Report - tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/

Report Overview

Submitted URL
tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/
IP
86.111.241.39
ASN
#47544 IQ PL Sp. z o.o.
Submitted
2022-12-08 05:13:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
100

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	1.4 kB	142.250.74.106
ht.pornhub.com	142234	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	3.2 kB	216.18.168.30
api-public.addthis.com	4111	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	494 B	894 B	23.38.200.123
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	8.9 kB	23.33.119.10
static.addtoany.com	4091	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	587 B	104.22.70.197
etahub.com	13625	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	626 B	718 B	66.254.114.62
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	72 kB	34.120.237.76
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.20.60
www.pornhub.com	10781	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	872 B	12 kB	66.254.114.41
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	428 B	46 kB	142.250.74.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
media.trafficjunky.net	15585	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	609 B	205.185.208.85
tube.play69.pl	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	190 kB	86.111.241.39
s7.addthis.com	1504	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	153 kB	23.38.200.123
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.7 kB	93.184.220.29
di.phncdn.com	12364	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	459 B	19 kB	205.185.208.142
syndication.twitter.com	833	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.5 kB	104.244.42.8
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	947 B	3.8 kB	157.240.200.35
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
cdn1d-static-shared.phncdn.com	16243	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	179 kB	205.185.208.142
platform.twitter.com	597	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	153 kB	93.184.220.66
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	92 kB	157.240.200.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-08	medium	tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/	Malware
2022-12-08	medium	tube.play69.pl/mature/oiled-sex/	Malware
2022-12-08	medium	tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3	Malware
2022-12-08	medium	tube.play69.pl/wp-content/themes/detube/responsive.css?ver=1.4.3	Malware
2022-12-08	medium	tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14	Malware
2022-12-08	medium	tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Malware
2022-12-08	medium	tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0	Malware
2022-12-08	medium	tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4	Malware
2022-12-08	medium	tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6	Malware
2022-12-08	medium	tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0	Malware
2022-12-08	medium	tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0	Malware
2022-12-08	medium	tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6	Malware
2022-12-08	medium	tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed
2022-12-08	medium	play69.pl	Sinkholed

JavaScript (49)

	URL	Size	First Seen	Last Seen
	tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0	3.7 kB	2023-03-08	2024-01-13
Pretty URL tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2024-01-13 13:19:52 Times Seen20 Hash abb0f7cdb292a21bf7f45d7c99859d85 c615edb9180a30994e2fd0df16ebb796b0256832 e4a1d7fa7a1f8032a532571d2507a0cd69312be62db8752429bdee431c88b47b Loading...

	static.addtoany.com/menu/svg/icons/reddit.js	929 B	2023-03-08	2023-11-09
Pretty URL static.addtoany.com/menu/svg/icons/reddit.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:23 Last Seen2023-11-09 14:34:58 Times Seen715 Hash d50e42f61f1d3dbc1633a4ff5eed88a1 cadabf0478cb26debca880e64243fecd79051318 16ea98df371c043e34589b849544118a55801022a4898cb4809c63af0cade307 Loading...

	static.addtoany.com/menu/svg/icons/twitter.js	695 B	2023-03-08	2024-04-11
Pretty URL static.addtoany.com/menu/svg/icons/twitter.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2024-04-11 22:41:57 Times Seen4985 Hash 27cd96b1f5736097c53caaeb6d2dc62c 2f853bd93d200defae6f66090d0746ecee3e71d6 74ec1e2bfcf647ccdeaf5b127294db846ee4a6f8ffd6c909d4938370d4187d1f Loading...

	connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185	313 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185 IP 157.240.200.14 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:47:02 Times Seen1 Hash 0ce3a5f8c116300a1763656e9c550ca3 4c94d20ac4b6e4ff2e0cdf8df5a22bafaf1116d7 5e84e968f467fd82b12f3ce79c9af73f0ba89c7d0a9cf18a77aa95841d15dbdf Loading...

	tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-18
Pretty URL tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-18 21:08:33 Times Seen10179 Hash dc5ba5044fccc0297be7b262ce669a7c f137ff98ae379e35b0702967d3b6866a0a40e3be cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3 Loading...

	tube.play69.pl/mature/oiled-sex/	1.6 kB	2023-03-08	2023-03-08
Pretty URL tube.play69.pl/mature/oiled-sex/ IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash 09624e783585102b02d2c61d0b8a8361 28e50a9d8d39f7633d38b9509c4535431de2bdc4 6a12312cdca95007e28eaa83ef024b85580d763c5ec4ce8f99313341927b438d Loading...

	www.pornhub.com/embed/949139259	576 B	2023-03-07	2024-04-04
Pretty URL www.pornhub.com/embed/949139259 IP 66.254.114.41 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:18 Last Seen2024-04-04 20:44:22 Times Seen70 Hash 95f7f1d3aa7aaec7c24c0e3109e8f844 8d7579bdbae44fa279930abe9444d455661a3bce 4a7a96f13d1720071570bdf277d5f687d12363ffe731eae5838ec0f6e1a9782c Loading...

	ht.pornhub.com/js/eht.js?site_id=3	2.9 kB	2023-03-07	2024-01-29
Pretty URL ht.pornhub.com/js/eht.js?site_id=3 IP 216.18.168.30 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:18 Last Seen2024-01-29 18:53:15 Times Seen294 Hash 141279a8d54a1474f67f9373d31af848 ec61d9f9a9265b51a603fd805d6d901f46dca2b0 9b46876cb793c94415778689b973ad9e07373b5935cc01dac07436e4e32a73d6 Loading...

	tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22	1.4 kB	2023-03-07	2024-04-17
Pretty URL tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 18:30:12 Times Seen2983 Hash 570ae0f3c201604926ea599d3d1f6c04 2c29243a73660964d4712b969d2a15e27777bc14 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b Loading...

	z.moatads.com/addthismoatframe568911941483/moatframe.js	1.7 kB	2023-03-07	2023-11-01
Pretty URL z.moatads.com/addthismoatframe568911941483/moatframe.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-11-01 14:42:28 Times Seen4278 Hash dd1a19cb8d13e4571d2b293c0a0d2ccf 18070dd5c894930a8aef7117bf8d49bd4922a723 05090f9390f5bc0cd23fe5f432037cc92d7cbce1ced9bfe8faf3d1c9abae85cd Loading...

	s7.addthis.com/static/counter.d27508c102582d608697.js	24 kB	2023-03-07	2023-05-06
Pretty URL s7.addthis.com/static/counter.d27508c102582d608697.js IP 23.38.200.123 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-06 01:05:13 Times Seen644 Hash 17c5eedd5508a865b219d7205e776cc2 5ac018d94532949dd6518deee44f3c4ead539a51 e4f924eac92aa3cc4ea64f2891447e8bd3af49e1a5c0bcd04b7356e2f7f1c04c Loading...

	platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html#dnt=false&id=twitter-widget-0&lang=en&original_referer=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&size=m&text=Oiled%20Sex&time=1670476385665&type=share&url=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846%23.Y5FyYOSEtHQ.twitter	33 kB	2023-03-08	2023-03-12
Pretty URL platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html#dnt=false&id=twitter-widget-0&lang=en&original_referer=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&size=m&text=Oiled%20Sex&time=1670476385665&type=share&url=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846%23.Y5FyYOSEtHQ.twitter IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:38 Last Seen2023-03-12 21:23:15 Times Seen1 Hash d929c79de1e56c4f70de55c27145d9da e9a277a2e8eff3dd50f50aa233be00bd2b27a72a 62e79f87fec503bf648ebc480c61b992fa563fa1c8075c0ef2eba8ec408d17e3 Loading...

	tube.play69.pl/mature/oiled-sex/	194 B	2023-03-08	2024-01-13
Pretty URL tube.play69.pl/mature/oiled-sex/ IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2024-01-13 13:19:51 Times Seen2 Hash 56908ef6e282ec020bce28b8843b7cee 475d69a9cde1635976916ee2408d5805f5d8f126 56e6251323033b131a4a5804d9b5aeacc19d1d3f1c4e59d8e5568e57b89f57d2 Loading...

