www.porndig.stream/
198.251.89.164301 Moved Permanently 707 B IP 198.251.89.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET / HTTP/1.1
Host: www.porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 23 Jan 2023 07:40:39 GMT
server: LiteSpeed
location: https://www.porndig.stream/
vary: User-Agent
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5942
Expires: Mon, 23 Jan 2023 09:19:41 GMT
Date: Mon, 23 Jan 2023 07:40:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13919
Expires: Mon, 23 Jan 2023 11:32:38 GMT
Date: Mon, 23 Jan 2023 07:40:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 23 Jan 2023 07:34:59 GMT
content-type: application/json
age: 340
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14789
Expires: Mon, 23 Jan 2023 11:47:08 GMT
Date: Mon, 23 Jan 2023 07:40:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8zlVOc8ABHemxoUdfA9PxB97MP4xh5E1+lsmKUG0yDYDaIvvwH50lfy2n/+wLkCaBeK9kwEn05g=
x-amz-request-id: M475Y2D88BQAV4H8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 23 Jan 2023 06:47:37 GMT
age: 3182
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 07:40:39 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5a4192229a3f5b33377ec7d0ed06a630
fb1c14fdd756f23955e8d3b0d36a037eb53860f2
08336ca32b32fc16856a3d092c1f1277cdeb918e008099cbb10fbf09a5a8ea5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08336CA32B32FC16856A3D092C1F1277CDEB918E008099CBB10FBF09A5A8EA5E"
Last-Modified: Mon, 23 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Mon, 23 Jan 2023 13:39:59 GMT
Date: Mon, 23 Jan 2023 07:40:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 23 Jan 2023 07:17:30 GMT
age: 1389
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.porndig.stream/
198.251.89.164301 Moved Permanently 0 B IP 198.251.89.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://porndig.stream/
content-length: 0
date: Mon, 23 Jan 2023 07:40:39 GMT
server: LiteSpeed
vary: User-Agent
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 07:40:40 GMT
Last-Modified: Mon, 23 Jan 2023 06:24:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.202.214101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.202.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cxCzbVInGxPASDMnCtxmiw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Lfykstjy43EfUtJgG12H+C9HvI=
porndig.stream/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
198.251.89.164200 OK 12 kB URL HTTP/2 porndig.stream/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 198.251.89.164:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 01:26:46 GMT
etag: "172a9-636ef656-e92476ae5f8a7127;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-includes/css/classic-themes.min.css?ver=1
198.251.89.164200 OK 144 B URL HTTP/2 porndig.stream/wp-includes/css/classic-themes.min.css?ver=1
IP 198.251.89.164:0
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 23:15:16 GMT
etag: "d9-63586e04-c0e14156a4e1b17f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 144
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
198.251.89.164200 OK 4.6 kB URL HTTP/2 porndig.stream/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 198.251.89.164:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:26:24 GMT
etag: "48b9-62559a20-54ebae833d2c3073;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
198.251.89.164200 OK 6.7 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 198.251.89.164:0
File type ASCII text, with very long lines (30837)
Hash 97c6ce9b4936f66aa388ad33c39aba2d
3f14a7e78fbb4935cf35c20779dc2035531849a9
1eea453c424793fc56ef14093c10b373e3ca8388a70e847394e8084048c5ce38
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "7918-63c07226-46ab73bb6bf6a681;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6658
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/style.css?ver=1.6.9.1673556519
198.251.89.164200 OK 14 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/style.css?ver=1.6.9.1673556519
IP 198.251.89.164:0
File type assembler source, ASCII text
Hash a0be75fc6e3b2fcf222a94ebc50a59a9
20be408ad04d1ecd6c71ebd256d5e5737b0b44ba
599edbc94c4b165e8319427bfbd72f5c8c4e6e1623e4a4ada1c072d6bb004c96
GET /wp-content/themes/retrotube/style.css?ver=1.6.9.1673556519 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: text/css
last-modified: Thu, 12 Jan 2023 20:48:39 GMT
etag: "125d2-63c07227-4845d66075cfde44;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 13767
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
198.251.89.164200 OK 30 kB URL HTTP/2 porndig.stream/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 198.251.89.164:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 23:46:24 GMT
etag: "15e54-6328ff50-e92b351059128197;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.251.89.164200 OK 4.0 kB URL HTTP/2 porndig.stream/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.251.89.164:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
etag: "2bd8-5fb577a6-9559b5b4d867f085;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0
198.251.89.164200 OK 1.4 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0
IP 198.251.89.164:0
Hash 4e6d98fafbafe5469a5e8fdb1f655815
69a9c68becbd1bf5c272c6c890b552a70803591a
3323c9b62fb91e7cfdcc5050e9c829b9dc1651bb5e1c0f5920ac3b9c651e5fea
GET /wp-content/themes/retrotube/assets/js/navigation.js?ver=1.0.0 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "1194-63c07226-9e0ad00d1ab68613;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1389
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15
198.251.89.164200 OK 6.0 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15
IP 198.251.89.164:0
File type ASCII text, with very long lines (24063)
Hash 94266a9583efcafc9a756be224186803
cb0ff3fc1729e4f0010e05b5a4371e6a07f8ff16
518ef7b2d96759800bc7219ff799938689a0818f52f0891b74d93a5ebd89fae5
GET /wp-content/themes/retrotube/assets/js/jquery.bxslider.min.js?ver=4.2.15 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "5ebc-63c07226-e10bddc96f497a1e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6043
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
198.251.89.164200 OK 4.9 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18
IP 198.251.89.164:0
File type ASCII text, with very long lines (20018)
Hash 8516c138b4536fb64c60ea084c7b006e
30956adc4c1fc9857743f76ed7194df16855b0fc
27ea545879242163b0d90f8d9d9631766643acc64e3602f846fa8a40ee0dcf24
GET /wp-content/themes/retrotube/assets/js/jquery.touchSwipe.min.js?ver=1.6.18 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "4fce-63c07226-f50804e788a9962a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4899
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0
198.251.89.164200 OK 2.0 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0
IP 198.251.89.164:0
File type ASCII text, with very long lines (5710)
Hash aafaeb7d8a617c62b5bb410c4cd8436b
dcaaad43f9f2f59b49a59d8deeb645c6dc049036
6b6fd52018bfe935a6f292b13aad6429e638c8266ef15bc313934f389ab6be31
GET /wp-content/themes/retrotube/assets/js/lazyload.js?ver=1.0.0 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "167b-63c07226-b3843d7248b2277e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2036
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
porndig.stream/wp-content/themes/retrotube/assets/js/main.js?ver=1.6.9.1673556518
198.251.89.164200 OK 9.7 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/js/main.js?ver=1.6.9.1673556518
IP 198.251.89.164:0
Hash 2ed15bb3aa781a71a0b865b6a0ee8559
a52352218818e456c67aa658c1bbfd7e5060b9cb
