news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
193.108.118.121200 OK 36 kB URL HTTP/1.1 news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4414)
Hash b2bb66fb15fb95471e9f32a6b289b32d
5e1b122da49a207e9ffce2ed5272924ed0c7ab87
715e6c80a2a7fdaca27d4f438160fc3cde868cb7d7ec7a4a9ab4fb2d0cb72d4c
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8; expires=Wed, 29-Mar-2023 22:49:15 GMT; Max-Age=3600; path=/
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2328
Expires: Wed, 29 Mar 2023 22:28:03 GMT
Date: Wed, 29 Mar 2023 21:49:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4373
Expires: Wed, 29 Mar 2023 23:02:08 GMT
Date: Wed, 29 Mar 2023 21:49:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Retry-After, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 21:15:58 GMT
content-type: application/json
age: 1997
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11346
Expires: Thu, 30 Mar 2023 00:58:21 GMT
Date: Wed, 29 Mar 2023 21:49:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jOUbKDw2rWMVGvRGjNQl7eDg7AWixjn+1fONLtQ4zKTdUUd0NANflV9l4IFroxVYwNgFAQLafo4=
x-amz-request-id: Z821DBFFWRVEN152
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 20:56:46 GMT
age: 3149
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:15 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
news-piguhu.cc/lands/38/lp.js
193.108.118.121200 OK 1.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/lp.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 8441b469fa0c093bd106a66a4068d944
c3698e755cd1ef7b5d29e233ef615219559a96f3
befe8e9f55c6e3fe10fd398534acb713129764b05d852089ac34bfa535a53902
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/38/lp.js HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/javascript
Content-Length: 1418
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Connection: keep-alive
ETag: "5d7a0ef0-58a"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
193.108.118.121200 OK 9.2 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d532b701961fb593be2b69d9df9c8155
8e4eedf94834ab945eb6dbcc95b939cc9986503f
a777713d9e2fe15ccc27ae4f22fa778e7a87110fe2ced724881a5a9c8b3a9235
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-10b2b"
Content-Encoding: gzip
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css
193.108.118.121200 OK 6.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (5955), with no line terminators
Hash 0fe9d8c60b2c31a97fa966d14be642ef
eb4f94b637c54906ae38eb350b6310d552c75e6d
191ae0d72198f51609589e26c7d837d2978382861f60b360148e0af13c8583e1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/layout.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Content-Length: 5955
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1743"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
193.108.118.121200 OK 8.3 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (8327), with no line terminators
Hash 8cd6ca47d55ffed774fde852523940e0
49e1e837355b3de08055c650488d0a3382bff9c0
17528d5914a702bb12ac6b36c8e3bbbfbcd3d52b54dd613acbacf8f4bb17ae33
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Content-Length: 8327
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Connection: keep-alive
ETag: "61deb724-2087"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
193.108.118.121200 OK 11 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1c0b9b0bde95895d5227ee024d49ea1
1f5fa52cca3f8e486b72dba4fc7be71736e06879
ad7a8113ff7db3543778cf5bac4eba7f2a277d686a3520769cc325dfa5eed60e
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-1327c"
Content-Encoding: gzip
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css
193.108.118.121200 OK 1.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 677a255a4a9dc3411b8013e8afb09c42
ec9f1a722b028da2eceb06cdc8c26fc6490a4e70
cc4494353809adb8bdfbbdea2ad72a1a0fc9c84816dc23c7ee1f9466e620eb5e
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/pb_block.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Content-Length: 1391
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-56f"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css
193.108.118.121200 OK 3.1 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (14679), with no line terminators
Hash 82465f176ad8755a3da8217fbb5d38a9
1689f2cb3b9fc47a005cbe828ada78594de9ad5c
75e7582e998815d415b278e536f725f98ef8c7654ad11fe8a5e1725199442940
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/premium-modals.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-3957"
Content-Encoding: gzip
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
193.108.118.121200 OK 32 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 355a9ffdba760ac2df9158033c0bd274
7f169d3ac3f815a7f9f3e716ce3a9e8304de5d6a
cb3efcb52b7e3e7d192df63afbede510311f67a230774dc9b29c55b29bdfe1f2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-2f3dd"
Content-Encoding: gzip
news-piguhu.cc/revopush.js?v=4
193.108.118.121200 OK 10 kB URL HTTP/1.1 news-piguhu.cc/revopush.js?v=4
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (9954), with no line terminators
Hash fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0
Analyzer Verdict Alert quad9 Sinkholed
GET /revopush.js?v=4 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/javascript
Content-Length: 9954
Last-Modified: Thu, 15 Dec 2022 09:31:10 GMT
Connection: keep-alive
ETag: "639ae95e-26e2"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css
193.108.118.121200 OK 4.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (4028), with no line terminators
Hash 64f6d7d923f18e5d25a4506b45fcd51d
0e636e489bba7af08cb17f8a72c5dc5685774057
18818b4b5458636324d294a8dee67dbde4808ae542e6cefa18ca6d90c1fc4479
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/modals_commons.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Content-Length: 4028
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Connection: keep-alive
ETag: "61deb724-fbc"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash abf3bc7662002b22ac8921632ada7e7d
166aa2eebdf3b025b610a3f7fb311cdb722fcd53
