
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15820-160x90.jpg
86.111.241.39200 OK 5.1 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15820-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", baseline, precision 8, 160x90, components 3\012- data
Hash fda9cf5ef0941f580ca7688eaa9bd268
b347ba96c1af7f8fd5cbd1b36e50b8c8a92e4c0d
6b537e9b6340208772b614e02f35ff9c6b1d3146a59b09a1f30e29d9c8ccd9dc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15820-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:04:44 GMT
ETag: "13c2-568f58a880700"
Accept-Ranges: bytes
Content-Length: 5058
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15912-160x90.jpg
86.111.241.39200 OK 3.2 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15912-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", baseline, precision 8, 160x90, components 3\012- data
Hash 74456822b4d88eec1b42f75e32f2108e
6726740d0f38b61c4f51cf41b590ffb5488dd37c
5a601c4cea1ea709ba8b1ca22933e9fcfb0f1bf882565556e22f300fa652c934
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15912-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:56:58 GMT
ETag: "c61-568f56ec16e80"
Accept-Ranges: bytes
Content-Length: 3169
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-16104-160x90.jpg
86.111.241.39200 OK 2.6 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-16104-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", baseline, precision 8, 160x90, components 3\012- data
Hash 3419bd177e5a4477406b8060a5aa5d3a
94df790d2c765db952fb731130f69a4ac2d74584
cb41988e3ce7b2210d2de63647a681d167426c589f4fed86f75a6a5ad87a457d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-16104-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:32:33 GMT
ETag: "a03-568f5176f4e40"
Accept-Ranges: bytes
Content-Length: 2563
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-16058-160x90.jpg
86.111.241.39200 OK 3.8 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-16058-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x88155d6d", baseline, precision 8, 160x90, components 3\012- data
Hash 8176953f89f9cf1e86b06103008f180e
465f05486c10aa7e17e1db65a9c431fe0ba4422a
629d16139dac0ac919963563a2d05e53e06546e46b260ccb58a544df8717439d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-16058-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:27:03 GMT
ETag: "ed0-568f503c3e7c0"
Accept-Ranges: bytes
Content-Length: 3792
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15692-160x90.jpg
86.111.241.39200 OK 2.5 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15692-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", baseline, precision 8, 160x90, components 3\012- data
Hash 5fb8933fcccb92d5a1d752e038ab4330
a06bc02b9f275a74b15c4e3671d0b2294224955f
65c7fb8ab398543fab3d136ef1d293776f4d7c68ca5816152a58f373c92ccedb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15692-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:03:58 GMT
ETag: "9b2-568f587ca1f80"
Accept-Ranges: bytes
Content-Length: 2482
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/themes/detube/images/bg-pattern.png
86.111.241.39200 OK 9.5 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/bg-pattern.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a303fccdf8b27aea15f303788114d5
f0224b7a06d73dec652e36a2c75226ffa1131323
857b087e75fdb2df18704d4454e6763cff3d4d4fc62f0851869dc663ae6c4d97
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/bg-pattern.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "2548-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 9544
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
tube.play69.pl/wp-content/uploads/2016/07/thumb-15928-160x90.jpg
86.111.241.39200 OK 1.8 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15928-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x10b5fc3a", baseline, precision 8, 160x90, components 3\012- data
Hash ea61fb58b470da5006e7b450532c034e
1f1d5e1494096b10f340f6c7a7765b1db6485abd
3992ced9713b8eab1de0b89cba540a7e8aab78f16b3ba4e9ec77aeb7ec8f8699
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15928-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:07:03 GMT
ETag: "701-568f592d0ffc0"
Accept-Ranges: bytes
Content-Length: 1793
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15810-160x90.jpg
86.111.241.39200 OK 2.5 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15810-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", baseline, precision 8, 160x90, components 3\012- data
Hash b88f330c60707ac78991eaf14ec52565
78817593263edce261f8aaebd9be8f9ffea59d94