	tube.play69.pl/mature/oiled-sex/	2.0 kB	2023-03-08	2023-03-13
Pretty URL tube.play69.pl/mature/oiled-sex/ IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-13 11:18:31 Times Seen1 Hash 9662b86833863bb680398b6d3b45ebb2 920755d327db8ca65e54f9c0d962e98ce15abbbf 6fde01ab93548981eb994e05040738bce04695f2e49b9e45e7f53933baeea4e6 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 07:28:27 Times Seen36954243 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6	10 kB	2023-03-07	2024-01-13
Pretty URL tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:02 Last Seen2024-01-13 13:19:52 Times Seen68 Hash 0ab166efebffd48caf5b751a7f10b1a0 984c728db2913da58c0540ab6294fa4d45eb5666 941c56b22951135b6a86f17ffd1b3b1e50b695bfafad5d903d9bd8dd994da7d4 Loading...

	s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html#rand=0.07436393833866406&iit=1670476384436&tmr=load%3D1670476384353%26core%3D1670476384364%26main%3D1670476384433%26ifr%3D1670476384438&cb=1&cdn=0&md=0&kw=&ab=-&dh=tube.play69.pl&dr=&du=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&href=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&dt=Oiled%20Sex%20%7C%20Porn%20Tube&dbg=0&cap=tc%3D0%26ab%3D0&inst=1&jsl=32769&prod=undefined&lng=en&ogt=image%2Cdescription%2Ctitle%2Curl%2Ctype%3Darticle%2Csite_name&pc=men&pub=&ssl=0&sid=63917260e2d17977&srf=0.01&ver=300&xck=0&xtr=0&og=site_name%3DPorn%2520Tube%26type%3Darticle%26url%3Dhttp%253A%252F%252Ftube.play69.pl%252Fmature%252Foiled-sex%252F%26title%3DOiled%2520Sex%2520%257C%2520Porn%2520Tube%26description%3D%26image%3Dhttp%253A%252F%252Ftube.play69.pl%252Fwp-content%252Fuploads%252F2016%252F07%252Fthumb-15846.jpg&csi=undefined&rev=v8.28.8-wp&ct=1&xld=1&xd=1	72 kB	2023-03-07	2023-05-06
Pretty URL s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html#rand=0.07436393833866406&iit=1670476384436&tmr=load%3D1670476384353%26core%3D1670476384364%26main%3D1670476384433%26ifr%3D1670476384438&cb=1&cdn=0&md=0&kw=&ab=-&dh=tube.play69.pl&dr=&du=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&href=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&dt=Oiled%20Sex%20%7C%20Porn%20Tube&dbg=0&cap=tc%3D0%26ab%3D0&inst=1&jsl=32769&prod=undefined&lng=en&ogt=image%2Cdescription%2Ctitle%2Curl%2Ctype%3Darticle%2Csite_name&pc=men&pub=&ssl=0&sid=63917260e2d17977&srf=0.01&ver=300&xck=0&xtr=0&og=site_name%3DPorn%2520Tube%26type%3Darticle%26url%3Dhttp%253A%252F%252Ftube.play69.pl%252Fmature%252Foiled-sex%252F%26title%3DOiled%2520Sex%2520%257C%2520Porn%2520Tube%26description%3D%26image%3Dhttp%253A%252F%252Ftube.play69.pl%252Fwp-content%252Fuploads%252F2016%252F07%252Fthumb-15846.jpg&csi=undefined&rev=v8.28.8-wp&ct=1&xld=1&xd=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-06 01:05:13 Times Seen3063 Hash 7d5b5e32745c7b2e10b41554f0dc4142 2fe0a408b06fb8a44f7c1b54ad4f1b70204584ab 7eae26867a4cf6c29d2fbc4cbf3a222058ba71a9ceb7ff0d6d96c3cfb462cc81 Loading...

	www.pornhub.com/embed/949139259	10 kB	2023-03-08	2023-05-18
Pretty URL www.pornhub.com/embed/949139259 IP 66.254.114.41 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:07:05 Last Seen2023-05-18 11:43:10 Times Seen2 Hash e8e371900465800c35eb5323bd2c4a5b 20422c38fbc133be60b0b3f3f059aabf21b6d9bb 6c45211a572848962bb154f49824bbfa4ad6b833055ae0efa8da5a73e2d46bda Loading...

	m.addthis.com/live/red_lojson/300lo.json?si=63917260e2d17977&bkl=0&bl=1&pdt=812&sid=63917260e2d17977&pub=&rev=v8.28.8-wp&ln=en&pc=men&cb=1&ab=-&dp=tube.play69.pl&fp=mature%2Foiled-sex%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1670476384443&jsl=32769&uvs=63917260a0663547000&skipb=1&callback=addthis.cbs.jsonp__62381049785438520	89 B	2023-03-08	2023-03-08
Pretty URL m.addthis.com/live/red_lojson/300lo.json?si=63917260e2d17977&bkl=0&bl=1&pdt=812&sid=63917260e2d17977&pub=&rev=v8.28.8-wp&ln=en&pc=men&cb=1&ab=-&dp=tube.play69.pl&fp=mature%2Foiled-sex%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1670476384443&jsl=32769&uvs=63917260a0663547000&skipb=1&callback=addthis.cbs.jsonp__62381049785438520 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash e24893d05a50b8720860507642e7d007 71141f86d2fc7ffd55965b33eef2905b208f9586 b6f86acf28675207adc1d1db985852133e8e261cee59518dae623aa2e0e1d618 Loading...

	tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6	11 kB	2023-03-07	2024-01-13
Pretty URL tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:02 Last Seen2024-01-13 13:19:52 Times Seen59 Hash 3dc7354e490f969a5e4c75f6d1759606 3f04e16fc92e426e89274db18374de22f293eb05 523c810e2364abf76ed0c8659d8eaccfc8ee7f15f11e3dd5e98240f969fc0d59 Loading...

	tube.play69.pl/wp-content/plugins/anti-spam/js/anti-spam-4.4.js	2.5 kB	2023-03-08	2024-01-21
Pretty URL tube.play69.pl/wp-content/plugins/anti-spam/js/anti-spam-4.4.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2024-01-21 16:09:40 Times Seen3 Hash ba5be846ee7aacc623820f1458daa98f 6585d9ff8f3bcc81aecf0c3b46da97dbb44f7d75 7b23ec5597e11328be5ecd5cc1842bf69baa91e7b055903864e61d4d094c8498 Loading...

	tube.play69.pl/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-03-04
Pretty URL tube.play69.pl/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:22 Last Seen2024-03-04 05:51:06 Times Seen352 Hash 57a06ff5d51e2c930127670adc905ae9 08400121f742f4b58e2d222f58bc7d09b15e3792 f9a749c4d9faccf5fb9d13db27dc760e8cc571685e3f772487eaec4f884a542c Loading...

	tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22	1.1 kB	2023-03-07	2024-04-19
Pretty URL tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-19 06:39:41 Times Seen2159 Hash 9ef21a469fc37e845d6303fcfea70897 a86ec94ec7bee9227bcdf8d6374cabe82ae43e49 6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f Loading...

	platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html#dnt=false&id=twitter-widget-0&lang=en&original_referer=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&size=m&text=Oiled%20Sex&time=1670476385665&type=share&url=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846%23.Y5FyYOSEtHQ.twitter	354 B	2023-03-07	2023-08-14
Pretty URL platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html#dnt=false&id=twitter-widget-0&lang=en&original_referer=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&size=m&text=Oiled%20Sex&time=1670476385665&type=share&url=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846%23.Y5FyYOSEtHQ.twitter IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-08-14 05:25:58 Times Seen893 Hash be28be14af89e25ba8908b2452c789c8 d8c3db0ebdf885157c99df22e63e252f59b778f0 0ae0d3fd5c911a8d08e456cf2af548f4e7c67cee647c9d2f4201176325a9c67e Loading...

	tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0	7.9 kB	2023-03-07	2024-03-28
Pretty URL tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:41 Last Seen2024-03-28 19:23:41 Times Seen898 Hash f5c25c9c6d60162ba8865649b89e56fc 520fa90c637f9e93f16ec3674136c61a0c1e3d60 337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a Loading...

	www.pornhub.com/embed/949139259	437 B	2023-03-07	2024-01-29
Pretty URL www.pornhub.com/embed/949139259 IP 66.254.114.41 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:18 Last Seen2024-01-29 18:53:15 Times Seen69 Hash efa062a88734ad612dae37628e46a9e9 be72f340f81a38fa592e6cb103124c2c76dd7a3c 862b60abb024ff7773b1d2516bc00ad35ef4290d054ed24d22b83682210b8d1d Loading...