85ec2b460619e5c8a1bbb44911f1b1bb8896cee1054f023397afa4cd640cd0b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85EC2B460619E5C8A1BBB44911F1B1BB8896CEE1054F023397AFA4CD640CD0B7"
Last-Modified: Wed, 29 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14016
Expires: Thu, 30 Mar 2023 01:42:51 GMT
Date: Wed, 29 Mar 2023 21:49:15 GMT
Connection: keep-alive
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css
193.108.118.121200 OK 5.3 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (27296), with no line terminators
Hash 6e671698be708464896d6727e33f58da
81dc49256bd9dc80453f9477534290a381d59439
c2a5fb4ab887178390ae41fcd3eed629b363b08875cdca4bdef982fc933b7083
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/playlist-base.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-6aa0"
Content-Encoding: gzip
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js
193.108.118.121200 OK 15 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type Unicode text, UTF-8 text, with very long lines (36281)
Hash b284ff471f79724f39a43b82790f570a
9c512728aa68e8dce35e7a1d36a1b88f3127b230
b8f5663695838bd680a0f58f1147b66dd563ba0426ee42cec794e2140147c128
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/sweetalert2.all.min.js HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d7a0ef0-f889"
Content-Encoding: gzip
news-piguhu.cc/lands/38/jquery-3.2.1.min.js
193.108.118.121200 OK 30 kB URL HTTP/1.1 news-piguhu.cc/lands/38/jquery-3.2.1.min.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (32058)
Hash e95432d97d0ea36fb79ec7a9463ce0ec
685e5ade79a59587076c397e7677adbc9e4661ce
732435215c507df3203bce1b72a8d7d0e50cca54c667f05dccd1aa4fcf6d7c71
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/38/jquery-3.2.1.min.js HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Sep 2019 09:33:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5d7a10d2-15283"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js
144.76.158.184200 OK 1.9 kB URL HTTP/1.1 errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js
IP 144.76.158.184:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (512)
Hash 80932f4dcde89b05c9a4e8f491d1137a
790824b7aee301fa9a3794fa34b7cef37a88f730
9a0262ebf8e5fcb4028b6ea0876c9e06270170be66a752a08dd4acdfa6ca7b93
GET /js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://news-piguhu.cc
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/javascript
Content-Length: 1855
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
Surrogate-Key: project/3 sdk/7.15.0 sdk-loader
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg
193.108.118.121200 OK 4.7 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x550d5e4d", progressive, precision 8, 150x84, components 3\012- data
Hash 12f0c14e5943fd57577ce11155107bdb
a484cb296770fe6cb55d25cba19f831cf1aaf7d1
9eb468f7688a901a3626fdde8d0b07dc490a830718c2938d32f70f0ec122a344
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13(2).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 4664
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1238"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif
193.108.118.121200 OK 1.9 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type GIF image data, version 89a, 88 x 31\012- data
Hash 2bcf55138cde4a65770426a67ea247fc
13d8c808a4276dc88937817d7df7720182c093f6
348fd1e58aec8d99001aca1dd12b72eafef534c2d11725b2280a173d03b5fa6b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/rta-1.gif HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/gif
Content-Length: 1882
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-75a"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg
193.108.118.121200 OK 6.8 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", progressive, precision 8, 233x131, components 3\012- data
Hash 2ad4260dc1204ad8f3c0c29bd919830a
fd2ddfca32f55ba5d180af812a787e61ce136480
acc8f76a570c0833d34835f5694409e082b4af09783366596c2e151e0b0ed128
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3(3).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 6827
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1aab"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/18.png
193.108.118.121200 OK 12 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/18.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 833a12d372440b20017502d3c72e0b20
5fb9301142e3c53f65cd16502b35d7d1d5f82b98
1531ac56322b89715a35b1cdb5ca1f79f453614f368455b2cc8ef650a992f8cd
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/18.png HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/png
Content-Length: 12136
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2f68"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg
193.108.118.121200 OK 28 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2016:03:16 09:26:15], baseline, precision 8, 118x88, components 3\012- data
Hash c1a5819d50b9125f0c46ded86fd5b4b6
3926c15be79cb7522cefdbf5066d39623e36a283
374f0cede3c1f91ad174b97554017b74cbd29424d7467d039beab541f6deb873
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/104.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 27900
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-6cfc"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png
193.108.118.121200 OK 22 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 19b197d779dd9ee78737a456dbd5c1a6
a3f0b1d0659e5a76bdfaa52bb8f68096d1ab1359
806a8a4abe09c02f4e4b3ed4d6514bfcf1a93a941e838aadf56afaef858d8e37
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/681.png HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/png
Content-Length: 21724
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-54dc"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg
193.108.118.121200 OK 17 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 118x88, components 3\012- data
Hash 215029a9775d1e9a56c93912ab03f4c6
6a3dbd676e2ea61850d2a20086b9ec84127da0ae
e071c52839ef37679439165349ffdd98cf19aa7e35d0293a1bec69743db70b16
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/36.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 17350