a9b1c4305fce74feb70569fa455d670ceca47a60720ec180258873a0574d3580
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15810-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:29:16 GMT
ETag: "9bb-568f50bb15300"
Accept-Ranges: bytes
Content-Length: 2491
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15954-160x90.jpg
86.111.241.39200 OK 3.0 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15954-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Hash 075086895721a887019fa398e087c935
7ddc77a51d82163164679e2983cf08123fcefdba
102cbcae5f9dcb382824dde291f8f3f0cbe0fa4551257993f26e9dee8eb51f10
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15954-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:01:23 GMT
ETag: "baa-568f57e8d02c0"
Accept-Ranges: bytes
Content-Length: 2986
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-15714-160x90.jpg
86.111.241.39200 OK 3.4 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-15714-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Hash d5e85f1dfcdaf20ea08a41de7fb968c4
56797f7ccf65994674cb11a57335381ca26ab334
54fbbec5d1763882fd0af339aa2ad03efaf702c79d11984ccaed523dcb47e1fb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-15714-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:31:38 GMT
ETag: "d27-568f514281280"
Accept-Ranges: bytes
Content-Length: 3367
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
tube.play69.pl/wp-content/uploads/2016/07/thumb-16038-160x90.jpg
86.111.241.39200 OK 4.0 kB URL HTTP/1.1 tube.play69.pl/wp-content/uploads/2016/07/thumb-16038-160x90.jpg
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Hash 67d02fc539e98bb3831f4ab6918822d3
61dc8ab75522169487a071fa08880f94e4f1d0b3
75855d64e8d3110e667a62fb10bdc16fe1947acebad5dcfb597a13aa4e0013a0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2016/07/thumb-16038-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:56:11 GMT
ETag: "faa-568f56bf444c0"
Accept-Ranges: bytes
Content-Length: 4010
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sybN7GwJOHDDNh+RmctdfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: itbsA3LqfipEeBZn9CLvRJwLlOg=
tube.play69.pl/wp-content/themes/detube/images/bg-grad.png
86.111.241.39200 OK 2.8 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/bg-grad.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 1 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash cc9b9db1d9a3182973bedf7fc2541bd9
38e006adf2083bda4412636085d789099c573ab7
de1186f271db5a233a6be6c42535fbf56b230781cb1d8b498d618e0bc06f6d98
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/bg-grad.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "b06-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 2822
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.pornhub.com/embed/949139259
66.254.114.41301 Moved Permanently 0 B URL HTTP/1.1 www.pornhub.com/embed/949139259
IP 66.254.114.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/949139259 HTTP/1.1
Host: www.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
server: openresty
date: Thu, 08 Dec 2022 05:13:04 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
ph-redirect: 1022
location: https://www.pornhub.com/embed/949139259
vary: User-Agent
rating: RTA-5042-1996-1400-1577-RTA
set-cookie: __s=63917260-42FE722900506BB1-4B5D0C15; Secure; Samesite=None
__l=63917260-42FE722900506BB1-4B5D0C15; Secure; Samesite=None; Max-Age=31556926
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 63917260-42FE722900506BB1-4B5D0C15
tube.play69.pl/wp-content/themes/detube/images/bg-pattern-nav.png
86.111.241.39200 OK 3.0 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/bg-pattern-nav.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 320 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash ec94cd6f476d5b93f7ec49535ed40006
fdcb75ad1a17528778ba9467b202bd244c9f3621
094e63d8800f26802b1db3be7575142429f4ae2703b1a80098b5dcdb583c47c6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/bg-pattern-nav.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "b92-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 2962
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
tube.play69.pl/wp-content/themes/detube/images/nav-sep.png
86.111.241.39200 OK 2.8 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/nav-sep.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 2 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 268cee49d0ed8562d6e8b6270b5c0f64
1c6cddd4a3b83f617ab344dc97ac02b34e45a67b
