filmpornoitaliano.org/
104.21.39.43301 Moved Permanently 155 B IP 104.21.39.43:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 42c394b8f0152b372537ace9acc3f7bb
1219c55c4e3ea109c473aab65deb81f09a0fe0a6
6aaad3365c30c4f8d2504e569527e588d33eeae66dd7045bcfeef7413820db2a
GET / HTTP/1.1
Host: filmpornoitaliano.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 08:16:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://filmpornoitaliano.org/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=66vGQYj%2B2arfrhLyD2fHM0I2tVOCNzV6SS64wlzXyFP5GZdy%2B%2FAACpj9tOExEyeL4Xjwrd2wXq%2F5uMpSVgF%2Fly%2FhE9rC6diFOk%2FMfWEJ9Ys3f5xfyFqXsuiaMYlsAcdFICbgnOe5ICM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7711a8f68af0b51d-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14781
Expires: Mon, 28 Nov 2022 12:22:32 GMT
Date: Mon, 28 Nov 2022 08:16:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5099
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:11 GMT
Last-Modified: Mon, 28 Nov 2022 06:51:12 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Mon, 28 Nov 2022 08:52:28 GMT
Date: Mon, 28 Nov 2022 08:16:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 07:19:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3399
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GN4P9pHWTlw0G0KJMOLAy9yoY9UvQC0ipF5j/MGJA0IZJLFBd8MLpva+PPIe+twCGkWUoru+7X8=
x-amz-request-id: DKWKZEVV41ST759X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 07:41:58 GMT
age: 2053
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 08:16:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b2ee64cadbb01f8ac407ccfa1d5b35e6
b0549af165355e03629b54f2e4ecdb6b7b213e48
f12f323b5be21b2dbcd16b1f4ab4221701796e4e61c6eed73acb57e903000df9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=153166
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:11 GMT
Etag: "63842199-117"
Expires: Wed, 30 Nov 2022 02:48:57 GMT
Last-Modified: Mon, 28 Nov 2022 02:48:57 GMT
Server: nginx
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 08:08:55 GMT
cache-control: public,max-age=3600
age: 436
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b2ee64cadbb01f8ac407ccfa1d5b35e6
b0549af165355e03629b54f2e4ecdb6b7b213e48
f12f323b5be21b2dbcd16b1f4ab4221701796e4e61c6eed73acb57e903000df9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=153166
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:11 GMT
Etag: "63842199-117"
Expires: Wed, 30 Nov 2022 02:48:57 GMT
Last-Modified: Mon, 28 Nov 2022 02:48:57 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5007
Cache-Control: max-age=94447
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:12 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:30:19 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-767299046
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-767299046
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 90733d94ce9366395df0c6110f31f046
30335ca51218667775484fb7490bcd679aaf473c
0d347fb4e218b6e9ce28fb10931541e0af6de917b2021ada573080d44cc303fe
GET /gtag/js?id=AW-767299046 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 08:16:12 GMT
expires: Mon, 28 Nov 2022 08:16:12 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-3HYCFBQY9Q
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-3HYCFBQY9Q
IP 142.250.74.168:0
File type ASCII text, with very long lines (3751), with no line terminators
Hash 69b6fc68fe163f6663c842998695e19b
b80f71e860bbfbccc9cc7a891a57cec856abd843
32d16588bdd0dfbf561299c6a8ca9643ba756c35a7d108c814e9fe161d776642
GET /gtag/js?id=G-3HYCFBQY9Q HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 08:16:12 GMT
expires: Mon, 28 Nov 2022 08:16:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76553
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-145386243-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-145386243-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0a55927ec42bca72d6da766d6f975b4a
06ed37b05c13b7c3db7ba7f36ff4978a30d70d2f
d54e46d06645f89733cc57df6bae3ef00870039251281f279399cb4de583ff93
GET /gtag/js?id=UA-145386243-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 08:16:12 GMT
expires: Mon, 28 Nov 2022 08:16:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44711
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.exosrv.com/splash.php?idzone=3796069&capping=0
95.211.229.245200 OK 3.8 kB URL HTTP/1.1 syndication.exosrv.com/splash.php?idzone=3796069&capping=0
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document, ASCII text, with very long lines (3248)
Hash 7bcfb37ad2d922bd0de744363ee30af6
12f7178712651938a716ec45eb03954b746b0550
bbd09eac2cd349b3cfa6df6d37debd20f979ef32eb0a4927cc2ad569c6cc7a7f
GET /splash.php?idzone=3796069&capping=0 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4c59fa35.215940501987818827%22%3B%7D; expires=Wed, 27 Nov 2024 08:16:12 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3796069%7C75144234%7C0%7C300x100%7C97%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cfilmpornoitaliano.org%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Tue, 29 Nov 2022 08:16:12 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oIgvee1aNy2JkKeYwjKb4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gaWlZ9wca5IVpd/YtJpl6CyBgbI=
r3.o.lencr.org/
23.36.76.226200 OK 14 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6772bcdaed2455359af2bfc92c945da7
d1bde78c5e1e06760dbc5dd3f9782bf5e75a235e
0306cf1d7e48e19b8befb293242197073076d9e28b4690cdb80edd8cffd416e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECF186DE9B60A3AD78C10752DD5B604A62FFA9A95140F5D100AC4044D3D2A054"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9611
Expires: Mon, 28 Nov 2022 10:56:23 GMT
Date: Mon, 28 Nov 2022 08:16:12 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 0a92b8f6c070c94f33e5ef034b529219
8651b4d4d93ae308142eb3a9f7bde8d9c0713430
bb5c972bac7af526cb38cff177cd2f1e5e22d7eeb68c3e99d0c0becdb37341c8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 20:27:05 GMT
Expires: Fri, 02 Dec 2022 20:27:04 GMT
Etag: "8651b4d4d93ae308142eb3a9f7bde8d9c0713430"
Cache-Control: max-age=388851,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7711a8fe2e2d0b55-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7698e25956d28f7245c40b764c618081
6ba390c957e87c8fc69a9cb08eb3885cad75d776
df3e77ce6dada35b054a8b27456c296f5b1e2a1ce79600cb6ca2d4377f71b147
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF3E77CE6DADA35B054A8B27456C296F5B1E2A1CE79600CB6CA2D4377F71B147"
Last-Modified: Sun, 27 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16079
Expires: Mon, 28 Nov 2022 12:44:11 GMT
Date: Mon, 28 Nov 2022 08:16:12 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 0a92b8f6c070c94f33e5ef034b529219
8651b4d4d93ae308142eb3a9f7bde8d9c0713430
bb5c972bac7af526cb38cff177cd2f1e5e22d7eeb68c3e99d0c0becdb37341c8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 20:27:05 GMT
Expires: Fri, 02 Dec 2022 20:27:04 GMT
Etag: "8651b4d4d93ae308142eb3a9f7bde8d9c0713430"
Cache-Control: max-age=388851,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7711a8fe2e03b527-OSL
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27020), with no line terminators
Hash 6060bf3dacc67a315c9b32d12f6bdd06
c45b82fce271b81a7c9c6014fd82620f75a559ec
f96934c9bd73e6d8298d988032581e944d52f75d6edc66b249fee3a84c46cfbc
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dbfc407c685bd5c557ea599e1cf92251
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash b4abbfe8d6e304157b48f7f886f54ec8
fe06556729791f27d7eb7e186e88ce2345578b6d
98a5137431b05c1d34ea3a8aa871cd9a9d3dfb2b0a3295fd8603015d3b4b2819
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e254276daaaa0583c0a57eed810ae44f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl16803440.profitablecpmgate.com/63/c5/4f/63c54fcf82aeb3fc5686b3899eaa5f16.js
192.243.61.227200 OK 21 kB URL HTTP/1.1 pl16803440.profitablecpmgate.com/63/c5/4f/63c54fcf82aeb3fc5686b3899eaa5f16.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60170), with no line terminators
Hash efccad4d6036ee4d0fc1c2b5cd118a71
b451fae5a53e6da65165d9917b1bc83a33ca68f8
769fd60e5bf25c169f7a0920ef793ae3a524fa26bdd405b4064e06b6765cd199
Analyzer Verdict Alert quad9 Sinkholed
GET /63/c5/4f/63c54fcf82aeb3fc5686b3899eaa5f16.js HTTP/1.1
Host: pl16803440.profitablecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 08:16:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bd876a89b8e86c952498e288cfb95176
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 8.4 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 0c6e561474f40e0c799e06529a065658
e2fadef300257fa66f8a22ccdb0efcea71585cb9
d004557cc0b6e4fa264bcc07311bca9cc31cefaa593c6319bf24b1f9d124d8e8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108258
Date: Mon, 28 Nov 2022 08:16:13 GMT
Etag: "63836697-1d7"
Expires: Tue, 29 Nov 2022 14:20:31 GMT
Last-Modified: Sun, 27 Nov 2022 13:31:03 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7QkNRya3So6CApRhE3daxnC7VHqYVNUfeEA_DDUEDYtRR1bUkj2t9Q==
Age: 2968
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 6d8dd17f6a7c29227f22d2cb829454dd
6da41e433e2728d0b35ddde50af585284be8a344
b77977b328e2361e1e1cfe46cce3185252da1b41002e0fa7162efd97c9a62a28
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://filmpornoitaliano.org
access-control-allow-credentials: true
set-cookie: uid_id2=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2:2:1; expires=Thu, 25 Nov 2032 08:16:13 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash 7f409794f2afb89bd617c97bd45fe6ef
80ca4d30eaefcbf68d5f82302df6e1109036fbfe
c606316698f1c2d934db85cac4746fb853cd202c8a51b72ad2e99274053cdcb0
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ad11bbf5efbb9691d62c07f8a00b31af
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
52.28.211.11200 OK 550 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
Hash 2b5c91b7bc6de4532df0c1c485eb7352
e52a90222ef08ba13e97639366f41ca3935924e9
acd159d61993041eba13f0ef666a8ccb107aeaf856e8b6603f6b9148732c6e31
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://filmpornoitaliano.org
access-control-allow-credentials: true
set-cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Thu, 25 Nov 2032 08:16:13 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash dfb04e3949e80da902bc4938cb0dc033
4feaf31802b4e0e334264c5e0133be7125596a9d
3e4d0908e55cd1c2d43550882966761e4d5e0e62b3b5b7b8ef94df7ca23bb52c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://filmpornoitaliano.org
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 11 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
Hash 8db231fd29a3899ece59eab72d4359f2
77c057f30cc35d19d63c1f6a08669f9adb3ef23b
d3ffa5867bfa99c318fd81ed598de01bbaaee84a4712308abbe3c72be85a7fa5
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5c4ce638d12ca03cee729890368b1aae
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
region1.google-analytics.com/g/collect?v=2&tid=G-3HYCFBQY9Q>m=2oeb90&_p=1140995114&cid=2130573375.1669623372&ul=en-us&sr=1280x1024&_s=1&sid=1669623372&sct=1&seg=0&dl=https%3A%2F%2Ffilmpornoitaliano.org%2F&dt=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&en=page_view&_fv=2&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-3HYCFBQY9Q>m=2oeb90&_p=1140995114&cid=2130573375.1669623372&ul=en-us&sr=1280x1024&_s=1&sid=1669623372&sct=1&seg=0&dl=https%3A%2F%2Ffilmpornoitaliano.org%2F&dt=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&en=page_view&_fv=2&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3HYCFBQY9Q>m=2oeb90&_p=1140995114&cid=2130573375.1669623372&ul=en-us&sr=1280x1024&_s=1&sid=1669623372&sct=1&seg=0&dl=https%3A%2F%2Ffilmpornoitaliano.org%2F&dt=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&en=page_view&_fv=2&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://filmpornoitaliano.org
date: Mon, 28 Nov 2022 08:16:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 75fa8f761b4c6844f097f26e0c876342
800be727626a83caa8bf46b1db12524da3b8ff9e
f5a60e98ebc3ca33d5580a022a400ca796b1fe8955d2945a8b7690c23c77fc88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F5A60E98EBC3CA33D5580A022A400CA796B1FE8955D2945A8B7690C23C77FC88"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2717
Expires: Mon, 28 Nov 2022 09:01:30 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash 8b181d20e5d0ff00bae0a5a3f07b49be
b11794aebcba99e0c6691ecf5695b968168c4395
307226995966c84d1a22b508901f07bb36b9e984672ae032e801f111c37db11a
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8a6898fd56d1fae1aaa3dfc6e6e26db9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 110fe5160840681a476d93793f7942c0
f80a103ed642d0db8c008939d7bfc2621681747b
ded9668d16fdba5a785700ae8d8427758811695525d05419914b5e0fbdf8df7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DED9668D16FDBA5A785700AE8D8427758811695525D05419914B5E0FBDF8DF7E"
Last-Modified: Sat, 26 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18000
Expires: Mon, 28 Nov 2022 13:16:13 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash 8b181d20e5d0ff00bae0a5a3f07b49be
b11794aebcba99e0c6691ecf5695b968168c4395
307226995966c84d1a22b508901f07bb36b9e984672ae032e801f111c37db11a
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 55cf7e6a4c2bf5d6712fc024bc0cec15
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
filmpornoitaliano.org/
172.67.143.50200 OK 99 kB IP 172.67.143.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (43628)
Hash fd8be84c0aeaab5b116455cc8212f64f
06bc50b8b135746be8f0d50a7fd7df627e28448a
4ffe4280d4ae5464d1cc293ac97a1079236ec28aaf8ec6e94f3882c2d8d0f440
GET / HTTP/1.1
Host: filmpornoitaliano.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:11 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.32, PleskLin
last-modified: Sun, 27 Nov 2022 23:23:06 GMT
vary: Accept-Encoding
cache-control: private, must-revalidate
expires: Mon, 30 Oct 2023 08:16:11 GMT
x-cache-status: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o50TtXiTn5BUA%2BcmIyAyqvW9hmtxnoXGPD%2FG7JKoihFHsRUAhOUQmKe77ZIGqksXoXptXjre0HfBK1%2BbLgZcXZZZ9uU%2F%2Fr6oaV8%2BVvm%2B7WUJl3wzBqlTK5Pf2%2BIBC1ovVanQ7sPBRi8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7711a8f91c560b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5431
Expires: Mon, 28 Nov 2022 09:46:44 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b24e349e9d22fb30fbc80497b512cead
c033d1ecdb9e7640f3df044e39053bed8292fcbc
2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpU6HS6f0BpRceJVfwhBhOgKMTMvdMZj4ST9DMATiqfA10pNplyPtQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 37509
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDQn-_Np3qSCYR2kQJnoh6j3-aS25bPTNl13D6MkZpF1fkOhokkFbA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:02:24 GMT
age: 36829
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP 34.120.237.76:0
Hash a1189612c2ee8a2167e0e2c71ab4502c
8fb85018b23053e75630221a6b6a8e35e63a3240
039232ec93839b85e7ba28d36ce57ecdfc210dd1c61d83ba51fb2359916a5dbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 37772
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP 34.120.237.76:0
Hash bf1abd1e669ad4b123f9bcf16de0c143
0fd5b94340dbc81c6dc120bc30c234c447099cd0
c4f81869f8e573e5312ce66bf5cf5935303630705c7595353a74a3a93047a4ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P0Nx-FcvcV-f5cRPwZr5sEMb8pH3AoYFr185q_D0X2bE7z40nDn91w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 37509
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 36897
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0bd385532089b45a14e461abbecc1af
3da359b1ba09138a425094715b9f3a2f8d0257fe
803001528f2aefc1ea90e585d48de435975862861a1cbe8d898e5cd7ebd297dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8771
x-amzn-requestid: 995d3904-9be1-4b40-9813-ff47e60639ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MEAPoAMF0xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-3fdb7958064e0c4b1aed2136;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vrBB4JkuL3nbZnDWitQ4dvTruO9M6hSt8mw9NuJliCmcNOw8xvfWhw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:20:34 GMT
age: 35739
etag: "3da359b1ba09138a425094715b9f3a2f8d0257fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.juicyads.com/jp.php?c=34c433y2y256s2q2q27433e4&u=http%3A%2F%2Fwww.juicyads.rocks
143.204.55.12200 OK 93 kB URL HTTP/2 js.juicyads.com/jp.php?c=34c433y2y256s2q2q27433e4&u=http%3A%2F%2Fwww.juicyads.rocks
IP 143.204.55.12:0
File type ASCII text, with very long lines (65533)
Hash 612723d6adba6e68ab327be464dd4c10
90aac92f301a9b52e172e906fcb5a7b2cf5fa94c
69035afdbf3643127cbfb20bb47213a276bb46adbd2163b24b79d39686abbf31
GET /jp.php?c=34c433y2y256s2q2q27433e4&u=http%3A%2F%2Fwww.juicyads.rocks HTTP/1.1
Host: js.juicyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=900
date: Mon, 28 Nov 2022 08:14:54 GMT
expires: Mon, 28 Nov 2022 08:29:54 GMT
pragma: cache
server: nginx
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UXm8zjZFkqey4PsUMUeAzAKuFESQ-Wu_YMWtaiMCeJ27A3wzowRu6Q==
age: 78