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-43c6"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg
193.108.118.121200 OK 11 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 2f03fbd61721fdf46883333595050c77
8361f15c906a9457340fc21febd22b5ede56ac61
9f6c76cf695bc0785f4e4f8bb3abe93255af3ea1597307d567dc0fc93fa70560
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 11238
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2be6"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg
193.108.118.121200 OK 12 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 118x88, components 3\012- data
Hash ea52ae32ae4319fb03da1672b0c20ed3
4efd8189179b260a4b51fd4b28d729b6143ef00a
43a4ca83560d5720ffeccf17478d6a1741f86639f35744fb61fcb139dc3020a6
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/27.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 12525
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-30ed"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg
193.108.118.121200 OK 13 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 118x88, components 3\012- data
Hash 99a404d25bcdd47a141dafdbe046d0cf
04de642c5cbc865c29ab3599c1c4fa19f2a6ba8e
fbe779bcef340ba0b148f84b50a8323a2bbb493674e130bf877d87c6d163ed36
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/73.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 13106
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-3332"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg
193.108.118.121200 OK 14 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 9903db279cf9714141daac34523f39b6
ac412f9ce9b8c50155e9adb9f5095d82519ccd24
f562892c60fef407c954fd73d6908003c42f832c4ae86f8264438a576ce2c1cd
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/35.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 13505
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-34c1"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg
193.108.118.121200 OK 15 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", progressive, precision 8, 258x145, components 3\012- data
Hash bb05342bd1f87ae7624aba323af77dca
4b7c875644d0b6a424abf06cda89ad135bd53d81
828e2c12259274e1eb1c212f3498fb31503462023c4b2642da4f795209b755de
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/15.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 14653
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-393d"
Accept-Ranges: bytes
news-piguhu.cc/traffback-reject.php?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4&land=38
193.108.118.121200 OK 47 B URL HTTP/1.1 news-piguhu.cc/traffback-reject.php?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4&land=38
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with no line terminators
Hash 015f77159953f53aafe59721aa0bf7ed
6df9f76fb52c12c0d09c91065fbc0d7649bfffb7
85332d5327fee91d6cb6850aacb0683914ae6398af617b81af4355da72c539dc
Analyzer Verdict Alert quad9 Sinkholed
GET /traffback-reject.php?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4&land=38 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Connection: keep-alive
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg
193.108.118.121200 OK 9.3 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x7cd1fc83", progressive, precision 8, 258x145, components 3\012- data
Hash 5ec2461279f77afe0c6fbb935bd0b94a
95c6e9171db79ea69ce718b02484e36816d1a1cd
ac60e5738d3cf6d32004e1ddfcf4368e256f1928ea923f9369869b8e9af665ba
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 9338
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-247a"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif
193.108.118.121200 OK 2.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type GIF image data, version 89a, 116 x 86\012- data
Hash ec706a0634f1e5e06ad775b2b2ebdcf2
5a18c424f7b84b40709a6b78b2d632639bb3ff2b
9613f59211bd2194336c666d11a0d2e1daa4dd96d543e661f5835e0a621c2f5d
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/categories_seeall.gif HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/gif
Content-Length: 2350
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-92e"
Accept-Ranges: bytes
browser.sentry-cdn.com/7.15.0/bundle.es5.min.js
151.101.66.217200 OK 20 kB URL HTTP/2 browser.sentry-cdn.com/7.15.0/bundle.es5.min.js
IP 151.101.66.217:0
File type ASCII text, with very long lines (61994)
Hash 630573cba95f68cf0b327187fb13c020
d43f4f70268aa019fc4d2627cd477864dc291271
ece93676dd48b988b7f480f72442e66e243ed2d1a5989ed742687391c1f21ef6
GET /7.15.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://news-piguhu.cc
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 17 Jan 2024 06:21:06 GMT
last-modified: Mon, 10 Oct 2022 12:23:16 GMT
etag: "630573cba95f68cf0b327187fb13c020"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 29 Mar 2023 21:49:15 GMT
age: 6190089
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20163
X-Firefox-Spdy: h2
news-piguhu.cc/lands/38/index.php_files/pu.swf
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/index.php_files/pu.swf
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 6d40122b8a5b7fd31b5aef2749f519fd
518d585dd26c947344ddea5403324850d1b2f7cd
1da7814acd0d6913438bf701d8a2d2cf29814174b5eff0e6ff129ee74f68a7cf
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/38/index.php_files/pu.swf HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/x-shockwave-flash
Content-Length: 1953
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7a1"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css
193.108.118.121200 OK 6.2 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (33619), with no line terminators
Hash b1dd3a7dd402daf41f9af2cb860e4bd6
bdf89dc545fbd50cc2100fe43d20f3b4be14a3ed
120d9dfe52260935bce7ec818c56b2cbbc5f1bee2bd79a9b51514cd8a0bf176a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/large_temp.css HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: text/css
Last-Modified: Wed, 12 Jan 2022 11:10:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61deb724-8353"
Content-Encoding: gzip
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201507/15/52864251/original/12.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=41949