	www.pornhub.com/embed/949139259	12 kB	2023-03-08	2023-03-08
Pretty URL www.pornhub.com/embed/949139259 IP 66.254.114.41 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash 2e95d2369c8baf1c9df7361eee578916 761f15cd45d1f86485e59ee9afd54b06fb3f84a9 e63a2c76a13a096c37e0f3261f2c373316693eed5d3f843855db526db15ebbc1 Loading...

	static.addtoany.com/menu/svg/icons/tumblr.js	392 B	2023-03-08	2023-10-28
Pretty URL static.addtoany.com/menu/svg/icons/tumblr.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:23 Last Seen2023-10-28 01:08:32 Times Seen477 Hash 82a1e48dd91b21b488e0a90989a440a8 57d41e4a92e95e8f72c9b66adca4e85cbd732ce2 a1b8e0b1ca3f07aab2c79c6ca3845461ad91f8c41f7b7f0080df629308ec64f7 Loading...

	api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0	58 B	2023-03-08	2023-03-08
Pretty URL api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0 IP 23.38.200.123 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash 8f212e6dc6a0f2cf9f2d253e209da42f 64ab703ad341fb9ffeb5eeda5ea7b58dbea2d63f f870dadb260cce1ac69e96e78d797059d2084ea35e261e86cd75b8bf6347eb29 Loading...

	static.addtoany.com/menu/svg/icons/facebook.js	318 B	2023-03-08	2023-10-29
Pretty URL static.addtoany.com/menu/svg/icons/facebook.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-10-29 06:42:20 Times Seen3991 Hash bd42caff99f3e28c34363fa883363984 e6c80f5fdc2811e497e314aba3d9fa1137e1daa0 3a19ff3554a1e589f756a92be8263726674127c133feb1d333095668b77ba08c Loading...

	tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 07:01:55 Times Seen37084 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0	135 B	2023-03-07	2024-03-01
Pretty URL tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:16 Last Seen2024-03-01 07:45:22 Times Seen91 Hash 6da73f714f55185381c92e68ac60f104 e039a56994ed6b5fd078521019c9c03a45fdcf47 8636944aec2fea7c4306f8cfbb484bd1cb5465e4713a266172f6eab0681e3efa Loading...

	tube.play69.pl/mature/oiled-sex/	162 B	2023-03-08	2024-01-13
Pretty URL tube.play69.pl/mature/oiled-sex/ IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2024-01-13 13:19:52 Times Seen2 Hash 073d108f3e4f745a41fbcc8e83005f99 753d6eba68b8fa7f5039c76bd1c249c1e08575b4 e15f49000e1ba21ebea1dbcad016911d39a21eb73cb88a8d5ee087f9b82a995d Loading...

	platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl	327 kB	2023-03-07	2023-05-03
Pretty URL platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-03 22:50:00 Times Seen3 Hash 26599e03fbd14de8182dfc6fb71ab446 00642f9520c1d630f6474a3f910a3444d8e8d589 2af340a08ce2caffa6df9a38412f1df460199ea76e4bc1fe3957cc3ce2962518 Loading...

	tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2	14 kB	2023-03-07	2024-04-18
Pretty URL tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:02 Last Seen2024-04-18 08:24:49 Times Seen159 Hash 625d696aea709c228147b87da60dfd41 b51a2effb5015d3b31927be8f561120011a9ce55 6e77c3b5e1150f7ee15c5418a7d3e68a7c4fcfa7b04c0a26845e826cfa89ff91 Loading...

	tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22	12 kB	2023-03-07	2024-04-17
Pretty URL tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-17 12:04:16 Times Seen6763 Hash fe0575b66568074463f12485d90f6d4c aeedd9ab3b7874e63f647042963cb1301a38b391 647a6b36f3fd1f21bae171270111096b4613c23a47e6621628a51bae9c82b0b7 Loading...

	static.addtoany.com/menu/page.js	3.1 kB	2023-03-08	2023-03-12
Pretty URL static.addtoany.com/menu/page.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-03-12 21:05:42 Times Seen1 Hash ce8f01200b636efb824d18c1707fd846 b3bc0d5c0334700652cf36e2e47b7e87ba6d9a6c 5592b1f799f3bff73a1b1d87deb4a32a820db0e2dd4a561050c7f1d27116d9a1 Loading...

	static.addtoany.com/menu/modules/core.9b4ec89f.js	72 kB	2023-03-08	2023-03-12
Pretty URL static.addtoany.com/menu/modules/core.9b4ec89f.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-03-12 21:05:42 Times Seen1 Hash 6e87cc21fd82f2e8cc67e65b91df08ab 06a16e2cf3d75286bbb9cc072040c165e0c2d8ff b84b58bc5684e07213ce13351d3bf6b45f8fabc346f45f4a1ea17a4bbafbdd13 Loading...

	www.pornhub.com/embed/949139259	672 B	2023-03-08	2023-03-08
Pretty URL www.pornhub.com/embed/949139259 IP 66.254.114.41 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash 608bc52f35c048a26469246517563944 33281cc5e547fbb0e72e89aa232e9930ed4873d1 f04ec2353ab0cd4c992b04e37580ab0274b607955be7bec2005d3b8cc80b59cf Loading...

	platform.twitter.com/widgets.js	99 kB	2023-03-08	2023-11-01
Pretty URL platform.twitter.com/widgets.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:38 Last Seen2023-11-01 12:31:04 Times Seen3 Hash 6633f9603c759c40d9b200995454f17c fc66d8b06e41ccb007fb52884aba2addfc931cbd c02444f391e8655e79ff8d7d4cb69c3426c3bffbf8731a994fa23aed0f641d12 Loading...

	connect.facebook.net/en_US/sdk.js#version=v2.6	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js#version=v2.6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:40:02 Last Seen2023-03-08 21:40:02 Times Seen1 Hash d924e452130a1a5530c3f33fa0a52852 8bfb3ab8af0c43a44d5128540bc6cd23d29d818c 9a643162dae8fade851603920ae82f2c0754e0fa136b62d2a1ee299efad948c5 Loading...

	static.addtoany.com/menu/svg/icons/a2a.js	182 B	2023-03-08	2024-04-16
Pretty URL static.addtoany.com/menu/svg/icons/a2a.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2024-04-16 17:58:32 Times Seen4214 Hash baf0595a19bdc7f7497b74731d2166c4 fd5714384c52fc0338083574434d12328313896c 3dab93242ee573bbcfc22c9d15acd47794e500ed44e6bd48a35400b39d65aa43 Loading...

	tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2	29 kB	2023-03-07	2024-03-26
Pretty URL tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2 IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:51 Last Seen2024-03-26 02:41:28 Times Seen2927 Hash 5420b6516c14245b504e7240a8310f2c bf6d46e754eca13c3074f002abb124e55ef4c3aa 3ca3e467b7d4d6b403aa4619019d9250b11449c8ee9c91c90bcbc9acdd64fea2 Loading...

	tube.play69.pl/mature/oiled-sex/	297 B	2023-03-07	2024-04-11
Pretty URL tube.play69.pl/mature/oiled-sex/ IP 86.111.241.39 ASN #47544 IQ PL Sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:13 Last Seen2024-04-11 16:14:20 Times Seen211 Hash 19b472013067c56ceebe4414dc23b197 72b2bc77521cc5f222b7a730ab41729f501ef102 1bc522682abaff37ee2f15108329783d48e71d095ac916ad95786ef7d2d92ad2 Loading...

	static.addtoany.com/menu/sm.24.html#type=core&event=load	551 B	2023-03-08	2023-04-05
Pretty URL static.addtoany.com/menu/sm.24.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2023-04-05 02:10:42 Times Seen517 Hash d51b83b6cab0a31d7e631829656a22b1 cd7bc9245b65c5c851e03a04541d4785c550b1f4 82e320c0c3f2224c9bdeadab1078c0e5b4b705b8e2da82700b6f305bbdf380f9 Loading...

	media.trafficjunky.net/js/holiday-promo.js	404 B	2023-03-07	2023-05-04
Pretty URL media.trafficjunky.net/js/holiday-promo.js IP 205.185.208.85 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:18 Last Seen2023-05-04 14:47:48 Times Seen13 Hash 08297ff3e07522616e69368afe23153c 497db671473ac1bd2bc5d1be36df6500f1af0e06 8f82601d76fe73e6f5f21709088616e76ced591f898c1fcbd735d71bbbafd142 Loading...

	platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js	7.0 kB	2023-03-08	2023-03-17
Pretty URL platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:27:43 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 7bb2d17ac20be3bd6ec1079356afecd9 c7fd48aa9c348760ef3351233c3962d04d5f12b7 236dca679b9983d1fbea0415d584b17d80f1c6942506fc508a5384db924e8795 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 062687690045026856f53e20000732e7	8 B	2023-03-07	2024-04-14
Pretty Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-14 19:52:56 Times Seen3365 Hash 062687690045026856f53e20000732e7 907a784295139ac62a25fed0fe9636c8a3a5b3af 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f Loading...