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=848844
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848844
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (420), with CRLF, LF line terminators
Hash 13feb87a84a48113d4dd8f43987d4a87
9474ccf82378a779b5ed4e2ca071cdcdd9bf19a1
4e59e8d0d41c73abfe1411578d0aaba7efe997547e6bd64a2d919f1b6e5c339a
GET /adshow.php?adzone=848844 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; expires=Tue, 28-Nov-2023 08:16:12 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps50289=1; expires=Tue, 29-Nov-2022 08:16:13 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO30%3D; expires=Thu, 01-Dec-2022 08:16:12 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:12 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48e5f5b9da79e6f07c04a02332c17522
0a92707dc1ba33f153577bba8bcb77900b1713ef
f2bce3df8918f15c13df3462012935618cd0b51d48e3497a6789a5729b929479
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2BCE3DF8918F15C13DF3462012935618CD0B51D48E3497A6789A5729B929479"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5472
Expires: Mon, 28 Nov 2022 09:47:25 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 43 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
Hash 2a744c76f8b2a4a9cd04c3e354dbd309
f9a20f69ed2a04efdeb7accc56a01b16802c5e71
89b92efaab2fc9ec006ba836b5ae11d899615a957fda3a86fd0515af0c6b7ef6
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8fdcbbd7dff61d80e042d7b3cc6bf52d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=848843
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848843
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (437), with CRLF, LF line terminators
Hash b2ee0a2a78752228c8075689941acf51
e8bbde6a6bdfd8be2972d02e5699aab4dead8de1
23205e5c309b2ca94c0861fc5fdbb885791f786ec3dadbd2d7badb42eb515790
GET /adshow.php?adzone=848843 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; expires=Tue, 28-Nov-2023 08:16:12 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps22821=1; expires=Tue, 29-Nov-2022 08:16:13 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:12 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:12 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
wastedinvaluable.com/watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
173.233.137.36307 Temporary Redirect 0 B URL HTTP/1.1 wastedinvaluable.com/watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: wastedinvaluable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://wastedinvaluable.com/watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=b781ccfcef707b870e8a3cef171a32e6a4b1b61f85b388efe55bf6ca3d51af983a9a6c5e8e8480c4e535af6a7569f487d0562af730b2f7a4c90467278efc59f8a7e5d2c3de2a6480e2aa8ec84dca63b023b3b652f809fcff779bfc37a423d1&pst=1669623433&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8aa819305904f7eaf4a91830ff13ab03
Strict-Transport-Security: max-age=0; includeSubdomains
wastedinvaluable.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
173.233.137.36200 OK 13 kB URL HTTP/1.1 wastedinvaluable.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 173.233.137.36:0
File type ASCII text, with very long lines (37155), with no line terminators
Hash b1c857e9e0ab8f07d6268e6534097d95
e4eb9210ddb9745f805c0bf242e063da4d4bec33
c852a0d0af579688dd6202b4105f84187bbd29547ae5557889e0e496aa2ea938
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: wastedinvaluable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: df47ef44675f865b8bdb349d803de01d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i.jads.co/network/user500/33392-1565176771-0627556001565176771.png
69.16.175.42200 OK 1.5 kB URL HTTP/2 i.jads.co/network/user500/33392-1565176771-0627556001565176771.png
IP 69.16.175.42:0
File type PNG image data, 300 x 100, 8-bit colormap, non-interlaced\012- data
Hash fd8919bdd3c66a50b6318c1ca345d549
8194b4d1fc79800a5debf640e27c58c8a34ef844
e36680f6419ccf675b2536b11bfcbb8734ed8dd6de0c8b26608b8811f0a4148f
GET /network/user500/33392-1565176771-0627556001565176771.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
etag: "1565176771"
cache-control: max-age=29074923
content-length: 1470
content-type: image/png
last-modified: Wed, 07 Aug 2019 11:19:31 GMT
accept-ranges: bytes
x-hw: 1669623373.dop067.sk1.t,1669623373.cds240.sk1.hn,1669623373.cds239.sk1.c
X-Firefox-Spdy: h2
i.jads.co/network/user81419/50289-1654836994-0157689001654836994.gif
69.16.175.42200 OK 229 kB URL HTTP/2 i.jads.co/network/user81419/50289-1654836994-0157689001654836994.gif
IP 69.16.175.42:0
File type GIF image data, version 89a, 728 x 90\012- data
Size 229 kB (228567 bytes)
Hash 17b8a901ec7eb6043a2139a1c3cbb8bb
178a3092957b55b102ce5588acd7d27eb22949d7
2f03f841b35ee66bda5459e4a34d1b0362dbaa0daa69462684bd1fe8b13b8309
GET /network/user81419/50289-1654836994-0157689001654836994.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
etag: "1654836994"
cache-control: max-age=16810014
content-length: 228567
content-type: image/gif
last-modified: Fri, 10 Jun 2022 04:56:34 GMT
accept-ranges: bytes
x-hw: 1669623373.dop067.sk1.t,1669623373.cds240.sk1.hn,1669623373.cds209.sk1.c
X-Firefox-Spdy: h2
yearbookhobblespinal.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.13200 OK 13 kB URL HTTP/1.1 yearbookhobblespinal.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37143), with no line terminators
Hash 5551fa694bd02b145f8522183512c162
ab526a9df818f7ebafb5b3c7c704f008d6e658e1
25efeabc2d245843d932da0c64a02fc1e001489a4214e1ca89713775db9c0639
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 15136eafff820d4852d6cefec3d4c77c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27014), with no line terminators
Hash be949f4274534d6bd8f8b1db0a36839c
b9f4dccdc18e0f1ecc6a7f8f432f8656513b6dd0
d1c935f671aca921a8339e7f0f74d884e345f47be53e75e0e6dc1d7fb459e388
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 392c90a2220ce74df442c43013a38f60
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55703d3bfe2eb684148ed6c064f04955
7ebd83b433d0f21d992c54c5cb686fac8031a0cf
ace43109e30792780c3b526994d017abac37d7bedec0382de7b0fb3a10d62041
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "ACE43109E30792780C3B526994D017ABAC37D7BEDEC0382DE7B0FB3A10D62041"
Last-Modified: Sun, 27 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4246
Expires: Mon, 28 Nov 2022 09:26:59 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
wastedinvaluable.com/watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=b781ccfcef707b870e8a3cef171a32e6a4b1b61f85b388efe55bf6ca3d51af983a9a6c5e8e8480c4e535af6a7569f487d0562af730b2f7a4c90467278efc59f8a7e5d2c3de2a6480e2aa8ec84dca63b023b3b652f809fcff779bfc37a423d1&pst=1669623433&rmtc=t
173.233.137.36200 OK 2.1 kB URL HTTP/1.1 wastedinvaluable.com/watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=b781ccfcef707b870e8a3cef171a32e6a4b1b61f85b388efe55bf6ca3d51af983a9a6c5e8e8480c4e535af6a7569f487d0562af730b2f7a4c90467278efc59f8a7e5d2c3de2a6480e2aa8ec84dca63b023b3b652f809fcff779bfc37a423d1&pst=1669623433&rmtc=t
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (2571)
Hash 84bf536d4af32c1b7563f51898f27eed
2d630836bf43a83c762423c450f1032498b19a2e
cc554cd3f57ed4085346a74f228ab3b19f8c656af761ab889ab91f7b2dbc2efd
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.246664214888.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=b781ccfcef707b870e8a3cef171a32e6a4b1b61f85b388efe55bf6ca3d51af983a9a6c5e8e8480c4e535af6a7569f487d0562af730b2f7a4c90467278efc59f8a7e5d2c3de2a6480e2aa8ec84dca63b023b3b652f809fcff779bfc37a423d1&pst=1669623433&rmtc=t HTTP/1.1
Host: wastedinvaluable.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 82ce77ad079940bc7bccab91d33000e2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
yearbookhobblespinal.com/watch.473990935486.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2%3A2%3A1&shu=c81f5745fee04885cb635650d5eafabcdf45bde34add22c0cec54d5c1e5888e68e79b1d0c94c815dda9b44c62ef6b764a50eb5caca215311e4f034ca7620349ec8eec30bb3840f7ca106c511c83efb6c67da10be&pst=1669623433&rmtc=t
192.243.59.13200 OK 2.1 kB URL HTTP/1.1 yearbookhobblespinal.com/watch.473990935486.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2%3A2%3A1&shu=c81f5745fee04885cb635650d5eafabcdf45bde34add22c0cec54d5c1e5888e68e79b1d0c94c815dda9b44c62ef6b764a50eb5caca215311e4f034ca7620349ec8eec30bb3840f7ca106c511c83efb6c67da10be&pst=1669623433&rmtc=t
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2563)
Hash efbdb904845dbb7aeabbc828e8d66d92
4bc80ebf33b725258d5a84a4474d1746af98697d
1a4fbb5b865c7fa05e792ac965398b3e78b965f5995b7eb4c01afd120a8cee0b
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.473990935486.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2%3A2%3A1&shu=c81f5745fee04885cb635650d5eafabcdf45bde34add22c0cec54d5c1e5888e68e79b1d0c94c815dda9b44c62ef6b764a50eb5caca215311e4f034ca7620349ec8eec30bb3840f7ca106c511c83efb6c67da10be&pst=1669623433&rmtc=t HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9maWxtcG9ybm9pdGFsaWFuby5vcmcvIn19.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2:2:1; expires=Mon, 05 Dec 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 449a6565bd4e5f06dec045140d26fdd7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
veilsuccessfully.com/watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.20307 Temporary Redirect 893 B URL HTTP/1.1 veilsuccessfully.com/watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash 1c7b2f8cd70a6d05d993c2a41d9d7c0d
761cc706907595576e998937ebe4ac1a1a24e9ad
9f7b3d468c1bb55d724d8983d27fecd053aace22ea8821891404d5345b0b983e
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://veilsuccessfully.com/watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=d5b07f6b2fbb98185bb8659f38f0843220782b7635b10d6a26fb486645155528195fc3d1020af8da185ebe632ced78c6fa83d37e8f021f551ea93e77f0604ff097953402c5e6245cbe797c6ecb7ac3a50c8e3e2b&pst=1669623433&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5e39b3a990e641261d0f0a0c42e7ef7
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 949fc6a68c263e9826a31bceed73163e
b0da1f7aed2b0fea560b6ab64afc767eba7e980e
c2261eb9d64ffa5218230a3b4edddda9496061863abab7cf1aaffa428f1f0d1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2261EB9D64FFA5218230A3B4EDDDDA9496061863ABAB7CF1AAFFA428F1F0D1B"
Last-Modified: Sun, 27 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4765
Expires: Mon, 28 Nov 2022 09:35:38 GMT
Date: Mon, 28 Nov 2022 08:16:13 GMT
Connection: keep-alive
veilsuccessfully.com/watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 veilsuccessfully.com/watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://veilsuccessfully.com/watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=a8f3bdff39cf621f663afc165959b6b4bc848efd8db5a8029b3b1d329908b3c406a1be3f37cc1e6191d8ee0d1dbf935fe0a8df89990fdc6e5cbf0392804e2ab52edb6cc8c76cb9605452c8635fb551997c05db95c5f558456e628c2d5dd3ef&pst=1669623433&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7eb2901197c212352ee4b78750af50a7
Strict-Transport-Security: max-age=0; includeSubdomains
veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37134), with no line terminators
Hash b0b8cc8d0c1c3ff94a97649965387cad
c62dd5d08cc25af53338c2f944336c9dc0072dc9
ae92d21a42afa34511d2f290c20f87e363344784aa8560b46f9ef073e88ae521
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 360f4d27604edea0edf868c8064a04c5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash 7f409794f2afb89bd617c97bd45fe6ef
80ca4d30eaefcbf68d5f82302df6e1109036fbfe
c606316698f1c2d934db85cac4746fb853cd202c8a51b72ad2e99274053cdcb0
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1659ad43e3f0f822ef63e7db4b342c99
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55703d3bfe2eb684148ed6c064f04955
7ebd83b433d0f21d992c54c5cb686fac8031a0cf
ace43109e30792780c3b526994d017abac37d7bedec0382de7b0fb3a10d62041
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "ACE43109E30792780C3B526994D017ABAC37D7BEDEC0382DE7B0FB3A10D62041"
Last-Modified: Sun, 27 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4245
Expires: Mon, 28 Nov 2022 09:26:59 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d02308d366e622aa26e632ea017600cc
c16673d53c20ac70efbda483ca12b4374a76105c
ad8ccb9b049120b7e44a79dcbc9caab326567933cfce70608bc812237319a0ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD8CCB9B049120B7E44A79DCBC9CAAB326567933CFCE70608BC812237319A0EC"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10666
Expires: Mon, 28 Nov 2022 11:14:00 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
reproductiontape.com/watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
173.233.137.44307 Temporary Redirect 0 B URL HTTP/1.1 reproductiontape.com/watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://reproductiontape.com/watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=4e32ca1403ea882a7c2a3fedff597298ad724d83faca9c13f4f3da7cd713b5f25912c43d9499cc571c53ac2a263b474f71413a990d74a94cbcacbab48edee1e020e87aba83d83f7a3a073ac2a4b36392926b48a279b5e3e11bc4a6d523225c0037b7&pst=1669623434&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 05868f3dafebfd858f5a6f7371edbce5
Strict-Transport-Security: max-age=0; includeSubdomains
veilsuccessfully.com/watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=a8f3bdff39cf621f663afc165959b6b4bc848efd8db5a8029b3b1d329908b3c406a1be3f37cc1e6191d8ee0d1dbf935fe0a8df89990fdc6e5cbf0392804e2ab52edb6cc8c76cb9605452c8635fb551997c05db95c5f558456e628c2d5dd3ef&pst=1669623433&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 veilsuccessfully.com/watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=a8f3bdff39cf621f663afc165959b6b4bc848efd8db5a8029b3b1d329908b3c406a1be3f37cc1e6191d8ee0d1dbf935fe0a8df89990fdc6e5cbf0392804e2ab52edb6cc8c76cb9605452c8635fb551997c05db95c5f558456e628c2d5dd3ef&pst=1669623433&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2575)
Hash d7add283e814eac00735703ba1eec992
b7345e867eb266a9fe0794fe5d2a670303a557f7
16f188ed9253e27330f95d4c897e3ade84a2a8c6a81e1afe143d70c16ebf6a73
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.197718552302.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=a8f3bdff39cf621f663afc165959b6b4bc848efd8db5a8029b3b1d329908b3c406a1be3f37cc1e6191d8ee0d1dbf935fe0a8df89990fdc6e5cbf0392804e2ab52edb6cc8c76cb9605452c8635fb551997c05db95c5f558456e628c2d5dd3ef&pst=1669623433&rmtc=t HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9maWxtcG9ybm9pdGFsaWFuby5vcmcvIn19.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 388c19cab0032ec1e3c4764cb4242a46
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
veilsuccessfully.com/watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=d5b07f6b2fbb98185bb8659f38f0843220782b7635b10d6a26fb486645155528195fc3d1020af8da185ebe632ced78c6fa83d37e8f021f551ea93e77f0604ff097953402c5e6245cbe797c6ecb7ac3a50c8e3e2b&pst=1669623433&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 veilsuccessfully.com/watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=d5b07f6b2fbb98185bb8659f38f0843220782b7635b10d6a26fb486645155528195fc3d1020af8da185ebe632ced78c6fa83d37e8f021f551ea93e77f0604ff097953402c5e6245cbe797c6ecb7ac3a50c8e3e2b&pst=1669623433&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2532)
Hash 903de5ba33c20ab877e30005ad304887
05a7cd9245f906780e69836ececf93c41fe645ef
24e549fa741fc1b79d970e8c44fe96da47a57e8eca71fa3314f3163fe70dcd82
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.223691097489.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=d5b07f6b2fbb98185bb8659f38f0843220782b7635b10d6a26fb486645155528195fc3d1020af8da185ebe632ced78c6fa83d37e8f021f551ea93e77f0604ff097953402c5e6245cbe797c6ecb7ac3a50c8e3e2b&pst=1669623433&rmtc=t HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6f0549d60bed7cb2e9482dda19051a2a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37134), with no line terminators
Hash b0b8cc8d0c1c3ff94a97649965387cad
c62dd5d08cc25af53338c2f944336c9dc0072dc9
ae92d21a42afa34511d2f290c20f87e363344784aa8560b46f9ef073e88ae521
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ba587be00d061e680ca96fd89929e45e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
reproductiontape.com/watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
173.233.137.44307 Temporary Redirect 0 B URL HTTP/1.1 reproductiontape.com/watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://reproductiontape.com/watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=2231981d831d265562d42287e65b8e6fd2b81cca031c8a09a63a0c5ba9e383502854a57bd2ac620fdd9237715a42e62dec2fe2c2ca2e99c25bc1e671b6aa0b42899a71e2b10aaded37e94f5470b94161d84db297cc69b94e466433b6b9d872&pst=1669623434&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0eea08c2e9d3ef92270f2c39edd173cd
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/bi/7c/99/51/7c99514a9feba0c0d0bd5964538f2cdc/1644707633.jpg
45.133.44.9200 OK 100 kB URL HTTP/2 cdn.cloudimagesb.com/bi/7c/99/51/7c99514a9feba0c0d0bd5964538f2cdc/1644707633.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:02:10 11:36:40], baseline, precision 8, 300x250, components 3\012- data