23880a75522d0e0fde362083df874afe51668732de51c67040f03b6a956898e6
GET /wp-content/themes/retrotube/assets/js/main.js?ver=1.6.9.1673556518 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 20:48:38 GMT
etag: "996b-63c07226-1876e4fecd0cb3f6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9656
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2a0e58492db0f45330351f96ec85133f
f96bd35eb0a9e19e427ac64ca5e7aaa2520b020b
39f1fd68c40405dad344f4f8c1e471f4d8f53a9da995de0420b5ab4990e855c4
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 07:40:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 06:25:39 GMT
Expires: Fri, 27 Jan 2023 06:25:38 GMT
Etag: "f96bd35eb0a9e19e427ac64ca5e7aaa2520b020b"
Cache-Control: max-age=603372,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1196
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78dee1f218ffb511-OSL
porndig.stream/wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
198.251.89.164200 OK 77 kB URL HTTP/2 porndig.stream/wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 198.251.89.164:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/retrotube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://porndig.stream/wp-content/themes/retrotube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:40 GMT
content-type: font/woff2
last-modified: Thu, 12 Jan 2023 20:48:39 GMT
etag: "12d68-63c07227-64feb621117a933c;;;"
accept-ranges: bytes
content-length: 77160
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eceeedfa36777bd89543d7df57a20479
afce24b5f2d228d7ec972f820d79926857b9cd35
93aa1f5bf17edd1554abd3003074f7c020082525b592aee308273f9f0389d0fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93AA1F5BF17EDD1554ABD3003074F7C020082525B592AEE308273F9F0389D0FC"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11569
Expires: Mon, 23 Jan 2023 10:53:30 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de786adf4fbb0ad7a845231d426ea795
3d95b93d33b99493f46b5bf3e07432dd08f0dff5
37321ae837f4effbea5d3823acba9066647903b048d75cae4ccb1df6d4be33b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37321AE837F4EFFBEA5D3823ACBA9066647903B048D75CAE4CCB1DF6D4BE33B7"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12242
Expires: Mon, 23 Jan 2023 11:04:43 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
pl18269387.highcpmrevenuenetwork.com/9900c627bce1220b67ea6c5bcb84d199/invoke.js
173.233.137.36200 OK 9.3 kB URL HTTP/1.1 pl18269387.highcpmrevenuenetwork.com/9900c627bce1220b67ea6c5bcb84d199/invoke.js
IP 173.233.137.36:0
File type Unicode text, UTF-8 text, with very long lines (25133), with no line terminators
Hash fb95a225c86952a897e400a6c0202d75
b71a58933d2ef51f16913def378f1aaa6bcbac27
597d948213acce9ad63bb43bf8a9d654e6eeb7241e60deedb80457c93f0afab0
Analyzer Verdict Alert quad9 Sinkholed
GET /9900c627bce1220b67ea6c5bcb84d199/invoke.js HTTP/1.1
Host: pl18269387.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 685c4d756e032769022fedfe0d097b38
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.effectivecreativeformat.com/a84509fd7eaa024623a5d8aaa970f568/invoke.js
173.233.137.44200 OK 9.8 kB URL HTTP/1.1 www.effectivecreativeformat.com/a84509fd7eaa024623a5d8aaa970f568/invoke.js
IP 173.233.137.44:0
File type exported SGML document, ASCII text, with very long lines (26937), with no line terminators
Hash 226dcdbc2d6c9413c779ec60e84f9d63
5152bdd0313f865a8a1776eeee99b2188616a872
a899a76e1ce217ba51f499b93c9bf875fa9752576e047cae485f027b37c8adf3
Analyzer Verdict Alert quad9 Sinkholed
GET /a84509fd7eaa024623a5d8aaa970f568/invoke.js HTTP/1.1
Host: www.effectivecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 95e24a8ccb4a8e6b577be667c28b1ddd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl18269414.highcpmrevenuenetwork.com/74/60/00/74600040181bc2451623866a3e00bca3.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 pl18269414.highcpmrevenuenetwork.com/74/60/00/74600040181bc2451623866a3e00bca3.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37137), with no line terminators
Hash 1c6ba5ddd5295eb6358d793edffa5fdd
3c50316189e6947798102af56f9f7629516c8f98
e4f6ba9997ff24b2bf303af562a085098c314e859e1adfa4572a0c35a8b6557d
Analyzer Verdict Alert quad9 Sinkholed
GET /74/60/00/74600040181bc2451623866a3e00bca3.js HTTP/1.1
Host: pl18269414.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c8a7333af4ad596bc793ded769f9b473
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
porndig.stream/wp-content/uploads/2023/01/pussy-fingered-and-then-fucked.jpg
198.251.89.164200 OK 12 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/pussy-fingered-and-then-fucked.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash c8b7b113d6cc4e91a9b021dad9bfc390
bdbaa594ea7470c6bfcc0427ce04d7230d719667
d6a7188ccd744cdd5cb9f24672d9f7b2c0b5190634a90eff5706c3e2804294ee
GET /wp-content/uploads/2023/01/pussy-fingered-and-then-fucked.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Thu, 12 Jan 2023 22:45:39 GMT
etag: "2e71-63c08d93-c2b6391178eab0b0;;;"
accept-ranges: bytes
content-length: 11889
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
pl18269349.highcpmrevenuenetwork.com/e0/fc/25/e0fc25fc4c3981cf78532ee80c7af7a2.js
192.243.59.12200 OK 21 kB URL HTTP/1.1 pl18269349.highcpmrevenuenetwork.com/e0/fc/25/e0fc25fc4c3981cf78532ee80c7af7a2.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60146), with no line terminators
Hash 5f30ee4ebdb7e9daf8a80baccf19fbf4
b1813e3dff8248fdcb75fd911d8d6038ba9a2dde
5459ef5cd9c641533f1c6193829e87b0f3c20e64106f505cb16370e96579e293
Analyzer Verdict Alert quad9 Sinkholed
GET /e0/fc/25/e0fc25fc4c3981cf78532ee80c7af7a2.js HTTP/1.1
Host: pl18269349.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4896da20d6fb701909b133e3f99273e0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109789
Date: Mon, 23 Jan 2023 07:40:41 GMT
Etag: "63cd3a95-1d7"
Expires: Tue, 24 Jan 2023 14:10:30 GMT
Last-Modified: Sun, 22 Jan 2023 13:31:01 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3b7SY8KjggIhzorAj4Vsc1ZA0ZzHXiLcn7-KN4e47WXSYcox128Jhw==
Age: 2369
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109646
Date: Mon, 23 Jan 2023 07:40:41 GMT
Etag: "63cd3a95-1d7"
Expires: Tue, 24 Jan 2023 14:08:07 GMT
Last-Modified: Sun, 22 Jan 2023 13:31:01 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kf8g6ZFx6ICj8PrWhSUzTg6iAyT9ZfVxkxtU7UXgg4fRIDwLOc9w1Q==
Age: 2226
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 48dee062465b5011b093800964b156cf
8db0ceb81eb58144b44144c811da20e227d862a1
0a6cad05e6a5a5e17f807c60cf69932ea8bda50d25a6f20c99ad5cc1812050d4
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://porndig.stream
access-control-allow-credentials: true
set-cookie: uid_id2=558f4742-e186-4a23-813d-52f24004ce20:1:1; expires=Thu, 20 Jan 2033 07:40:41 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/japanese-milf-gets-cum-in-mouth-and-creampie.jpg
198.251.89.164200 OK 21 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/japanese-milf-gets-cum-in-mouth-and-creampie.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash 8823bc07f60e0d3de83bd567d1c1a922
1a663c63f318433f318942dc3c927db12054d3cc
293b533fe2531fa4d92b34e28d6f2f56711ea44a84c14ac7b0a75f34df8d0bc0
GET /wp-content/uploads/2023/01/japanese-milf-gets-cum-in-mouth-and-creampie.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Sun, 15 Jan 2023 11:18:12 GMT
etag: "51d1-63c3e0f4-9117e7ddcb3284df;;;"
accept-ranges: bytes
content-length: 20945
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 28d2cc9f1bf8be7c4932de240727719f
21594a073654b87577d36c86e1e30ec510eac119