	#2 Eval - 449bf5704205ea90d9021bf85b4300cd	11 B	2023-03-07	2024-04-14
Pretty Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-14 19:52:56 Times Seen3353 Hash 449bf5704205ea90d9021bf85b4300cd a8401782462f9e0afe2435dea38cb79ac66d83af 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16 Loading...

HTTP Transactions (90)

URL IP Response Size

tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/

86.111.241.39

301 Moved Permanently

0 B

URL HTTP/1.1
tube.play69.pl/http:/tube.play69.pl/mature/oiled-sex/
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /http:/tube.play69.pl/mature/oiled-sex/ HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 05:13:03 GMT
Server: Apache
X-Pingback: http://tube.play69.pl/xmlrpc.php
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://tube.play69.pl/mature/oiled-sex/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8

tube.play69.pl/mature/oiled-sex/

86.111.241.39

200 OK

8.3 kB

URL HTTP/1.1
tube.play69.pl/mature/oiled-sex/
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Size
8.3 kB (8337 bytes)
Hash
57f1064f073c3f73c902303cdbcf56c2
d81a715f655f77a663557860f14935725df69496
1f2e91b9e8c4b1e8558b54efd1e97b7cbac575375b909a8e4ec49054c0af9abc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /mature/oiled-sex/ HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
X-Pingback: http://tube.play69.pl/xmlrpc.php
Link: <http://tube.play69.pl/wp-json/>; rel="https://api.w.org/", <http://tube.play69.pl/?p=15846>; rel=shortlink
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22

142.250.74.106

200 OK

865 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
865 B (865 bytes)
Hash
19555ddfb705a50b12814f918f2ba230
daab4e02d5ef08f0d218666c5a2dc1210eedda8b
e6fb711b01681f9e4b27671eaa13993d2685662505efaed34af83a13b98565da

HTTP Headers

GET /css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.22 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 08 Dec 2022 05:13:04 GMT
Date: Thu, 08 Dec 2022 05:13:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

86.111.241.39

200 OK

14 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text
Size
14 kB (14015 bytes)
Hash
14c1da6b40cf5f9138d1dfed58ed8cb1
3d08fc3cd402a5193187750cb59ae16929ba6e23
45559844e894c4aa83352c60fb19599b5cd9d276e19fde217693b682313a70fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/style.css?ver=1.4.3 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:19:42 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14015
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

s7.addthis.com/js/300/addthis_widget.js

23.38.200.123

308 Permanent Redirect

171 B

URL HTTP/1.1
s7.addthis.com/js/300/addthis_widget.js
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
171 B (171 bytes)
Hash
3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571

HTTP Headers

GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/

HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Thu, 08 Dec 2022 05:13:04 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com

tube.play69.pl/wp-content/themes/detube/responsive.css?ver=1.4.3

86.111.241.39

200 OK

1.9 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/responsive.css?ver=1.4.3
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text
Size
1.9 kB (1851 bytes)
Hash
d7fc51f6ffe0535d8786da85f42fa6d3
e10edd692ee866e2dfae11f0e9f44baa1e571ce1
cd48d6747367f656b2617e7722350e638e7ea965ea9f7f0e7f7f4c82e73c5199

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/responsive.css?ver=1.4.3 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:19:41 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1851
Keep-Alive: timeout=5, max=100
Content-Type: text/css

tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14

86.111.241.39

200 OK

452 B

URL HTTP/1.1
tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (1401), with no line terminators
Size
452 B (452 bytes)
Hash
2d36a18c6fe23149715f8aafc282e14d
945ccb1c13aea1290890292eb54ad78a7858ae3f
870feb623eeb98e0d63d3c2756effa33252b49fc148d113a4fa995e772d74514

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.14 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:18:33 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 452
Keep-Alive: timeout=5, max=100
Content-Type: text/css

tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

86.111.241.39

200 OK

4.0 kB

URL HTTP/1.1
tube.play69.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (9959)
Size
4.0 kB (4014 bytes)
Hash
a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 18:23:31 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript

tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0

86.111.241.39

200 OK

130 B

URL HTTP/1.1
tube.play69.pl/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with no line terminators
Size
130 B (130 bytes)
Hash
b620cce56ebb554e6e979f1bf1c0d6cf
dd8ca5b737b098417a8a47066194f4b70cb52913
b5804ffcdc13a4ee5693170c79c0d9b5036d212a4beefa1121baf64d9b7dd723

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 Apr 2018 17:18:33 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 130
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript

tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2

86.111.241.39

200 OK

5.8 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
HTML document, ASCII text, with very long lines (13673)
Size
5.8 kB (5830 bytes)
Hash
a0868edfa48586fe2501b728e48a355b
56ee6d2537f20554a455b9a53c331af3464304b0
956ecbca5319110251f845d6ff752e8874a32be127e5ad3fb89d7efa3d5c2043

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/js/modernizr.min.js?ver=2.6.2 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5830
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1244
Cache-Control: max-age=101670
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:04 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:27:34 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

s7.addthis.com/js/300/addthis_widget.js

23.38.200.123

200 OK

116 kB

URL HTTP/2
s7.addthis.com/js/300/addthis_widget.js
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (54602)
Size
116 kB (116325 bytes)
Hash
ff4671f71c958029bbf6d9694284da70
7535744f2dbaf99902a54fc529e760b08a73f265
123f781673b2e45e18df36b64984674f489a5f3541c69e295f01f554b8d3c738

HTTP Headers

GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116325
date: Thu, 08 Dec 2022 05:13:04 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2

tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4

86.111.241.39

200 OK

34 kB

URL HTTP/1.1
tube.play69.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (31997)
Size
34 kB (33776 bytes)
Hash
6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 05 Sep 2019 08:40:55 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript

tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6

86.111.241.39

200 OK

3.7 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (6309)
Size
3.7 kB (3697 bytes)
Hash
92525514e1331726fe7c5a221fd74eac
1f49290f11e1ee35e70b148874e347e04959e878
ca548a80029a9df596a60c58792c3c53cdc979536b6cc89ba46d97f3216c2d65

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/js/jquery.plugins.min.js?ver=1.4.6 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3697
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2

86.111.241.39

200 OK

8.5 kB

URL HTTP/1.1
tube.play69.pl/wp-includes/js/masonry.min.js?ver=3.3.2
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (28817)
Size
8.5 kB (8525 bytes)
Hash
25309b355cc141316c0cc8040bc53ec4
fa8fe7646937a6bae2204aa0b099a498c4d84766
2401e0a375cf7f6a4a278bd0ed84ac2b16c8e17d672634944a7f8c3934042f1c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:22:32 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8525
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0

86.111.241.39

200 OK

2.4 kB

URL HTTP/1.1
tube.play69.pl/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (7855), with no line terminators
Size
2.4 kB (2435 bytes)
Hash
d32403263bb01c17b9b69d3f9d01f3fc
6a7810f026de39a8d37516d2ec56aabaf4f39cab
9c50bd091d05620a8c6678d800cb50bf64c862102a33b4ad19f914ceaa0b02cd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2435
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0

86.111.241.39

200 OK

1.4 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
HTML document, ASCII text, with very long lines (363)
Size
1.4 kB (1359 bytes)
Hash
b9cca4a8244670bc55279f4bd03d9cae
ad1fbfe68ef478d1a405293f3daddf3ef1e7bc27
19f7e3c3c5a39613fc3439ea5bb12494fabdb5e04e4d0171ac5e0adedb5a6180

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/js/jquery.fitvids.js?ver=1.0 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:58 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1359
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6