Hash fe553863a93346b50d812573d1031b3b
94d5d2628933c4daac6f1d6bea31096ee0dafc93
0e56afc29fc7fd181340aad2aa44cb0b48051287482b8b234363074562dae9ce
GET /bi/7c/99/51/7c99514a9feba0c0d0bd5964538f2cdc/1644707633.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: image/jpeg
content-length: 99749
server: nginx/1.17.6
last-modified: Sat, 12 Feb 2022 23:13:59 GMT
etag: "62083f37-185a5"
expires: Wed, 30 Nov 2022 08:16:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/cc/ef/87/ccef87a2383856b48ce0449ae3c95149/1645043015.jpg
45.133.44.9200 OK 20 kB URL HTTP/2 cdn.cloudimagesb.com/bi/cc/ef/87/ccef87a2383856b48ce0449ae3c95149/1645043015.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 987e982ccb8f289ddd713561f6cde061
a4e4250daafcbe8693874b26253e53fe32610b35
b12e1cd9fbfa65d755f48784f1143df3488c7f5e141ce90f21e0ab5b5842d6ad
GET /bi/cc/ef/87/ccef87a2383856b48ce0449ae3c95149/1645043015.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: image/jpeg
content-length: 20391
server: nginx/1.17.6
last-modified: Wed, 16 Feb 2022 20:23:42 GMT
etag: "620d5d4e-4fa7"
expires: Wed, 30 Nov 2022 08:16:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
reproductiontape.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
173.233.137.44200 OK 13 kB URL HTTP/1.1 reproductiontape.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 173.233.137.44:0
File type ASCII text, with very long lines (37131), with no line terminators
Hash 8c71bd50434d468d3342dc4f4cb2e888
738a18daf44d38eab8c0b81df9cf76fcf72ad7cf
41f63487795bc8d6ea3c7cdef7e5b6d7c7b27e0b58c365141610ed79700c7207
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a314a6a2beb0c8b184b15adadcc6d402
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 80aaf3c2c5705c3c5411ecb62bfe6cfa
b576259697125be73aaae457b27cc98dd95ebe6c
71c030d347c98e4dfae52d6caf36146faacc096987039d064fd8a56f211317fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71C030D347C98E4DFAE52D6CAF36146FAACC096987039D064FD8A56F211317FB"
Last-Modified: Mon, 28 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10384
Expires: Mon, 28 Nov 2022 11:09:18 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 80aaf3c2c5705c3c5411ecb62bfe6cfa
b576259697125be73aaae457b27cc98dd95ebe6c
71c030d347c98e4dfae52d6caf36146faacc096987039d064fd8a56f211317fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71C030D347C98E4DFAE52D6CAF36146FAACC096987039D064FD8A56F211317FB"
Last-Modified: Mon, 28 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10384
Expires: Mon, 28 Nov 2022 11:09:18 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.variousformatscontent.com/0c20249c821c759617269f1dedc3e2e5/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (27012), with no line terminators
Hash 7f409794f2afb89bd617c97bd45fe6ef
80ca4d30eaefcbf68d5f82302df6e1109036fbfe
c606316698f1c2d934db85cac4746fb853cd202c8a51b72ad2e99274053cdcb0
Analyzer Verdict Alert quad9 Sinkholed
GET /0c20249c821c759617269f1dedc3e2e5/invoke.js HTTP/1.1
Host: www.variousformatscontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8ea651968c9887312923c09d92215c83
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
veilsuccessfully.com/watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 veilsuccessfully.com/watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9maWxtcG9ybm9pdGFsaWFuby5vcmcvIn19.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://veilsuccessfully.com/watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=576fd5e422611a97c88a7f29c3ef59cd639c2789ba3d04db8ba290604ee5ca4c7f591f21f5a8be8b62f0183bbb3587c723079370274c78aafc169ed0492de035d84d0ea2114055a70a48d437daafd2d3e206ea8b&pst=1669623434&rmtc=t
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjpmYWxzZSwiciI6Imh0dHBzOi8vZmlsbXBvcm5vaXRhbGlhbm8ub3JnLyJ9fQ.klsWr2jZ5BTuNhn30Aw8VzOJ8LWBSKkR7Zn9w4mVCAQ; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 76d85ab50bc135173da78860b66f2ffd
Strict-Transport-Security: max-age=0; includeSubdomains
veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37164), with no line terminators
Hash f131addf0d25839bfc90fd57180375e8
4c951c9c84c0284c05679759320b6d04be770c47
22ce4b604b9b608af0153bf51ff2fee3b503dbf91ba3209cc7f751cf7adc0571
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c62401a14cf9ecd2fb31b550da7f56a1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=848842
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848842
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF, LF line terminators
Hash 0527faaa282b99dfd91236e33b7db1a8
a4c529efa844257dc5794b7997e0e7bbf8019ada
899578c37b0bb4525d2f938bbd52fe4cf233a7e40345ef8d155e660ee471304b
GET /adshow.php?adzone=848842 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps61=1; expires=Tue, 29-Nov-2022 08:16:13 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:13 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:13 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
reproductiontape.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
173.233.137.44200 OK 13 kB URL HTTP/1.1 reproductiontape.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 173.233.137.44:0
File type ASCII text, with very long lines (37137), with no line terminators
Hash 138ccbe1052e402202aca185d2565bc0
ab036e225972c0c76902c9d81e068dd62fcd0593
d79fe30e5f6c112e2d76dba4cf508b459a7bcac7edec6ede04331b5031ada38c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dffa8bb79407e880a2bbd7de354586d7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
s3t3d2y8.afcdn.net/images/close-icon-circle.png
185.76.9.22200 OK 405 B URL HTTP/2 s3t3d2y8.afcdn.net/images/close-icon-circle.png
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash bc8bf5d1633e548e9a178bf29be30b7b
bd290b6eabd73d2c95db053620797503e9178484
94f575abdb5c45476f9c2b62bbe06fbfacce9d25e95796ffcd07680bd7c6c0bb
GET /images/close-icon-circle.png HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: image/png
content-length: 405
last-modified: Wed, 29 Jun 2022 13:13:10 GMT
etag: "62bc4fe6-195"
expires: Fri, 30 Jun 2023 18:46:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195204
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCRSaHdX/StHFAA
x-77-nzt-ray: af5856304ab0eae04e6e8463a25c5812
x-cache: HIT
x-age: 12964170
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
reproductiontape.com/watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=2231981d831d265562d42287e65b8e6fd2b81cca031c8a09a63a0c5ba9e383502854a57bd2ac620fdd9237715a42e62dec2fe2c2ca2e99c25bc1e671b6aa0b42899a71e2b10aaded37e94f5470b94161d84db297cc69b94e466433b6b9d872&pst=1669623434&rmtc=t
173.233.137.44200 OK 2.0 kB URL HTTP/1.1 reproductiontape.com/watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=2231981d831d265562d42287e65b8e6fd2b81cca031c8a09a63a0c5ba9e383502854a57bd2ac620fdd9237715a42e62dec2fe2c2ca2e99c25bc1e671b6aa0b42899a71e2b10aaded37e94f5470b94161d84db297cc69b94e466433b6b9d872&pst=1669623434&rmtc=t
IP 173.233.137.44:0
File type HTML document, ASCII text, with very long lines (2467)
Hash d4660fcbd1b72c542e88cf60a1ce9ec5
3be9ad5d2eb0f097df8d9af2a7847f9a7daf24ea
d6b4718ab756e4f10dc15911c1a56c4e6cbb6ee15bdf63af7baea14db7b3c514
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1246246880350.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=2231981d831d265562d42287e65b8e6fd2b81cca031c8a09a63a0c5ba9e383502854a57bd2ac620fdd9237715a42e62dec2fe2c2ca2e99c25bc1e671b6aa0b42899a71e2b10aaded37e94f5470b94161d84db297cc69b94e466433b6b9d872&pst=1669623434&rmtc=t HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 03f780aa22094f1cb23e475ed9db53b8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
reproductiontape.com/watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=4e32ca1403ea882a7c2a3fedff597298ad724d83faca9c13f4f3da7cd713b5f25912c43d9499cc571c53ac2a263b474f71413a990d74a94cbcacbab48edee1e020e87aba83d83f7a3a073ac2a4b36392926b48a279b5e3e11bc4a6d523225c0037b7&pst=1669623434&rmtc=t
173.233.137.44200 OK 2.1 kB URL HTTP/1.1 reproductiontape.com/watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=4e32ca1403ea882a7c2a3fedff597298ad724d83faca9c13f4f3da7cd713b5f25912c43d9499cc571c53ac2a263b474f71413a990d74a94cbcacbab48edee1e020e87aba83d83f7a3a073ac2a4b36392926b48a279b5e3e11bc4a6d523225c0037b7&pst=1669623434&rmtc=t
IP 173.233.137.44:0
File type HTML document, ASCII text, with very long lines (2586)
Hash 06da94498e5ae37537e396a4e1c6e614
2af851c6d9c6ebf59a15b87d725554c14af002b0
10c4e15a6968860acb4282f01ee1a58153a9de2e79d02ca454ce715ea320e561
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.430136948743.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=4e32ca1403ea882a7c2a3fedff597298ad724d83faca9c13f4f3da7cd713b5f25912c43d9499cc571c53ac2a263b474f71413a990d74a94cbcacbab48edee1e020e87aba83d83f7a3a073ac2a4b36392926b48a279b5e3e11bc4a6d523225c0037b7&pst=1669623434&rmtc=t HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5233f030523dc94f54d74405a04df7e3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
veilsuccessfully.com/watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 veilsuccessfully.com/watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.klsWr2jZ5BTuNhn30Aw8VzOJ8LWBSKkR7Zn9w4mVCAQ; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://veilsuccessfully.com/watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=c43b25774a93ead31b59349753366e1698605c7967fe2d9a2512c9d28ff213b2323ba236e5f98265a49a93ef681ad2ee3ac8926acbbd67657de4c47f63ccd2c562deaab55e141ac393a0185024e66c50a9f4d60a1cec212320c3bd4a79a189&pst=1669623434&rmtc=t
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.XkAVQg4V0zwRmoXrePHc3goR9h_MqFZ2qI5C6MthSIg; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 15370c7d083e796c6b911d1dd02d0067
Strict-Transport-Security: max-age=0; includeSubdomains
veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 veilsuccessfully.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37155), with no line terminators
Hash b1c857e9e0ab8f07d6268e6534097d95
e4eb9210ddb9745f805c0bf242e063da4d4bec33
c852a0d0af579688dd6202b4105f84187bbd29547ae5557889e0e496aa2ea938
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.klsWr2jZ5BTuNhn30Aw8VzOJ8LWBSKkR7Zn9w4mVCAQ; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3f4238b9d89695c520fc401bfbe48895
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
tractorfoolproofstandard.com/watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
173.233.137.36307 Temporary Redirect 0 B URL HTTP/1.1 tractorfoolproofstandard.com/watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: tractorfoolproofstandard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://tractorfoolproofstandard.com/watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=9388e9bf7dfe2db3ed790bbfecb08432e96d3d3b978f53ab08d3e75f8c5d31033daa74e06810fd055a53ba58444775a2f73aab4be3519be3c5e423bfc0f7f94ea39bc069885ef9aca07d126a49ebd058fe6578ffd0fe4533b3efd1badc9f0af3&pst=1669623434&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9maWxtcG9ybm9pdGFsaWFuby5vcmcvIn19.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 65485e9a57320cca96ad0aa67c23e516
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 627775c3a804fa2b204735ad46d1de68
71155acfaa5212049108b355b07665432467cc1a
937e883cae16f19760094e80022ae925e2723678dfde030638ebd64e72523820
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "937E883CAE16F19760094E80022AE925E2723678DFDE030638EBD64E72523820"
Last-Modified: Sun, 27 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5125
Expires: Mon, 28 Nov 2022 09:41:39 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
s3t3d2y8.afcdn.net/library/448451/359bcfd452157f843775443ad291243f09e06523.mp4
185.76.9.22206 Partial Content 10 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/448451/359bcfd452157f843775443ad291243f09e06523.mp4
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash db5939ffe060aa00b1849cbdb7314ded
359bcfd452157f843775443ad291243f09e06523
0979b45674a0f2eca1e083f8e16af3b4efb53ba71fd2d6fe7ab6d28a9acd6ee8
GET /library/448451/359bcfd452157f843775443ad291243f09e06523.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: video/mp4
content-length: 10322
last-modified: Tue, 09 Aug 2022 11:14:51 GMT
etag: "62f241ab-2852"
expires: Wed, 09 Aug 2023 11:37:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1691581271
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCRQF+SX/dyaSAA
x-77-nzt-ray: af5856304ab0eae04e6e8463e82db11a
x-cache: HIT
x-age: 9578103
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-10321/10322
X-Firefox-Spdy: h2
tractorfoolproofstandard.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
173.233.137.36200 OK 13 kB URL HTTP/1.1 tractorfoolproofstandard.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 173.233.137.36:0
File type ASCII text, with very long lines (37155), with no line terminators
Hash c44fcc6c655a9446f7d568af3d2fff2d
12cb88b6ff2d311338b725891c4a783c45101c57
aaa4d3c59cdb7363511873ed5cffa3bb59c922834ecc1dabeda70a310557bd3f
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: tractorfoolproofstandard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2d19855ff3715c6af33c24ced6b385b9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i.jads.co/network/user1037/131-1584677628-0968846001584677628.jpg
69.16.175.42200 OK 168 kB URL HTTP/2 i.jads.co/network/user1037/131-1584677628-0968846001584677628.jpg
IP 69.16.175.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 900x250, components 3\012- data
Size 168 kB (167650 bytes)
Hash b2207275b4397919c18b49738ac26d52
6912144edb96fa0fd1fc64746b2520abea702dd0
cb3779812de0d1dd411538cf7a11a35995f2c5c81ee2016700e4e086bf49e623
GET /network/user1037/131-1584677628-0968846001584677628.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
etag: "1584677629"
cache-control: max-age=17602446
content-length: 167650
content-type: image/jpeg
last-modified: Fri, 20 Mar 2020 04:13:49 GMT
accept-ranges: bytes
x-hw: 1669623374.dop067.sk1.t,1669623374.cds240.sk1.hn,1669623374.cds018.sk1.c
X-Firefox-Spdy: h2
veilsuccessfully.com/watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=c43b25774a93ead31b59349753366e1698605c7967fe2d9a2512c9d28ff213b2323ba236e5f98265a49a93ef681ad2ee3ac8926acbbd67657de4c47f63ccd2c562deaab55e141ac393a0185024e66c50a9f4d60a1cec212320c3bd4a79a189&pst=1669623434&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 veilsuccessfully.com/watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=c43b25774a93ead31b59349753366e1698605c7967fe2d9a2512c9d28ff213b2323ba236e5f98265a49a93ef681ad2ee3ac8926acbbd67657de4c47f63ccd2c562deaab55e141ac393a0185024e66c50a9f4d60a1cec212320c3bd4a79a189&pst=1669623434&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2616)
Hash 77a8f1e5cea9da7589f6b0c8eb5bb904
6122c45c829c82ca4040b59ecf9ca29db503346d
991565cc30113f862b192d20362cfc0c303d446e42c426ba164b39c9959da049
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.403310212458.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=c43b25774a93ead31b59349753366e1698605c7967fe2d9a2512c9d28ff213b2323ba236e5f98265a49a93ef681ad2ee3ac8926acbbd67657de4c47f63ccd2c562deaab55e141ac393a0185024e66c50a9f4d60a1cec212320c3bd4a79a189&pst=1669623434&rmtc=t HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.XkAVQg4V0zwRmoXrePHc3goR9h_MqFZ2qI5C6MthSIg; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
uncs=2; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=2; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d2338440b58dcfc2e3bd1d61658bb71a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
tractorfoolproofstandard.com/watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=9388e9bf7dfe2db3ed790bbfecb08432e96d3d3b978f53ab08d3e75f8c5d31033daa74e06810fd055a53ba58444775a2f73aab4be3519be3c5e423bfc0f7f94ea39bc069885ef9aca07d126a49ebd058fe6578ffd0fe4533b3efd1badc9f0af3&pst=1669623434&rmtc=t
173.233.137.36200 OK 2.1 kB URL HTTP/1.1 tractorfoolproofstandard.com/watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=9388e9bf7dfe2db3ed790bbfecb08432e96d3d3b978f53ab08d3e75f8c5d31033daa74e06810fd055a53ba58444775a2f73aab4be3519be3c5e423bfc0f7f94ea39bc069885ef9aca07d126a49ebd058fe6578ffd0fe4533b3efd1badc9f0af3&pst=1669623434&rmtc=t
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (2578)
Hash 43a4e28847cf5452e6e905ae5067a80b
965d0b67a4870356367aaeaa10cee8954a62f368
5deab255f4c6fe7e469fccf1f2ad60c6728d42822013a78eab23890c2c7f06bb
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.70935032626.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=9388e9bf7dfe2db3ed790bbfecb08432e96d3d3b978f53ab08d3e75f8c5d31033daa74e06810fd055a53ba58444775a2f73aab4be3519be3c5e423bfc0f7f94ea39bc069885ef9aca07d126a49ebd058fe6578ffd0fe4533b3efd1badc9f0af3&pst=1669623434&rmtc=t HTTP/1.1
Host: tractorfoolproofstandard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOCI6IjE3Y2MyNDFjM2Y5NmZmNmViNjhiZDUzZWFlYjk4ZGM0IiwiMjkiOiI5M2E3NWMyNDU1ZTE0M2MwOTZkZDFiNDVjZmE5NTk2ZSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9maWxtcG9ybm9pdGFsaWFuby5vcmcvIn19.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5d236338e98530e76e5125abccf8fa92
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
lightssyrupdecree.com/watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 lightssyrupdecree.com/watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Location: https://lightssyrupdecree.com/watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=db09b1d455cb450efb18ec4dd5fe6ae5cb5d28c6872161259d77f222a31f58482e13509d3df7216393ff8dc9127b0250c79d75ee20bb11f50b1e69c0f8374dacc05192ab35ea6d88a4f5df33ba97720f3b7577cf6f39b57bb160fb3e7014d521cc74128830&pst=1669623434&rmtc=t
Set-Cookie: u_pl=16702944; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; expires=Mon, 28 Nov 2022 08:17:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c21c1ef5723f0e1fbdd53b9634bd6767
Strict-Transport-Security: max-age=0; includeSubdomains
poweredby.jads.co/adshow.php?adzone=848842
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848842
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF, LF line terminators
Hash 5b92a8e397004eae83be9a8f691bfa8e
a738f8985e7c150760e277cc6e0b8db31d1c4228
c115a02658920c8aa51d09e5613bdf0c90021aaa95fcd592586fee7eb3072d22
GET /adshow.php?adzone=848842 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps61=1; expires=Tue, 29-Nov-2022 08:16:14 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7aToxMTk2OTcyO2k6MTY2OTg4MjU3NDt9; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
syndication.realsrv.com/v1/api.php
95.211.229.245200 OK 1.8 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (2841), with no line terminators
Hash 2b60699e28ad4b212f7d2e14fdd091eb
c7f56fdb6e76053f94584e0c9051d59be045fd7a
82d0805e9a448ca21cdc0fd0048913be2f03f32c929dc25a7699c5ed5ba5f2cb
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 258
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4e784a39.534863432657095279%22%3B%7D; expires=Wed, 27-Nov-2024 08:16:14 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c47566c984b255a89ed15f6dc7fdee95
43e4fe49339a5fda98cc2189d8f7d1674b13acab
e77a849fe4cac271f48468112c70bef3a3f9f62b5c371e7b09500a1424abe17b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 12:04:33 GMT
Expires: Sun, 04 Dec 2022 12:04:32 GMT
Etag: "43e4fe49339a5fda98cc2189d8f7d1674b13acab"
Cache-Control: max-age=531497,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7711a90add030b55-OSL
lightssyrupdecree.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
192.243.59.12200 OK 13 kB URL HTTP/1.1 lightssyrupdecree.com/93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37146), with no line terminators
Hash 0cd449f15ffa9f6a06b27353946faaf8
cbf167f782d121bfb697315769201218ab1b213a
1689c83c6dedc5be582d9764158393952ec8074756119031896cdbf2b47956de
Analyzer Verdict Alert quad9 Sinkholed
GET /93/a7/5c/93a75c2455e143c096dd1b45cfa9596e.js HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e20925f18493ec47dc972a807cd36a0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=848842
185.94.237.102200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848842
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1602), with CRLF, LF line terminators
Hash 7ba5966cc8e0fe8ec80762292979a8fd
21ad7428d53afd6cb63e09e975b9dd9581b0320b
479a84c3cf1c6cfbc302b4cc23a317e1754bc2636dcea25dc65fd63c50c2ade1
GET /adshow.php?adzone=848842 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps61=1; expires=Tue, 29-Nov-2022 08:16:14 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7aToxMTk2OTcyO2k6MTY2OTg4MjU3NDt9; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1a66501e7fc18e24bad9790b36e2d929
10ffaa12636fdd2582df141ee0039cdda54c874f
c6ee1c60f9a854653de37238f7e791a9dfee4c8b5b64398c19354417b4d69151
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6EE1C60F9A854653DE37238F7E791A9DFEE4C8B5B64398C19354417B4D69151"
Last-Modified: Sat, 26 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15338
Expires: Mon, 28 Nov 2022 12:31:52 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1a66501e7fc18e24bad9790b36e2d929
10ffaa12636fdd2582df141ee0039cdda54c874f
c6ee1c60f9a854653de37238f7e791a9dfee4c8b5b64398c19354417b4d69151
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6EE1C60F9A854653DE37238F7E791A9DFEE4C8B5B64398C19354417B4D69151"
Last-Modified: Sat, 26 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15338
Expires: Mon, 28 Nov 2022 12:31:52 GMT
Date: Mon, 28 Nov 2022 08:16:14 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c47566c984b255a89ed15f6dc7fdee95
43e4fe49339a5fda98cc2189d8f7d1674b13acab
e77a849fe4cac271f48468112c70bef3a3f9f62b5c371e7b09500a1424abe17b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 12:04:33 GMT
Expires: Sun, 04 Dec 2022 12:04:32 GMT
Etag: "43e4fe49339a5fda98cc2189d8f7d1674b13acab"
Cache-Control: max-age=531497,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7711a90c49ddb527-OSL
i.jads.co/1x1.gif
69.16.175.42200 OK 43 B IP 69.16.175.42:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /1x1.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToyOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7aToxMTk2OTcyO2k6MTY2OTg4MjU3NDt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
etag: "1457030838"
cache-control: max-age=17601892
content-length: 43
content-type: image/gif
last-modified: Thu, 03 Mar 2016 18:47:18 GMT
accept-ranges: bytes
x-hw: 1669623374.dop067.sk1.t,1669623374.cds240.sk1.hn,1669623374.cds217.sk1.c
X-Firefox-Spdy: h2
veilsuccessfully.com/watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=576fd5e422611a97c88a7f29c3ef59cd639c2789ba3d04db8ba290604ee5ca4c7f591f21f5a8be8b62f0183bbb3587c723079370274c78aafc169ed0492de035d84d0ea2114055a70a48d437daafd2d3e206ea8b&pst=1669623434&rmtc=t
192.243.59.20200 OK 2.1 kB URL HTTP/1.1 veilsuccessfully.com/watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=576fd5e422611a97c88a7f29c3ef59cd639c2789ba3d04db8ba290604ee5ca4c7f591f21f5a8be8b62f0183bbb3587c723079370274c78aafc169ed0492de035d84d0ea2114055a70a48d437daafd2d3e206ea8b&pst=1669623434&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2588)
Hash a08369f9dadecc96bb1c784d298ab609
47eff7f132cb04c14d416b239155cd0e2cff6278
4500d5f6c240075d328eb76cf0b885f9cf6f6f969f8111fbb0b93991cb8a741c
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.320647678043.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=576fd5e422611a97c88a7f29c3ef59cd639c2789ba3d04db8ba290604ee5ca4c7f591f21f5a8be8b62f0183bbb3587c723079370274c78aafc169ed0492de035d84d0ea2114055a70a48d437daafd2d3e206ea8b&pst=1669623434&rmtc=t HTTP/1.1
Host: veilsuccessfully.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjcwMjk0NCwiayI6IjBjMjAyNDljODIxYzc1OTYxNzI2OWYxZGVkYzNlMmU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjkzOTgzLCJwaWQiOjM4MjkzNywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJpcHhqYWV1aGkiLCJjcGtzIjp7ICIyOSI6IjkzYTc1YzI0NTVlMTQzYzA5NmRkMWI0NWNmYTk1OTZlIiwiMjgiOiIxN2NjMjQxYzNmOTZmZjZlYjY4YmQ1M2VhZWI5OGRjNCJ9LCJ0IjoxfSwidSI6eyJ1IjoyLCJhdSI6MiwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjpmYWxzZSwiciI6Imh0dHBzOi8vZmlsbXBvcm5vaXRhbGlhbm8ub3JnLyJ9fQ.XkAVQg4V0zwRmoXrePHc3goR9h_MqFZ2qI5C6MthSIg; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
uncs=2; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=2; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 377cf54120a3ec5aed697bf8a7394566
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://filmpornoitaliano.org
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a90d0eb81bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yearbookhobblespinal.com/sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
192.243.59.13200 OK 4.2 kB URL HTTP/1.1 yearbookhobblespinal.com/sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (6166), with no line terminators
Hash e166d0c1401a640b7173fac7c6f8df04
cea2a29c1e9af5357f003d4ddabbaf509265f2d4
b50f613bab730d95ea3d2249d91d545654235deb86d772aa7f229364c1c08e54
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; uid_id2=41f0f4b9-5b3f-42c4-9474-20dd057d6bf2:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16702944,17309098; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
uncs=2; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
slec93a75c2455e143c096dd1b45cfa9596e=[3760946]; expires=Mon, 28 Nov 2022 08:16:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f2e0b3c669c0701ea4da3bbba245390d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
whiskerssituationdisturb.com/pixel/purst?dl=0&th=0&sc=0&rs=1842&rd=1842&fd=979&bv=22.10.v.9&tmpl=70
173.233.139.164200 OK 0 B URL HTTP/1.1 whiskerssituationdisturb.com/pixel/purst?dl=0&th=0&sc=0&rs=1842&rd=1842&fd=979&bv=22.10.v.9&tmpl=70
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1842&rd=1842&fd=979&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: whiskerssituationdisturb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
lightssyrupdecree.com/watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=db09b1d455cb450efb18ec4dd5fe6ae5cb5d28c6872161259d77f222a31f58482e13509d3df7216393ff8dc9127b0250c79d75ee20bb11f50b1e69c0f8374dacc05192ab35ea6d88a4f5df33ba97720f3b7577cf6f39b57bb160fb3e7014d521cc74128830&pst=1669623434&rmtc=t
192.243.59.12200 OK 2.1 kB URL HTTP/1.1 lightssyrupdecree.com/watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=db09b1d455cb450efb18ec4dd5fe6ae5cb5d28c6872161259d77f222a31f58482e13509d3df7216393ff8dc9127b0250c79d75ee20bb11f50b1e69c0f8374dacc05192ab35ea6d88a4f5df33ba97720f3b7577cf6f39b57bb160fb3e7014d521cc74128830&pst=1669623434&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2592)
Hash fac91918d4ee6b65683d297d123965e4
e0f53b17eaf637493e4cbbe86bc77dd1c798ed9f
584e594479fc7b70cef028b73be5c747084f36ff1a1cbbea4e12106a79ff70bd
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.441471147776.js?key=0c20249c821c759617269f1dedc3e2e5&kw=%5B%22film%22%2C%22porno%22%2C%22streaming%22%2C%22e%22%2C%22video%22%2C%22porno%22%2C%22gratuiti%22%2C%22-%22%2C%22filmpornoitaliano%22%2C%22org%22%5D&refer=https%3A%2F%2Ffilmpornoitaliano.org%2F&tz=0&dev=e&res=12.1055&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1&shu=db09b1d455cb450efb18ec4dd5fe6ae5cb5d28c6872161259d77f222a31f58482e13509d3df7216393ff8dc9127b0250c79d75ee20bb11f50b1e69c0f8374dacc05192ab35ea6d88a4f5df33ba97720f3b7577cf6f39b57bb160fb3e7014d521cc74128830&pst=1669623434&rmtc=t HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Referer: https://filmpornoitaliano.org/
Connection: keep-alive
Cookie: u_pl=16702944; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d851ccf80ff56972bac86cadc29482c2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=694805
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=694805
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (421), with CRLF, LF line terminators
Hash 742f38be4b60ccbf83b3c002fd7a8a4d
ba22edf3443911d50bc71851a485f9c482d6d252
d755ae7cd2a234d8dea699019f54c09772e111dc1ce59b6f4f7ba21c10d49949
GET /adshow.php?adzone=694805 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps47386=1; expires=Tue, 29-Nov-2022 08:16:13 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTMxOTY4MDtpOjE2Njk4ODI1NzM7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:13 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:13 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
syndication.exosrv.com/cimp.php?t=imp&data=H4sIAAAAAAAAA3WOS04DQQxEr8IFMip/2t2dNWxBCsoBJsM0ihQyKGKRRR2enkRkh2vjZ5fsUqhuRDZanmBbia0oqwwVg+sgyfn6tqML2/H09b1czsvxZzwdx/MyLJdPuhdPQk9RizHE4ZWWayAqa2bSqCHBnMRdzemgEV2azH3tBkCYwZf9jvv35z6oUZRCcRpwFaDDmoIKeu9xXQ+0CSFlUmuomHCYVUKmgsk7jm6r8Z/UuGtA6ib9Q5q4qSs38gBnL/C2Jh/Ou+L2oidyXyNS80fE3GoyTXMrB0Sqija1bLPm+fALr5gonWsBAAA=&d=inst
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exosrv.com/cimp.php?t=imp&data=H4sIAAAAAAAAA3WOS04DQQxEr8IFMip/2t2dNWxBCsoBJsM0ihQyKGKRRR2enkRkh2vjZ5fsUqhuRDZanmBbia0oqwwVg+sgyfn6tqML2/H09b1czsvxZzwdx/MyLJdPuhdPQk9RizHE4ZWWayAqa2bSqCHBnMRdzemgEV2azH3tBkCYwZf9jvv35z6oUZRCcRpwFaDDmoIKeu9xXQ+0CSFlUmuomHCYVUKmgsk7jm6r8Z/UuGtA6ib9Q5q4qSs38gBnL/C2Jh/Ou+L2oidyXyNS80fE3GoyTXMrB0Sqija1bLPm+fALr5gonWsBAAA=&d=inst
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=imp&data=H4sIAAAAAAAAA3WOS04DQQxEr8IFMip/2t2dNWxBCsoBJsM0ihQyKGKRRR2enkRkh2vjZ5fsUqhuRDZanmBbia0oqwwVg+sgyfn6tqML2/H09b1czsvxZzwdx/MyLJdPuhdPQk9RizHE4ZWWayAqa2bSqCHBnMRdzemgEV2azH3tBkCYwZf9jvv35z6oUZRCcRpwFaDDmoIKeu9xXQ+0CSFlUmuomHCYVUKmgsk7jm6r8Z/UuGtA6ib9Q5q4qSs38gBnL/C2Jh/Ou+L2oidyXyNS80fE3GoyTXMrB0Sqija1bLPm+fALr5gonWsBAAA=&d=inst HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: impressions=cmmsxrbonxgxaalsbbboageicmmsxaeenxgxaalsmleergeimacslbecnxgxaaabssxamgeislsaroornxgxaalrmxecrgeicxbmsbxcnxgxaalaxmrsegeioslmrxlrnxgxaalrollmegeiccmmlmlcnxgxaalcscrlmgeialbsereanxgxaalrollmegeioslmrxbrnxgxaalrlccrxgeicxbmsbcenxgxaalrlccrxgeioslmrxlsnxgxaalreolamgeicxbmsbocnxgxaalrcerlbgeicxbmsboenxgxaalrbsbllgeiclsmarcanxgxaaallsxlcgeiclsmrrmanxgxaaallsxlcgeirbabxabbnxgxaablbccmbgeiccmmlleanxgxaalrollmegeimcrxsbcenxgxaameollsmgeimreaoboenxgxaameollsmgeimcclosscnxgxaalccxmexgeimacslbeenxgxaaboslelageioslmroemnxgxaalraseexgeioslmrxbmnxgxaalaxmrsegeicaxsscmbnxgxaalsombbogeicaormlxonxgxaamealeoegeicaormbmcnxgxaamealeoegeimcclsxscnxgxaamsmxlcageimccloscanxgxaalrlccrxgeimreaomxenxgxaamelbbsbgeimreaobscnxgxaamelbbsbgeimcclosconxgxaalrcerllgeimcclsoeonxgxaamxaacblgeimacslbeonxgxaaloesaslgeimcclsxsanxgxaamsmxlcageimcclsxlbnxgxaamssmcolgeimaecseaonxgxaamssmcolgeimaecsxeonxgxaamssmcolgeimaecseronxgxaamssmcolgeimrblelrenxgxaamssmcolgeiccmmllebnxgxaalrrccrxgeimcclsxlonxgxaamcsebsxgeimcclsoeenxgxaamcrclalgeimcclsxsbnxgxaamcrclalgeimcclossbnxgxaammemsrlgeimcclsxlcnxgxaamrscxmxgeimaecseranxgxaabrlemaegeimcclosccnxgxaamrscxmxgeicaormlxcnxgxaalosseolgeicaormbmbnxgxaalrexasogeiclsmrbsenxgxaamaxcsxcgeialbserebnxgxaalolablsgeimcclsxconxgxaalrbbbaageimcclsxmenxgxaalrlccrxgeialbserxonxgxaalcscrlmgeimccloscenxgxaamabsxrmgeimcclsxxonxgxaalrcerllgeimcclsxbcnxgxaammclslageicaormlxanxgxaammacmrxgeimcclsxaonxgxaaloarmmlgeimrblxxxbnxgxaambboecmgeimrblxelcnxgxaambboecmgeimrblxxrbnxgxaambboecmgeialbserxenxgxaalsxarlegeimacslbeanxgxaablxaelxgeialbserecnxgxaalssbrcxgeiccmmllecnxgxaalcsrbbbgeisaeeasslnxgxaabrbeccogeimcclossanxgxaabrlemaegeimcclsxronxgxaalraseexgeimaecseabnxgxaabrlemaegeimrblelrcnxgxaabrlemaegeimrblxemonxgxaabrlemaegeimcclsxcanxgxaalrlccrxgeimaecsxoonxgxaabmalbxxgeircsxcxscnxgxaabbxeomsgeicaormbbenxgxaalexxbcxgeiabeocmconxgxaablxrcmmgeimcclsxxcnxgxaalesmxrsgeimrblxeeanxgxaablsaloageimaecsemanxgxaablsaloageimaecselonxgxaaloaroaageimcclsxacnxgxaalrcerllgeimcclselenxgxaalreolamgeimaecsxronxgxaalxmmoorgeimaecsxsenxgxaalxmmoorgeimaecsercnxgxaalxmmoorgeimaecsembnxgxaalxmmoorgeimaecselenxgxaalxmmoorgeimaecobobnxgxaalsmleergeimaecomoanxgxaalsbbboageimrblxxoenxgxaalsbmacmgeimaecobsbnxgxaalsbbboageimrblxosonxgxaalsbbboageimcclsxmanxgxaalrollmegeicloaxxmenxgxaalrsmeasgxcceicloaxxaanxgxaalrsmeasgxcceicloaxxacnxgxaalrsmeasgxcceixaoossalnxgxaalrsmamcgxcceimasbmxconxgxaalrsbmlegxcceimxxerrecnxgxaalrcerlbgxcceimxcbrxscnxgxaalrcerllgxcceimxxerreanxgxaalrcerllgxcceimxxerrebnxgxaalrcerllgxcceimxcbrxabnxgxaalrcerllgxcceimrxccosencgxaalrcerllgxcceialbbebsanxgxaalrcerllgxcceimaoobbebnxgxaalrcxbrsgxcceimraeelaanxgxaalrcxbrsgxcceixaoosscrnxgxaalrcrlbmgxcceimrxccosancgxaalrcrlbmgxcceimxcbrxronxgxaalrcrlbmgxcceimraeelabnxgxaalrcmelsgxcceicxsxcobxnxgxaalrclsllgxcceimxlbalsbnogxaalrrccrxgxcceialcaercenxgxaalrrccrxgxcceimaoobrbansgxaalrrccrxgxcceimaoobrbcnsgxaalrrccrxgxcceimmoeosaenxgxaalrrrsccgxcceimeembesonxgxaalrrrsccgxcceimmxsrbabnsgxaalrrrsccgxcceimasbmxsanxgxaalrraxsagxcceimxlbmoconsgxaalrrasoegxcceimxeoxsacnrgxaalrrasoegxcceimxcbrxcbnxgxaalrrasoxgxcceimclxlloanogxaalrrasaagxcceialxosmbanxgxaalrrasaagxcceimxlbmxlonogxaalrrmxcbgxcceimasbmxsonxgxaalrrbbcsgxcceicloaxxoanxgxaalrrleoagxcceicloaecoenxgxaalrrleomgxcceimraeelsonxgxaalrrleomgxcceiallxlmscnxgxaalraexcmgxcceimrmaobxanogxaalraexbmgxcceimcssmlrenrgxaalraoslcgxcceimaoolslanxgxaalrasoccgxcceimmoeosaonxgxaalracloegxcceimmoeosscnxgxaalracloegxcceimmoeosconxgxaalracloegxcceiccblrxrbnxgxaalracloegxcceimsacexoonxgxaalrarlxsgxcceimxlbalcenogxaalrmerbxgxcceimxlbmxbbnogxaalrmerbxgxcceimrxccosoncgxaalrmeabxgxcceicloaxxabnxgxaalrmeabxgxcceimxlbmxlenogxaalrmeabxgxcceirrbbcsacnxgxaalrmxecrgxcceicbbmelocnogxaalrmxecagxcceiaaxcambbnogxaalrmxxllgxcceialrexexbnxgxaalrmxxllgxcceiccblrxaanxgxaalrmocmagxcceimoobcomanxgxaalrmocmagxcceimoobcobenxgxaalrmocmagxcceimoobcoabnxgxaalrmocmagxcceimoobcoaonxgxaalrmocmlgxcceimoobcomonxgxaalrmocmlgxcceimoobcomenxgxaalrmocmlgxcceimoobcoaanxgxaalrmocmlgxcceimeelareanxgxaalrmsbregxcceimemlxbocnogxaalrmsbregxcceimemlxmcbnxgxaalrmccomgxcceimmxcxslenxgxaalrmccolgxcceimasbmxsbnogxaalrmbrrbgxcceimaaaerobnxgxaalrmbrlrgxcceimmossscensgxaalrmlxbegxcceimrbxmxmanxgxaalrmlxbegxcceialbmlexcnxgxaalrbxsrsgxcceimasbmxsenxgxaalrbooecgxcceimxxerrxenxgxaalrbsblcgxcceimmosssconagxaalrbsbllgxcceimxlbmosenogxaalrbsbllgxcceialbbebsbnxgxaalrbsbllgxcceimxcbrxocnxgxaalrbsbllgxcceimxxerreonxgxaalrbsbllgxcceialrexeoonxgxaalrbsbllgxcceimxlbmoscnogxaalrbsbllgxcceimrmbbrcanxgxaalrbcesrgxcceimrmbbrconxgxaalrbcesrgxcceicloaxxmonxgxaalrbcxabgxcceimecmmelonxgxaalrbcomrgmoeimecmmelenxgxaalrbcseegmoeimexexabbnxgxaalrbcmlcgxcceimmooobrbnxgxaalrbcbregxcceialbmmbbenxgxaalrbcbregxcceimmooobranxgxaalrbcbregxcceimxcbrxmbnxgxaalrbcbregxcceimxlbmosanogxaalrbclbbgxcceicxmecmcanxgxaalrbabxbgxcceialbmbrmcnxgxaalrbmormgxcceicloaxxobnxgxaalrbmormgxcceialbmbrmanxgxaalrbmormgxcceimxeemblonxgxaalrbmormgxcceialbmbrabnxgxaalrbmormgxcceialbmlesenxgxaalrbmsrxgxcceicloaecoanxgxaalrbmblxgxcceimmxccmeonxgxaalrbboeagxcceimxlbmoobnogxaalrbboeagxcceimxlbmosonogxaalrbbbaagxcceirreacmsbnxgxaalrbbbaagxcceimcssmlrcnsgxaalrbbbaagxcceimxxrecsanxgxaalrbblorgxcceimeelaclanmgxaalrbblorgxcceimrbleaxonxgxaalrbblorgxcceimellboscnxgxaalrbblorgxcceimellbooenxgxaalrbblorgxcceiaaxcamlcnxgxaalrbblorgxcceimeelaclonagxaalrbblorgxcceimeelaclcnagxaalrbblorgxcceimellbosonxgxaalrbblorgxcceialbmlecanxgxaalrblxcbgxcceimaoolxxbnxgxaalrlebrmgxcceimclsaoxbncgxaalrlebrmgxcceimcoaxmxoncgxaalrlebrmgxcceimcssmlronsgxaalrlebrmgxcceimmxerboonxgxaalrlxccogxcceialbmmbbonxgxaalrlxbsrgxcceimcoaxmxcncgxaalrlxlbcgxcceimmxsrbmensgxaalrlxlbcgxcceimaoolcoenxgxaalrlolaogxcceimecmmelcnxgxaalrlolaogmoeimxlbmxlcnogxaalrlolaogxcceimxrrmllbnxgxaalrlssxbgxcceialblcxmbnxgxaalrlssxbgxcceislmbeslrnxgxaalrlssxbgxcceialblcxbonxgxaalrlssxbgxcceimxrrbeecnxgxaalrlssxbgxcceislmbecesnxgxaalrlssxbgxcceiaaxcabeenxgxaalrlsaaxgxcceimxeemblenogxaalrlsaaogxcceimxeemleanxgxaalrlcelegxcceimxcbrxcenxgxaalrlccrxgxcceialbbebrenxgxaalrlccrxgxcceimxcbrxaonxgxaalrlccrxgxcceimmooobronxgxaalaeelregxcceimxeoxsbenrgxaalaecrlrgxcceimxcbrxbenxgxaalaecrlrgxcceimxcbrxsenxgxaalaererlgxcceimrxmbarenxgxaalaeaxbegxcceiocmlcbssnxgxaalaeaoargxcceimcrxeoconxgxaalaeabesgxcceimcrxeoaonxgxaalaeabesgxcceimcrxeosenxgxaalaeabecgxcceimcrxeorcnxgxaalaeabemgxcceimrxmbacanxgxaalaeallxgxcceimexlaeoonxgxaalaemmbrgxcceimrmbbrmenxgxaalaxsreegxcceimeelarecnxgxaalaxcsbbgxcceialbmlecenxgxaalaxcsbbgxcceicloaecocnxgxaalaxcsbbgxcceimxcbrxrbnxgxaalaxmrsegxcceimaooloranxgxaalaxmbacgxcceicmarxbbonogxaalaxmbargxcceimxlbalscnxgxaalaxmbargxcceimeembescnxgxaalaxmlbxgxcceimeembecenxgxaalaxmlbxgxcceimrxccoscnxgxaalaossmrgxcce; expires=Tue, 29 Nov 2022 08:16:15 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
__uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4f216684.347642571666384669%22%3B%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263846e4f216684.347642571666384669%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2297.0199%22%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=848842
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=848842
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (415), with CRLF, LF line terminators
Hash 4b37bd0d32176cbd32aa661f498ca4df
5e427f3769e35ac0e3099f7ee6e8045edf11ccc1
c1ed9f0684d613aa81ca520dd06848b0a9289d5a39c179acba5d8719adf7a8e4
GET /adshow.php?adzone=848842 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps61=1; expires=Tue, 29-Nov-2022 08:16:14 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzQ7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:14 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31c1ea9aa08f66659b0f1b004cb47ac9
7ba7ca1a0e4a630499802befa935c6d971515a85
c65675e2c5adcea4def47cc8dea76a8ddf1ba7a06a51256f7cc424307f5e1438
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C65675E2C5ADCEA4DEF47CC8DEA76A8DDF1BA7A06A51256F7CC424307F5E1438"
Last-Modified: Sat, 26 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12674
Expires: Mon, 28 Nov 2022 11:47:29 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 06:41:08 GMT
expires: Mon, 28 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 5707
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
whiskerssituationdisturb.com/sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
173.233.139.164200 OK 2.8 kB URL HTTP/1.1 whiskerssituationdisturb.com/sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1
IP 173.233.139.164:0
File type JSON data\012- , ASCII text, with very long lines (5970), with no line terminators
Hash 9020390807c55135765256df9ad5aa34
3575d08e306f00fac1cbe3d6e323c79fefa1cab5
2331bf8742efd6aa393f233cbaaca8de4abd73e8c31ba7725d73c148254f93a3
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=93a75c2455e143c096dd1b45cfa9596e&uuid=624b29ff-7067-4150-8d03-2dab8bd1d689%3A2%3A1 HTTP/1.1
Host: whiskerssituationdisturb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filmpornoitaliano.org
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17309098; expires=Tue, 29 Nov 2022 08:16:14 GMT; secure; SameSite=None
uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; expires=Mon, 05 Dec 2022 08:16:14 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 29 Nov 2022 08:16:15 GMT; secure; SameSite=None
uncs=1; expires=Tue, 29 Nov 2022 08:16:15 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 29 Nov 2022 08:16:15 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 29 Nov 2022 08:16:15 GMT; secure; SameSite=None
slec93a75c2455e143c096dd1b45cfa9596e=[3760946]; expires=Mon, 28 Nov 2022 08:16:20 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 51411ec2eb04185b438f6f719ab527ad
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/767299046/?random=1669623372017&cv=11&fst=1669623372017&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&auid=2141413614.1669623372&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 909 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/767299046/?random=1669623372017&cv=11&fst=1669623372017&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&auid=2141413614.1669623372&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1977), with no line terminators
Hash b987597728ac1e29751417f8d4377f05
fe5418249af6bc564879e8f0cfd05a77aa60f0f2
38a470b83eb2937d8697d27c867ccec98d0d0b6048e007791fb33b404601b96a
GET /pagead/viewthroughconversion/767299046/?random=1669623372017&cv=11&fst=1669623372017&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&auid=2141413614.1669623372&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 08:16:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 909
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 08:31:15 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/767299046/?random=1669623372025&cv=11&fst=1669623372025&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&auid=2141413614.1669623372&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&rfmt=3&fmt=4
142.250.74.130200 OK 963 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/767299046/?random=1669623372025&cv=11&fst=1669623372025&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&auid=2141413614.1669623372&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2251), with no line terminators
Hash 834e6251497910cc99003532c089fe86
90c25fa1c00d3fe07e60d490e82e0d8c3b1f0ac7
f0fa4d4530cb7bcfc1f4a6309343147f45a7f312015618a3bf077ff3acc08688
GET /pagead/viewthroughconversion/767299046/?random=1669623372025&cv=11&fst=1669623372025&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&auid=2141413614.1669623372&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 08:16:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 963
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 08:31:15 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aueaeazmao9h.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 aueaeazmao9h.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: aueaeazmao9h.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
cdn.cloudimagesb.com/bi/8e/95/a7/8e95a74166dd245605e5807a0e2907b3/1643827089.jpg
45.133.44.9200 OK 85 kB URL HTTP/2 cdn.cloudimagesb.com/bi/8e/95/a7/8e95a74166dd245605e5807a0e2907b3/1643827089.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:02:01 17:54:29], progressive, precision 8, 300x250, components 3\012- data
Hash 63f9a5cae04350d801e01fd36688f24b
300668429ba14f5b7fdab0b2a035a53aaf575042
825de8c256248473e9c02bc1c4d4d51605c589dc8567b9c9589d4dad74af0254
GET /bi/8e/95/a7/8e95a74166dd245605e5807a0e2907b3/1643827089.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/jpeg
content-length: 85356
server: nginx/1.17.6
last-modified: Wed, 02 Feb 2022 18:38:16 GMT
etag: "61facf98-14d6c"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/03/a0/3d/03a03df8635c5bcc4be48a444bd554f9/1644704127.jpg
45.133.44.9200 OK 137 kB URL HTTP/2 cdn.cloudimagesb.com/bi/03/a0/3d/03a03df8635c5bcc4be48a444bd554f9/1644704127.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:02:08 15:14:04], baseline, precision 8, 300x250, components 3\012- data
Size 137 kB (137312 bytes)
Hash a002d94cfffc6a121451d414fccf86fe
a6cfb64b6f72034ab28c54895bcd247595c884a1
304e4fb48b4b3bcd14b3435e88cc0ee32404e2f1242bf27926d54cfc8aa69ccb
GET /bi/03/a0/3d/03a03df8635c5bcc4be48a444bd554f9/1644704127.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/jpeg
content-length: 137312
server: nginx/1.17.6
last-modified: Sat, 12 Feb 2022 22:15:34 GMT
etag: "62083186-21860"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=694805
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=694805
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (421), with CRLF, LF line terminators
Hash 7ce0e4ccbd254c95900fb8188f69f79f
6653ac26ce2bb07e43c8572a8e35287ead645039
c31109f4f11c122928499bb866c4884b0d910190123b8a6ea7ce1568bbebd333
GET /adshow.php?adzone=694805 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToxOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps47386=1; expires=Tue, 29-Nov-2022 08:16:15 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToyOntpOjc5NDQzMztpOjE2Njk4ODI1NzI7aToxMzE5NjgwO2k6MTY2OTg4MjU3NTt9; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
adsco.re/p
162.252.214.5200 OK 171 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash 0d207ff1d0edfdfe3cf4291d3f064a5b
4c8a9ef651d9ff5977acbeac00db8854262a7212
4074a4a3ce42981e198d1022ec991a1ed60acea21c793dbd4ccc3c11d82566dd
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1833
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=694805
185.94.237.102200 OK 1.8 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=694805
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1602), with CRLF, LF line terminators
Hash 16ee3696d6d84731c1a4922fc5bcbccc
753f5b4a3869f957e95d3cfd48d9f7d0b18d8c77
84447b78e7ebc56eaca71cd966ac1429820f4d19919cecb00c1aeefe94620574
GET /adshow.php?adzone=694805 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps47386=1; expires=Tue, 29-Nov-2022 08:16:15 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTozOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7aToxMzE5NjgwO2k6MTY2OTg4MjU3NTt9; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/f5/37/77/f537776afc5dce31cd540a22c60788d4/1663164661.gif
45.133.44.9200 OK 22 kB URL HTTP/2 cdn.cloudimagesb.com/cti/f5/37/77/f537776afc5dce31cd540a22c60788d4/1663164661.gif
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Hash 3fbcfacdc5800cb77bf7c5e57fa753c1
c72434155c3959ad1b79ffe93de63f96d4c9895b
80b0e6de82d91d17b735c18d5bb2c2c31e543d1420b9b51857a1668ce69ee658
GET /cti/f5/37/77/f537776afc5dce31cd540a22c60788d4/1663164661.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/gif
content-length: 22049
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:11:09 GMT
etag: "6321e0fd-5621"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/f5/bb/fa/f5bbfa1582e1560a406243d2e1dab0ef/1667985041.jpg
45.133.44.9200 OK 21 kB URL HTTP/2 cdn.cloudimagesb.com/bi/f5/bb/fa/f5bbfa1582e1560a406243d2e1dab0ef/1667985041.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 167d35c09d694e382879e26697b6cf74
a6f339223ed4b825a3f1efccddfd5c26d67800c8
18bd7ffa3ad1416060b515014d50e03e18f53117a82816035e829590588b40f3
GET /bi/f5/bb/fa/f5bbfa1582e1560a406243d2e1dab0ef/1667985041.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/jpeg
content-length: 20715
server: nginx/1.17.6
last-modified: Wed, 09 Nov 2022 09:10:49 GMT
etag: "636b6e99-50eb"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/ae/a8/e7/aea8e7c03f2f086625183c2d99e21978/1654697280.jpg
45.133.44.9200 OK 15 kB URL HTTP/2 cdn.cloudimagesb.com/bi/ae/a8/e7/aea8e7c03f2f086625183c2d99e21978/1654697280.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 60739daaf2c5cc3e3b87978a91ca7ba5
dd681aad15172ec6a5eeeef2d52257aca30e4118
c305cf2115558108a2bebe38ea5fd0ef2d696009174281939e418b831969b1cc
GET /bi/ae/a8/e7/aea8e7c03f2f086625183c2d99e21978/1654697280.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/jpeg
content-length: 15318
server: nginx/1.17.6
last-modified: Wed, 08 Jun 2022 14:08:07 GMT
etag: "62a0ad47-3bd6"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ba38de08e280647cbb86344a1333d111
5554f52a584ccfde961c4f14c2cf1c3beb74af51
cc3953bcff0f9aaeb59b71e15c8b72bcac9d94ff203eeccbf159b40cf38521e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC3953BCFF0F9AAEB59B71E15C8B72BCAC9D94FF203EECCBF159B40CF38521E9"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15898
Expires: Mon, 28 Nov 2022 12:41:13 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e90dcc5c39cc2e31126b8f4da9605b96
baab1d823968b1d4a0f50bbd3c48e2f8622d9b97
976761afe16c6b21155012c7c4f764afbae5c21247552db8b6bf9e109ffea923
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "976761AFE16C6B21155012C7C4F764AFBAE5C21247552DB8B6BF9E109FFEA923"
Last-Modified: Sat, 26 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4833
Expires: Mon, 28 Nov 2022 09:36:48 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
s3t3d2y8.afcdn.net/library/366026/43c35669aea6adb2d7b41a79dbb407a74156e5f1.mp4
185.76.9.22206 Partial Content 10 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/366026/43c35669aea6adb2d7b41a79dbb407a74156e5f1.mp4
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 7784b86108b5501c39660e5c19e3bf06
43c35669aea6adb2d7b41a79dbb407a74156e5f1
20cb3b5dc47db843f30bbe415f7f6423cda6e6a7abd839b93c89ad85260b3ecc
GET /library/366026/43c35669aea6adb2d7b41a79dbb407a74156e5f1.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: video/mp4
content-length: 10177
last-modified: Mon, 14 Sep 2020 14:01:58 GMT
etag: "5f5f77d6-27c1"
expires: Fri, 30 Jun 2023 12:55:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195340
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCRTzxyj/w9DFAA
x-77-nzt-ray: af5856304ab0eae04f6e8463799bbb29
x-cache: HIT
x-age: 12964035
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-10176/10177
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/366026/c5c0c63d2a469c4f9cbaf986aef1f0f32c07fc0a.mp4
185.76.9.22206 Partial Content 30 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/366026/c5c0c63d2a469c4f9cbaf986aef1f0f32c07fc0a.mp4
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 8b7a70fe0a7025faeaea29a86595e992
c5c0c63d2a469c4f9cbaf986aef1f0f32c07fc0a
f8e9940ad58845e1ab505efd4a510636f9b512f47c040178c4ad18a9abd8ee5d
GET /library/366026/c5c0c63d2a469c4f9cbaf986aef1f0f32c07fc0a.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: video/mp4
content-length: 30155
last-modified: Mon, 14 Sep 2020 14:02:00 GMT
etag: "5f5f77d8-75cb"
expires: Fri, 30 Jun 2023 11:58:13 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195251
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCRQ8g0P/HNHFAA
x-77-nzt-ray: af5856304ab0eae04f6e8463a316c729
x-cache: HIT
x-age: 12964124
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-30154/30155
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA3VPS05DMQy8Chfo09hxnKRrugWpqAdI3wdVKn2osCjSHJ6kQt0RLzK2x+OxQnUjstH8hLAV34qxyFAwmA4SjS+ve5pwOZ0/PtfrZT191/OpXtZhvb4zuEOdFr3kQBeDFWpIHqUwItO8iCalt56n0qhgIFpoDGYdDYAkNB0YE7g77Hl4e2714lkpVAbgphENdzNU0BrGrcssI1zyqGFBwYjjrOIyZozW0mqhE/8x32RyQmrnegzdh8d034e/CGJBTbmRR2JsD7y369fPZSQf9KaXEEX7VfEuIxSz/jG22WnSNId5rpBYplITQkWV47SU4y/B+b2AhwEAAA==
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA3VPS05DMQy8Chfo09hxnKRrugWpqAdI3wdVKn2osCjSHJ6kQt0RLzK2x+OxQnUjstH8hLAV34qxyFAwmA4SjS+ve5pwOZ0/PtfrZT191/OpXtZhvb4zuEOdFr3kQBeDFWpIHqUwItO8iCalt56n0qhgIFpoDGYdDYAkNB0YE7g77Hl4e2714lkpVAbgphENdzNU0BrGrcssI1zyqGFBwYjjrOIyZozW0mqhE/8x32RyQmrnegzdh8d034e/CGJBTbmRR2JsD7y369fPZSQf9KaXEEX7VfEuIxSz/jG22WnSNId5rpBYplITQkWV47SU4y/B+b2AhwEAAA==
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA3VPS05DMQy8Chfo09hxnKRrugWpqAdI3wdVKn2osCjSHJ6kQt0RLzK2x+OxQnUjstH8hLAV34qxyFAwmA4SjS+ve5pwOZ0/PtfrZT191/OpXtZhvb4zuEOdFr3kQBeDFWpIHqUwItO8iCalt56n0qhgIFpoDGYdDYAkNB0YE7g77Hl4e2714lkpVAbgphENdzNU0BrGrcssI1zyqGFBwYjjrOIyZozW0mqhE/8x32RyQmrnegzdh8d034e/CGJBTbmRR2JsD7y369fPZSQf9KaXEEX7VfEuIxSz/jG22WnSNId5rpBYplITQkWV47SU4y/B+b2AhwEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4e784a39.534863432657095279%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4e784a39.534863432657095279%22%3B%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263846e4e784a39.534863432657095279%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cdn.cloudimagesb.com/bi/99/c2/10/99c21034b581574160e5e89e1e403372/1643814716.jpg
45.133.44.9200 OK 64 kB URL HTTP/2 cdn.cloudimagesb.com/bi/99/c2/10/99c21034b581574160e5e89e1e403372/1643814716.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:01:31 16:22:39], progressive, precision 8, 300x250, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 25972-27759, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 1102415111966564640882688.000000, slope 262980090078035741300317468229632.000000\012- data
Hash ccb7e43d92c15fe7a32cab0392d0926b
21333a631e629e547f6d5b58bfdd4519665e906a
981b0ca2e69804814201938a38e9545dfab00950df600ea3e96a578d652ac7cd
GET /bi/99/c2/10/99c21034b581574160e5e89e1e403372/1643814716.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/jpeg
content-length: 63828
server: nginx/1.17.6
last-modified: Wed, 02 Feb 2022 15:12:03 GMT
etag: "61fa9f43-f954"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e57e0410a74b098d75d7bae2c84c51c2
89db68eb922661858b491f0e8f7d65f4b79de117
319fef462e6c4a5e24df4b27b763fcd229ecd9df804339cabb097fdb216a4920
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "319FEF462E6C4A5E24DF4B27B763FCD229ECD9DF804339CABB097FDB216A4920"
Last-Modified: Sat, 26 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12345
Expires: Mon, 28 Nov 2022 11:42:00 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
cdn.cloudimagesb.com/bi/bc/a5/a1/bca5a1c01a8ce60f4d07239666f9c756/1643022440.gif
45.133.44.9200 OK 150 kB URL HTTP/2 cdn.cloudimagesb.com/bi/bc/a5/a1/bca5a1c01a8ce60f4d07239666f9c756/1643022440.gif
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Size 150 kB (150431 bytes)
Hash 06e644293c684b0c43c137a636ecb42b
8f66d1ccb30b4d099fea5248dd9c5c373300b4a8
671a487c9e23f0bdc79d0d83792108eedc8fc54d3fbec2a15590457a9d4c694a
GET /bi/bc/a5/a1/bca5a1c01a8ce60f4d07239666f9c756/1643022440.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: image/gif
content-length: 150431
server: nginx/1.17.6
last-modified: Mon, 24 Jan 2022 11:07:28 GMT
etag: "61ee8870-24b9f"
expires: Wed, 30 Nov 2022 08:16:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA3WPwU4DMQxEf4Uf2NXYcZykZ3oFqagfsIRdtFLposKhSPPxJBXqjfiQcTx6GStUB5FB8wPCTnwnxiJjwWg6SjQ+PR9owmU9fXxul/O2fk+ndTpv43Z5Z3CHOi16yYEuBivUkDxKYUSmeRFNSm8zTwU0MBCtNAazrkZAujWB++OBx5fH9lY8K4XKAFw1oukehNoITePaEUuFS64aFhRUvM4qLjWjWmsnC934T/CGyQmpreqx5RlF3G7/4a+CWFBTDnJvjO2At/H09XOu5N3eeAlRtG8UbxihmPWLc1m8+ixRi8PjW5gxpzxZnJagZfZfIekjXYMBAAA=
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA3WPwU4DMQxEf4Uf2NXYcZykZ3oFqagfsIRdtFLposKhSPPxJBXqjfiQcTx6GStUB5FB8wPCTnwnxiJjwWg6SjQ+PR9owmU9fXxul/O2fk+ndTpv43Z5Z3CHOi16yYEuBivUkDxKYUSmeRFNSm8zTwU0MBCtNAazrkZAujWB++OBx5fH9lY8K4XKAFw1oukehNoITePaEUuFS64aFhRUvM4qLjWjWmsnC934T/CGyQmpreqx5RlF3G7/4a+CWFBTDnJvjO2At/H09XOu5N3eeAlRtG8UbxihmPWLc1m8+ixRi8PjW5gxpzxZnJagZfZfIekjXYMBAAA=
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA3WPwU4DMQxEf4Uf2NXYcZykZ3oFqagfsIRdtFLposKhSPPxJBXqjfiQcTx6GStUB5FB8wPCTnwnxiJjwWg6SjQ+PR9owmU9fXxul/O2fk+ndTpv43Z5Z3CHOi16yYEuBivUkDxKYUSmeRFNSm8zTwU0MBCtNAazrkZAujWB++OBx5fH9lY8K4XKAFw1oukehNoITePaEUuFS64aFhRUvM4qLjWjWmsnC934T/CGyQmpreqx5RlF3G7/4a+CWFBTDnJvjO2At/H09XOu5N3eeAlRtG8UbxihmPWLc1m8+ixRi8PjW5gxpzxZnJagZfZfIekjXYMBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4e784a39.534863432657095279%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://filmpornoitaliano.org
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263846e4e784a39.534863432657095279%22%3B%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263846e4e784a39.534863432657095279%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Wed, 27 Nov 2024 08:16:15 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=694805
185.94.237.102200 OK 1.6 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=694805
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (393), with CRLF, LF line terminators
Hash 06b8170726f624d9bad5380697a38f13
eb908f1056a08e6b6aab2f75c395b6a677ac8b1e
f88823b8f4aff078e73c4bd9641cd04bdb3a446027ba7fefdf4010a5fb0ff673
GET /adshow.php?adzone=694805 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps161=1; expires=Tue, 29-Nov-2022 08:16:15 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTozOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7aToxMTk2NzExO2k6MTY2OTg4MjU3NTt9; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f3a3efe248a599bcccf04881f3d686cb
10e5741399303e7c20f334d8dd72b4b8c968c0d4
cef064183db51cefadcca610b91c5ea86154ae2024029d60e59a152a7a3b1723
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF064183DB51CEFADCCA610B91C5EA86154AE2024029D60E59A152A7A3B1723"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Mon, 28 Nov 2022 11:18:49 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f3a3efe248a599bcccf04881f3d686cb
10e5741399303e7c20f334d8dd72b4b8c968c0d4
cef064183db51cefadcca610b91c5ea86154ae2024029d60e59a152a7a3b1723
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF064183DB51CEFADCCA610B91C5EA86154AE2024029D60E59A152A7A3B1723"
Last-Modified: Sat, 26 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10954
Expires: Mon, 28 Nov 2022 11:18:49 GMT
Date: Mon, 28 Nov 2022 08:16:15 GMT
Connection: keep-alive
whiskerssituationdisturb.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRRStjhsQvah4ySE6iAcFd7Z7pntm2hyWxCQS3GRjEsnV6qrq2XJrqpqq7unNHmQxohE8bPDisffNbhZjEHPQmxhmc5EBMZNDGMS95R6IBDwIMrsLi%2F9Q%2F1e9d%2Fjvvfpio9glPgo6uXjerEql6FxU92tvXZWam9LVLlypBX7dP1G7KnUrPFFbmR62%2F27gR3X%2F7dr7gi2buYYf%2BH7gB7Wz0orUrMztoZDZnTiox349bNSDKMSK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZutRpg04jSdbfut9mwYRP5sh%2FvN2QanSSfhAW914j2LpBxCpkMosQ7qjqBwHgrpoUg9FJmHHp%2FUaBSnvt9Ok7TZ7ISMsWaTsajT4hFvhp3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5RquusWVK5LgoDcOerMamLy7QbdM3hWabGS75OWpg97zx29jWUxqcZO2I9YIo0gEYZP5cYvzIAkjltI4ilsCTlaQ7gio87Aqx%2BTY5HVkckyOPpogoTtwagdMvgRaHActB%2B2GD7o0CDs%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUhj1oBgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB%2BxswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXANpLDRyXHJPzyIZQYzd97%2FPHJr9oLoEkFJw5tSMTo1yf7%2FA13A13rgebXoXsV%2BrZCX1Wgah2ueG6QZ3Y0%2F7C5V0iUN0iU9TYTZdXNfXudnNRElPqp8BsiSeMkbVOfx2kYJzQORDuJaIDcjdnnevE%2FAAAA%2F%2F8BAAD%2F%2F0SMPUWkBAAA
173.233.139.164200 OK 7 B URL HTTP/1.1 whiskerssituationdisturb.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRRStjhsQvah4ySE6iAcFd7Z7pntm2hyWxCQS3GRjEsnV6qrq2XJrqpqq7unNHmQxohE8bPDisffNbhZjEHPQmxhmc5EBMZNDGMS95R6IBDwIMrsLi%2F9Q%2F1e9d%2Fjvvfpio9glPgo6uXjerEql6FxU92tvXZWam9LVLlypBX7dP1G7KnUrPFFbmR62%2F27gR3X%2F7dr7gi2buYYf%2BH7gB7Wz0orUrMztoZDZnTiox349bNSDKMSK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZutRpg04jSdbfut9mwYRP5sh%2FvN2QanSSfhAW914j2LpBxCpkMosQ7qjqBwHgrpoUg9FJmHHp%2FUaBSnvt9Ok7TZ7ISMsWaTsajT4hFvhp3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5RquusWVK5LgoDcOerMamLy7QbdM3hWabGS75OWpg97zx29jWUxqcZO2I9YIo0gEYZP5cYvzIAkjltI4ilsCTlaQ7gio87Aqx%2BTY5HVkckyOPpogoTtwagdMvgRaHActB%2B2GD7o0CDs%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUhj1oBgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB%2BxswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXANpLDRyXHJPzyIZQYzd97%2FPHJr9oLoEkFJw5tSMTo1yf7%2FA13A13rgebXoXsV%2BrZCX1Wgah2ueG6QZ3Y0%2F7C5V0iUN0iU9TYTZdXNfXudnNRElPqp8BsiSeMkbVOfx2kYJzQORDuJaIDcjdnnevE%2FAAAA%2F%2F8BAAD%2F%2F0SMPUWkBAAA
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRRStjhsQvah4ySE6iAcFd7Z7pntm2hyWxCQS3GRjEsnV6qrq2XJrqpqq7unNHmQxohE8bPDisffNbhZjEHPQmxhmc5EBMZNDGMS95R6IBDwIMrsLi%2F9Q%2F1e9d%2Fjvvfpio9glPgo6uXjerEql6FxU92tvXZWam9LVLlypBX7dP1G7KnUrPFFbmR62%2F27gR3X%2F7dr7gi2buYYf%2BH7gB7Wz0orUrMztoZDZnTiox349bNSDKMSK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZutRpg04jSdbfut9mwYRP5sh%2FvN2QanSSfhAW914j2LpBxCpkMosQ7qjqBwHgrpoUg9FJmHHp%2FUaBSnvt9Ok7TZ7ISMsWaTsajT4hFvhp3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5RquusWVK5LgoDcOerMamLy7QbdM3hWabGS75OWpg97zx29jWUxqcZO2I9YIo0gEYZP5cYvzIAkjltI4ilsCTlaQ7gio87Aqx%2BTY5HVkckyOPpogoTtwagdMvgRaHActB%2B2GD7o0CDs%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUhj1oBgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB%2BxswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXANpLDRyXHJPzyIZQYzd97%2FPHJr9oLoEkFJw5tSMTo1yf7%2FA13A13rgebXoXsV%2BrZCX1Wgah2ueG6QZ3Y0%2F7C5V0iUN0iU9TYTZdXNfXudnNRElPqp8BsiSeMkbVOfx2kYJzQORDuJaIDcjdnnevE%2FAAAA%2F%2F8BAAD%2F%2F0SMPUWkBAAA HTTP/1.1
Host: whiskerssituationdisturb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5caf9611aba089ff17bf525c2dd74b6a
Strict-Transport-Security: max-age=0; includeSubdomains
banquetunarmedgrater.com/advertisers.js
173.233.137.36200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91389bc8a7f3fca129758019eda31b4d
Strict-Transport-Security: max-age=0; includeSubdomains
yearbookhobblespinal.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPTM9PmsCQmkeBmE5NIrlZXVc%2BWW1PVVHVPb%2FYgiwkawcMGLx573uwfjEHMQW9imM1FBsRMDmEQ95Z7IBLwIMjsLix%2Bh%2F6%2Bfu8dvvfq%2B7yf7xEfOZ1cumDWpFJ0Pqz6lbeuSc1N4SpLVyuBX%2FVPVq5J3WycrKxOP7b3buCHVf%2FtyvuCrZj5mh%2F4fuAHlXPSisSszu%2BzkOndKKhGfrVRqwZhA6v2v%2F8un4GjHnhvj7wCycfHln%2B9B8mG0N0fzgi3kpn0nbPdXNHMWPT4zkd6RZtCo3s0JtZDoncO1TBuTMg3MzB659ABTG9z6gCxHBPvcYBY7xyuibi3dbBprCA0Yv4iit4QQg0h6RDM3IDkDwnAOJYuQne3l4wt6PUDlk7ZMZl9%2FgyyGJPZP1%2BF7n5%2FWsnVyhWj8kwa7bCalJCrQ8jOEGm%2Bi2zNgyx2wbLPIPlvZP75InR386JTBpJP3mzWGnEtSpK5lt9szTWC0J9rc78%2BV%2BM0bsc84M12tB%2BRlEPIZAglNkDdDHLnIZce8sRDnnro8kmFhlHi%2B60kTur1doMxVq8zFrabPOT1RjvxkbOphw1k6QaY2gCzN7dTvpyt9DYzm4vNXDPXD3YOoHAf25piYT9AatexIm%2BPCdmdg83vwy2XcPwYXDYm3ofr6PEShSAoHEFBCQpJUGQERa%2Fc4srVXLnNlcvj4LDXDnu9HJis06dbJusITfrpHnl5mrT3%2FxN3sCImlahOWyGrNcJQBI0686Mm50HcCFlCozBqCjhZQroZUOdhTY7J8cnrSOWYHHs8QUx34dQumHwJND8BWgxaNR90edBo%2B1jTPyZSdVNjtZEZVZJqUzW2A25KpNkssuteX%2B2R4%2FtPH7EaBBst%2FPXPs5%2FO9kdgtkRqS3wiHxB01K3BZVOQzcumcOTexTSTXblGp2dxJaOZmL3zgbheGMvPn3Eb355iU2I63r0qXLZINZe648h3pyXnwp4zlgny83l3TcSXcrd8Orc6TxcvvXfufDe1wjlp9BBUPmx9DSbH5IUL6%2FsH%2F9pXDyDtEDYv0c1H5LAgzS5Yug6Xjhaefvr3H2%2F8%2FgTOEFh1pIlTD0VeDmwtPgKVHJPGF4%2BgxGjh%2FpOPT33ZWgSNSzhxFEMsRr88PdD33S10rAea3YDulujZEj1VgqoNuPx%2Fgyy1o4VH9f1CrLxBrKy3GSurbh%2FE6%2BSkIsLET4RfE3ESxUmL%2BjxKGlFMo0C04pAGyNyY3dRL%2FwIAAP%2F%2FAQAA%2F%2F%2BnHdBvzAQAAA%3D%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 yearbookhobblespinal.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPTM9PmsCQmkeBmE5NIrlZXVc%2BWW1PVVHVPb%2FYgiwkawcMGLx573uwfjEHMQW9imM1FBsRMDmEQ95Z7IBLwIMjsLix%2Bh%2F6%2Bfu8dvvfq%2B7yf7xEfOZ1cumDWpFJ0Pqz6lbeuSc1N4SpLVyuBX%2FVPVq5J3WycrKxOP7b3buCHVf%2FtyvuCrZj5mh%2F4fuAHlXPSisSszu%2BzkOndKKhGfrVRqwZhA6v2v%2F8un4GjHnhvj7wCycfHln%2B9B8mG0N0fzgi3kpn0nbPdXNHMWPT4zkd6RZtCo3s0JtZDoncO1TBuTMg3MzB659ABTG9z6gCxHBPvcYBY7xyuibi3dbBprCA0Yv4iit4QQg0h6RDM3IDkDwnAOJYuQne3l4wt6PUDlk7ZMZl9%2FgyyGJPZP1%2BF7n5%2FWsnVyhWj8kwa7bCalJCrQ8jOEGm%2Bi2zNgyx2wbLPIPlvZP75InR386JTBpJP3mzWGnEtSpK5lt9szTWC0J9rc78%2BV%2BM0bsc84M12tB%2BRlEPIZAglNkDdDHLnIZce8sRDnnro8kmFhlHi%2B60kTur1doMxVq8zFrabPOT1RjvxkbOphw1k6QaY2gCzN7dTvpyt9DYzm4vNXDPXD3YOoHAf25piYT9AatexIm%2BPCdmdg83vwy2XcPwYXDYm3ofr6PEShSAoHEFBCQpJUGQERa%2Fc4srVXLnNlcvj4LDXDnu9HJis06dbJusITfrpHnl5mrT3%2FxN3sCImlahOWyGrNcJQBI0686Mm50HcCFlCozBqCjhZQroZUOdhTY7J8cnrSOWYHHs8QUx34dQumHwJND8BWgxaNR90edBo%2B1jTPyZSdVNjtZEZVZJqUzW2A25KpNkssuteX%2B2R4%2FtPH7EaBBst%2FPXPs5%2FO9kdgtkRqS3wiHxB01K3BZVOQzcumcOTexTSTXblGp2dxJaOZmL3zgbheGMvPn3Eb355iU2I63r0qXLZINZe648h3pyXnwp4zlgny83l3TcSXcrd8Orc6TxcvvXfufDe1wjlp9BBUPmx9DSbH5IUL6%2FsH%2F9pXDyDtEDYv0c1H5LAgzS5Yug6Xjhaefvr3H2%2F8%2FgTOEFh1pIlTD0VeDmwtPgKVHJPGF4%2BgxGjh%2FpOPT33ZWgSNSzhxFEMsRr88PdD33S10rAea3YDulujZEj1VgqoNuPx%2Fgyy1o4VH9f1CrLxBrKy3GSurbh%2FE6%2BSkIsLET4RfE3ESxUmL%2BjxKGlFMo0C04pAGyNyY3dRL%2FwIAAP%2F%2FAQAA%2F%2F%2BnHdBvzAQAAA%3D%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPTM9PmsCQmkeBmE5NIrlZXVc%2BWW1PVVHVPb%2FYgiwkawcMGLx573uwfjEHMQW9imM1FBsRMDmEQ95Z7IBLwIMjsLix%2Bh%2F6%2Bfu8dvvfq%2B7yf7xEfOZ1cumDWpFJ0Pqz6lbeuSc1N4SpLVyuBX%2FVPVq5J3WycrKxOP7b3buCHVf%2FtyvuCrZj5mh%2F4fuAHlXPSisSszu%2BzkOndKKhGfrVRqwZhA6v2v%2F8un4GjHnhvj7wCycfHln%2B9B8mG0N0fzgi3kpn0nbPdXNHMWPT4zkd6RZtCo3s0JtZDoncO1TBuTMg3MzB659ABTG9z6gCxHBPvcYBY7xyuibi3dbBprCA0Yv4iit4QQg0h6RDM3IDkDwnAOJYuQne3l4wt6PUDlk7ZMZl9%2FgyyGJPZP1%2BF7n5%2FWsnVyhWj8kwa7bCalJCrQ8jOEGm%2Bi2zNgyx2wbLPIPlvZP75InR386JTBpJP3mzWGnEtSpK5lt9szTWC0J9rc78%2BV%2BM0bsc84M12tB%2BRlEPIZAglNkDdDHLnIZce8sRDnnro8kmFhlHi%2B60kTur1doMxVq8zFrabPOT1RjvxkbOphw1k6QaY2gCzN7dTvpyt9DYzm4vNXDPXD3YOoHAf25piYT9AatexIm%2BPCdmdg83vwy2XcPwYXDYm3ofr6PEShSAoHEFBCQpJUGQERa%2Fc4srVXLnNlcvj4LDXDnu9HJis06dbJusITfrpHnl5mrT3%2FxN3sCImlahOWyGrNcJQBI0686Mm50HcCFlCozBqCjhZQroZUOdhTY7J8cnrSOWYHHs8QUx34dQumHwJND8BWgxaNR90edBo%2B1jTPyZSdVNjtZEZVZJqUzW2A25KpNkssuteX%2B2R4%2FtPH7EaBBst%2FPXPs5%2FO9kdgtkRqS3wiHxB01K3BZVOQzcumcOTexTSTXblGp2dxJaOZmL3zgbheGMvPn3Eb355iU2I63r0qXLZINZe648h3pyXnwp4zlgny83l3TcSXcrd8Orc6TxcvvXfufDe1wjlp9BBUPmx9DSbH5IUL6%2FsH%2F9pXDyDtEDYv0c1H5LAgzS5Yug6Xjhaefvr3H2%2F8%2FgTOEFh1pIlTD0VeDmwtPgKVHJPGF4%2BgxGjh%2FpOPT33ZWgSNSzhxFEMsRr88PdD33S10rAea3YDulujZEj1VgqoNuPx%2Fgyy1o4VH9f1CrLxBrKy3GSurbh%2FE6%2BSkIsLET4RfE3ESxUmL%2BjxKGlFMo0C04pAGyNyY3dRL%2FwIAAP%2F%2FAQAA%2F%2F%2BnHdBvzAQAAA%3D%3D HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944,17309098; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 377e7878e21dc79034d71a46273d642d
Strict-Transport-Security: max-age=0; includeSubdomains
i.jads.co/network/user33/61-1480791161.gif
69.16.175.42200 OK 50 kB URL HTTP/2 i.jads.co/network/user33/61-1480791161.gif
IP 69.16.175.42:0
File type GIF image data, version 89a, 300 x 250\012- data
Hash 9559644cec03d31dbbbfbc3ef210c2e1
5e2ca757c70966b957787a624747871a67c758b2
925d52340c624311ece14c4c41013b9878508f4116b1f0767c7d8af83c33e034
GET /network/user33/61-1480791161.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YTozOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7aToxMTk2NzExO2k6MTY2OTg4MjU3NTt9; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1; imps47386=1; imps161=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
etag: "1480791162"
cache-control: max-age=19130504
content-length: 50379
content-type: image/gif
last-modified: Sat, 03 Dec 2016 18:52:42 GMT
accept-ranges: bytes
x-hw: 1669623375.dop067.sk1.t,1669623375.cds240.sk1.hn,1669623375.cds233.sk1.c
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ce55e81445f700b6b290ec842b17e5ad
fabdff5a1233d6f7780a15909cb2a4c8ec2af825
36adcf898ee0c49024419b2d15c2ac2d3d48543480fee5efd8731b32f120f5e5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "36ADCF898EE0C49024419B2D15C2AC2D3D48543480FEE5EFD8731B32F120F5E5"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13801
Expires: Mon, 28 Nov 2022 12:06:17 GMT
Date: Mon, 28 Nov 2022 08:16:16 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ce55e81445f700b6b290ec842b17e5ad
fabdff5a1233d6f7780a15909cb2a4c8ec2af825
36adcf898ee0c49024419b2d15c2ac2d3d48543480fee5efd8731b32f120f5e5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "36ADCF898EE0C49024419B2D15C2AC2D3D48543480FEE5EFD8731B32F120F5E5"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13801
Expires: Mon, 28 Nov 2022 12:06:17 GMT
Date: Mon, 28 Nov 2022 08:16:16 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.exosrv.com/popunder1000.js
185.76.9.15200 OK 38 kB URL HTTP/2 a.exosrv.com/popunder1000.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 47c5166f2f4626ed95d4710ced2f857d
90bf2b90c6f4e4035915998a15cd26123e6b1490
ec5272d1372a824424bfbd9d878e6597efa9a3d44f2b3bac030545237678059b
GET /popunder1000.js HTTP/1.1
Host: a.exosrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: application/javascript
etag: W/"d5c058ce7af27e844e39df22cd5"
expires: Thu, 24 Nov 2022 17:05:33 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1669633598
server: CDN77-Turbo
x-77-nzt: AblMCQ0mYY3/QQIAAA
x-77-nzt-ray: c0a4cc288dd453b74f6e846370aff709
x-cache: HIT
x-age: 577
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png
172.64.108.13200 OK 9.4 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png
IP 172.64.108.13:0
File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced\012- data
Hash 910542c04f8bf2f90ee33d17d538a006
18d5943e5d51539038f7988c34bccef2937c5545
5969cb3c5c4f573f5c05035ddf9748ee17d5c71df6fca4e484f65d30e2694e57
GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: image/png
content-length: 9360
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: "612f708f-2490"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1102926
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gcJ5zzo85Ex%2B8wu6hVbUhPo7awt%2BUmJcOXA3fSrJLeMq50XZUkJB1%2B4rattTXgIYCFTycKRznA2NYB5upwhgm1XTgKqBIBOkYLlL9%2FrUcwTQD4zmMilHJ5fNIkSe70QizdrTbQmz2oNG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914ed4f778b-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 11ebceb136537a95779397ea994b55b6
371dff19f01c5ffa597cc3c6876e5028170beda1
d4bfa7c54e9766a528d7562dab86e623bfa53b0517ca8284ec73038652b12aea
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 03:58:25 GMT
Expires: Fri, 02 Dec 2022 03:58:24 GMT
Etag: "371dff19f01c5ffa597cc3c6876e5028170beda1"
Cache-Control: max-age=329527,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7711a9142d4e0b55-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ce55e81445f700b6b290ec842b17e5ad
fabdff5a1233d6f7780a15909cb2a4c8ec2af825
36adcf898ee0c49024419b2d15c2ac2d3d48543480fee5efd8731b32f120f5e5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "36ADCF898EE0C49024419B2D15C2AC2D3D48543480FEE5EFD8731B32F120F5E5"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13801
Expires: Mon, 28 Nov 2022 12:06:17 GMT
Date: Mon, 28 Nov 2022 08:16:16 GMT
Connection: keep-alive
parkingridiculous.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3bu1tSWIQkKCJ%2FTBKUhmZ2ZvY8eG5mNbN767gAi6AoBYUjGiq0986JRYgQKaBDgXMo0EmIHEV0QrijjxQUiQIJnW3J4ivm%2B2beK7733lwbFDvER0GnS2fNmlSKLkR1v%2FbqZam5KV3t3KVa4Nf9Y7XLUreax2qrs8P23wj8qO6%2FVntbsBWzEPqB7wd%2BUDslrUjN6sIuCpndiYN67NebYT2Imli1%2F727woOjHnh%2FhzwPySeHl3%2B%2BC8lG0L1vTgi3kpvs9ZO9QtHcWPT51nt6RZtSo3cwptZDqrf22TBuQsjnh2D01r4CmP7mTAESOSHewwCJ3tpfE0n%2F5t6miYLQSPgzKPsjCDWCpCMwcxWSPyAA4zh3Hrp365yxJb2yh9IZOiFzTx5DlhMy98cL0L2vjyu5WrtoVJFLox1W0wpydQTZHSErtpGveZDlNlj%2BMST%2FhSw8OQPd2zzvlIHk01daYTMJ4zSdb%2Fut9nwziPz5Dvcb8yGnSSfhAW914l2LpBxBpiMosQHqDqFwHgrpoUg9FJmHHp%2FWaBSnvt9Ok7TR6DQZY40GY1GnxSPeaHZSHwWbadhAnm2AqQ0wu47MrmNF3pgQsj0PW%2FwAt1zB8f%2FD5RPivfsR%2BrxCKQhKR1BSglISlDlB2a9ucuVCV93iyhVJsN%2FD%2Fd6ohibvDuhNk3eFJoNshzw3c9B76uhtrIhpLW7QdsTCZhSJoNlgftziPEiaEUtpHMUtAScrSHcI1HlYkxNyZPoSMjkhhx9OkdBtOLUNJp8FLY6ClsN26IMuD5sdH2v621SqXmasNjKnSlJt6sZ2wU2FLJ9DfsUbqB1yZDfSmIUQbLz41z%2BPvzs5GIPZCpmt8IG8T9BV14cXTEk2L5jSkbvns1z25BqdxX0xp7mYu%2F2OuFIay0%2BfcBtfvslmwGy8c0m4%2FAzVXOquI18dl5wLe8pYJsj3p91lkSwVbvl4YXWRnVl669TpXmaFc9LoEah80P4MTE7I02fXdz%2Fyi5%2Feh7Qj2KJCrxiT%2FYI022DZOlw2Xnz04d%2B%2Fv%2Fzrn3CGwKoDTpJ5KItqaMPk4FHJCQkf%2FwQlxotfHL73%2FuDHa6BJBScObEjE%2BN6jPf7AXUfXeqD5Vehehb6t0FcVqNqAK%2F43zDM7XvytsVtIlDdMlPU2E2XVjT17nZzWRJT6qfBDkaRxkrapz%2BO0GSc0DkQ7iWiA3E3YJ3rpXwAAAP%2F%2FAQAA%2F%2F%2BaVwK%2FpAQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 parkingridiculous.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3bu1tSWIQkKCJ%2FTBKUhmZ2ZvY8eG5mNbN767gAi6AoBYUjGiq0986JRYgQKaBDgXMo0EmIHEV0QrijjxQUiQIJnW3J4ivm%2B2beK7733lwbFDvER0GnS2fNmlSKLkR1v%2FbqZam5KV3t3KVa4Nf9Y7XLUreax2qrs8P23wj8qO6%2FVntbsBWzEPqB7wd%2BUDslrUjN6sIuCpndiYN67NebYT2Imli1%2F727woOjHnh%2FhzwPySeHl3%2B%2BC8lG0L1vTgi3kpvs9ZO9QtHcWPT51nt6RZtSo3cwptZDqrf22TBuQsjnh2D01r4CmP7mTAESOSHewwCJ3tpfE0n%2F5t6miYLQSPgzKPsjCDWCpCMwcxWSPyAA4zh3Hrp365yxJb2yh9IZOiFzTx5DlhMy98cL0L2vjyu5WrtoVJFLox1W0wpydQTZHSErtpGveZDlNlj%2BMST%2FhSw8OQPd2zzvlIHk01daYTMJ4zSdb%2Fut9nwziPz5Dvcb8yGnSSfhAW914l2LpBxBpiMosQHqDqFwHgrpoUg9FJmHHp%2FWaBSnvt9Ok7TR6DQZY40GY1GnxSPeaHZSHwWbadhAnm2AqQ0wu47MrmNF3pgQsj0PW%2FwAt1zB8f%2FD5RPivfsR%2BrxCKQhKR1BSglISlDlB2a9ucuVCV93iyhVJsN%2FD%2Fd6ohibvDuhNk3eFJoNshzw3c9B76uhtrIhpLW7QdsTCZhSJoNlgftziPEiaEUtpHMUtAScrSHcI1HlYkxNyZPoSMjkhhx9OkdBtOLUNJp8FLY6ClsN26IMuD5sdH2v621SqXmasNjKnSlJt6sZ2wU2FLJ9DfsUbqB1yZDfSmIUQbLz41z%2BPvzs5GIPZCpmt8IG8T9BV14cXTEk2L5jSkbvns1z25BqdxX0xp7mYu%2F2OuFIay0%2BfcBtfvslmwGy8c0m4%2FAzVXOquI18dl5wLe8pYJsj3p91lkSwVbvl4YXWRnVl669TpXmaFc9LoEah80P4MTE7I02fXdz%2Fyi5%2Feh7Qj2KJCrxiT%2FYI022DZOlw2Xnz04d%2B%2Fv%2Fzrn3CGwKoDTpJ5KItqaMPk4FHJCQkf%2FwQlxotfHL73%2FuDHa6BJBScObEjE%2BN6jPf7AXUfXeqD5Vehehb6t0FcVqNqAK%2F43zDM7XvytsVtIlDdMlPU2E2XVjT17nZzWRJT6qfBDkaRxkrapz%2BO0GSc0DkQ7iWiA3E3YJ3rpXwAAAP%2F%2FAQAA%2F%2F%2BaVwK%2FpAQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3bu1tSWIQkKCJ%2FTBKUhmZ2ZvY8eG5mNbN767gAi6AoBYUjGiq0986JRYgQKaBDgXMo0EmIHEV0QrijjxQUiQIJnW3J4ivm%2B2beK7733lwbFDvER0GnS2fNmlSKLkR1v%2FbqZam5KV3t3KVa4Nf9Y7XLUreax2qrs8P23wj8qO6%2FVntbsBWzEPqB7wd%2BUDslrUjN6sIuCpndiYN67NebYT2Imli1%2F727woOjHnh%2FhzwPySeHl3%2B%2BC8lG0L1vTgi3kpvs9ZO9QtHcWPT51nt6RZtSo3cwptZDqrf22TBuQsjnh2D01r4CmP7mTAESOSHewwCJ3tpfE0n%2F5t6miYLQSPgzKPsjCDWCpCMwcxWSPyAA4zh3Hrp365yxJb2yh9IZOiFzTx5DlhMy98cL0L2vjyu5WrtoVJFLox1W0wpydQTZHSErtpGveZDlNlj%2BMST%2FhSw8OQPd2zzvlIHk01daYTMJ4zSdb%2Fut9nwziPz5Dvcb8yGnSSfhAW914l2LpBxBpiMosQHqDqFwHgrpoUg9FJmHHp%2FWaBSnvt9Ok7TR6DQZY40GY1GnxSPeaHZSHwWbadhAnm2AqQ0wu47MrmNF3pgQsj0PW%2FwAt1zB8f%2FD5RPivfsR%2BrxCKQhKR1BSglISlDlB2a9ucuVCV93iyhVJsN%2FD%2Fd6ohibvDuhNk3eFJoNshzw3c9B76uhtrIhpLW7QdsTCZhSJoNlgftziPEiaEUtpHMUtAScrSHcI1HlYkxNyZPoSMjkhhx9OkdBtOLUNJp8FLY6ClsN26IMuD5sdH2v621SqXmasNjKnSlJt6sZ2wU2FLJ9DfsUbqB1yZDfSmIUQbLz41z%2BPvzs5GIPZCpmt8IG8T9BV14cXTEk2L5jSkbvns1z25BqdxX0xp7mYu%2F2OuFIay0%2BfcBtfvslmwGy8c0m4%2FAzVXOquI18dl5wLe8pYJsj3p91lkSwVbvl4YXWRnVl669TpXmaFc9LoEah80P4MTE7I02fXdz%2Fyi5%2Feh7Qj2KJCrxiT%2FYI022DZOlw2Xnz04d%2B%2Fv%2Fzrn3CGwKoDTpJ5KItqaMPk4FHJCQkf%2FwQlxotfHL73%2FuDHa6BJBScObEjE%2BN6jPf7AXUfXeqD5Vehehb6t0FcVqNqAK%2F43zDM7XvytsVtIlDdMlPU2E2XVjT17nZzWRJT6qfBDkaRxkrapz%2BO0GSc0DkQ7iWiA3E3YJ3rpXwAAAP%2F%2FAQAA%2F%2F%2BaVwK%2FpAQAAA%3D%3D HTTP/1.1
Host: parkingridiculous.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e17c63116b493f3b5c0ce69bae354dcf
Strict-Transport-Security: max-age=0; includeSubdomains
aueaeazmao9h.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 aueaeazmao9h.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: aueaeazmao9h.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
poweredby.jads.co/adshow.php?adzone=694805
185.94.237.102200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=694805
IP 185.94.237.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (421), with CRLF, LF line terminators
Hash 6024e2bc27332c825ccd387c86851d2b
4c6eb2a17dea73e1e565a480a8ef1447215d2b40
e62c653dfaaea941c2f186ec40ceff1de8df3bb68ec819c6b66002cb4a2ce274
GET /adshow.php?adzone=694805 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: surferid=fedb8f2a7030df284b670cd0de8ced6c; imps50289=1; juicy_data_1=YToyOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps22821=1; imps61=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: imps47386=1; expires=Tue, 29-Nov-2022 08:16:15 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YTozOntpOjEzODkyMTQ7aToxNjY5ODgyNTcyO2k6MTE5Njk3MjtpOjE2Njk4ODI1NzM7aToxMzE5NjgwO2k6MTY2OTg4MjU3NTt9; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Thu, 01-Dec-2022 08:16:15 GMT; Max-Age=259200; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
displayvertising.com/wYR.aspx?_=BAYAY4RuTwFjhG5PgAGBAsAAIMNK_5NlkxIUcaAe39IkpITP10UqnO1o_uTV7YQZblRFwQBGMEQCIHGbb58x23uNbWL4xhX40qnyuL9fYjSDwlRpId-rQ-tIAiAhDelirHLZ7kf0IlKlrwxOPLDZe2pDkZYtRItS5aflzQ&v=4&VUZYCiQb=3922031&minBid=&efTsVXdb=0:1,0&BLYcbvRd=&OtwemoQu=&s=1280,1024,1,1280,1024,0
216.59.56.9200 OK 44 B URL HTTP/2 displayvertising.com/wYR.aspx?_=BAYAY4RuTwFjhG5PgAGBAsAAIMNK_5NlkxIUcaAe39IkpITP10UqnO1o_uTV7YQZblRFwQBGMEQCIHGbb58x23uNbWL4xhX40qnyuL9fYjSDwlRpId-rQ-tIAiAhDelirHLZ7kf0IlKlrwxOPLDZe2pDkZYtRItS5aflzQ&v=4&VUZYCiQb=3922031&minBid=&efTsVXdb=0:1,0&BLYcbvRd=&OtwemoQu=&s=1280,1024,1,1280,1024,0
IP 216.59.56.9:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /wYR.aspx?_=BAYAY4RuTwFjhG5PgAGBAsAAIMNK_5NlkxIUcaAe39IkpITP10UqnO1o_uTV7YQZblRFwQBGMEQCIHGbb58x23uNbWL4xhX40qnyuL9fYjSDwlRpId-rQ-tIAiAhDelirHLZ7kf0IlKlrwxOPLDZe2pDkZYtRItS5aflzQ&v=4&VUZYCiQb=3922031&minBid=&efTsVXdb=0:1,0&BLYcbvRd=&OtwemoQu=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Mon, 28 Nov 2022 08:16:16 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e946cb0c788ecef674c6c56fd2481db7
19342e6b84f6faa4ef532d995ca5a914d32e0672
3e87cec29350a8b24a5759e6fdb0e6298a581186294cf9d869dca0015d08b8f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E87CEC29350A8B24A5759E6FDB0E6298A581186294CF9D869DCA0015D08B8F3"
Last-Modified: Sun, 27 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14501
Expires: Mon, 28 Nov 2022 12:17:57 GMT
Date: Mon, 28 Nov 2022 08:16:16 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
172.64.108.13200 OK 1.4 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
IP 172.64.108.13:0
Hash 86ff5ddd522ea535a30f511d8968aa1f
a62ea672c09eb2bd5be11a17c60df9b1d51aaa74
3c1cf558bce2be5d552084627e9221d06102d0923cdb34338ccb73a922a928d2
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-11aa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FDYrP9sj3S7bceLCco1%2FNZDgbEc4Doc4pDFG%2BWEhDC72J4cPNlvHXHqkQKAkl4mnIpaoP9bg22GsUpsijxHBY%2FnCWocraR7YMqvICR3H%2FbDXqr%2Fdw%2BonM2KHBLH%2FlY9GwOU8Ur8vVsXw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a9159a3672ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
specialistinsensitive.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=149
192.243.61.225200 OK 0 B URL HTTP/1.1 specialistinsensitive.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=149
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=149 HTTP/1.1
Host: specialistinsensitive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
172.64.108.13200 OK 4.8 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
IP 172.64.108.13:0
Hash c91016401e0a0b7b3d7572de48c76597
12fb634abb5e708b4f55d1489055b4f626d3cdd1
2472e286e0bf6f54cef9d99e9c63301c873fa02bc4e3979e1a18587a6d973120
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=au90bbm45gXayIAXGr4B6TEiCUH%2F5DHR51QEB%2BZnbNcjMvWWbMi9QP8MwwS55fuYgAiCTtl8JaEAT%2BJ4Nb%2Br5N5JJDiVBadTkR7L0cWM4DaDPiMObWtphKcGFlWQk7cEnVmDzT%2FXPs8D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914598372ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
specialistinsensitive.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=391
192.243.61.225200 OK 0 B URL HTTP/1.1 specialistinsensitive.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=391
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=391 HTTP/1.1
Host: specialistinsensitive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
parkingridiculous.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3d%2B0MKi5AEReSPSYLS0MzOzJ4Hz82sZnZvHRdgERSloHBEQ4X23jmxCBEiBXQocA4FOgmRo4hOCHf0kYIiUSChsy1ZfMV838x7xffem2uDYof4KOh06axZk0rRhbju1169LDU3paudu1QL%2FLp%2FrHZZ6mZ0rLY6O2z%2FjcCP6%2F5rtbcFWzELoR%2F4fuAHtVPSitSsLuyikNmdTlDv%2BPUorAdxhFX737srPDjqgfd3yPOQfHJ4%2Bee7kGwE3fvmhHArucleP9krFM2NRZ9vvadXtCk1egdjaj2kemufDeMmhHx%2BCEZv7SuA6W%2FOFCCRE%2BI9DJDorf01kfRv7m2aKAiNhD%2BDsj%2BCUCNIOgIzVyH5AwIwjnPnoXu3zhlb0it7KJ2hEzL35DFkOSFzf7wA3fv6uJKrtYtGFbk02mE1rSBXR5DdEbJiG%2FmaB1lug%2BUfQ%2FJfyMKTM9C9zfNOGUg%2BfaUZRknYSdP5lt9szUdB7M%2B3ud%2BYDzlN2gkPeLPd2bVIyhFkOoISG6DuEArnoZAeitRDkXno8WmNxp3U91tpkjYa7Ygx1mgwFrebPOaNqJ36KNhMwwbybANMbYDZdWR2HSvyxoSQ7XnY4ge45QqO%2Fx8unxDv3Y%2FQ5xVKQVA6gpISlJKgzAnKfnWTKxe66hZXrkiC%2FR7u90Y1NHl3QG%2BavCs0GWQ75LmZg95TR29jRUxrnQZtxSyM4lgEUYP5nSbnQRLFLKWduNMUcLKCdIdAnYc1OSFHpi8hkxNy%2BOEUCd2GU9tg8lnQ4ihoOWyFPujyMGr7WNPfplL1MmO1kTlVkmpTN7YLbipk%2BRzyK95A7ZAju5F2WAjBxot%2F%2FfP4u5ODMZitkNkKH8j7BF11fXjBlGTzgikduXs%2By2VPrtFZ3Bdzmou52%2B%2BIK6Wx%2FPQJt%2FHlm2wGzMY7l4TLz1DNpe468tVxybmwp4xlgnx%2F2l0WyVLhlo8XVhfZmaW3Tp3uZVY4J40egcoHrc%2FA5IQ8fXZ99yO%2F%2BOl9SDuCLSr0ijHZL0izDZatw2XjxUcf%2Fv37y7%2F%2BCWcIrDrgJJmHsqiGNkwOHpWckPDxT1BivPjF4XvvD368BppUcOLAhkSM7z3a4w%2FcdXStB5pfhe5V6NsKfVWBqg244n%2FDPLPjxd8au4VEecNEWW8zUVbd2LPXyWktDiLRTtotxnkiGA9aYaPd8P2Q86jVEUEHuZuwT%2FTSvwAAAP%2F%2FAQAA%2F%2F%2BOX4xZpAQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 parkingridiculous.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3d%2B0MKi5AEReSPSYLS0MzOzJ4Hz82sZnZvHRdgERSloHBEQ4X23jmxCBEiBXQocA4FOgmRo4hOCHf0kYIiUSChsy1ZfMV838x7xffem2uDYof4KOh06axZk0rRhbju1169LDU3paudu1QL%2FLp%2FrHZZ6mZ0rLY6O2z%2FjcCP6%2F5rtbcFWzELoR%2F4fuAHtVPSitSsLuyikNmdTlDv%2BPUorAdxhFX737srPDjqgfd3yPOQfHJ4%2Bee7kGwE3fvmhHArucleP9krFM2NRZ9vvadXtCk1egdjaj2kemufDeMmhHx%2BCEZv7SuA6W%2FOFCCRE%2BI9DJDorf01kfRv7m2aKAiNhD%2BDsj%2BCUCNIOgIzVyH5AwIwjnPnoXu3zhlb0it7KJ2hEzL35DFkOSFzf7wA3fv6uJKrtYtGFbk02mE1rSBXR5DdEbJiG%2FmaB1lug%2BUfQ%2FJfyMKTM9C9zfNOGUg%2BfaUZRknYSdP5lt9szUdB7M%2B3ud%2BYDzlN2gkPeLPd2bVIyhFkOoISG6DuEArnoZAeitRDkXno8WmNxp3U91tpkjYa7Ygx1mgwFrebPOaNqJ36KNhMwwbybANMbYDZdWR2HSvyxoSQ7XnY4ge45QqO%2Fx8unxDv3Y%2FQ5xVKQVA6gpISlJKgzAnKfnWTKxe66hZXrkiC%2FR7u90Y1NHl3QG%2BavCs0GWQ75LmZg95TR29jRUxrnQZtxSyM4lgEUYP5nSbnQRLFLKWduNMUcLKCdIdAnYc1OSFHpi8hkxNy%2BOEUCd2GU9tg8lnQ4ihoOWyFPujyMGr7WNPfplL1MmO1kTlVkmpTN7YLbipk%2BRzyK95A7ZAju5F2WAjBxot%2F%2FfP4u5ODMZitkNkKH8j7BF11fXjBlGTzgikduXs%2By2VPrtFZ3Bdzmou52%2B%2BIK6Wx%2FPQJt%2FHlm2wGzMY7l4TLz1DNpe468tVxybmwp4xlgnx%2F2l0WyVLhlo8XVhfZmaW3Tp3uZVY4J40egcoHrc%2FA5IQ8fXZ99yO%2F%2BOl9SDuCLSr0ijHZL0izDZatw2XjxUcf%2Fv37y7%2F%2BCWcIrDrgJJmHsqiGNkwOHpWckPDxT1BivPjF4XvvD368BppUcOLAhkSM7z3a4w%2FcdXStB5pfhe5V6NsKfVWBqg244n%2FDPLPjxd8au4VEecNEWW8zUVbd2LPXyWktDiLRTtotxnkiGA9aYaPd8P2Q86jVEUEHuZuwT%2FTSvwAAAP%2F%2FAQAA%2F%2F%2BOX4xZpAQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSP2wcxRudzc%2F5CUEDiCZF4IQoQMLn3b3d%2B0MKi5AEReSPSYLS0MzOzJ4Hz82sZnZvHRdgERSloHBEQ4X23jmxCBEiBXQocA4FOgmRo4hOCHf0kYIiUSChsy1ZfMV838x7xffem2uDYof4KOh06axZk0rRhbju1169LDU3paudu1QL%2FLp%2FrHZZ6mZ0rLY6O2z%2FjcCP6%2F5rtbcFWzELoR%2F4fuAHtVPSitSsLuyikNmdTlDv%2BPUorAdxhFX737srPDjqgfd3yPOQfHJ4%2Bee7kGwE3fvmhHArucleP9krFM2NRZ9vvadXtCk1egdjaj2kemufDeMmhHx%2BCEZv7SuA6W%2FOFCCRE%2BI9DJDorf01kfRv7m2aKAiNhD%2BDsj%2BCUCNIOgIzVyH5AwIwjnPnoXu3zhlb0it7KJ2hEzL35DFkOSFzf7wA3fv6uJKrtYtGFbk02mE1rSBXR5DdEbJiG%2FmaB1lug%2BUfQ%2FJfyMKTM9C9zfNOGUg%2BfaUZRknYSdP5lt9szUdB7M%2B3ud%2BYDzlN2gkPeLPd2bVIyhFkOoISG6DuEArnoZAeitRDkXno8WmNxp3U91tpkjYa7Ygx1mgwFrebPOaNqJ36KNhMwwbybANMbYDZdWR2HSvyxoSQ7XnY4ge45QqO%2Fx8unxDv3Y%2FQ5xVKQVA6gpISlJKgzAnKfnWTKxe66hZXrkiC%2FR7u90Y1NHl3QG%2BavCs0GWQ75LmZg95TR29jRUxrnQZtxSyM4lgEUYP5nSbnQRLFLKWduNMUcLKCdIdAnYc1OSFHpi8hkxNy%2BOEUCd2GU9tg8lnQ4ihoOWyFPujyMGr7WNPfplL1MmO1kTlVkmpTN7YLbipk%2BRzyK95A7ZAju5F2WAjBxot%2F%2FfP4u5ODMZitkNkKH8j7BF11fXjBlGTzgikduXs%2By2VPrtFZ3Bdzmou52%2B%2BIK6Wx%2FPQJt%2FHlm2wGzMY7l4TLz1DNpe468tVxybmwp4xlgnx%2F2l0WyVLhlo8XVhfZmaW3Tp3uZVY4J40egcoHrc%2FA5IQ8fXZ99yO%2F%2BOl9SDuCLSr0ijHZL0izDZatw2XjxUcf%2Fv37y7%2F%2BCWcIrDrgJJmHsqiGNkwOHpWckPDxT1BivPjF4XvvD368BppUcOLAhkSM7z3a4w%2FcdXStB5pfhe5V6NsKfVWBqg244n%2FDPLPjxd8au4VEecNEWW8zUVbd2LPXyWktDiLRTtotxnkiGA9aYaPd8P2Q86jVEUEHuZuwT%2FTSvwAAAP%2F%2FAQAA%2F%2F%2BOX4xZpAQAAA%3D%3D HTTP/1.1
Host: parkingridiculous.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dba51f5ef098a91dca158183b822b997
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
172.64.108.13200 OK 11 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
IP 172.64.108.13:0
Hash f77fb6542560de92c90d955705ea8b98
4bb7b35ce565c031f69a4356a606679bcdb9ea8a
7ce1708caed9cb28473c02d6ab2b13e2a16b6fa274d39ec6066f341ba9f2d48f
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:36 GMT
etag: W/"612f708c-7082"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2iCioRJnz2FwrPSuf5jf8rZtQC3ATxdLEbUP5W47kddGCMtVn1UYo4WdoNVy70gYccbW72saRTdXdB%2FpatoNVikHGXEfJjZpjzr8Ctd3v%2BM575Uq8ocbcrAaXhy%2FX0r3im%2BopuXpDPd5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a9169add72ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
parkingridiculous.com/pixel/sbs?c=1
173.233.139.164200 OK 0 B URL HTTP/1.1 parkingridiculous.com/pixel/sbs?c=1
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: parkingridiculous.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
whiskerssituationdisturb.com/pixel/sbs?c=1
173.233.139.164200 OK 0 B URL HTTP/1.1 whiskerssituationdisturb.com/pixel/sbs?c=1
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: whiskerssituationdisturb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
whiskerssituationdisturb.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjhsQvah4ySE6iAcFd7a7p3t%2BzGFJTCLBTTYmkVytrqqeLbemqqnqnt7sQRYjGsHDBi8ee9%2FsZjEGMQe9iWE2FxkQMzmEQdxb7oFIwIMgs7uw%2BB3q%2B6reO3zvvfpio9glPgo6uXjerEql6Fxc92tvXZWam9LVLlypBX7dP1G7KnUzOlFbmR62%2F27gx3X%2F7dr7gi2budAPfD%2Fwg9pZaUVqVub2UMjsTieod%2Fx6FNaDOMKK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZvNMErCTprOtvxmazYKYn%2B2zf3GbMhp0k54wJvtzp5FUg4h0yGUWAd1R1A4D4X0UKQeisxDj09qNO6kvt9Kk7TRaEeMsUaDsbjd5DFvRO3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5UJX3eLKFUlw0MOD3qgGJu9u0C2Td4UmG9kueXnqoPf88dtYFpNap0FbMQujOBZB1GB%2Bp8l5kEQxS2kn7jQFnKwg3RFQ52FVjsmxyevI5JgcfTRBQnfg1A6YfAm0OA5aDlqhD7o0iNo%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUg7LIRgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB6xswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXAhsnho5JjEn35EEqM5u89%2FvjkV60F0KSCE4c2JGL065N9%2Foa7ga71QPPr0L0KfVuhrypQtQ5XPDfIMzuaf9jYKyTKGyTKepuJsurmvr1OTmpxEIl20m4xzhPBeNAKG%2B2G74ecR62OCDrI3Zh9rhf%2FAwAA%2F%2F8BAAD%2F%2F1CEs6OkBAAA
173.233.139.164200 OK 7 B URL HTTP/1.1 whiskerssituationdisturb.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjhsQvah4ySE6iAcFd7a7p3t%2BzGFJTCLBTTYmkVytrqqeLbemqqnqnt7sQRYjGsHDBi8ee9%2FsZjEGMQe9iWE2FxkQMzmEQdxb7oFIwIMgs7uw%2BB3q%2B6reO3zvvfpio9glPgo6uXjerEql6Fxc92tvXZWam9LVLlypBX7dP1G7KnUzOlFbmR62%2F27gx3X%2F7dr7gi2budAPfD%2Fwg9pZaUVqVub2UMjsTieod%2Fx6FNaDOMKK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZvNMErCTprOtvxmazYKYn%2B2zf3GbMhp0k54wJvtzp5FUg4h0yGUWAd1R1A4D4X0UKQeisxDj09qNO6kvt9Kk7TRaEeMsUaDsbjd5DFvRO3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5UJX3eLKFUlw0MOD3qgGJu9u0C2Td4UmG9kueXnqoPf88dtYFpNap0FbMQujOBZB1GB%2Bp8l5kEQxS2kn7jQFnKwg3RFQ52FVjsmxyevI5JgcfTRBQnfg1A6YfAm0OA5aDlqhD7o0iNo%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUg7LIRgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB6xswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXAhsnho5JjEn35EEqM5u89%2FvjkV60F0KSCE4c2JGL065N9%2Foa7ga71QPPr0L0KfVuhrypQtQ5XPDfIMzuaf9jYKyTKGyTKepuJsurmvr1OTmpxEIl20m4xzhPBeNAKG%2B2G74ecR62OCDrI3Zh9rhf%2FAwAA%2F%2F8BAAD%2F%2F1CEs6OkBAAA
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjhsQvah4ySE6iAcFd7a7p3t%2BzGFJTCLBTTYmkVytrqqeLbemqqnqnt7sQRYjGsHDBi8ee9%2FsZjEGMQe9iWE2FxkQMzmEQdxb7oFIwIMgs7uw%2BB3q%2B6reO3zvvfpio9glPgo6uXjerEql6Fxc92tvXZWam9LVLlypBX7dP1G7KnUzOlFbmR62%2F27gx3X%2F7dr7gi2budAPfD%2Fwg9pZaUVqVub2UMjsTieod%2Fx6FNaDOMKK%2Ff%2FdFR4c9cD7u%2BQVSD4%2BuvTbXUg2hO79eFq45dxk75zpFYrmxqLPtz%2FSy9qUGr3DMbUeUr19wIZxY0K%2BPQKjtw8UwPQ3pwqQyDHxHgVI9PbBmkj6W%2FubJgpCI%2BEvouwPIdQQkg7BzHVI%2FoAAjOPCInTv1gVjS3ptH6VTdExmnj2FLMdk5q9XoXs%2FnFJypXbZqCKXRjuspBXkyhCyO0RW7CBf9SDLHbD8M0j%2BO5l7tgDd21x0ykDyyZvNMErCTprOtvxmazYKYn%2B2zf3GbMhp0k54wJvtzp5FUg4h0yGUWAd1R1A4D4X0UKQeisxDj09qNO6kvt9Kk7TRaEeMsUaDsbjd5DFvRO3UR8GmGtaRZ%2Btgah3MriGza1iWN8eE7MzCFvfglio4fhQuHxPvwzX0eYVSEJSOoKQEpSQoc4KyX21x5UJX3eLKFUlw0MOD3qgGJu9u0C2Td4UmG9kueXnqoPf88dtYFpNap0FbMQujOBZB1GB%2Bp8l5kEQxS2kn7jQFnKwg3RFQ52FVjsmxyevI5JgcfTRBQnfg1A6YfAm0OA5aDlqhD7o0iNo%2BVvVPqVS9zFhtZE6VpNrUje2CmwpZPoP8mrehdsmxvUg7LIRgo%2Fm%2F%2F33685mNEZitkNkKn8j7BF11Y3DJlGTzkikdubuY5bInV%2Bk07ss5zcXM7Q%2FEtdJYfu60W%2F%2FuJJsC0%2FHOFeHyBaq51F1Hvj8lORf2rLFMkF%2FOuasiuVi4pVOF1UW2cPG9s%2Bd6mRXOSaOHoPJB6xswOSYvnF%2Fb%2B8ivfX0f0g5hiwq9YkQOCtLsgGVrcNlo%2Fsmn%2F%2Fz5xh%2BP4QyBVYecJPNQFtXAhsnho5JjEn35EEqM5u89%2FvjkV60F0KSCE4c2JGL065N9%2Foa7ga71QPPr0L0KfVuhrypQtQ5XPDfIMzuaf9jYKyTKGyTKepuJsurmvr1OTmpxEIl20m4xzhPBeNAKG%2B2G74ecR62OCDrI3Zh9rhf%2FAwAA%2F%2F8BAAD%2F%2F1CEs6OkBAAA HTTP/1.1
Host: whiskerssituationdisturb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=17309098; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 28 Nov 2022 08:16:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4421e823f470892dfbdf310cbab3a886
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
172.64.108.13200 OK 11 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
IP 172.64.108.13:0
Hash b1b74ad223cc68b618993ed5a46ff6f2
71bc1bea2b3c65d012a6b3eb74182e51c344f3b5
e2906d19944d526bdabf9af96d1e6d7a5d6c398fa20cdd97cdfdd0e7a0896adc
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:36 GMT
etag: W/"612f708c-7082"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HD7bddBEQeauX%2FkfFib0b3epGb%2FrDYwEWEuelxpTrzp0AyfvD5HI9eRiJo3vszeTbxKdHJmVASPdLAp6YXeq4NgL3K5ARKUZU9VOGjQQmHBZ68hcafSWlRluA8eHOaOQNistfYj5nfb%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a9156a1d72ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 03ad9fc0b00b5df3165dc2fb1e3b0a3e
f8243335a8bc24d989bddd346048a055e1d0bdeb
366b28d491f7fd632e31c1ce97f939555f7dcee14bb6875737ed2d3e96fa32ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 03ad9fc0b00b5df3165dc2fb1e3b0a3e
f8243335a8bc24d989bddd346048a055e1d0bdeb
366b28d491f7fd632e31c1ce97f939555f7dcee14bb6875737ed2d3e96fa32ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 08:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 08:16:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/767299046/?random=1669623372017&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3800414438&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 08:16:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/767299046/?random=1669623372025&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&fmt=3&is_vtc=1&random=907869049&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/767299046/?random=1669623372025&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&fmt=3&is_vtc=1&random=907869049&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/767299046/?random=1669623372025&cv=11&fst=1669622400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffilmpornoitaliano.org%2F&tiba=Film%20Porno%20Streaming%20e%20Video%20Porno%20Gratuiti%20-%20FilmPornoItaliano.org&value=replace%20with%20value&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&fmt=3&is_vtc=1&random=907869049&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 08:16:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
172.64.108.13200 OK 11 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
IP 172.64.108.13:0
Hash 089a882fad24383cdaef90850df79cfb
11846a5109ab8cdb23283ecbfbaf7931dbcfdfa4
f7c79cdce0c5c04983c2b35e63e384fd7d530b496689fcedfa9cccb44c1c5972
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:36 GMT
etag: W/"612f708c-7082"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1TfSmxflVkGNz0W7Med%2FAjRCmMgxZGmh0wySCuPmIVOxVqMl1%2FEtW778ibqRi3gXr%2FYhlSY6K28Cky95%2BfcsPyW7hxpY6lxT%2Fj4ABWgsa9IahoocWy1bH3SKR2yoYHvqvV0Uxz8BIG4b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a9155a1972ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yearbookhobblespinal.com/pixel/sbs?c=1
192.243.59.13200 OK 0 B URL HTTP/1.1 yearbookhobblespinal.com/pixel/sbs?c=1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944,17309098; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
172.64.108.13200 OK 5.3 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
IP 172.64.108.13:0
Hash 982a62a49743cbc687a0cab22a6a63f8
9db5d02ac99d367fd0295eb86c1b956adcbf5501
ef0e177d60cdc44512a93bf060e159fdcfcb198c32538451516da9cb45f99c2d
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sU3X7tiE%2FV6vHuFDbzkrY8KT2Pv7Qz4ug7Ok9%2Fr8OhJ6GrzAvpRiGA8ziSgKF%2Bv3usjzP%2BdMdduysMRFgzkUYFjEuu1iBq1Xaw5JiduLp88ZkFHHDAk%2BHRXt69ndr6MO7vBe06cb%2Fo1F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a9159a3372ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg
172.64.108.13200 OK 1.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg
IP 172.64.108.13:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash a4fc421cc40c5e3b0c8e5b16d636953b
2c15c00630ca9dfcb0546a4e9423b66345834f52
da41b594eb463c1ae928012132467549e9e2a5938910c743424cff7d2cc8e514
GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: image/svg+xml
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: W/"612f708f-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1102926
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C5yM7LYNXcJzlnRZwDgmYdjhMe8xBYHN5IbJUcsmPbBiOgATJFeeza8tqy%2BD7TIN2tIvP%2Fng3bRYbxC0%2FgWFCvBq5Gfkl53TG1QgTv7wep9cp%2B58OulwGhEhsSZNVKtk64Y%2FLdmu8Mlw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914ed4b778b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yearbookhobblespinal.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPd88cclsQkEtxsYhLJ1eqq6tlya6qaqu7pzR5kMUEjeNjgxWPPm%2F2DMYg56E0Ms7nIgJjJIQzi3nIPRAIeBJndhcXv0N%2FX773D9159n%2FfzPeIjp5NLF8yaVIrOR1W%2F8tY1qbkpXGXpaiXwq%2F7JyjWpG%2BHJyur0Y3vvBn5U9d%2BuvC%2FYipmv%2BYHvB35QOSetSMzq%2FD4Lmd5tB9W2Xw1r1SAKsWr%2F%2B%2B%2FyGTjqgff2yCuQfHxs%2Bdd7kGwI3f3hjHArmUnfOdvNFc2MRY%2FvfKRXtCk0ukdjYj0keudQDePGhHwzA6N3Dh3A9DanDhDLMfEeB4j1zuGaiHtbB5vGCkIj5i%2Bi6A0h1BCSDsHMDUj%2BkACMY%2BkidHd7ydiCXj9g6ZQdk9nnzyCLMZn981Xo7venlVytXDEqz6TRDqtJCbk6hOwMkea7yNY8yGIXLPsMkv9G5p8vQnc3LzplIPnkzUYtjGvtJJlr%2Bo3mXBhE%2FlyL%2B%2FW5GqdxK%2BYBb7Ta%2BxFJOYRMhlBiA9TNIHcecukhTzzkqYcun1Ro1E58v5nESb3eChlj9TpjUavBI14PW4mPnE09bCBLN8DUBpi9uZ3y5Wylt5nZXGzmmrl%2BsHMARfvY1hSL%2BgFSu44VeXtMyO4cbH4fbrmE48fgsjHxPlxHj5coBEHhCApKUEiCIiMoeuUWV67mym2uXB4Hh7122OvlwGSdPt0yWUdo0k%2F3yMvTpL3%2Fn7iDFTGptOu0GbFaGEUiCOvMbzc4D%2BIwYgltR%2B2GgJMlpJsBdR7W5Jgcn7yOVI7JsccTxHQXTu2CyZdA8xOgxaBZ80GXB2HLx5r%2BMZGqmxqrjcyoklSbqrEdcFMizWaRXff6ao8c33%2F6NqtBsNHCX%2F88%2B%2BlsfwRmS6S2xCfyAUFH3RpcNgXZvGwKR%2B5dTDPZlWt0ehZXMpqJ2TsfiOuFsfz8Gbfx7Sk2Jabj3avCZYtUc6k7jnx3WnIu7DljmSA%2Fn3fXRHwpd8unc6vzdPHSe%2BfOd1MrnJNGD0Hlw%2BbXYHJMXriwvn%2Fwr331ANIOYfMS3XxEDgvS7IKl63DpaOHpp3%2F%2F8cbvT%2BAMgVVHmjj1UOTlwNbiI1DJMQm%2FeAQlRgv3n3x86svmImhcwomjGGIx%2BuXpgb7vbqFjPdDsBnS3RM%2BW6KkSVG3A5f8bZKkdLTyq7xdi5Q1iZb3NWFl1%2ByBeJyeVKAhFK241GeexYDxo1uqtuu%2FXOA%2BbbRG0kbkxu6mX%2FgUAAP%2F%2FAQAA%2F%2F%2BzFV6JzAQAAA%3D%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 yearbookhobblespinal.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPd88cclsQkEtxsYhLJ1eqq6tlya6qaqu7pzR5kMUEjeNjgxWPPm%2F2DMYg56E0Ms7nIgJjJIQzi3nIPRAIeBJndhcXv0N%2FX773D9159n%2FfzPeIjp5NLF8yaVIrOR1W%2F8tY1qbkpXGXpaiXwq%2F7JyjWpG%2BHJyur0Y3vvBn5U9d%2BuvC%2FYipmv%2BYHvB35QOSetSMzq%2FD4Lmd5tB9W2Xw1r1SAKsWr%2F%2B%2B%2FyGTjqgff2yCuQfHxs%2Bdd7kGwI3f3hjHArmUnfOdvNFc2MRY%2FvfKRXtCk0ukdjYj0keudQDePGhHwzA6N3Dh3A9DanDhDLMfEeB4j1zuGaiHtbB5vGCkIj5i%2Bi6A0h1BCSDsHMDUj%2BkACMY%2BkidHd7ydiCXj9g6ZQdk9nnzyCLMZn981Xo7venlVytXDEqz6TRDqtJCbk6hOwMkea7yNY8yGIXLPsMkv9G5p8vQnc3LzplIPnkzUYtjGvtJJlr%2Bo3mXBhE%2FlyL%2B%2FW5GqdxK%2BYBb7Ta%2BxFJOYRMhlBiA9TNIHcecukhTzzkqYcun1Ro1E58v5nESb3eChlj9TpjUavBI14PW4mPnE09bCBLN8DUBpi9uZ3y5Wylt5nZXGzmmrl%2BsHMARfvY1hSL%2BgFSu44VeXtMyO4cbH4fbrmE48fgsjHxPlxHj5coBEHhCApKUEiCIiMoeuUWV67mym2uXB4Hh7122OvlwGSdPt0yWUdo0k%2F3yMvTpL3%2Fn7iDFTGptOu0GbFaGEUiCOvMbzc4D%2BIwYgltR%2B2GgJMlpJsBdR7W5Jgcn7yOVI7JsccTxHQXTu2CyZdA8xOgxaBZ80GXB2HLx5r%2BMZGqmxqrjcyoklSbqrEdcFMizWaRXff6ao8c33%2F6NqtBsNHCX%2F88%2B%2BlsfwRmS6S2xCfyAUFH3RpcNgXZvGwKR%2B5dTDPZlWt0ehZXMpqJ2TsfiOuFsfz8Gbfx7Sk2Jabj3avCZYtUc6k7jnx3WnIu7DljmSA%2Fn3fXRHwpd8unc6vzdPHSe%2BfOd1MrnJNGD0Hlw%2BbXYHJMXriwvn%2Fwr331ANIOYfMS3XxEDgvS7IKl63DpaOHpp3%2F%2F8cbvT%2BAMgVVHmjj1UOTlwNbiI1DJMQm%2FeAQlRgv3n3x86svmImhcwomjGGIx%2BuXpgb7vbqFjPdDsBnS3RM%2BW6KkSVG3A5f8bZKkdLTyq7xdi5Q1iZb3NWFl1%2ByBeJyeVKAhFK241GeexYDxo1uqtuu%2FXOA%2BbbRG0kbkxu6mX%2FgUAAP%2F%2FAQAA%2F%2F%2BzFV6JzAQAAA%3D%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t8GfuhFxUsO0UE8KLiz3TPd88cclsQkEtxsYhLJ1eqq6tlya6qaqu7pzR5kMUEjeNjgxWPPm%2F2DMYg56E0Ms7nIgJjJIQzi3nIPRAIeBJndhcXv0N%2FX773D9159n%2FfzPeIjp5NLF8yaVIrOR1W%2F8tY1qbkpXGXpaiXwq%2F7JyjWpG%2BHJyur0Y3vvBn5U9d%2BuvC%2FYipmv%2BYHvB35QOSetSMzq%2FD4Lmd5tB9W2Xw1r1SAKsWr%2F%2B%2B%2FyGTjqgff2yCuQfHxs%2Bdd7kGwI3f3hjHArmUnfOdvNFc2MRY%2FvfKRXtCk0ukdjYj0keudQDePGhHwzA6N3Dh3A9DanDhDLMfEeB4j1zuGaiHtbB5vGCkIj5i%2Bi6A0h1BCSDsHMDUj%2BkACMY%2BkidHd7ydiCXj9g6ZQdk9nnzyCLMZn981Xo7venlVytXDEqz6TRDqtJCbk6hOwMkea7yNY8yGIXLPsMkv9G5p8vQnc3LzplIPnkzUYtjGvtJJlr%2Bo3mXBhE%2FlyL%2B%2FW5GqdxK%2BYBb7Ta%2BxFJOYRMhlBiA9TNIHcecukhTzzkqYcun1Ro1E58v5nESb3eChlj9TpjUavBI14PW4mPnE09bCBLN8DUBpi9uZ3y5Wylt5nZXGzmmrl%2BsHMARfvY1hSL%2BgFSu44VeXtMyO4cbH4fbrmE48fgsjHxPlxHj5coBEHhCApKUEiCIiMoeuUWV67mym2uXB4Hh7122OvlwGSdPt0yWUdo0k%2F3yMvTpL3%2Fn7iDFTGptOu0GbFaGEUiCOvMbzc4D%2BIwYgltR%2B2GgJMlpJsBdR7W5Jgcn7yOVI7JsccTxHQXTu2CyZdA8xOgxaBZ80GXB2HLx5r%2BMZGqmxqrjcyoklSbqrEdcFMizWaRXff6ao8c33%2F6NqtBsNHCX%2F88%2B%2BlsfwRmS6S2xCfyAUFH3RpcNgXZvGwKR%2B5dTDPZlWt0ehZXMpqJ2TsfiOuFsfz8Gbfx7Sk2Jabj3avCZYtUc6k7jnx3WnIu7DljmSA%2Fn3fXRHwpd8unc6vzdPHSe%2BfOd1MrnJNGD0Hlw%2BbXYHJMXriwvn%2Fwr331ANIOYfMS3XxEDgvS7IKl63DpaOHpp3%2F%2F8cbvT%2BAMgVVHmjj1UOTlwNbiI1DJMQm%2FeAQlRgv3n3x86svmImhcwomjGGIx%2BuXpgb7vbqFjPdDsBnS3RM%2BW6KkSVG3A5f8bZKkdLTyq7xdi5Q1iZb3NWFl1%2ByBeJyeVKAhFK241GeexYDxo1uqtuu%2FXOA%2BbbRG0kbkxu6mX%2FgUAAP%2F%2FAQAA%2F%2F%2BzFV6JzAQAAA%3D%3D HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Cookie: u_pl=16702944,17309098; ain=eyJhbGciOiJIUzI1NiJ9.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.cJXvnJfifZf0kK7PcsGwnuJpqdC_C37xaj2_91atst4; uid_id2=624b29ff-7067-4150-8d03-2dab8bd1d689:2:1; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; pdhtkv29=true; uncs29=1; slec93a75c2455e143c096dd1b45cfa9596e=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8252a60e645cac8eb80169f2c1b2892d
Strict-Transport-Security: max-age=0; includeSubdomains
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145386243-1&cid=2130573375.1669623372&jid=1080771471&gjid=2037488144&_gid=1855179237.1669623375&_u=YADAAUAAAAAAACAAI~&z=2135602795
142.251.1.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145386243-1&cid=2130573375.1669623372&jid=1080771471&gjid=2037488144&_gid=1855179237.1669623375&_u=YADAAUAAAAAAACAAI~&z=2135602795
IP 142.251.1.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-145386243-1&cid=2130573375.1669623372&jid=1080771471&gjid=2037488144&_gid=1855179237.1669623375&_u=YADAAUAAAAAAACAAI~&z=2135602795 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://filmpornoitaliano.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 08:16:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
172.64.108.13200 OK 1.8 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
IP 172.64.108.13:0
Hash eeb02671d42395a68c1210335adc9fe7
4212fa54f8b6b9219f0667baf270bd1939f35bde
a40650963f420bb25d5b02067bf9429f00851d2068f91e4ccb28d457ecb46c9d
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-11aa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J8PMVeQmeroh6sQChDjO0lzuli3Il1KQha2nVRJGMX%2Bm51wTRov6YYzh9Ncfygg3SEg8N35mXKZ4pSgdVY7AMjw4QPTqRNoOrKxftg4w9RofdDoOuqnN6yqMXLNJgSfB%2Fay1XQwVZ9UX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914799d72ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=93a75c2455e143c096dd1b45cfa9596e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=93a75c2455e143c096dd1b45cfa9596e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=93a75c2455e143c096dd1b45cfa9596e&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc0c6ed16ef086510ca9f16c72c394c9
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=63c54fcf82aeb3fc5686b3899eaa5f16&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=63c54fcf82aeb3fc5686b3899eaa5f16&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=624b29ff-7067-4150-8d03-2dab8bd1d689&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1311&b_frame=0&pk=63c54fcf82aeb3fc5686b3899eaa5f16&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 28 Nov 2022 08:16:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1dde11d87036b475bd13f054a4f8c10
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 08:16:16 GMT
date: Mon, 28 Nov 2022 08:16:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.203.23200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.203.23:0
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:13 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: a85afdea1205c76a97161fd8baddc548
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 28 Nov 2022 08:16:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7cr7ybrVpqa%2Bq7OpZ1CVxuknz0csjVbuqFe4hwpntfzxq9TQ%2FdluIW8jELrcllT9spFum3hlgEZ8O4MjXJhv9ssvYC26YfJ60NN7cwwVSdAMtDKhj155NAswMBnYUntpIXKIw2g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a906bbf3e628-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
45.133.44.3200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert fortinet Phishing
GET /sb/interstitial/software/flashPlayer/mac/multi/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 01 Sep 2021 12:22:33 GMT
etag: W/"612f7089-cfb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Mon, 28 Nov 2022 09:16:15 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
45.133.44.3200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert fortinet Phishing
GET /sb/interstitial/software/flashPlayer/mac/multi/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:15 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 01 Sep 2021 12:22:33 GMT
etag: W/"612f7089-cfb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Mon, 28 Nov 2022 09:16:15 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js
IP 172.64.108.13:0
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:37 GMT
etag: W/"612f708d-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1102926
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5k8G6MlhqtteBzj8sdpBMRnZx%2Bd6x4QrCsVo0lpDFAmOdtZEUMI1S3gjcgZuzxFmn6WTZznbOw8bPK2DkLPL78zqa9aIZy0V4so1ee7kshiSFB4d74d%2B6EUOPXjhcU%2FROm1LoqBVpALy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914ed49778b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 29 Dec 2022 08:16:14 GMT
etag: W/"n/ARilLrRVDeZNVpaPOsXg=="
cf-cache-status: HIT
age: 748624
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a90c18b1b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
IP 172.64.108.13:0
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:16 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7dmG7AleodcEYK%2Fn2h22SnsiPZeU%2FWtf%2FxRmEzAbYyO4Pcq7%2FwXDPiYKxgqg2BJuA25dWH%2BfUng9HV0ZkTvz3UjdCw8RaD6t9TIPUKu2S9uEAmdxOtPpkhJznm%2BqAQDSLeXn1mMuPp8w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7711a914799b72ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.displayvertising.com/keras.js
185.76.9.18200 OK 0 B URL HTTP/2 www.displayvertising.com/keras.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /keras.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filmpornoitaliano.org
Connection: keep-alive
Referer: https://filmpornoitaliano.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 08:16:14 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
expires: Sun, 04 Dec 2022 14:16:23 GMT
access-control-allow-origin: *
link: <https://displayvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1670163383
server: CDN77-Turbo
x-77-nzt: AblMCQ0klO//F/0AAA
x-77-nzt-ray: c0a4cc28a8d73ba94e6e846344a58f07
x-cache: HIT
x-age: 64791
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2