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds003.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201602/03/67748611/original/5.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=56667
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds251.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201510/20/59925001/original/0.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=37318
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds205.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201401/21/22195452/original/16.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=61096
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds212.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201410/28/34062481/original/7.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=48971
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds001.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201503/17/46253311/original/6.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=83198
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds247.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg
205.185.208.60200 OK 13 kB URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg
IP 205.185.208.60:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 258x145, components 3\012- data
Hash dce82d44b4b11da45323c7fb3d48f2e8
1f89ba9a7c5f9bb914f4d9a8546119f68f7ddcfc
71035bfb92d2af8dd1b035d0b27b853e08adfc90b0c248d1ce3a131cf7631601
GET /m=ecuK8daaaa/videos/201504/13/47540711/original/3.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 21:49:15 GMT
etag: "1576646962"
content-length: 13332
content-type: image/jpeg
last-modified: Wed, 18 Dec 2019 05:29:22 GMT
accept-ranges: bytes
cache-control: max-age=10377942
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds240.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg
193.108.118.121200 OK 5.1 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", progressive, precision 8, 150x84, components 3\012- data
Hash 72e270f7041c2fe2f326d11e162fb249
3f918a2023f10a01a2ed74713d292df415d14e05
b17ce663fab4421f728ea0dd218d2a8a6a10a4314759fdf139b9388fa26e37f6
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3(2).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 5080
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-13d8"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg
193.108.118.121200 OK 18 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 10e8794e65f20d32932985bf814b8965
0627b8648373340d2ba949fd7fe50611d11b033b
43b9f39f94acb50efb3b6981a6c931dcf25eefcc7b7734a927036255263eee39
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/28.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 17978
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-463a"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg
193.108.118.121200 OK 16 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 118x88, components 3\012- data
Hash 5a34545daf4bc481bcbc3573062aa426
132d09d36ede8f32c3168ecaaa631e5959ce38ef
c044a81b14812c50f3142ad20d0ca862923daba2483eb164b0348ba98d3b7855
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/7.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 15481
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-3c79"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg
193.108.118.121200 OK 8.6 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 233x131, components 3\012- data
Hash 55778c73ba99a9477464e5c90cdd7e02
bc49e8058f1dafe10e817441de952ba6aa3b7b58
c362fc3a2aafd1b0d8069fb1fae83b5f0abb06443d3e00b21b37be13aeb75bfa
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(4).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 8615
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-21a7"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg
193.108.118.121200 OK 9.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xae3bf698", progressive, precision 8, 258x145, components 3\012- data
Hash 58357cada0f0171d2a84540391219649
57123e69e055b4d818faedec09884135c5d4a31e
742c68ecf3dcc1096143a0a5d00f4a15a3edb13fd497ea2931e67e66826addd0
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/2.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 9007
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-232f"
Accept-Ranges: bytes
cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg
205.185.208.60403 Forbidden 9 B URL HTTP/2 cdn-d-img.pornhub.com/m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg
IP 205.185.208.60:0
File type ASCII text, with no line terminators
Hash 722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3
GET /m=ecuK8daaaa/videos/201508/06/54560451/original/14.jpg HTTP/1.1
Host: cdn-d-img.pornhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: max-age=59551
content-length: 9
content-type: text/plain
accept-ranges: bytes
x-hw: 1680126555.dop210.sk1.t,1680126555.cds244.sk1.hn,1680126555.cds219.sk1.c
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf-2.png@cache=2016051250 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/show_new.css
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg
193.108.118.121200 OK 7.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x7ab4f024", progressive, precision 8, 233x131, components 3\012- data
Hash 2a4d527ed65de8e2e0a69dc9d50442d2
8ec4547a38c9e3d37469acfe21ea755531776f09
275876bbb5190da100ae4f9aca976ec15cea0de20d42e167f522a0a50ba8ca02
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(2).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 6972
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1b3c"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg
193.108.118.121200 OK 7.9 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 233x131, components 3\012- data
Hash 5df975e7a8c0b2610069610c54c5ce6c
ab6390fbb7be1be9a0f4477b4439e34d5175b6fc
bbfb6830dabc55fd598cc0948049f2367d17c80f286e0821e660ba7f5a6b360c
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/13(1).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 7904