86.111.241.39

200 OK

3.3 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/js/theme.js?ver=1.4.6
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text
Size
3.3 kB (3274 bytes)
Hash
c7b3bb6de9a1a0aee6c979b0170e22d6
c38aacb0483b432954ab7d3e7edc659ced8a8b3f
40c2f9764accd031c5724362d8570b4d331ec545db0715974e1a826673373ea3

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/js/theme.js?ver=1.4.6 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:57 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3274
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22

86.111.241.39

200 OK

580 B

URL HTTP/1.1
tube.play69.pl/wp-includes/js/comment-reply.min.js?ver=4.9.22
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (1076), with no line terminators
Size
580 B (580 bytes)
Hash
03610c833b0a8cd39a5cfd87a20dd104
038ccb657a60f77c5eaf6a707bd4d0834d08da42
9feb345568ea18a6f4cee3c910adb99c956a06161a6c75e2c3a1a916f2129baa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22

86.111.241.39

200 OK

739 B

URL HTTP/1.1
tube.play69.pl/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (1391), with no line terminators
Size
739 B (739 bytes)
Hash
60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 739
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-content/uploads/2016/07/thumb-16090-160x90.jpg

86.111.241.39

200 OK

4.3 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-16090-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x821c3a3d", baseline, precision 8, 160x90, components 3\012- data
Size
4.3 kB (4286 bytes)
Hash
81ea068b787852e4d2fa1c1ff40a4385
17ec4bfae5737b0f90c6bd827c7c68935bda27ec
7b2268dc1eba98444a10307fa32c4fd52eb9e1cb652b74777dfeb023aa9941f5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-16090-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:34:53 GMT
ETag: "10be-568f51fc78940"
Accept-Ranges: bytes
Content-Length: 4286
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22

86.111.241.39

200 OK

4.3 kB

URL HTTP/1.1
tube.play69.pl/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
ASCII text, with very long lines (9063)
Size
4.3 kB (4347 bytes)
Hash
bc89387b6a6f886f99511cca233b5071
77c1103c6d84263a73bff007bd635750d5b26296
baf8e3410e57e5650ad72f25eb93d82ea36ac8bd51904948e3d2f2a05faa3e78

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:41:01 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4347
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript

tube.play69.pl/wp-content/uploads/2016/07/thumb-15884-160x90.jpg

86.111.241.39

200 OK

3.2 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15884-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", baseline, precision 8, 160x90, components 3\012- data
Size
3.2 kB (3175 bytes)
Hash
92e83091f3476d353762ba57316f7eed
48d3fdf02a7666007d5635975469d5ade7ad106a
39fcbe3bf0e46e7ad54b6c344ab6ad9a788d6bc5c7f8ace5aba28b3aeebaacc0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15884-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:01:56 GMT
ETag: "c67-568f580848d00"
Accept-Ranges: bytes
Content-Length: 3175
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15820-160x90.jpg

86.111.241.39

200 OK

5.1 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15820-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", baseline, precision 8, 160x90, components 3\012- data
Size
5.1 kB (5058 bytes)
Hash
fda9cf5ef0941f580ca7688eaa9bd268
b347ba96c1af7f8fd5cbd1b36e50b8c8a92e4c0d
6b537e9b6340208772b614e02f35ff9c6b1d3146a59b09a1f30e29d9c8ccd9dc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15820-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:04:44 GMT
ETag: "13c2-568f58a880700"
Accept-Ranges: bytes
Content-Length: 5058
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15912-160x90.jpg

86.111.241.39

200 OK

3.2 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15912-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", baseline, precision 8, 160x90, components 3\012- data
Size
3.2 kB (3169 bytes)
Hash
74456822b4d88eec1b42f75e32f2108e
6726740d0f38b61c4f51cf41b590ffb5488dd37c
5a601c4cea1ea709ba8b1ca22933e9fcfb0f1bf882565556e22f300fa652c934

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15912-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:56:58 GMT
ETag: "c61-568f56ec16e80"
Accept-Ranges: bytes
Content-Length: 3169
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-16104-160x90.jpg

86.111.241.39

200 OK

2.6 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-16104-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", baseline, precision 8, 160x90, components 3\012- data
Size
2.6 kB (2563 bytes)
Hash
3419bd177e5a4477406b8060a5aa5d3a
94df790d2c765db952fb731130f69a4ac2d74584
cb41988e3ce7b2210d2de63647a681d167426c589f4fed86f75a6a5ad87a457d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-16104-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:32:33 GMT
ETag: "a03-568f5176f4e40"
Accept-Ranges: bytes
Content-Length: 2563
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-16058-160x90.jpg

86.111.241.39

200 OK

3.8 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-16058-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x88155d6d", baseline, precision 8, 160x90, components 3\012- data
Size
3.8 kB (3792 bytes)
Hash
8176953f89f9cf1e86b06103008f180e
465f05486c10aa7e17e1db65a9c431fe0ba4422a
629d16139dac0ac919963563a2d05e53e06546e46b260ccb58a544df8717439d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-16058-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:27:03 GMT
ETag: "ed0-568f503c3e7c0"
Accept-Ranges: bytes
Content-Length: 3792
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15692-160x90.jpg

86.111.241.39

200 OK

2.5 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15692-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", baseline, precision 8, 160x90, components 3\012- data
Size
2.5 kB (2482 bytes)
Hash
5fb8933fcccb92d5a1d752e038ab4330
a06bc02b9f275a74b15c4e3671d0b2294224955f
65c7fb8ab398543fab3d136ef1d293776f4d7c68ca5816152a58f373c92ccedb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15692-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:03:58 GMT
ETag: "9b2-568f587ca1f80"
Accept-Ranges: bytes
Content-Length: 2482
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/themes/detube/images/bg-pattern.png

86.111.241.39

200 OK

9.5 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/bg-pattern.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
9.5 kB (9544 bytes)
Hash
10a303fccdf8b27aea15f303788114d5
f0224b7a06d73dec652e36a2c75226ffa1131323
857b087e75fdb2df18704d4454e6763cff3d4d4fc62f0851869dc663ae6c4d97

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/bg-pattern.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "2548-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 9544
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

tube.play69.pl/wp-content/uploads/2016/07/thumb-15928-160x90.jpg

86.111.241.39

200 OK

1.8 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15928-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x10b5fc3a", baseline, precision 8, 160x90, components 3\012- data
Size
1.8 kB (1793 bytes)
Hash
ea61fb58b470da5006e7b450532c034e
1f1d5e1494096b10f340f6c7a7765b1db6485abd
3992ced9713b8eab1de0b89cba540a7e8aab78f16b3ba4e9ec77aeb7ec8f8699

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15928-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:07:03 GMT
ETag: "701-568f592d0ffc0"
Accept-Ranges: bytes
Content-Length: 1793
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15810-160x90.jpg

86.111.241.39

200 OK

2.5 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15810-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", baseline, precision 8, 160x90, components 3\012- data
Size
2.5 kB (2491 bytes)
Hash
b88f330c60707ac78991eaf14ec52565
78817593263edce261f8aaebd9be8f9ffea59d94
a9b1c4305fce74feb70569fa455d670ceca47a60720ec180258873a0574d3580

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15810-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:29:16 GMT
ETag: "9bb-568f50bb15300"
Accept-Ranges: bytes
Content-Length: 2491
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15954-160x90.jpg

86.111.241.39

200 OK

3.0 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15954-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Size
3.0 kB (2986 bytes)
Hash
075086895721a887019fa398e087c935
7ddc77a51d82163164679e2983cf08123fcefdba
102cbcae5f9dcb382824dde291f8f3f0cbe0fa4551257993f26e9dee8eb51f10

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15954-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:01:23 GMT
ETag: "baa-568f57e8d02c0"
Accept-Ranges: bytes
Content-Length: 2986
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-15714-160x90.jpg