85a772781124b45dc6d026e069528d6eae5bb2935f23bf0dc1ac19505fb654a0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/nav-sep.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "b0b-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 2827
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
tube.play69.pl/wp-content/themes/detube/images/actions.png
86.111.241.39200 OK 3.9 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/actions.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 16 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 38f9b7eb34bf8cb0ba180f007d80bc29
8fb53ea41f6c80ad5dbf701c50c315c686d26055
8c17d64cf3b9ae53f0c3fbc65cfceaf1167a47be7a8695c3c80ff51b74b053ce
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/actions.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "f17-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 3863
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tube.play69.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:26:03 GMT
Expires: Tue, 05 Dec 2023 19:26:03 GMT
Cache-Control: public, max-age=31536000
Age: 208021
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
tube.play69.pl/wp-content/themes/detube/images/icon-plus-24.png
86.111.241.39200 OK 3.4 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/icon-plus-24.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 41cd0856fafc8badb16565c4ec1e4bde
17eeed864981156dc41ae05ec5207ee494ccecde
1b5af90f87a45f96cd6bf1deac1497df5ae734a9a2f993dff6c70fdc13e50478
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/icon-plus-24.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "d22-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 3362
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 05:08:09 GMT
content-type: application/json
age: 295
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash d6045b68aef048808c3ad1a61a6c2d93
f497faecbceb2b67553dfa16c728c3c90975e756
549c5751efaacaa5fdafd9c81d15f6d0d9d0c8febb3894ff9e252b8afdbf46d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4620
Cache-Control: max-age=143208
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:04 GMT
Etag: "6390ecbc-13a"
Expires: Fri, 09 Dec 2022 20:59:52 GMT
Last-Modified: Wed, 07 Dec 2022 19:42:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 314
tube.play69.pl/wp-content/themes/detube/images/section-shadow.png
86.111.241.39200 OK 19 kB URL HTTP/1.1 tube.play69.pl/wp-content/themes/detube/images/section-shadow.png
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
File type PNG image data, 620 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bcd07dc5875286fef77e1412c6e40f5
bfbeb79769242ecd913740152cad5ec68e01e240
6be831864901eeeac298f2419efb96337fca2593ec597181765ca5c628f90ba5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/detube/images/section-shadow.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "4ac7-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 19143
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: s8/d2ZDA84fVXR9sgnP4aEv1LfPdSizzSM6WmC9v9GWbConGNgCGZWOV1rDjms5XLIqGKY2pVRc=
x-amz-request-id: M090REDENB38XJ5J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 04:49:38 GMT
age: 1407
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
media.trafficjunky.net/js/holiday-promo.js
205.185.208.85200 OK 221 B URL HTTP/2 media.trafficjunky.net/js/holiday-promo.js
IP 205.185.208.85:0
Hash f43bc4e54585dd470d63d7b00c88f812
4ccba605b1a65baf355ea6329557ec83f2310d10
76b31f73876d823986e1a04f3495a8ac6e610fa3d360ce271159b4d91a322b54
GET /js/holiday-promo.js HTTP/1.1
Host: media.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1444165774"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 221
content-type: application/javascript
last-modified: Tue, 06 Oct 2015 21:09:34 GMT
accept-ranges: bytes
x-hw: 1670476385.dop201.sk1.t,1670476385.cds238.sk1.hn,1670476385.cds258.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js
205.185.208.142200 OK 173 kB URL HTTP/2 cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js
IP 205.185.208.142:0
File type Unicode text, UTF-8 text, with very long lines (65393)
Size 173 kB (172945 bytes)
Hash f6837360db9bb51289b45961c6496937
30f219916e0b76bfb83ace2852c88d33aac8b185
a1d3201777cf771aac78af5c42f57c5637dc35df684b33b97875e2012eaff6df
GET /html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js HTTP/1.1
Host: cdn1d-static-shared.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1664302430"
content-encoding: gzip
content-length: 172945
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 18:13:50 GMT
accept-ranges: bytes