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1ee0"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg
193.108.118.121200 OK 9.9 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x50dba82c", progressive, precision 8, 258x145, components 3\012- data
Hash eed80bba1e2813e70d57a5f3a6bbdf09
3965668a7340d071731a89abf73cc4b3efe4dac3
9ef4f06c23420fae9b1fd163d0719be1b2b258d74d27f7933c810ad64c93ac93
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/3.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 9914
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-26ba"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg
193.108.118.121200 OK 8.9 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1f7d625b", progressive, precision 8, 258x145, components 3\012- data
Hash 77df6b7e2677b46a053508a92026cb8a
decad70c5281062495250250fdf985b6073a8a91
6143cd3687b480264dad4e3d3a237c30c26c859ef7fe1c2a7b32472fb65710c0
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8(2).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 8885
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-22b5"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg
193.108.118.121200 OK 12 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 258x145, components 3\012- data
Hash 081a01df58865529d3edcbc765c4dcb5
a7fe3ca35fe5e244926a80addda994218806f613
edebf400c8f60c306491e7b2f8a695b7dde10cf49eed66125423571a1cd60d05
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/5.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 12127
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2f5f"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg
193.108.118.121200 OK 9.6 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x70755b56", progressive, precision 8, 258x145, components 3\012- data
Hash 8fcd27f0bcc790f75f46d275a19a6300
556d3ca4dec168c77ae4a73c0c6e8291ef1291c0
78410be719ee73e00845d44e100e280d3989fc3d0fa4d3dcfcd888f13ded1843
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/8(1).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 9565
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-255d"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg
193.108.118.121200 OK 10 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x1d6d8e5e", progressive, precision 8, 258x145, components 3\012- data
Hash 1541881a313c963dc754657aefd89ef0
fb41198c81ac17da4f9a34e4b4bf21c8c7fe6001
75e1629d9fad2e22b9d9983c65874a19a3f639db43c11db713a7f972b8f72117
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/10.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 10352
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2870"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-icons.png@cache=2016051250 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 613999d4801774b827b4f8bd140a605f
2c5b07d29a96ee02d53dd712b7e00e24e155cb22
cc78e35561f66b97b4b68cee9544c54190e44bb07bf8e6a067a45db32f5b1883
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/sprite-pornhub-nf.png@cache=2016051250 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/header.css
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/octet-stream
Content-Length: 1979
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7bb"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg
193.108.118.121200 OK 9.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 258x145, components 3\012- data
Hash 6c17c634ebd856cc85bedd931ac01680
d1e1b9358749b9fd4ff851bb4cbdce54a6223ce8
c1ced3a91bde391f64c6cef03b164cd89ffd499fa5d75a3f797bc57b1fc3c191
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/0.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 9032
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-2348"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg
193.108.118.121200 OK 8.3 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x8c97c7da", progressive, precision 8, 258x145, components 3\012- data
Hash bc1cdeea817d887b981f26bc84236b93
4528ed7010e2e0c774890d6041a60cbeb3c69c92
d737ffd9379d8f2734c1dc6304e4ff75f1c946de29371a1ec9ddc01f423076dd
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/14.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 8266
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-204a"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 1b6ee6a5fdcf3c781a0b768964797646
f0bf83f6368d7c31471ad258ce8cfb4848109192
511ad4ad0f3db18490c9b7876d44c887f60d78dd8d06a585367c0ab4ddbbe92f
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/premium/premium-spirte.png@cache=2016051250 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/commons.css
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: application/octet-stream
Content-Length: 1995
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7cb"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/button.png
193.108.118.121200 OK 20 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/button.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 107 x 93, 8-bit/color RGBA, non-interlaced\012- data
Hash e2aadceedde9aef1bf42c176b31c585c
76c14eae7537160a304aa458bf11a985d5a57375
2b1ff8c49202306d33deac4cf49841f59c1a49d15c80a77c1e001369578cef3f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/button.png HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/png
Content-Length: 19948
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-4dec"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/panel.jpg
193.108.118.121200 OK 24 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/panel.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2016:05:13 17:11:55], baseline, precision 8, 990x36, components 3\012- data
Hash ab6b76c0cc6683324bd7fe5923b24d17
559b8b1e50f80b7a218e25ce443e523401882577
a923ea85ee73e53db73038b2ea8712e7e40b067cde25b05ffa999608b17a304d
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/panel.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 23598
Last-Modified: Thu, 12 Sep 2019 09:25:04 GMT
Connection: keep-alive
ETag: "5d7a0ef0-5c2e"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg
193.108.118.121200 OK 1.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x2a0818fe", progressive, precision 8, 60x60, components 3\012- data
Hash 609e06417314a6476bc6d0f3c1900e20
0e2b0d425bd9e5cc0ebb386b093adf64d464ac1e
9450244a77e354c177c18a691c0e5f0c2fc5d0ddf921f40178cbb8bfe4a076ac
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(1).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 1394
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-572"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg
193.108.118.121200 OK 887 B URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 7754ce192cf45ea10de0706da442d2ff
b5b7d0fcf5e84b04b34629d5a5a9c0bb69ca5238
0bfd7fc5264b6cede1f78a26a96cee917f96989822aa2aa20ac854e13ad46b2b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/male.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 887
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-377"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg
193.108.118.121200 OK 1.2 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 1226a24c469c0fba3970548aab13650f
a6d371e4acc2a9181d1d6bf13b5d51f82c49a943
6a1513dacd3fcffe47245068fe9fa6a49cdc9c352b8d9cbf8f72005c4cf5cafc
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(3).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 1191
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-4a7"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg
193.108.118.121200 OK 1.7 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash 3db490cc8f824e29d6fb07ba75a97a20
84c2c26447f7b49c76999f31c0ed526bde13c6c4
5c13ca439c63d5f3e5d638ba055f399058117d3b554ae3fb751d4a39043a14fd
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(4).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 1729
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-6c1"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg
193.108.118.121200 OK 4.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x550d5e4d", progressive, precision 8, 150x84, components 3\012- data
Hash 58477c52a9d639b91b16f022d4676bcf
51a85ef703617e996c50cd76b38f2507517a9f25
a0653cc819b252702f55439d6f8763d212fca2f9f604d67224a2a9891e8eadbe
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(1).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 4397
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-112d"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg
193.108.118.121200 OK 4.3 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x852b408e", progressive, precision 8, 150x84, components 3\012- data
Hash 365e215442256548316a73bc7c79edf1
13078402132cb89939a39edf11181fb88ebe390f
f8c35c02ff055694af23c83b1e3019a8c29965ab57ed7db8173a23a38494ff58
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/10(1).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 4315
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-10db"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250
193.108.118.121200 OK 2.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 787dca6a9c809e6dcc3d3018f3f639bb
cf5838982dcd16a1cca3e810716270434413ea80
6fe734b116afdc3782aef601ddee34dfa45e93c69ff372143f3ae187c47627d3
Analyzer Verdict Alert fortinet Phishing
GET /lands/38/landings/Ihyam_7H2-fd/images/profile/redesign-stream-ui.png@cache=2016051250 HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/widgets-comments.css
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: application/octet-stream
Content-Length: 1995
Last-Modified: Thu, 12 Sep 2019 09:25:00 GMT
Connection: keep-alive
ETag: "5d7a0eec-7cb"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
193.108.118.121200 OK 234 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/fon2.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2016:06:21 11:55:20], baseline, precision 8, 990x513, components 3\012- data
Size 234 kB (234218 bytes)
Hash 60f67e63f85561c6f95fd573252d2311
6fc6d41b27131074786778522b86077f477dbd51
0e80e9257f1dd0149894bf37342cb082ef2410263de490e851111fa9531e15c6
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/fon2.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:15 GMT
Content-Type: image/jpeg
Content-Length: 234218
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-392ea"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg
193.108.118.121200 OK 1.9 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.2 0x6e5cd524", progressive, precision 8, 60x60, components 3\012- data
Hash ddf58dd1f8745a81264b21bcf1f9cc77
73a35df521dc648af06e2e490cac929bc681a06c
a2315bfaefeae19a449f38fe4131531c7603f5c7e75e956c240074da66123134
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 1889
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-761"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg
193.108.118.121200 OK 2.6 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xe705e0c1", progressive, precision 8, 60x60, components 3\012- data
Hash 677577d8c6ffb0107ee5c9fbabaa4af7
0bfcbbafee19eeeae113103080c41cd95b4083e5
3a215afa0d15ae2985cfb88e51e90b727f0ba03fe10f8e0b0980ef55af91bdb0
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(2).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 2646
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-a56"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg
193.108.118.121200 OK 1.4 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0xb7d2e3cb", progressive, precision 8, 60x60, components 3\012- data
Hash 47e765dc1abef2d79edafb5fce1c64b5
93d3e7f1e11dd2d98ca3ffb3b49a0211ed76f273
185540f06acc82b2dc4bdfa6d2deb4ce7454bb1e28783acdde67f8a9a90597b1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/200x200(5).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 1441
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-5a1"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg
193.108.118.121200 OK 4.6 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x905c306b", progressive, precision 8, 150x84, components 3\012- data
Hash 0fa4a903a2adc9da58b52661ebc8d38c
061c6359c2951da7509f6ae4039c2f0bc1ce6b62
79d6da7e0398c3f607c4bbc93562cf6ab96bb800cdab4ef6df82718cf0a0d3e5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/11.jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 4644