0f1f99f7682738ea94f959766846652d880f1f5c61a66bfd556928506dd3d6f7
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://porndig.stream
access-control-allow-credentials: true
set-cookie: uid_id2=b1312b2c-ffc8-44e9-986e-c4176f8a703a:2:1; expires=Thu, 20 Jan 2033 07:40:41 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/hanna-lay-meets-beerman.jpg
198.251.89.164200 OK 35 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/hanna-lay-meets-beerman.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 0a9ce6184aa81db88d409db0cb3a655d
e8e793c886ebad9080fd8f458b51f39bd391027f
61cf3607df5eba0ae932c375e430b28be614ff2c2f69569daf712b3deed669dd
GET /wp-content/uploads/2023/01/hanna-lay-meets-beerman.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Sat, 14 Jan 2023 08:22:51 GMT
etag: "8a18-63c2665b-4c918c4a40b45f10;;;"
accept-ranges: bytes
content-length: 35352
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/shy-teen-gets-fucked-first-with-dildo-and-then-hard.jpg
198.251.89.164200 OK 36 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/shy-teen-gets-fucked-first-with-dildo-and-then-hard.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 85a19f2fa3f47e5edc1c61f98e8f3816
f974a988e2ed70483382e82545da9add94a8acd1
1e3c9766367ae6f154ec2eb5cd9bf9befe85d743644a395aad3bfba8d25e8bf5
GET /wp-content/uploads/2023/01/shy-teen-gets-fucked-first-with-dildo-and-then-hard.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Sun, 15 Jan 2023 10:46:22 GMT
etag: "8ccf-63c3d97e-c0010d5df68cbada;;;"
accept-ranges: bytes
content-length: 36047
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash e21c153a35c7d667359faaa462372b70
a871f1c4946583af44c0e737e7c3e087f3afcea8
a91a872fb138d84cb44f89ca04b991e60b4fea116dca172ed9896ffe50e4fccb
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://porndig.stream
access-control-allow-credentials: true
set-cookie: uid_id2=cf93a183-a487-42fb-a3d4-781e41143ba6:1:1; expires=Thu, 20 Jan 2033 07:40:41 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/fuzzy-sweater-gloved-handjob-fetish.jpg
198.251.89.164200 OK 25 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/fuzzy-sweater-gloved-handjob-fetish.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 7b08985c761ad11abbf662d372eef01b
d96e0aaa172d16cfd0cfa24487f5a6434e8c5ced
834e8a039f1e1b8861fd44020062a1f057260dcc2942964d7979e522042b8b92
GET /wp-content/uploads/2023/01/fuzzy-sweater-gloved-handjob-fetish.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:29:02 GMT
etag: "60b6-63c1326e-9044c2201023a5f3;;;"
accept-ranges: bytes
content-length: 24758
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5295
Expires: Mon, 23 Jan 2023 09:08:56 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 182d94c1b7360c3c612b80b81ba12ed9
8c28891b39b32a2c552036a976810e75ee0d53b0
b01a47c5b2a3841fc1771976302389881858cb894036a1c115dc68688e6e8e89
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://porndig.stream
access-control-allow-credentials: true
set-cookie: uid_id2=cc767dc7-2c98-444b-8320-cecb61233b5c:2:1; expires=Thu, 20 Jan 2033 07:40:41 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5295
Expires: Mon, 23 Jan 2023 09:08:56 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5295
Expires: Mon, 23 Jan 2023 09:08:56 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5295
Expires: Mon, 23 Jan 2023 09:08:56 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
porndig.stream/wp-content/uploads/2023/01/comes-home-finds-twerking-in-her-santa-bikini-suit-with-aria-lee.jpg
198.251.89.164200 OK 31 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/comes-home-finds-twerking-in-her-santa-bikini-suit-with-aria-lee.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 140494772caa8134b932e6759b85e067
b7416b8fe50fa36e55b66efb497563aa26f47a57
33504654fdf2245f428951ca6d622dea680d270d83be07c25ea585c42e427409
GET /wp-content/uploads/2023/01/comes-home-finds-twerking-in-her-santa-bikini-suit-with-aria-lee.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 21:24:03 GMT
etag: "7945-63c1cbf3-a557676736691672;;;"
accept-ranges: bytes
content-length: 31045
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/raunchy-nymph-sodomy-porn-clip.jpg
198.251.89.164200 OK 25 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/raunchy-nymph-sodomy-porn-clip.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash eedf65c935afa81e231c8d3e5b00c180
be72e244b60b87adbd9a723e1d889fd59ccd95d8
3b94857b0878659ee846fe5b3e99293b0b719ce46195e50168678ed7e51b6ccd
GET /wp-content/uploads/2023/01/raunchy-nymph-sodomy-porn-clip.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Thu, 12 Jan 2023 22:39:36 GMT
etag: "60c5-63c08c28-f0f833c20583f013;;;"
accept-ranges: bytes
content-length: 24773
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/bosomy-anal-milf-enjoys-pov-assride-while-talks-dirty-1.jpg
198.251.89.164200 OK 30 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/bosomy-anal-milf-enjoys-pov-assride-while-talks-dirty-1.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 953a1003fbc48d7770a442398ac2457e
8dead727e4934eb674e31c3c86b78a7280aca174
5ae137d604d91268c5df6aa0156c8dcbb774b33d2601564de57f6d1a54544ac4
GET /wp-content/uploads/2023/01/bosomy-anal-milf-enjoys-pov-assride-while-talks-dirty-1.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:31:39 GMT
etag: "75f3-63c1330b-6d72b9d90353d08c;;;"
accept-ranges: bytes
content-length: 30195
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/brunette-babe-plays-with-herself.jpg
198.251.89.164200 OK 18 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/brunette-babe-plays-with-herself.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 24f3464555e3750c093d40625417ed97
70f205827189a21d1b259867c4186aa243f4dc53
d54777c873dae411ef689661ef3fb7d14c7d5375cbdf1f61f4d9ccfc607c20b7
GET /wp-content/uploads/2023/01/brunette-babe-plays-with-herself.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:44:02 GMT
etag: "4441-63c135f2-f166a9ff98e9ab33;;;"
accept-ranges: bytes
content-length: 17473
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/deepthroat-throatpie-puke.jpg
198.251.89.164200 OK 40 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/deepthroat-throatpie-puke.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 635f77d2ad80aa730ce05f54543a539c
05134388d45b3e77ce651395a17e0e10b2a7e669
f04365ac19a6def2a212ddcae8657c8fbcda34f37278500c3b00dee60fb71aeb
GET /wp-content/uploads/2023/01/deepthroat-throatpie-puke.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:26:09 GMT
etag: "9cbc-63c131c1-b5ddda625aabad07;;;"
accept-ranges: bytes
content-length: 40124
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9c3ffa-5410-4219-9a01-9a5dfe5e8de7.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9c3ffa-5410-4219-9a01-9a5dfe5e8de7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 257cf33430d0e588ce0df41deb9c49d2
c988799bc70b567422821f64bb95ecab4b117e3a
290eec9c2d3874a3951c161174d7fcc297f79d4f547bb9aa741ee85306cd7a90
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9c3ffa-5410-4219-9a01-9a5dfe5e8de7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10481
x-amzn-requestid: a9d3763c-d10b-4918-a54d-67215346ba1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFHEVFxUoAMFaCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb854e-1d7dec1810076c6c27f5a44f;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:25:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XABOTraN3uT05OLykQNO_cG8YdMyJsc0We-vLtr8XKVRe3cHuFtmBA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 11:27:49 GMT