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds221.sk1.c
cache-control: max-age=604800
timing-allow-origin: *
X-Firefox-Spdy: h2
ht.pornhub.com/js/eht.js?site_id=3
216.18.168.30200 OK 2.9 kB URL HTTP/1.1 ht.pornhub.com/js/eht.js?site_id=3
IP 216.18.168.30:0
Hash 141279a8d54a1474f67f9373d31af848
ec61d9f9a9265b51a603fd805d6d901f46dca2b0
9b46876cb793c94415778689b973ad9e07373b5935cc01dac07436e4e32a73d6
GET /js/eht.js?site_id=3 HTTP/1.1
Host: ht.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Cookie: bs=1i0zrdws1n0m40t46flvf22rhx92d84k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: application/javascript
content-length: 2863
last-modified: Tue, 12 Apr 2022 14:49:45 GMT
etag: "62559189-b2f"
accept-ranges: bytes
set-cookie: RNLBSERVERID=ded7335; path=/
cache-control: private
x-request-id: 63917261-D812A81E01BB4193-CA50D57
tube.play69.pl/favicon.ico
86.111.241.39200 OK 0 B URL HTTP/1.1 tube.play69.pl/favicon.ico
IP 86.111.241.39:0
ASN #47544 IQ PL Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
Cookie: __atuvc=1%7C49; __atuvs=63917260a0663547000
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:05 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 05:07:55 GMT
age: 310
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.pornhub.com/embed/949139259
66.254.114.41200 OK 9.8 kB URL HTTP/2 www.pornhub.com/embed/949139259
IP 66.254.114.41:0
Hash fba45738053b170bf5e5218675ddf5ee
a6c64a27b4170c943459eae8cab709660a44a2e1
8cdaea1eefc5a80963dddfc03cd246cf265d7e2cd45c7d4e4a2742c4e28fd02f
GET /embed/949139259 HTTP/1.1
Host: www.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: text/html; charset=UTF-8
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Fri, 09-Dec-2022 05:13:05 GMT; Max-Age=86400; path=/; domain=pornhub.com; secure
platform=pc; expires=Thu, 15-Dec-2022 05:13:05 GMT; Max-Age=604800; path=/; domain=pornhub.com; secure
bs=1i0zrdws1n0m40t46flvf22rhx92d84k; expires=Sun, 05-Dec-2032 05:13:05 GMT; Max-Age=315360000; path=/; domain=pornhub.com; secure; SameSite=None
ss=637255533407942770; expires=Fri, 08-Dec-2023 05:13:05 GMT; Max-Age=31536000; path=/; domain=pornhub.com; secure
fg_0d2ec4cbd943df07ec161982a603817e=21030.100000; expires=Sat, 07-Jan-2023 05:13:05 GMT; Max-Age=2592000; path=/; domain=pornhub.com; secure
__s=63917260-42FE722901BBDB80-4B6FE077; Secure; Samesite=None
__l=63917260-42FE722901BBDB80-4B6FE077; Secure; Samesite=None; Max-Age=31556926
cache-control: no-cache, no-store, must-revalidate
vary: User-Agent
rating: RTA-5042-1996-1400-1577-RTA
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 63917260-42FE722901BBDB80-4B6FE077
X-Firefox-Spdy: h2
cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg
205.185.208.142200 OK 5.0 kB URL HTTP/2 cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg
IP 205.185.208.142:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (824)
Hash 492b78e2eb4b883a214d777218d9e7c4
d572b1065719163ad1726b5245d7570eab42df4f
c037ef78b7a952ff5d72f11a1487c1dc1cb9deb2330613788d50329972da681d
GET /html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg HTTP/1.1
Host: cdn1d-static-shared.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1664302430"
cache-control: max-age=86400
content-length: 5010
content-type: image/svg+xml
last-modified: Tue, 27 Sep 2022 18:13:50 GMT
accept-ranges: bytes
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds226.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2
di.phncdn.com/videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg
205.185.208.142200 OK 19 kB URL HTTP/2 di.phncdn.com/videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg
IP 205.185.208.142:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Hash 73a5e5e979ff44dd5423f575b94e44de
7782497f9a2281310875db51281a2b2d99b36d6b
d27ef71c177e3b2a811f275c41f19c820364f88909621d87f4344b427f8490bf
GET /videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg HTTP/1.1
Host: di.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1577982173"
content-length: 18555
content-type: image/jpeg
last-modified: Thu, 02 Jan 2020 16:22:53 GMT
accept-ranges: bytes
cache-control: max-age=10026308
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds067.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1013
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
connect.facebook.net/en_US/sdk.js
157.240.200.14301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 08 Dec 2022 05:13:05 GMT
Connection: keep-alive
Content-Length: 0
s7.addthis.com/static/counter.d27508c102582d608697.js
23.38.200.123200 OK 8.3 kB URL HTTP/2 s7.addthis.com/static/counter.d27508c102582d608697.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (24530), with no line terminators
Hash 47fcfb824ad738c29e3195451d5c755e
8a955f27a30f4a8c9cde94567c041040e3c60d61
1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305
GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20908
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1934
Cache-Control: max-age=167858
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:50:43 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash a472183a6aa50b428097366e7ae796f6
7fba1bd8824061a7e1f11174179940d9c80b856f
49f3eac1100f8ef3eee1098645f93f1dfd60acc501332788f3aa5b767a5966e4
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d924e452130a1a5530c3f33fa0a52852
etag: "a3c7ea3e9f1cf08a1e4bab4c70f2d5c1"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 08 Dec 2022 05:16:25 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: pHIYOmqlC0KAlzZueueW9g==
x-fb-debug: Noluo3NVCEJhD1ZKWyYG067Z/VziyRsUBOap2w5RaEzevdD+qU+iZzo10tt5ULWzQFHlSPnFrjLfFEGMs4RsOg==
priority: u=1,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 05:13:05 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b68c0834f3bbe7a04e7cf0b08619a7b2
c029463e9bbf3bdc8744556153a185cb7dde13a9
2ffc47ad25ff74f4fd72c9d409b602e23adc558e1408775ea5bcab6e51110849
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6231
Cache-Control: max-age=92232
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63901f52-139"
Expires: Fri, 09 Dec 2022 06:50:17 GMT
Last-Modified: Wed, 07 Dec 2022 05:06:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1269
Cache-Control: max-age=167193
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:39:38 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
syndication.twitter.com/settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
104.244.42.8200 OK 405 B URL HTTP/2 syndication.twitter.com/settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (1042), with no line terminators
Hash 4fcb4424830e3ab0b77a8fc454c2a4ff
d42e30c48f70230a4c1b110242f6f5c57ed641a4
dfb94ae3691ca07942add658f89cd39da58f42b1c93bdd9d02b6cedb9ac1522c
GET /settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Thu, 08 Dec 2022 05:13:05 GMT
content-length: 405
content-encoding: gzip
x-transaction-id: fdfaa30d077e47f9
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 113
x-connection-hash: 25028883f8f695d86bf86d5bec29661412342d322ce0a9463ee3cd72581ba192
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0
23.38.200.123200 OK 470 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0
IP 23.38.200.123:0
Hash 3b0a6baa2167a7f2ffa19b3fad94e4e6
afb96c022a0ebde547b8d4d9d4c56589d1821cca
abcdea5cab872d2c49b0fb2e21555ac1982c810085f9898f128b6412ad439cc1
GET /url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: tube.play69.pl/mature/oiled-sex/
last-modified: Thu, 08 Dec 2022 05:13:05 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 78
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 83616664e4155f8af0efb0576f8920cf
1277b0f4f935bec3ada0f87c45395bb6d9b2efbc
bb19d85932c5e8a952b6fc28c1df42aed6d6920f79ee3f2217d2484294d575d3
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20907
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:06 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash cd8176e04a5a760140a9de9ffe9d8a17
f3b4514c9df71da30eadd2d87fd6131e5c3bf7e3
601089b9e7dcd29e255c391dff1c3da64dd80bb72ee047561592d86dbbc4c472
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20896
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:06 GMT
Etag: "126ffb93f08e989b18a6e1fc082c9e33+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 08 Dec 2022 05:13:06 GMT
content-length: 43
x-transaction-id: ba463b9e9b7baa24
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 25028883f8f695d86bf86d5bec29661412342d322ce0a9463ee3cd72581ba192
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 21622
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4884ce2731d3033b12e4792c1bbf453e
63b6efc98cb04228d82ac28fceb97bb1cf8d82fb
8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tM0WOO_Ypgj2QxJSz9GHZZTsKjzsvyD6tjpp4G0ZpuGAIGmnEe4oqQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:15:11 GMT
age: 75476
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f5ce4070e5050733be6bded399afe53
77cf1dd30e86f5568a8e64cb42f536cf2af9301c
7fe19657e1add41e913e9a326023ff484180ca17615175ddc5d2ab57217566bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4538
x-amzn-requestid: 143f359f-c0fd-4d32-8de5-cc2c2804bb39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIHzXoAMFqmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-27db2e3c6de7216e3c17caea;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CTvoYad2nNPubKimSZrkJXGTDWZK6u3fTli1YnBgrXk7WPAtmvO2rA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:04:30 GMT
age: 25717
etag: "77cf1dd30e86f5568a8e64cb42f536cf2af9301c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 22149
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca700c3-a35c-4310-8bec-315aac6627af.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca700c3-a35c-4310-8bec-315aac6627af.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1b19dcd440d04491799ff31ed3741a3c
397314c70c7a3502856bd13b879ee62232229ffd
4ca5248ce9473768e2f89e7509a5c4585ed106acd5780c82dcf08e22a98892ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca700c3-a35c-4310-8bec-315aac6627af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7717
x-amzn-requestid: a0140095-5792-4d50-81b5-a790ad3f535e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4bcFmsoAMFxZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-7dda36810e4c98da79e828d9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wN37yp9r-_W6n-L1TENCfjV18Gj1-3Q3gdIFvcViFbcUPtTnRgoHKA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:09:20 GMT
age: 79427
etag: "397314c70c7a3502856bd13b879ee62232229ffd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185
IP 157.240.200.14:0
File type ASCII text, with very long lines (18530)
Hash c12d9f66807fb52bdaf7eb694359a575
763c81b4652121ab91ca760d75a182ee2699e2b8
829e5ffdfa30ee73d8cb723f5baedc2dd54899bf41ce0c3aad9699a58ecd5905
GET /en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tube.play69.pl
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0ce3a5f8c116300a1763656e9c550ca3
etag: "bb85ea7d971ce67683630872db996125"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 08 Dec 2023 04:30:47 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: wS2fZoB/tSva9+tpQ1mldQ==
x-fb-debug: yuf7VRH3umsT6cPxO/7FRQJZojZOPo9QCLzTCS1DtSHdgOZ9zAieYGeky+5zhgrvUheo213ioQS9aVyL8FhtIg==
content-length: 88438
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 05:13:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 2RNWaZmxsq/NxhSwvX4kdPfjkKSjmOBzbHsfL6/cb+XUXp8iQUQHSnfS6qvXe3vGCr7Ks865altWkknaoEVYjg==
content-length: 0
date: Thu, 08 Dec 2022 05:13:07 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 21392
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9826
Expires: Thu, 08 Dec 2022 07:56:54 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9826
Expires: Thu, 08 Dec 2022 07:56:54 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 63b6fe6ca27b811894af2e57f191b3ca
ba2243b28d1361951660fd54b163a6eb0a4ec799
50a91df88dd3c5804bb73c31456dd22d02f52257d02c9383663f12044c24330c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50A91DF88DD3C5804BB73C31456DD22D02F52257D02C9383663F12044C24330C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21143
Expires: Thu, 08 Dec 2022 11:05:31 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13983
Expires: Thu, 08 Dec 2022 09:06:11 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11947
Expires: Thu, 08 Dec 2022 08:32:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.10200 OK 503 B IP 23.33.119.10:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 24710
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
104.22.70.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:04 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 162211
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7763027d7c9d09b4-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
etahub.com/events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10
66.254.114.62200 OK 0 B URL HTTP/2 etahub.com/events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10
IP 66.254.114.62:0
GET /events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10 HTTP/1.1
Host: etahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pornhub.com
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:06 GMT
content-type: application/json
set-cookie: eta_guid=32c3ad6b-2eff-48ff-9469-a9302baa0078_1670476386;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2032 00:00:01 UTC;SameSite=None;Secure;HttpOnly;
sessionid=5d268329-997d-4801-aa77-5da917bb6b5b; Path=/; SameSite=None;Secure;HttpOnly;
access-control-allow-origin: https://www.pornhub.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-request-id: 63917261-42FE723E01BBB144-A19D8B7
X-Firefox-Spdy: h2