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-1224"
Accept-Ranges: bytes
news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg
193.108.118.121200 OK 4.0 kB URL HTTP/1.1 news-piguhu.cc/lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Optimized by JPEGmini 3.12.0.4 0x541b39db", progressive, precision 8, 150x84, components 3\012- data
Hash 416ec3af020687541765d48acb81fc08
48b80345ffb951535d4d6ca811d19bd9dd726998
75c30d77f900b2f4c91f502f45f00606b57a47bb84e6b700fb18482389d88f3c
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/38/landings/Ihyam_7H2-fd/index.php_files/12(3).jpg HTTP/1.1
Host: news-piguhu.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/lands/38/?site=8027445&sub1=6sfb3is3ocq4&sub2&sub3&sub4
Cookie: clickdata=ODAyNzQ0NXw6fDM4fDp8NnNmYjNpczNvY3E0fDp8fDp8fDp8
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: image/jpeg
Content-Length: 4035
Last-Modified: Thu, 12 Sep 2019 09:25:02 GMT
Connection: keep-alive
ETag: "5d7a0eee-fc3"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ae064c74a3769d42109473ad05d56fb9
d48029ab8568cee6ab7416d3b476ed792d780a56
9852216f395a42f7b4792e852f9f9fa83e07d917a979237d5d7406a1d74edc4f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9852216F395A42F7B4792E852F9F9FA83E07D917A979237D5D7406A1D74EDC4F"
Last-Modified: Wed, 29 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13397
Expires: Thu, 30 Mar 2023 01:32:33 GMT
Date: Wed, 29 Mar 2023 21:49:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, ETag, Alert, Last-Modified, Retry-After, Content-Length, Pragma, Backoff, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 21:14:36 GMT
age: 2080
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
194.58.108.80/tLd9s8
194.58.108.80302 Found 0 B IP 194.58.108.80:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /tLd9s8 HTTP/1.1
Host: 194.58.108.80
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://news-piguhu.cc/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Wed, 29 Mar 2023 21:49:16 GMT
Location: https://10obw.webout.life
Pragma: no-cache
Set-Cookie: _subid=s8hnpa107j031;Expires=Saturday, 29-Apr-2023 21:49:16 GMT;Max-Age=2678400;Path=/
_token=uuid_s8hnpa107j031_s8hnpa107j0316424b25c267519.94182701;Expires=Saturday, 29-Apr-2023 21:49:16 GMT;Max-Age=2678400;Path=/
330d8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjU1MFwiOjE2ODAxMjY1NTZ9LFwiY2FtcGFpZ25zXCI6e1wiOTZcIjoxNjgwMTI2NTU2fSxcInRpbWVcIjoxNjgwMTI2NTU2fSJ9.L720awAKU5vSV9WlI3yAN7zxxSoMY9I-UXl_ZHEBqYc;Expires=Thursday, 25-Jun-2076 19:38:32 GMT;Max-Age=1680212956;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 97bMG2RkM3Y3PAAcfz5sWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i5sN3dNw4DEkRfZOZYOzpGkxYY8=
Date: Wed, 29 Mar 2023 21:49:16 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
10obw.webout.life/
136.243.92.2200 OK 1.6 kB IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5f3598d04493e3f61f087bf03fe2584f
504dd83bd57735dc1cd14d7cfebfc782e736cd95
7533a8536ecef690fa1333f54fe9d151e82ba60266d25e2b9a1667eb0c12c4df
GET / HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://news-piguhu.cc/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:16 GMT
content-type: text/html; charset=UTF-8
content-length: 1562
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0
144.76.158.184429 Too Many Requests 162 B URL HTTP/1.1 errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0
IP 144.76.158.184:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7f44c7691673d77d8557d4d5699ef23a
f30daebcb81f94af5e6dfd9e70585b8904d72ac1
413d294fad14524bf94e764b33ff0f327682549408545171fcf9240189c154ae
POST /api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0 HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 136
Origin: http://news-piguhu.cc
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 429 Too Many Requests
Server: nginx/1.22.1
Date: Wed, 29 Mar 2023 21:49:16 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
10obw.webout.life/js/jquery.js
136.243.92.2200 OK 45 kB URL HTTP/2 10obw.webout.life/js/jquery.js
IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash f4cfa85a7b7bfff842538af7a08a6aff
fb2a2fcfa80e250315ecae8a7fa2a838e1923452
e4d944647d7e80d3eef3e0e37757e3e63aa2aa050b7983b4640447917c55c3a6
GET /js/jquery.js HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10obw.webout.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:16 GMT
content-type: application/javascript
last-modified: Tue, 29 Mar 2022 11:54:01 GMT
etag: W/"6242f359-15391"
expires: Sat, 01 Apr 2023 21:49:16 GMT
cache-control: max-age=259200, public, must_revalidate
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10obw.webout.life
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 472955
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 21:49:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
10obw.webout.life/images/simple/adult/background.jpg
136.243.92.2200 OK 151 kB URL HTTP/2 10obw.webout.life/images/simple/adult/background.jpg
IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=2667, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=4000], baseline, precision 8, 4000x2667, components 3\012- data
Size 151 kB (151270 bytes)
Hash d06243db5eaed3c22dd6794f0384be16
752c841153c3fc67482180d49c8492021def9817
9f4e5aae6461b0d857a26e03d10a44ccc41db096b257a33c5c58f6961b32ad30
GET /images/simple/adult/background.jpg HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10obw.webout.life/css/simple/adult.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:16 GMT
content-type: image/jpeg
content-length: 151270
last-modified: Tue, 29 Mar 2022 11:54:01 GMT
etag: "6242f359-24ee6"
expires: Sat, 01 Apr 2023 21:49:16 GMT
cache-control: max-age=259200, public, must_revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
10obw.webout.life/site/set-cache
136.243.92.2200 OK 1 B URL HTTP/2 10obw.webout.life/site/set-cache
IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /site/set-cache HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://10obw.webout.life/