86.111.241.39

200 OK

3.4 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-15714-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Size
3.4 kB (3367 bytes)
Hash
d5e85f1dfcdaf20ea08a41de7fb968c4
56797f7ccf65994674cb11a57335381ca26ab334
54fbbec5d1763882fd0af339aa2ad03efaf702c79d11984ccaed523dcb47e1fb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-15714-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:31:38 GMT
ETag: "d27-568f514281280"
Accept-Ranges: bytes
Content-Length: 3367
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

tube.play69.pl/wp-content/uploads/2016/07/thumb-16038-160x90.jpg

86.111.241.39

200 OK

4.0 kB

URL HTTP/1.1
tube.play69.pl/wp-content/uploads/2016/07/thumb-16038-160x90.jpg
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 160x90, components 3\012- data
Size
4.0 kB (4010 bytes)
Hash
67d02fc539e98bb3831f4ab6918822d3
61dc8ab75522169487a071fa08880f94e4f1d0b3
75855d64e8d3110e667a62fb10bdc16fe1947acebad5dcfb597a13aa4e0013a0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2016/07/thumb-16038-160x90.jpg HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 17:56:11 GMT
ETag: "faa-568f56bf444c0"
Accept-Ranges: bytes
Content-Length: 4010
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

push.services.mozilla.com/

52.89.20.60

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.20.60:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sybN7GwJOHDDNh+RmctdfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: itbsA3LqfipEeBZn9CLvRJwLlOg=

tube.play69.pl/wp-content/themes/detube/images/bg-grad.png

86.111.241.39

200 OK

2.8 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/bg-grad.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 1 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2822 bytes)
Hash
cc9b9db1d9a3182973bedf7fc2541bd9
38e006adf2083bda4412636085d789099c573ab7
de1186f271db5a233a6be6c42535fbf56b230781cb1d8b498d618e0bc06f6d98

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/bg-grad.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "b06-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 2822
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.pornhub.com/embed/949139259

66.254.114.41

301 Moved Permanently

0 B

URL HTTP/1.1
www.pornhub.com/embed/949139259
IP
66.254.114.41:0
ASN
#29789 REFLECTED

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /embed/949139259 HTTP/1.1
Host: www.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
server: openresty
date: Thu, 08 Dec 2022 05:13:04 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
ph-redirect: 1022
location: https://www.pornhub.com/embed/949139259
vary: User-Agent
rating: RTA-5042-1996-1400-1577-RTA
set-cookie: __s=63917260-42FE722900506BB1-4B5D0C15; Secure; Samesite=None
__l=63917260-42FE722900506BB1-4B5D0C15; Secure; Samesite=None; Max-Age=31556926
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 63917260-42FE722900506BB1-4B5D0C15

tube.play69.pl/wp-content/themes/detube/images/bg-pattern-nav.png

86.111.241.39

200 OK

3.0 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/bg-pattern-nav.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 320 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (2962 bytes)
Hash
ec94cd6f476d5b93f7ec49535ed40006
fdcb75ad1a17528778ba9467b202bd244c9f3621
094e63d8800f26802b1db3be7575142429f4ae2703b1a80098b5dcdb583c47c6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/bg-pattern-nav.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "b92-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 2962
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

tube.play69.pl/wp-content/themes/detube/images/nav-sep.png

86.111.241.39

200 OK

2.8 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/nav-sep.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 2 x 42, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2827 bytes)
Hash
268cee49d0ed8562d6e8b6270b5c0f64
1c6cddd4a3b83f617ab344dc97ac02b34e45a67b
85a772781124b45dc6d026e069528d6eae5bb2935f23bf0dc1ac19505fb654a0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/nav-sep.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "b0b-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 2827
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

tube.play69.pl/wp-content/themes/detube/images/actions.png

86.111.241.39

200 OK

3.9 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/actions.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 16 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3863 bytes)
Hash
38f9b7eb34bf8cb0ba180f007d80bc29
8fb53ea41f6c80ad5dbf701c50c315c686d26055
8c17d64cf3b9ae53f0c3fbc65cfceaf1167a47be7a8695c3c80ff51b74b053ce

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/actions.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "f17-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 3863
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://tube.play69.pl
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:26:03 GMT
Expires: Tue, 05 Dec 2023 19:26:03 GMT
Cache-Control: public, max-age=31536000
Age: 208021
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2

tube.play69.pl/wp-content/themes/detube/images/icon-plus-24.png

86.111.241.39

200 OK

3.4 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/icon-plus-24.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3362 bytes)
Hash
41cd0856fafc8badb16565c4ec1e4bde
17eeed864981156dc41ae05ec5207ee494ccecde
1b5af90f87a45f96cd6bf1deac1497df5ae734a9a2f993dff6c70fdc13e50478

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/icon-plus-24.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:18:00 GMT
ETag: "d22-568f5b9fa0600"
Accept-Ranges: bytes
Content-Length: 3362
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 05:08:09 GMT
content-type: application/json
age: 295
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
d6045b68aef048808c3ad1a61a6c2d93
f497faecbceb2b67553dfa16c728c3c90975e756
549c5751efaacaa5fdafd9c81d15f6d0d9d0c8febb3894ff9e252b8afdbf46d3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4620
Cache-Control: max-age=143208
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:04 GMT
Etag: "6390ecbc-13a"
Expires: Fri, 09 Dec 2022 20:59:52 GMT
Last-Modified: Wed, 07 Dec 2022 19:42:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 314

tube.play69.pl/wp-content/themes/detube/images/section-shadow.png

86.111.241.39

200 OK

19 kB

URL HTTP/1.1
tube.play69.pl/wp-content/themes/detube/images/section-shadow.png
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type
PNG image data, 620 x 102, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (19143 bytes)
Hash
9bcd07dc5875286fef77e1412c6e40f5
bfbeb79769242ecd913740152cad5ec68e01e240
6be831864901eeeac298f2419efb96337fca2593ec597181765ca5c628f90ba5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/detube/images/section-shadow.png HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/wp-content/themes/detube/style.css?ver=1.4.3

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:04 GMT
Server: Apache
Last-Modified: Tue, 03 Apr 2018 18:17:59 GMT
ETag: "4ac7-568f5b9eac3c0"
Accept-Ranges: bytes
Content-Length: 19143
Cache-Control: max-age=31536000
Expires: Fri, 08 Dec 2023 05:13:04 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: s8/d2ZDA84fVXR9sgnP4aEv1LfPdSizzSM6WmC9v9GWbConGNgCGZWOV1rDjms5XLIqGKY2pVRc=
x-amz-request-id: M090REDENB38XJ5J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 04:49:38 GMT
age: 1407
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html

23.38.200.123

200 OK

26 kB

URL HTTP/2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size
26 kB (26421 bytes)
Hash
707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051

HTTP Headers

GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

media.trafficjunky.net/js/holiday-promo.js

205.185.208.85

200 OK

221 B

URL HTTP/2
media.trafficjunky.net/js/holiday-promo.js
IP
205.185.208.85:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
221 B (221 bytes)
Hash
f43bc4e54585dd470d63d7b00c88f812
4ccba605b1a65baf355ea6329557ec83f2310d10
76b31f73876d823986e1a04f3495a8ac6e610fa3d360ce271159b4d91a322b54

HTTP Headers

GET /js/holiday-promo.js HTTP/1.1
Host: media.trafficjunky.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1444165774"
cache-control: max-age=31536000
content-encoding: gzip
content-length: 221
content-type: application/javascript
last-modified: Tue, 06 Oct 2015 21:09:34 GMT
accept-ranges: bytes
x-hw: 1670476385.dop201.sk1.t,1670476385.cds238.sk1.hn,1670476385.cds258.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js

205.185.208.142

200 OK

173 kB

URL HTTP/2
cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js
IP
205.185.208.142:0
ASN
#20446 STACKPATH-CDN

File type
Unicode text, UTF-8 text, with very long lines (65393)
Size
173 kB (172945 bytes)
Hash
f6837360db9bb51289b45961c6496937
30f219916e0b76bfb83ace2852c88d33aac8b185
a1d3201777cf771aac78af5c42f57c5637dc35df684b33b97875e2012eaff6df

HTTP Headers

GET /html5player/videoPlayer/es6player/6.3.0/desktop-player-adaptive-hls-hlsjs.min.js HTTP/1.1
Host: cdn1d-static-shared.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1664302430"
content-encoding: gzip
content-length: 172945
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 18:13:50 GMT
accept-ranges: bytes
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds221.sk1.c
cache-control: max-age=604800
timing-allow-origin: *
X-Firefox-Spdy: h2

ht.pornhub.com/js/eht.js?site_id=3

216.18.168.30

200 OK

2.9 kB

URL HTTP/1.1
ht.pornhub.com/js/eht.js?site_id=3
IP
216.18.168.30:0
ASN
#29789 REFLECTED

File type
C source, ASCII text
Size
2.9 kB (2863 bytes)
Hash
141279a8d54a1474f67f9373d31af848
ec61d9f9a9265b51a603fd805d6d901f46dca2b0
9b46876cb793c94415778689b973ad9e07373b5935cc01dac07436e4e32a73d6