age: 72772
etag: "c988799bc70b567422821f64bb95ecab4b117e3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0a4afa9-05c4-4ab9-b9eb-17970c04dbbb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0a4afa9-05c4-4ab9-b9eb-17970c04dbbb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c664f89307d9f2cc8170ca0816708ef9
cc010d66fe22fce8e82f9bbc78fc3b836120ff0b
c77d9cae0c4132f2695322b8c33fa875a341948ffb6c3023ddb1d3ef41c9ae23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0a4afa9-05c4-4ab9-b9eb-17970c04dbbb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3814
x-amzn-requestid: 48468720-0305-4f17-862b-f2f854fdfe41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKq8mEPnIAMFzXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdbeb6-470a030661c749ae0fa14c31;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 22:54:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9hQjtfheswJHTaBL6yZ9UoowbsfqvbNqzUb9EOzaAppGv-fHat8O1A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 23:09:20 GMT
etag: "cc010d66fe22fce8e82f9bbc78fc3b836120ff0b"
content-type: image/jpeg
age: 30681
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eac67b57277f6a61589ef5f6a4daccbb
654c00ad053213758c5946123f49cb157f751570
9271b578346c4e1c2192c5d64222af2874fc86e25e886c76a5d70e34d308f694
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7244
x-amzn-requestid: a9dfb0b3-2f43-49c0-8341-d242de8f6fe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbl8HHyIAMFS3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a625-06ec97e4419248a777ed9e77;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:07:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -3JCZD1szH0NrhnFUCfgumEhgspdlZH0J7MjijWCVhiXzVAnR8inGg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 12:04:38 GMT
age: 70563
etag: "654c00ad053213758c5946123f49cb157f751570"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5401628b3bdd03eeee51f68177ac4d41
bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29
3e231ba2e44699d88ed1e28510dad0762a57e0854a11d40f752421bd41738944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10052
x-amzn-requestid: 10422f29-dc81-41f9-b03e-76fb2b0f4f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2vnHFT9oAMFbmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c62d-780503606bec4fff6e911fc8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:48:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQaGhmXW_zeKd-WXUxi_z0e3Ul1YrtBgIbPEEWRfQfG7d8C0JyZdXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:56:00 GMT
age: 35081
etag: "bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 07:21:00 GMT
age: 1181
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2146bf738fb2120d9f167533c7ec2ab
ce546aa88e2ab0958a99c5a8240fcd95500ef1ea
54405cd0508b2dcf343c3b8563ad8bb484f01866e58b29a034aa650a415925d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: 364176ba-8f3f-4e2f-8d52-8c03d91b5f02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEHMsoAMFysQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-33117b2d2175e2d55cedfa1f;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: avMFeAuR4DRfk759c1EL880OtEdTXp2fnCFv9aflVuurrqOi71rE6A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:56:00 GMT
age: 35081
etag: "ce546aa88e2ab0958a99c5a8240fcd95500ef1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/erica-lauren-full-babysitting-service.jpg
198.251.89.164200 OK 24 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/erica-lauren-full-babysitting-service.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 636d617104ff2a2b49f467d440d93efe
d59275185a52ed39f5447e862d86fa065de85192
7a37f58f2346eadf324c67f9507b4f57d1dfbba4dfa5ff1fbb22abe79724b4bd
GET /wp-content/uploads/2023/01/erica-lauren-full-babysitting-service.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:20:39 GMT
etag: "5e86-63c13077-a9a56246f4f3840f;;;"
accept-ranges: bytes
content-length: 24198
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/ebony-girl-in-construction-hazard-suit-getting-fucked-hardcore-full-video-on-xvideos-red-7-min.jpg
198.251.89.164200 OK 13 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/ebony-girl-in-construction-hazard-suit-getting-fucked-hardcore-full-video-on-xvideos-red-7-min.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x180, components 3\012- data
Hash 61488123a6559327efcb4ef0d48103bd
a1ab73a55c77fb1587c564add737470b67452f27
9f3160c5fbac793880b80c92dbf07fc6dfb96d6054c92eea5d34a2403f42cf0f
GET /wp-content/uploads/2023/01/ebony-girl-in-construction-hazard-suit-getting-fucked-hardcore-full-video-on-xvideos-red-7-min.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Thu, 12 Jan 2023 22:44:14 GMT
etag: "321a-63c08d3e-8dcef08a5f651c70;;;"
accept-ranges: bytes
content-length: 12826
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/vow-of-depravity-with-rebecca-vanguard.jpg
198.251.89.164200 OK 28 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/vow-of-depravity-with-rebecca-vanguard.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 3d786760b406337cbec63f0bf5bd98f0
36a9f9059ee045e531acd5b122aac6ce7587d304
6220cf54939a1bca5e89f1969a3d078c008de4e386c350f86cdca75c8e8baab2
GET /wp-content/uploads/2023/01/vow-of-depravity-with-rebecca-vanguard.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:36:54 GMT
etag: "6ddb-63c13446-aebba77b8f484fe7;;;"
accept-ranges: bytes
content-length: 28123
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/skinny-cocksucking-babe-pov-banged-in-amateur-closeup.jpg
198.251.89.164200 OK 36 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/skinny-cocksucking-babe-pov-banged-in-amateur-closeup.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash 5fe3760075352c7cf9c2deacd3a3514a
9f73570d92e88cc2cbd5a4bc260ae5095e6e4645
ac6a3b672d8245a19977cb0f2bcff074c0000dbc860e10ef9104c109c2a68868
GET /wp-content/uploads/2023/01/skinny-cocksucking-babe-pov-banged-in-amateur-closeup.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Fri, 13 Jan 2023 10:26:43 GMT
etag: "8aa8-63c131e3-a366725bfbb8c0b5;;;"
accept-ranges: bytes
content-length: 35496
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/glam-clothed-domina-brits.jpg
198.251.89.164200 OK 24 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/glam-clothed-domina-brits.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash 30b898da84c5c6f84a444078689bcb15
1cc720468dcd7caefc09029eb7f25083ac0134e8
d96ced9490ca4e260aee9c078c076747154315a4137429f074e3d6af393ce794
GET /wp-content/uploads/2023/01/glam-clothed-domina-brits.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Sun, 15 Jan 2023 11:06:27 GMT
etag: "5c84-63c3de33-5a3b9b441836fdb0;;;"
accept-ranges: bytes
content-length: 23684
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
porndig.stream/wp-content/uploads/2023/01/candy-alexa-the-russian-dentist.jpg
198.251.89.164200 OK 31 kB URL HTTP/2 porndig.stream/wp-content/uploads/2023/01/candy-alexa-the-russian-dentist.jpg
IP 198.251.89.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Hash eac70a57ede189f0ad747e5ea0e0185d
bdb5db8f3e2fbda12f3b487167c0551b99e8d8ae
da674f24d35310182dd3781d834681d33ed57251bee3ec0eda223bd5ca7637d3
GET /wp-content/uploads/2023/01/candy-alexa-the-russian-dentist.jpg HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 30 Jan 2023 07:40:41 GMT
content-type: image/jpeg
last-modified: Sun, 15 Jan 2023 10:56:06 GMT
etag: "77e0-63c3dbc6-7620b6539b330e0c;;;"
accept-ranges: bytes
content-length: 30688
date: Mon, 23 Jan 2023 07:40:41 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 280 B IP 172.64.155.188:0
Hash 2caf8ebbccac36624835e476bd752470
d448afff192dfba8b0c3641d8c7959141a81c277
8950b6ccbe44200ab078ef8a957f56137fa8ceb87110d071e15aeec10e8d6db2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Sun, 22 Jan 2023 16:43:14 GMT
Expires: Sun, 29 Jan 2023 16:43:13 GMT
Etag: "d448afff192dfba8b0c3641d8c7959141a81c277"
Cache-Control: max-age=550351,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78dee1f73f86b518-OSL
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 23f4b01a430ac3cd131f4b0afadbc101
f523c41c49e2fa293046770278341bf9e85b02b3
d89e48ee244a88b167102bbd865e00b0407715100cb9f8b94595270869abd926
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "D89E48EE244A88B167102BBD865E00B0407715100CB9F8B94595270869ABD926"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14399
Expires: Mon, 23 Jan 2023 11:40:40 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c114470e06c3d9e0d086c48ed625dde5
9d80dc7d6c2b9b643ee9c76d9e0b8ed5a8efe30d
f728e16a3d64dc192d880c81c06c29652fa6d5f0f92804fd49e380c7cd8c3771
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F728E16A3D64DC192D880C81C06C29652FA6D5F0F92804FD49E380C7CD8C3771"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3775
Expires: Mon, 23 Jan 2023 08:43:36 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 44eaa78cd3f0e25132689c2499af76c0
432ab37ac95fdf6d36ebd49db54ccbfa05ee6cab
95ca8f54f1ca0d7dbed8b30c36324f89af7e0bf414e14e264c202a7b7eb338e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "95CA8F54F1CA0D7DBED8B30C36324F89AF7E0BF414E14E264C202A7B7EB338E2"
Last-Modified: Sat, 21 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3413
Expires: Mon, 23 Jan 2023 08:37:34 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 23f4b01a430ac3cd131f4b0afadbc101
f523c41c49e2fa293046770278341bf9e85b02b3
d89e48ee244a88b167102bbd865e00b0407715100cb9f8b94595270869abd926
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "D89E48EE244A88B167102BBD865E00B0407715100CB9F8B94595270869ABD926"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14399
Expires: Mon, 23 Jan 2023 11:40:40 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4673c8961fd73951f8815ca23c01a9aa
c80907de09d1d6ce0d9cab111714ed7750ee2416
7a9bc33c817802cf8e2ad2876396606a4242dbfdc3a3577bf927e7b4d93cc040
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7A9BC33C817802CF8E2AD2876396606A4242DBFDC3A3577BF927E7B4D93CC040"
Last-Modified: Sun, 22 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9229
Expires: Mon, 23 Jan 2023 10:14:30 GMT
Date: Mon, 23 Jan 2023 07:40:41 GMT
Connection: keep-alive
static.a-ads.com/a-ads-banners/406681/300x250?region=eu-central-1
178.63.97.71200 OK 621 kB URL HTTP/2 static.a-ads.com/a-ads-banners/406681/300x250?region=eu-central-1
IP 178.63.97.71:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 300 x 250\012- data
Size 621 kB (621339 bytes)
Hash c8694e7d5d3b9a928d4d57026ac2b68b
169b9f311167e19bd5061b53fc7e4f528e3ba7a9
0c23834abdcff9f74a47b37290da55f2c84c31c82ce26d9493b39a388b51ed6a
GET /a-ads-banners/406681/300x250?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: image/gif
content-length: 621339
x-amz-id-2: BI00KXpiwktrw8ZH6l6+tDhZFoudDGf3ZE6TvuBjdsW4Ny3+b+BuP2STwHHmMM/tvvy+rG+8g+M=
x-amz-request-id: 2EJ7CW0TRSYHDA7Q
x-amz-replication-status: COMPLETED
last-modified: Thu, 04 Aug 2022 08:12:39 GMT
etag: "c8694e7d5d3b9a928d4d57026ac2b68b"
cache-control: max-age=315360000
x-amz-version-id: 4E6UO4Ah7Y9Th7PfdrLCDL4YiygucdkX
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
dimreproofjumped.com/pixel/purst?dl=0&th=0&sc=0&rs=2569&rd=2569&fd=1014&bv=22.10.v.9&tmpl=70
192.243.59.12200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/purst?dl=0&th=0&sc=0&rs=2569&rd=2569&fd=1014&bv=22.10.v.9&tmpl=70
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2569&rd=2569&fd=1014&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2461ac51233cd1965e194d142a7335e
e8d5e7a841ae0f9ba615fe9c629c553028bf48c0
8680b3242227684b0366dd51a98b21e75730969e669c5c8b6417128b3c588c8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8680B3242227684B0366DD51A98B21E75730969E669C5C8B6417128B3C588C8D"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10818
Expires: Mon, 23 Jan 2023 10:41:00 GMT
Date: Mon, 23 Jan 2023 07:40:42 GMT
Connection: keep-alive
nudgeworry.com/watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 nudgeworry.com/watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1 HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://porndig.stream
Access-Control-Allow-Origin: https://porndig.stream
Access-Control-Allow-Credentials: true
Location: https://nudgeworry.com/watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1&shu=b95b927537ec2b9ecacd8453e4cb6fa49fe761be27145e205710430663a09934627853d3fb6405840a69cbbba099cdceb18e95dbdf61ee8799c04ecf2c3090084ffe9ccd682abc8f3e6d42b5d03138bca970a1b1972098886504d49350cbb617&pst=1674459702&rmtc=t
Set-Cookie: u_pl=18168916; expires=Tue, 24 Jan 2023 07:40:42 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hFJHltYZkhGAUiXBt1WkbkYS7mGD1TvDEfZBrtWxjOw; expires=Mon, 23 Jan 2023 07:41:42 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d13e1b6937829535ad9e70bda89b9919
Strict-Transport-Security: max-age=0; includeSubdomains
presumeauthorizationcamping.com/ntv.json?key=9900c627bce1220b67ea6c5bcb84d199&vstc=4
173.233.137.60200 OK 18 kB URL HTTP/1.1 presumeauthorizationcamping.com/ntv.json?key=9900c627bce1220b67ea6c5bcb84d199&vstc=4
IP 173.233.137.60:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17604), with no line terminators
Hash 9cb826bdd959e69e5ead1df9a3d50936
4c9c561a08f54d3c92628c56aed0b6eb0b142836
8fc8591f782b385baff1d211854716536adfd3a6b17778903ab676a6fe974345
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=9900c627bce1220b67ea6c5bcb84d199&vstc=4 HTTP/1.1
Host: presumeauthorizationcamping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:41 GMT
Content-Type: application/json
Content-Length: 17640
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://porndig.stream
Access-Control-Allow-Origin: https://porndig.stream
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18168888; expires=Tue, 24 Jan 2023 07:40:41 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 24 Jan 2023 07:40:41 GMT; secure; SameSite=None
uncs=1; expires=Tue, 24 Jan 2023 07:40:41 GMT; secure; SameSite=None
pdhtkv49=true; expires=Tue, 24 Jan 2023 07:40:41 GMT; secure; SameSite=None
uncs49=1; expires=Tue, 24 Jan 2023 07:40:41 GMT; secure; SameSite=None
nlec9900c627bce1220b67ea6c5bcb84d199=[2229337]; expires=Mon, 23 Jan 2023 07:40:46 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e310fd4977351998101935675511c5b
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3780ed7d52292d44a615ffe79dab479e
3a417eb4afb01e68497e70cd3552816a8212260a
eac5723c07af70a35cb8dcdab186ec87561963c5032bbe7fb1713a60c8a3ab06
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 02:38:47 GMT
Expires: Fri, 27 Jan 2023 02:38:46 GMT
Etag: "3a417eb4afb01e68497e70cd3552816a8212260a"
Cache-Control: max-age=601530,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78dee1fb2c85b511-OSL
nudgeworry.com/watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1&shu=b95b927537ec2b9ecacd8453e4cb6fa49fe761be27145e205710430663a09934627853d3fb6405840a69cbbba099cdceb18e95dbdf61ee8799c04ecf2c3090084ffe9ccd682abc8f3e6d42b5d03138bca970a1b1972098886504d49350cbb617&pst=1674459702&rmtc=t