Content-Type: application/json
Origin: https://10obw.webout.life
Content-Length: 226
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:16 GMT
content-type: text/html; charset=UTF-8
content-length: 1
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: content-type
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3634
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 21:49:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3634
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 21:49:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3634
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 21:49:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:41 GMT
age: 276
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0a85ec27ed4f7910e26b4ff023ab1fb
f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0
fc31409ba6db565d4861a35ee6f74b7436eea5e5169bc1283f63cf6dfdb03764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: a6de82bd-5b03-4ffd-90dd-9bd03331d123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GG2IAMFuzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-7cb1c8187fe3d2b0283fb3a0;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: e5-dmpgLwquM_T8Qj65H4ETIhjLeewZa9u4VrZCiC6RQxxmMYZ-dWw==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:00 GMT
age: 317
etag: "f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:37:02 GMT
age: 735
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d389dd69e54e5d7b547a425f9b22ebf
604a65cfc5572c5da9d3fdea795be3942b8d14cb
5beda50c5f20633003e1f939673a6005eca314372e7f8fe0a1d4bb5702ae1712
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9501
x-amzn-requestid: f073f55c-fd49-4b8b-8b9c-026f6a546378
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbunG2VIAMFnQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-32af7701763d0f734f09a05d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: wyrl1rguCM5LrsEN49aH42bNWc7ht0Je1UeO-dAx6Ujj1kjQgdfGEQ==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:20:32 GMT
age: 84525
etag: "604a65cfc5572c5da9d3fdea795be3942b8d14cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fd1bc71c7e9eed7c086d752ea8b4b992
02a74cf88501d65b3dfcceb5adc79fd93ce785ed
a9a423d347533322d4d3ba90ee5fca5ca32f8d540f744ea2621deeda46df89f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7605
x-amzn-requestid: b7628073-4eb3-4ef6-b7d0-0224e0a75601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GFPoAMFebQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-445041c74356c54053f772a1;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Y0iUtB6xRnsr-ZpucYpgMPXkfeaHCPC1xH2vqGm2EZWZ3SZYuDrdAA==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:00 GMT
age: 317
etag: "02a74cf88501d65b3dfcceb5adc79fd93ce785ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6af871-1a9b-4a3a-a3f1-495c803deb2c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6af871-1a9b-4a3a-a3f1-495c803deb2c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e64ad410f5fb0e25521f45c990dd6cf
a70a0fcb8cd9f58599414280d7530a0192cd7652
9ae336eba12cbba5448030a1faa80d332248e1be5914c57a38dd9ee5ccba353e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c6af871-1a9b-4a3a-a3f1-495c803deb2c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9532
x-amzn-requestid: fb5dca19-920d-40a3-8221-cb918dfe410a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CU2YzGUBoAMFz7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e9dd1-5d8b8fd214524f1d1e8971d3;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 07:08:01 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3n_lC49m0LUaIKk2yeZvK7263DENIyV_oP8nfxZB7BKrd62DixYQ7g==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 23:09:22 GMT
age: 81595
etag: "a70a0fcb8cd9f58599414280d7530a0192cd7652"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
10obw.webout.life/css/simple/adult.css
136.243.92.2200 OK 0 B URL HTTP/2 10obw.webout.life/css/simple/adult.css
IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
GET /css/simple/adult.css HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10obw.webout.life/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:16 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2022 11:54:01 GMT
etag: W/"6242f359-db2"
expires: Sat, 01 Apr 2023 21:49:16 GMT
cache-control: max-age=259200, public, must_revalidate
content-encoding: br
X-Firefox-Spdy: h2
realrb.bid/pushJs/AoJj3MgIp.js
95.216.65.102200 OK 0 B URL HTTP/2 realrb.bid/pushJs/AoJj3MgIp.js
IP 95.216.65.102:0
ASN #24940 Hetzner Online GmbH
GET /pushJs/AoJj3MgIp.js HTTP/1.1
Host: realrb.bid
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10obw.webout.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: cloudflare-nginx
date: Wed, 29 Mar 2023 21:49:17 GMT
content-type: application/javascript
last-modified: Wed, 08 Feb 2023 11:16:43 GMT
etag: W/"63e3849b-86fc"
expires: Wed, 29 Mar 2023 21:59:16 GMT
cache-control: max-age=600, public, must_revalidate
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
10obw.webout.life/images/simple/adult/favicon.ico
136.243.92.2200 OK 0 B URL HTTP/2 10obw.webout.life/images/simple/adult/favicon.ico
IP 136.243.92.2:0
ASN #24940 Hetzner Online GmbH
GET /images/simple/adult/favicon.ico HTTP/1.1
Host: 10obw.webout.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10obw.webout.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 21:49:17 GMT
content-type: image/x-icon
last-modified: Tue, 29 Mar 2022 11:54:01 GMT
etag: W/"6242f359-47e"
expires: Sat, 01 Apr 2023 21:49:17 GMT
cache-control: max-age=259200, public, must_revalidate
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400&subset=latin,latin-ext
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400&subset=latin,latin-ext
IP 142.250.74.74:0
GET /css?family=Open+Sans:300,400&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://news-piguhu.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 29 Mar 2023 21:49:15 GMT
date: Wed, 29 Mar 2023 21:49:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2