HTTP Headers

GET /js/eht.js?site_id=3 HTTP/1.1
Host: ht.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Cookie: bs=1i0zrdws1n0m40t46flvf22rhx92d84k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: application/javascript
content-length: 2863
last-modified: Tue, 12 Apr 2022 14:49:45 GMT
etag: "62559189-b2f"
accept-ranges: bytes
set-cookie: RNLBSERVERID=ded7335; path=/
cache-control: private
x-request-id: 63917261-D812A81E01BB4193-CA50D57

tube.play69.pl/favicon.ico

86.111.241.39

200 OK

0 B

URL HTTP/1.1
tube.play69.pl/favicon.ico
IP
86.111.241.39:0
ASN
#47544 IQ PL Sp. z o.o.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: tube.play69.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/mature/oiled-sex/
Cookie: __atuvc=1%7C49; __atuvs=63917260a0663547000

HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 05:13:05 GMT
Server: Apache
Content-Length: 0
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 05:07:55 GMT
age: 310
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.pornhub.com/embed/949139259

66.254.114.41

200 OK

9.8 kB

URL HTTP/2
www.pornhub.com/embed/949139259
IP
66.254.114.41:0
ASN
#29789 REFLECTED

File type
data
Size
9.8 kB (9849 bytes)
Hash
fba45738053b170bf5e5218675ddf5ee
a6c64a27b4170c943459eae8cab709660a44a2e1
8cdaea1eefc5a80963dddfc03cd246cf265d7e2cd45c7d4e4a2742c4e28fd02f

HTTP Headers

GET /embed/949139259 HTTP/1.1
Host: www.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
date: Thu, 08 Dec 2022 05:13:05 GMT
content-type: text/html; charset=UTF-8
set-cookie: ua=df16c081c25306654a0efb89b8761a08; expires=Fri, 09-Dec-2022 05:13:05 GMT; Max-Age=86400; path=/; domain=pornhub.com; secure
platform=pc; expires=Thu, 15-Dec-2022 05:13:05 GMT; Max-Age=604800; path=/; domain=pornhub.com; secure
bs=1i0zrdws1n0m40t46flvf22rhx92d84k; expires=Sun, 05-Dec-2032 05:13:05 GMT; Max-Age=315360000; path=/; domain=pornhub.com; secure; SameSite=None
ss=637255533407942770; expires=Fri, 08-Dec-2023 05:13:05 GMT; Max-Age=31536000; path=/; domain=pornhub.com; secure
fg_0d2ec4cbd943df07ec161982a603817e=21030.100000; expires=Sat, 07-Jan-2023 05:13:05 GMT; Max-Age=2592000; path=/; domain=pornhub.com; secure
__s=63917260-42FE722901BBDB80-4B6FE077; Secure; Samesite=None
__l=63917260-42FE722901BBDB80-4B6FE077; Secure; Samesite=None; Max-Age=31556926
cache-control: no-cache, no-store, must-revalidate
vary: User-Agent
rating: RTA-5042-1996-1400-1577-RTA
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 63917260-42FE722901BBDB80-4B6FE077
X-Firefox-Spdy: h2

cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg

205.185.208.142

200 OK

5.0 kB

URL HTTP/2
cdn1d-static-shared.phncdn.com/html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg
IP
205.185.208.142:0
ASN
#20446 STACKPATH-CDN

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (824)
Size
5.0 kB (5010 bytes)
Hash
492b78e2eb4b883a214d777218d9e7c4
d572b1065719163ad1726b5245d7570eab42df4f
c037ef78b7a952ff5d72f11a1487c1dc1cb9deb2330613788d50329972da681d

HTTP Headers

GET /html5player/videoPlayer/es6player/6.3.0/assets/pornhub.svg HTTP/1.1
Host: cdn1d-static-shared.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1664302430"
cache-control: max-age=86400
content-length: 5010
content-type: image/svg+xml
last-modified: Tue, 27 Sep 2022 18:13:50 GMT
accept-ranges: bytes
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds226.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

di.phncdn.com/videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg

205.185.208.142

200 OK

19 kB

URL HTTP/2
di.phncdn.com/videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg
IP
205.185.208.142:0
ASN
#20446 STACKPATH-CDN

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
19 kB (18555 bytes)
Hash
73a5e5e979ff44dd5423f575b94e44de
7782497f9a2281310875db51281a2b2d99b36d6b
d27ef71c177e3b2a811f275c41f19c820364f88909621d87f4344b427f8490bf

HTTP Headers

GET /videos/201403/02/23895262/original/(m=eqglHgaaaa)(mh=bfFcFSEj0e6CBz-D)7.jpg HTTP/1.1
Host: di.phncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
etag: "1577982173"
content-length: 18555
content-type: image/jpeg
last-modified: Thu, 02 Jan 2020 16:22:53 GMT
accept-ranges: bytes
cache-control: max-age=10026308
x-hw: 1670476385.dop021.sk1.t,1670476385.cds262.sk1.hn,1670476385.cds067.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2

platform.twitter.com/widgets.js

93.184.220.66

200 OK

29 kB

URL HTTP/1.1
platform.twitter.com/widgets.js
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (33915)
Size
29 kB (29221 bytes)
Hash
7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30

HTTP Headers

GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1013
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221

connect.facebook.net/en_US/sdk.js

157.240.200.14

301 Moved Permanently

0 B

URL HTTP/1.1
connect.facebook.net/en_US/sdk.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tube.play69.pl/

HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 08 Dec 2022 05:13:05 GMT
Connection: keep-alive
Content-Length: 0

s7.addthis.com/static/counter.d27508c102582d608697.js

23.38.200.123

200 OK

8.3 kB

URL HTTP/2
s7.addthis.com/static/counter.d27508c102582d608697.js
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (24530), with no line terminators
Size
8.3 kB (8265 bytes)
Hash
47fcfb824ad738c29e3195451d5c755e
8a955f27a30f4a8c9cde94567c041040e3c60d61
1508b4ae159e51231031ce58f3a5c31aca11a438f4ea3c12ea3581bbc97f4305

HTTP Headers

GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2

platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl

93.184.220.66

200 OK

105 kB

URL HTTP/1.1
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size
105 kB (105445 bytes)
Hash
2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160

HTTP Headers

GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Ftube.play69.pl HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20908
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1934
Cache-Control: max-age=167858
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:50:43 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js

157.240.200.14

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1685 bytes)
Hash
a472183a6aa50b428097366e7ae796f6
7fba1bd8824061a7e1f11174179940d9c80b856f
49f3eac1100f8ef3eee1098645f93f1dfd60acc501332788f3aa5b767a5966e4

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://tube.play69.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d924e452130a1a5530c3f33fa0a52852
etag: "a3c7ea3e9f1cf08a1e4bab4c70f2d5c1"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 08 Dec 2022 05:16:25 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: pHIYOmqlC0KAlzZueueW9g==
x-fb-debug: Noluo3NVCEJhD1ZKWyYG067Z/VziyRsUBOap2w5RaEzevdD+qU+iZzo10tt5ULWzQFHlSPnFrjLfFEGMs4RsOg==
priority: u=1,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 05:13:05 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
b68c0834f3bbe7a04e7cf0b08619a7b2
c029463e9bbf3bdc8744556153a185cb7dde13a9
2ffc47ad25ff74f4fd72c9d409b602e23adc558e1408775ea5bcab6e51110849

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6231
Cache-Control: max-age=92232
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63901f52-139"
Expires: Fri, 09 Dec 2022 06:50:17 GMT
Last-Modified: Wed, 07 Dec 2022 05:06:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1269
Cache-Control: max-age=167193
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 05:13:05 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:39:38 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

syndication.twitter.com/settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83

104.244.42.8

200 OK

405 B

URL HTTP/2
syndication.twitter.com/settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
JSON data\012- , ASCII text, with very long lines (1042), with no line terminators
Size
405 B (405 bytes)
Hash
4fcb4424830e3ab0b77a8fc454c2a4ff
d42e30c48f70230a4c1b110242f6f5c57ed641a4
dfb94ae3691ca07942add658f89cd39da58f42b1c93bdd9d02b6cedb9ac1522c