173.233.137.60200 OK 634 B URL HTTP/1.1 nudgeworry.com/watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1&shu=b95b927537ec2b9ecacd8453e4cb6fa49fe761be27145e205710430663a09934627853d3fb6405840a69cbbba099cdceb18e95dbdf61ee8799c04ecf2c3090084ffe9ccd682abc8f3e6d42b5d03138bca970a1b1972098886504d49350cbb617&pst=1674459702&rmtc=t
IP 173.233.137.60:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (582)
Hash a8a01810260a3bbbdd80c61fc0d0f53a
ceb731c3986cd3e8dd2c7c6dfdb98ba407210291
ac7b04d2e8ffa35a3845a61c421dd567ab04aa701ea73b5e85009cbcb39c331c
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1338566196503.js?key=a84509fd7eaa024623a5d8aaa970f568&kw=%5B%22porndig%22%2C%22stream%22%2C%22%E2%80%93%22%2C%22porndig%22%2C%22is%22%2C%22a%22%2C%22hd%22%2C%22porn%22%2C%22tube%22%2C%22free%22%2C%22sex%22%2C%22videos%22%2C%22for%22%2C%22streaming%22%2C%22and%22%2C%22xxx%22%2C%22direct%22%2C%22download%22%2C%22updated%22%2C%22daily%22%2C%22with%22%2C%221080p%22%2C%22full%22%2C%22hd%22%2C%22movies%22%2C%22100%22%2C%22free%22%5D&refer=https%3A%2F%2Fporndig.stream%2F&tz=0&dev=e&res=12.1055&uuid=558f4742-e186-4a23-813d-52f24004ce20%3A1%3A1&shu=b95b927537ec2b9ecacd8453e4cb6fa49fe761be27145e205710430663a09934627853d3fb6405840a69cbbba099cdceb18e95dbdf61ee8799c04ecf2c3090084ffe9ccd682abc8f3e6d42b5d03138bca970a1b1972098886504d49350cbb617&pst=1674459702&rmtc=t HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://porndig.stream
Referer: https://porndig.stream/
Connection: keep-alive
Cookie: u_pl=18168916; ain=eyJhbGciOiJIUzI1NiJ9.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.hFJHltYZkhGAUiXBt1WkbkYS7mGD1TvDEfZBrtWxjOw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://porndig.stream
Access-Control-Allow-Origin: https://porndig.stream
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=558f4742-e186-4a23-813d-52f24004ce20:1:1; expires=Mon, 30 Jan 2023 07:40:42 GMT; secure; SameSite=None
iprcffa643b74c6d644310d5d5fa6f95f2a5=2004368; expires=Tue, 24 Jan 2023 09:40:42 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 24 Jan 2023 07:40:42 GMT; secure; SameSite=None
uncs=1; expires=Tue, 24 Jan 2023 07:40:42 GMT; secure; SameSite=None
pdhtkv5=true; expires=Tue, 24 Jan 2023 07:40:42 GMT; secure; SameSite=None
uncs5=1; expires=Tue, 24 Jan 2023 07:40:42 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: caa6e98877ba480315b4546866d50189
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i.bngprm.com/banners/950x250/ST_warning/no.gif
64.210.135.148200 OK 142 kB URL HTTP/2 i.bngprm.com/banners/950x250/ST_warning/no.gif
IP 64.210.135.148:0
File type GIF image data, version 89a, 950 x 250\012- data
Size 142 kB (142156 bytes)
Hash fc289ba36f22ccb35c60cde4639e4308
7359103a86ad93cfb769b703b948efe138e8693a
0167b4ad3b2976595d7a79d72f0afaf50a3e8c48847eef4d30326951ed26d078
GET /banners/950x250/ST_warning/no.gif HTTP/1.1
Host: i.bngprm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bngprm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:42 GMT
content-type: image/gif
content-length: 142156
last-modified: Thu, 11 Nov 2021 09:16:38 GMT
cache-control: max-age=2592000
x-bcs-o: 1
expires: Wed, 22 Feb 2023 07:40:42 GMT
x-o3-bcs-ban: MISS
access-control-allow-origin: *
access-control-allow-methods: GET
accept-ranges: bytes
x-cdn-diag: ams5-7736-3-33931-m-0-0-200-0.004--;7059-28-53301----0-0-7
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
173.233.137.52200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e88fede1654aea56d9063269bb9f844
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb6667b94320408b64ea2879f3639c35
e154e93e8e4213f3a64a62f43b731fa900b9c5d6
92976bb2e1d121e02688ff1a5c1bddbb7816f027b91e445ec805f2133cbd761f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92976BB2E1D121E02688FF1A5C1BDDBB7816F027B91E445EC805F2133CBD761F"
Last-Modified: Sun, 22 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17911
Expires: Mon, 23 Jan 2023 12:39:13 GMT
Date: Mon, 23 Jan 2023 07:40:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b99dcf6335a2bd9375158d6d14bfaa00
d688c2c4cb50be6fbe8808176818bf50060f52ea
1c6465812613277049b2c2a78e6b622e971ec163a6efb5e6fa955f2cec0b5354
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C6465812613277049B2C2A78E6B622E971EC163A6EFB5E6FA955F2CEC0B5354"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=145
Expires: Mon, 23 Jan 2023 07:43:07 GMT
Date: Mon, 23 Jan 2023 07:40:42 GMT
Connection: keep-alive
attendanceceasless.com/pixel/sbe?t=1&error=timeout
173.233.137.60200 OK 0 B URL HTTP/1.1 attendanceceasless.com/pixel/sbe?t=1&error=timeout
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbe?t=1&error=timeout HTTP/1.1
Host: attendanceceasless.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
jennyvisits.com/pph1aeej?key=7a7c3779889805e2058addecb7e13424&psid=18168916
192.243.59.20200 OK 1.2 kB URL HTTP/1.1 jennyvisits.com/pph1aeej?key=7a7c3779889805e2058addecb7e13424&psid=18168916
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 5624989e9feebcf012f6e5826a911039
9c6020603a75aa23fec71e3c44ce394783176b0b
135820a5c611b0700865e08d3137e2b6a17c5f2fed1a574874450855866502f3
Analyzer Verdict Alert quad9 Sinkholed
GET /pph1aeej?key=7a7c3779889805e2058addecb7e13424&psid=18168916 HTTP/1.1
Host: jennyvisits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Mon, 23 Jan 2023 07:40:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=15077602; expires=Tue, 24 Jan 2023 07:40:42 GMT
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTA3NzYwMiwiayI6IjdhN2MzNzc5ODg5ODA1ZTIwNThhZGRlY2I3ZTEzNDI0Iiwic2lkIjoiMTgxNjg5MTYiLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE0NjQxNSwicGlkIjo5NzI5OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyOCwicHQiOjQsInBrIjoicHBoMWFlZWoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vcG9ybmRpZy5zdHJlYW0vIn19.HigfAAgujwXvZR7j_yXXWJ2GoaBvqgXxfwNlQEfklEQ; expires=Mon, 23 Jan 2023 07:41:42 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 29f919f6a497601986f7ad9fd05606e4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
jennyvisits.com/pph1aeej?shu=4d06c2d3aa40a7ca07a6cff5f37f5a4c9e0718a756489bda71485d133eb1a1c1b8bfe583f3bc95fb7a90874b68bafb3d45c69a62b25f928165e22487f41a8f3504fd0483cfd75767041ec3a6cff3af2edf1812c7&pst=1674459702&rmtc=t&uuid=&pii=&in=false&key=7a7c3779889805e2058addecb7e13424&refer=https%3A%2F%2Fporndig.stream%2F&psid=18168916
192.243.59.20302 Found 0 B URL HTTP/1.1 jennyvisits.com/pph1aeej?shu=4d06c2d3aa40a7ca07a6cff5f37f5a4c9e0718a756489bda71485d133eb1a1c1b8bfe583f3bc95fb7a90874b68bafb3d45c69a62b25f928165e22487f41a8f3504fd0483cfd75767041ec3a6cff3af2edf1812c7&pst=1674459702&rmtc=t&uuid=&pii=&in=false&key=7a7c3779889805e2058addecb7e13424&refer=https%3A%2F%2Fporndig.stream%2F&psid=18168916
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pph1aeej?shu=4d06c2d3aa40a7ca07a6cff5f37f5a4c9e0718a756489bda71485d133eb1a1c1b8bfe583f3bc95fb7a90874b68bafb3d45c69a62b25f928165e22487f41a8f3504fd0483cfd75767041ec3a6cff3af2edf1812c7&pst=1674459702&rmtc=t&uuid=&pii=&in=false&key=7a7c3779889805e2058addecb7e13424&refer=https%3A%2F%2Fporndig.stream%2F&psid=18168916 HTTP/1.1
Host: jennyvisits.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jennyvisits.com/pph1aeej?key=9ca601a9f47c735df76d5ca46fa26a66&submetric=15077602
Cookie: u_pl=15077602; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTA3NzYwMiwiayI6IjdhN2MzNzc5ODg5ODA1ZTIwNThhZGRlY2I3ZTEzNDI0Iiwic2lkIjoiMTgxNjg5MTYiLCJpc2lkIjoyLCJhc2lkIjoxLCJ6aWQiOjE0NjQxNSwicGlkIjo5NzI5OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyOCwicHQiOjQsInBrIjoicHBoMWFlZWoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vcG9ybmRpZy5zdHJlYW0vIn19.HigfAAgujwXvZR7j_yXXWJ2GoaBvqgXxfwNlQEfklEQ; cjs=t
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx/1.17.9
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Location: https://0delay.site/Cbs9fSqT?cost=0.000750&external_id=1c68409e89d6670449f310c320b48f13&creative_id=1894462&ad_campaign_id=632304&source=146415&placement_id=15077602&publisher_id=97299&landing_id=3600400
Set-Cookie: iprc279cb44ddfb69cf50a23278d9d21c3c0=3600400; expires=Thu, 16 Feb 2023 07:40:43 GMT
pdhtkv=true; expires=Tue, 24 Jan 2023 07:40:43 GMT
uncs=1; expires=Tue, 24 Jan 2023 07:40:43 GMT
pdhtkv28=true; expires=Tue, 24 Jan 2023 07:40:43 GMT
uncs28=1; expires=Tue, 24 Jan 2023 07:40:43 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6c13fbaed9db5ea470af573f48a70a6e
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0d052e9353f158e51dd20602eeabbfe8
87ef975024345cda1ab9ae7fdc84b33211df9c07
ebd64e49a996f40caaa9f969054f828211b31614170b8245cf2da3d3358a0312
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBD64E49A996F40CAAA9F969054F828211B31614170B8245CF2DA3D3358A0312"
Last-Modified: Sat, 21 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3893
Expires: Mon, 23 Jan 2023 08:45:36 GMT
Date: Mon, 23 Jan 2023 07:40:43 GMT
Connection: keep-alive
0delay.site/Cbs9fSqT?cost=0.000750&external_id=1c68409e89d6670449f310c320b48f13&creative_id=1894462&ad_campaign_id=632304&source=146415&placement_id=15077602&publisher_id=97299&landing_id=3600400
45.80.70.203302 Found 0 B URL HTTP/1.1 0delay.site/Cbs9fSqT?cost=0.000750&external_id=1c68409e89d6670449f310c320b48f13&creative_id=1894462&ad_campaign_id=632304&source=146415&placement_id=15077602&publisher_id=97299&landing_id=3600400
IP 45.80.70.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Cbs9fSqT?cost=0.000750&external_id=1c68409e89d6670449f310c320b48f13&creative_id=1894462&ad_campaign_id=632304&source=146415&placement_id=15077602&publisher_id=97299&landing_id=3600400 HTTP/1.1
Host: 0delay.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1og7gh; expires=Thu, 23 Feb 2023 07:40:43 GMT; path=/
7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE0MzJcIjoxNjc0NDU5NjQzfSxcImNhbXBhaWduc1wiOntcIjc2MVwiOjE2NzQ0NTk2NDN9LFwidGltZVwiOjE2NzQ0NTk2NDN9In0.PAigY3EF0PNPmuaNnEPBZb3DsVIlDJ7qvbO4sDaIdhg; expires=Sat, 15 Feb 2076 15:21:26 GMT; path=/
_token=uuid_s8hnpa1og7gh_s8hnpa1og7gh63ce39fb681159.63053318; expires=Thu, 23 Feb 2023 07:40:43 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4df7a90d7b9a257d92283f1f8cc4b2e3
31ac31ef621d1d1410f9c31cf0dbcd5c421aa834
f0fccb57378ea8b408f3f3488c27a089b9ebfe995d4c7ae0ec0dc78382d8eceb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0FCCB57378EA8B408F3F3488C27A089B9EBFE995D4C7AE0EC0DC78382D8ECEB"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18541
Expires: Mon, 23 Jan 2023 12:49:44 GMT
Date: Mon, 23 Jan 2023 07:40:43 GMT
Connection: keep-alive
flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
88.99.80.95200 OK 14 kB URL HTTP/1.1 flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (480), with CRLF line terminators
Hash 4ee95a568fe4c44a23e30799a7552810
64a423a708cec27ec6f9a098cce7f81103d46136
994549c4f1619bbd3be78bae441b67859c316b9cbbe6de015cb7912858f12bcd
Analyzer Verdict Alert quad9 Sinkholed
GET /?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jennyvisits.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/html
Content-Length: 13794
Connection: keep-alive
set-cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs; path=/
cache-control: private, no-transform
flirtvibenow.life/media/d/radarnew/css/stylesoutdoor.css
88.99.80.95200 OK 9.9 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/css/stylesoutdoor.css
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type assembler source, ASCII text, with CRLF line terminators
Hash 03f7f67a73bff5cb76ca8b0c3086915d
db6689a7344d784c97b12467264bdc9cc003844f
3aff9e59a46b2cdd488813c4874a7f9668f74761f94222ef32841fd4350ac8cc
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/css/stylesoutdoor.css HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/css
Content-Length: 9931
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "03f7f67a73bff5cb76ca8b0c3086915d"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDFC2B4C92F22
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/css/bootstrap-slider.min.css
88.99.80.95200 OK 7.2 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/css/bootstrap-slider.min.css
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6195)
Hash 4961224724899c120f62718d9a05a11a
edb2043d6a2727c124a9d2b64a461ef682e73dad
a27ecbe0f63af48cceb0dc93fb842d3161462ca44d16bae13ea4a85488a7a8ce
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/css/bootstrap-slider.min.css HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/css
Content-Length: 7227
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "4961224724899c120f62718d9a05a11a"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFAB4A9B84E
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/js/bootstrap-slider.min.js
88.99.80.95200 OK 26 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/js/bootstrap-slider.min.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (25087)
Hash bb00d9d835171fe905a76787cbea604a
428580aaa3688c5dcca79b6428248b31af85ac1f
926ac5c114974a527367752eef1ab86bdb364c34fafb39e9b976c7ab0c2adda6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/d/radarnew/js/bootstrap-slider.min.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 26183
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "bb00d9d835171fe905a76787cbea604a"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFADA5A005B
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/css/blue.css
88.99.80.95200 OK 1.5 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/css/blue.css
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
Hash 53c8fc393280d00814bfcb0ac9a9948b
41411e8e1fae0b3a35cb70f547df9df643a6a6dc
0ca1d39f999294e137c538278732cd5f2e0f6bd54617ec7e347773ac5b3d8272
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/css/blue.css HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/css
Content-Length: 1505
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "53c8fc393280d00814bfcb0ac9a9948b"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFAA9A68DC5
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/util/utils.js
88.99.80.95200 OK 7.5 kB URL HTTP/1.1 flirtvibenow.life/util/utils.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (641), with CRLF line terminators
Hash 01816d15ca03032751161a746e2fb7c3
dcc72ea5fa1356490ba473288159df9786b4a3c3
8b3c83a330bf1120a13eff6ef60c1e268b827b7bc49b42a7a1f5d8ad6941f2ea
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /util/utils.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 7512
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "01816d15ca03032751161a746e2fb7c3"
Last-Modified: Wed, 31 Aug 2022 09:38:20 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDECD9FF2EDDC
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/js/bootstrap.min.js
88.99.80.95200 OK 29 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/js/bootstrap.min.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (28941)
Hash ba847811448ef90d98d272aeccef2a95
5814e91bb6276f4de8b7951c965f2f190a03978d
898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/d/radarnew/js/bootstrap.min.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 29110
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "ba847811448ef90d98d272aeccef2a95"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEEC17E7406D
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
ad.a-ads.com/2151706?size=300x250
178.63.97.71200 OK 6.2 kB URL HTTP/2 ad.a-ads.com/2151706?size=300x250
IP 178.63.97.71:0
ASN #24940 Hetzner Online GmbH
Hash c3a32e76a43908803bc5ee05db4933d1
ff92f2ec0a2613c015d864b2a126b4d5eaf61260
46be07ed98574549763bc9a482016668e495bb868c19d1b2493bec977810eb0c
GET /2151706?size=300x250 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://porndig.stream/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
flirtvibenow.life/media/bbradar.js
88.99.80.95200 OK 639 B URL HTTP/1.1 flirtvibenow.life/media/bbradar.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (639), with no line terminators
Hash 0d553e4bac91c74bfee2dbabba61e99e
5af71e2377c9c012a7826a695f2724901941b19b
1be1304c675449b1bad38ea8c3da6c1da0763ed2fad339ee1aa461c7bf4e2a68
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/bbradar.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 639
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "0d553e4bac91c74bfee2dbabba61e99e"
Last-Modified: Wed, 31 Aug 2022 09:32:33 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFAEA4BF936
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/js/jquery.min.js
88.99.80.95200 OK 93 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/js/jquery.min.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65480)
Hash 0b6ecf17e30037994d3ffee51b525914
d09d3a99ed25d0f1fbe6856de9e14ffd33557256
f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/d/radarnew/js/jquery.min.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 93435
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "0b6ecf17e30037994d3ffee51b525914"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEEC1782F8AE
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/js/trls.js
88.99.80.95200 OK 48 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/js/trls.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash acbcd82ae39db3a4cc2eb4a43d8b4338
4bbfdc1fca56ef2aba7b5fd95034ea6860f30a5a
3fc88d3968cd86f76bc3d071b1d3de64729f06840621ab9a39b93f7e2add6303
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/d/radarnew/js/trls.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 47770
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "acbcd82ae39db3a4cc2eb4a43d8b4338"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEEC17DF61B1
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/css/bootstrap.css
88.99.80.95200 OK 110 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/css/bootstrap.css
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type assembler source, ASCII text, with very long lines (540)
Size 110 kB (110239 bytes)
Hash 47ec8e4c717bce27e3dec25375b64c16
23ee6fedf86a1ebb17e96423086f910f72a9e8f5
37d237c2cfc632735d5a1c48184e7e7afc5358ffd8ab8d6bd9f90a16d1e2993f
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/css/bootstrap.css HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: text/css
Content-Length: 110239
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "47ec8e4c717bce27e3dec25375b64c16"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFA9ED91CA0
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/images/radar.gif
88.99.80.95200 OK 176 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/images/radar.gif
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 179 x 179\012- data
Size 176 kB (175791 bytes)
Hash 0d3a894b7b00a48996f702d71fe7e7c3
b4f278b2ff6d12f7fb38fdf91c42f3190a69e53c
89495896bcc3deb0b6a643cf55ddfe620ada0cdb66cd09ce4ba801a06396fcef
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/images/radar.gif HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: image/gif
Content-Length: 175791
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "0d3a894b7b00a48996f702d71fe7e7c3"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEFAF75F1DE0
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/media/d/radarnew/images/outdoor.jpg
88.99.80.95200 OK 222 kB URL HTTP/1.1 flirtvibenow.life/media/d/radarnew/images/outdoor.jpg
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1422x800, components 3\012- data
Size 222 kB (222141 bytes)
Hash fc523ba36d675d549f0c70815b6b1604
d8dc530c0e48382f06da7301a7bfb42072f28cfb
b0b9b668729dc630f2ff79478f74bdaa7d6eb53a5b8ae665a3144c5cf7629351
Analyzer Verdict Alert quad9 Sinkholed
GET /media/d/radarnew/images/outdoor.jpg HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/media/d/radarnew/css/stylesoutdoor.css
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:44 GMT
Content-Type: image/jpeg
Content-Length: 222141
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "fc523ba36d675d549f0c70815b6b1604"
Last-Modified: Wed, 31 Aug 2022 09:33:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDF6D65EBD745
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:44 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
flirtvibenow.life/favicon.ico
88.99.80.95204 No Content 0 B URL HTTP/1.1 flirtvibenow.life/favicon.ico
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Server: nginx
Date: Mon, 23 Jan 2023 07:40:44 GMT
Connection: keep-alive
Cache-Control: no-transform
flirtvibenow.life/media/exit-new/exit1.js
88.99.80.95200 OK 0 B URL HTTP/1.1 flirtvibenow.life/media/exit-new/exit1.js
IP 88.99.80.95:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /media/exit-new/exit1.js HTTP/1.1
Host: flirtvibenow.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flirtvibenow.life/?u=w9bkd0x&o=q8apkzq&cid=s8hnpa1og7gh
Cookie: sid=t4~4wxohs5dyxc0ejeeafj04xqs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 23 Jan 2023 07:40:43 GMT
Content-Type: application/javascript
Content-Length: 3473
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "625e5e2950612f771e246beb33c9ea61"
Last-Modified: Wed, 31 Aug 2022 09:34:51 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 173CDEDC3C0E3E58
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Tue, 23 Jan 2024 07:40:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes
friendshipmale.com/sfp.js
172.64.108.35200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.108.35:0
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 33da45572bdd1217b22baa40cad7e35c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 23 Jan 2023 07:40:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cQ82zf2X1Ar0lOLevRM96MmgxbSBWEttrt%2F6%2FbOhgh48c5cfPUYtwV3B50q4uSokOUDsnzVPo%2BrHcxb1U3bt7DR%2F%2F56sG39iGw5OzmawSqM48faee3UiD7489xneDzrHhTLbcvs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dee1f8adcd7765-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bngprm.com/promo.php?c=773867&type=banner&size=950x250&name=st_warning
185.75.252.140200 OK 0 B URL HTTP/2 bngprm.com/promo.php?c=773867&type=banner&size=950x250&name=st_warning
IP 185.75.252.140:0
ASN #48684 Viking Host B.V.
GET /promo.php?c=773867&type=banner&size=950x250&name=st_warning HTTP/1.1
Host: bngprm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://porndig.stream/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 07:40:41 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin:
expires: Mon, 23 Jan 2023 07:40:40 GMT
x-bcs: ded7383
strict-transport-security: max-age=0;
cache-control: no-cache, public
content-encoding: gzip
x-bc-bl: 103
X-Firefox-Spdy: h2
porndig.stream/
198.251.89.164200 OK 0 B IP 198.251.89.164:0
GET / HTTP/1.1
Host: porndig.stream
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://porndig.stream/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Mon, 23 Jan 2023 07:40:40 GMT
server: LiteSpeed
X-Firefox-Spdy: h2