HTTP Headers

GET /settings?session_id=56d42a2c92f7591153d1b8d74b630f8181400f83 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Thu, 08 Dec 2022 05:13:05 GMT
content-length: 405
content-encoding: gzip
x-transaction-id: fdfaa30d077e47f9
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 113
x-connection-hash: 25028883f8f695d86bf86d5bec29661412342d322ce0a9463ee3cd72581ba192
X-Firefox-Spdy: h2

api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0

23.38.200.123

200 OK

470 B

URL HTTP/2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
data
Size
470 B (470 bytes)
Hash
3b0a6baa2167a7f2ffa19b3fad94e4e6
afb96c022a0ebde547b8d4d9d4c56589d1821cca
abcdea5cab872d2c49b0fb2e21555ac1982c810085f9898f128b6412ad439cc1

HTTP Headers

GET /url/shares.json?url=http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F&callback=_ate.cbs.sc_httptubeplay69plmatureoiledsex0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: tube.play69.pl/mature/oiled-sex/
last-modified: Thu, 08 Dec 2022 05:13:05 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 78
date: Thu, 08 Dec 2022 05:13:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js

93.184.220.66

200 OK

2.4 kB

URL HTTP/1.1
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (7017), with no line terminators
Size
2.4 kB (2362 bytes)
Hash
83616664e4155f8af0efb0576f8920cf
1277b0f4f935bec3ada0f87c45395bb6d9b2efbc
bb19d85932c5e8a952b6fc28c1df42aed6d6920f79ee3f2217d2484294d575d3

HTTP Headers

GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20907
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:06 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362

platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html

93.184.220.66

200 OK

14 kB

URL HTTP/1.1
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Size
14 kB (13753 bytes)
Hash
cd8176e04a5a760140a9de9ffe9d8a17
f3b4514c9df71da30eadd2d87fd6131e5c3bf7e3
601089b9e7dcd29e255c391dff1c3da64dd80bb72ee047561592d86dbbc4c472

HTTP Headers

GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 20896
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 08 Dec 2022 05:13:06 GMT
Etag: "126ffb93f08e989b18a6e1fc082c9e33+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753

syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83

104.244.42.8

200 OK

43 B

URL HTTP/2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Ftube.play69.pl%2Fmature%2Foiled-sex%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1670476385672%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=56d42a2c92f7591153d1b8d74b630f8181400f83 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:05 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 08 Dec 2022 05:13:06 GMT
content-length: 43
x-transaction-id: ba463b9e9b7baa24
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 25028883f8f695d86bf86d5bec29661412342d322ce0a9463ee3cd72581ba192
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7268 bytes)
Hash
24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 21622
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (14896 bytes)
Hash
4884ce2731d3033b12e4792c1bbf453e
63b6efc98cb04228d82ac28fceb97bb1cf8d82fb
8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tM0WOO_Ypgj2QxJSz9GHZZTsKjzsvyD6tjpp4G0ZpuGAIGmnEe4oqQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:15:11 GMT
age: 75476
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4538 bytes)
Hash
2f5ce4070e5050733be6bded399afe53
77cf1dd30e86f5568a8e64cb42f536cf2af9301c
7fe19657e1add41e913e9a326023ff484180ca17615175ddc5d2ab57217566bc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4538
x-amzn-requestid: 143f359f-c0fd-4d32-8de5-cc2c2804bb39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIHzXoAMFqmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-27db2e3c6de7216e3c17caea;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CTvoYad2nNPubKimSZrkJXGTDWZK6u3fTli1YnBgrXk7WPAtmvO2rA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:04:30 GMT
age: 25717
etag: "77cf1dd30e86f5568a8e64cb42f536cf2af9301c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12534 bytes)
Hash
57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 22149
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca700c3-a35c-4310-8bec-315aac6627af.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7717 bytes)
Hash
1b19dcd440d04491799ff31ed3741a3c
397314c70c7a3502856bd13b879ee62232229ffd
4ca5248ce9473768e2f89e7509a5c4585ed106acd5780c82dcf08e22a98892ee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca700c3-a35c-4310-8bec-315aac6627af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7717
x-amzn-requestid: a0140095-5792-4d50-81b5-a790ad3f535e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4bcFmsoAMFxZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-7dda36810e4c98da79e828d9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wN37yp9r-_W6n-L1TENCfjV18Gj1-3Q3gdIFvcViFbcUPtTnRgoHKA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:09:20 GMT
age: 79427
etag: "397314c70c7a3502856bd13b879ee62232229ffd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185

157.240.200.14

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18530)
Size
88 kB (88438 bytes)
Hash
c12d9f66807fb52bdaf7eb694359a575
763c81b4652121ab91ca760d75a182ee2699e2b8
829e5ffdfa30ee73d8cb723f5baedc2dd54899bf41ce0c3aad9699a58ecd5905

HTTP Headers

GET /en_US/sdk.js?hash=514921872f50b17d0ca1126eba480185 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://tube.play69.pl
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0ce3a5f8c116300a1763656e9c550ca3
etag: "bb85ea7d971ce67683630872db996125"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 08 Dec 2023 04:30:47 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: wS2fZoB/tSva9+tpQ1mldQ==
x-fb-debug: yuf7VRH3umsT6cPxO/7FRQJZojZOPo9QCLzTCS1DtSHdgOZ9zAieYGeky+5zhgrvUheo213ioQS9aVyL8FhtIg==
content-length: 88438
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 05:13:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v2.6/plugins/like.php?action=like&app_id=172525162793917&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df1a20efa28fa02e%26domain%3Dtube.play69.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftube.play69.pl%252Ff3a3dbfa01e9c14%26relation%3Dparent.parent&container_width=0&font=arial&height=25&href=http%3A%2F%2Ftube.play69.pl%2F%3Fp%3D15846&layout=button_count&locale=en_US&sdk=joey&send=false&share=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 2RNWaZmxsq/NxhSwvX4kdPfjkKSjmOBzbHsfL6/cb+XUXp8iQUQHSnfS6qvXe3vGCr7Ks865altWkknaoEVYjg==
content-length: 0
date: Thu, 08 Dec 2022 05:13:07 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7801 bytes)
Hash
8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 21392
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9826
Expires: Thu, 08 Dec 2022 07:56:54 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9826
Expires: Thu, 08 Dec 2022 07:56:54 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
63b6fe6ca27b811894af2e57f191b3ca
ba2243b28d1361951660fd54b163a6eb0a4ec799
50a91df88dd3c5804bb73c31456dd22d02f52257d02c9383663f12044c24330c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50A91DF88DD3C5804BB73C31456DD22D02F52257D02C9383663F12044C24330C"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21143
Expires: Thu, 08 Dec 2022 11:05:31 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13983
Expires: Thu, 08 Dec 2022 09:06:11 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11947
Expires: Thu, 08 Dec 2022 08:32:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.10

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.10:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18427
Expires: Thu, 08 Dec 2022 10:20:15 GMT
Date: Thu, 08 Dec 2022 05:13:08 GMT
Connection: keep-alive

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9596 bytes)
Hash
c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 24710
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

static.addtoany.com/menu/page.js

104.22.70.197

200 OK

0 B

URL HTTP/2
static.addtoany.com/menu/page.js
IP
104.22.70.197:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tube.play69.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Dec 2022 05:13:04 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 162211
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7763027d7c9d09b4-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

etahub.com/events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10

66.254.114.62

200 OK

0 B

URL HTTP/2
etahub.com/events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10
IP
66.254.114.62:0
ASN
#29789 REFLECTED

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /events?app_id=10896&ssiteName=pornhub&splatform=desktop&sfeatureName=playerLoaded&sfeatureValue=desktop&playerName=desktop&eventName=playerLoaded&date=1670476384862&videoId=Unknown&videoTitle=Oiled%20Sex&player_source=embed&osName=Windows&osVersion=10 HTTP/1.1
Host: etahub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pornhub.com
Connection: keep-alive
Referer: https://www.pornhub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 05:13:06 GMT
content-type: application/json
set-cookie: eta_guid=32c3ad6b-2eff-48ff-9469-a9302baa0078_1670476386;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2032 00:00:01 UTC;SameSite=None;Secure;HttpOnly;
sessionid=5d268329-997d-4801-aa77-5da917bb6b5b; Path=/; SameSite=None;Secure;HttpOnly;
access-control-allow-origin: https://www.pornhub.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-request-id: 63917261-42FE723E01BBB144-A19D8B7
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (49)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations