r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11811
Expires: Sun, 26 Mar 2023 02:37:50 GMT
Date: Sat, 25 Mar 2023 23:20:59 GMT
Connection: keep-alive
66.29.129.121/
66.29.129.121200 OK 12 kB IP 66.29.129.121:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381)
Hash 6841e059e4d0bb0fc4f27fcfb337a869
2ebedc9f24247beeed5a67783d9c59e12eca4b32
38ba69c2a21d2b126929b3028228b775421a0d0a32a6dad77febb1f1206b6f7e
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:20:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, User-Agent,Accept-Encoding
Last-Modified: Sat, 25 Mar 2023 11:54:09 GMT
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Mon, 29 Oct 1923 20:30:00 GMT
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Server-Powered-By: Engintron
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7245
Expires: Sun, 26 Mar 2023 01:21:44 GMT
Date: Sat, 25 Mar 2023 23:20:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6384
Expires: Sun, 26 Mar 2023 01:07:23 GMT
Date: Sat, 25 Mar 2023 23:20:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 22:27:45 GMT
content-type: application/json
age: 3194
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RhR5yG/0AwaHaVElzKiw0Vx/OtU6sQe5rxgjsakDHDy7SOEhfhXPN/aLP0hqSGSFYC/WRvrpOuk=
x-amz-request-id: H140BNQCD8R4EK5S
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 22:55:05 GMT
age: 1554
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 23:20:59 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 78470d29eb7661b88befaf038611450f
85d310efd9dd3862fc52b9d7e9b7b1638e3e2918
d0eb747269199417719b4d392896d6c7a63f63f10837da0f8ce375a2d375e8d3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 02:35:31 GMT
Expires: Sat, 01 Apr 2023 02:35:30 GMT
Etag: "85d310efd9dd3862fc52b9d7e9b7b1638e3e2918"
Cache-Control: max-age=529469,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7adae33f2820b4ed-OSL
poweredby.jads.co/js/jads.js
185.94.236.244301 Moved Permanently 178 B URL HTTP/1.1 poweredby.jads.co/js/jads.js
IP 185.94.236.244:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://66.29.129.121/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
66.29.129.121/wp-content/cache/wpfc-minified/6onddxx5/dqor8.css
66.29.129.121200 OK 13 kB URL HTTP/1.1 66.29.129.121/wp-content/cache/wpfc-minified/6onddxx5/dqor8.css
IP 66.29.129.121:0
File type ASCII text, with very long lines (65517)
Hash e4ad1653adeed593b644889491248665
3efeb18efd035039a385c829b3b562b453f60e5a
8c486d912b359386c9e2e147f8e2d626a41534cbb8f9f4a562e4262c0a70e22b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/wpfc-minified/6onddxx5/dqor8.css HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 25 Mar 2023 11:51:18 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
66.29.129.121/wp-content/cache/wpfc-minified/kncmavot/dqorn.css
66.29.129.121200 OK 17 kB URL HTTP/1.1 66.29.129.121/wp-content/cache/wpfc-minified/kncmavot/dqorn.css
IP 66.29.129.121:0
File type ASCII text, with very long lines (31260)
Hash 2dacad72768f2233e5b8795439d49c34
76949949e9d61413ea352e7a6ae07cde23639e7d
b374ee70a5437daeb70faf9fad222f0593196bb76cbdde32b273c96279d5a0bf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/wpfc-minified/kncmavot/dqorn.css HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 25 Mar 2023 11:51:23 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
poweredby.jads.co/js/jads2.js
185.94.236.244200 OK 1.7 kB URL HTTP/1.1 poweredby.jads.co/js/jads2.js
IP 185.94.236.244:0
File type ASCII text, with very long lines (3758), with no line terminators
Hash 558e1b61fc513016183a3812938e79fb
5f72ea61a2aad8f7a0956321d3fd8524db70eddf
a79f8c0aabfc2d1d45e4df2a86ca9172d292b08987f7a9d5c10bd10abf3aef54
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://66.29.129.121/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/x-javascript
Last-Modified: Tue, 24 Dec 2019 19:10:29 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"5e0262a5-eae"
Content-Encoding: gzip
66.29.129.121/wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0
66.29.129.121200 OK 1.6 kB URL HTTP/1.1 66.29.129.121/wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0
IP 66.29.129.121:0
Hash 147706f1e3fc8b6e0d22eae8a8a06395
ece28febd36861cbe69a5724778073a064eddd93
52960cfe878fd90cfa18b03d59ea1af5a599c2478a1845a8569a887ecacc1f5d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0 HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Jun 2022 04:29:25 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
66.29.129.121/wp-content/themes/kingtube/assets/js/main.js?ver=1.3.4
66.29.129.121200 OK 9.3 kB URL HTTP/1.1 66.29.129.121/wp-content/themes/kingtube/assets/js/main.js?ver=1.3.4
IP 66.29.129.121:0
Hash c1a4972c936106fac1701052459854d7
2c812447f697ca1e1dd5121a367ff9197cb83fa2
4243f7663e2db08fa0236b8017c7f2dcbc90dcef379be92aa7d38ff5ae65f036
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/kingtube/assets/js/main.js?ver=1.3.4 HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Jun 2022 04:29:25 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
66.29.129.121/wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0
66.29.129.121200 OK 416 B URL HTTP/1.1 66.29.129.121/wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP 66.29.129.121:0
Hash e6f53264ebf762f651ef3c426aba7d7a
c94c31f4cdc7976febd8b722771d433fcd460d87
e5dab0bbdb24e72cded213dba7acb5e41a11e2a317279a046e402d1146512404
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Jun 2022 04:29:25 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 23:14:33 GMT
age: 387
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
66.29.129.121/wp-content/cache/wpfc-minified/7l11kk7u/dqor8.js
66.29.129.121200 OK 35 kB URL HTTP/1.1 66.29.129.121/wp-content/cache/wpfc-minified/7l11kk7u/dqor8.js
IP 66.29.129.121:0
File type ASCII text, with very long lines (65365)
Hash 9f1fcc8c50d8ea83c10e07b846b20440
c2bb01167466601220704f07a607154359f76b61
cb6f2afbe379153e80cebcf7e3b0c93e6452f5fdb4cac24eb12ec7b8280959e6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/wpfc-minified/7l11kk7u/dqor8.js HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 25 Mar 2023 11:51:18 GMT
Expires: Mon, 24 Apr 2023 23:21:00 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
66.29.129.121/wp-content/uploads/2022/06/Logo-AVTub-Media.png
66.29.129.121200 OK 3.2 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/06/Logo-AVTub-Media.png
IP 66.29.129.121:0
File type PNG image data, 175 x 56, 8-bit colormap, non-interlaced\012- data
Hash d28900c675f11fd6b57f12c551a2e8b7
e7f6622ef037e9627d7c97843304e0a526b126ff
6372a51ef2a263502ea2191c0e9ac7a0d9822f9e81a068a7c5431368cff6e8c6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/Logo-AVTub-Media.png HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/png
Content-Length: 3226
Connection: keep-alive
Last-Modified: Fri, 03 Jun 2022 04:40:01 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/themes/kingtube/assets/img/px.gif
66.29.129.121200 OK 1.1 kB URL HTTP/1.1 66.29.129.121/wp-content/themes/kingtube/assets/img/px.gif
IP 66.29.129.121:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 96e31d075a835fb1e9d431373451cc27
8c0c1169f70c3d487419599597f095c60ed2469f
a9bb07bf95a4eb5b11f74e1be96e3cee1579e41c4c134b3773581c5340ba63ac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/kingtube/assets/img/px.gif HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/gif
Content-Length: 1095
Connection: keep-alive
Last-Modified: Fri, 03 Jun 2022 04:29:25 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 717ebcc65cb1390c2509851bac7b5878
1e04e3058329f3809bc01022d441172dcacc1aaa
3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5246
Expires: Sun, 26 Mar 2023 00:48:26 GMT
Date: Sat, 25 Mar 2023 23:21:00 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.5 kB URL HTTP/1.1 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash eb34f61c512a19197043aa91983468a6
007bf5d74944f142685aab958578c6e86f6420e6
b8e2392f1ecb4a54de0d33135916d59327fa34c5527cd27b30a30ce321ddf0e9
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
date: Sat, 25 Mar 2023 23:13:03 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 827327359
content-type: text/javascript
content-length: 4547
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:CD5F_2E69C9F0:0050_641F81DC_134A83:26FBA
x-iplb-instance: 40745
66.29.129.121/wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
66.29.129.121200 OK 77 kB URL HTTP/1.1 66.29.129.121/wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 66.29.129.121:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://66.29.129.121/wp-content/cache/wpfc-minified/kncmavot/dqorn.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: application/font-woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Fri, 03 Jun 2022 04:29:25 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2022/06/favicon.ico
66.29.129.121200 OK 2.0 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/06/favicon.ico
IP 66.29.129.121:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 5575b45941bdd0a5ed74d9aae77aa169
ab84435dedaff168fd248b1e42c1347cecf72c9b
6837279d7a6f86fe09238a550e3e31915c7765049f35b428c280d888e9090213
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/06/favicon.ico HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Jun 2022 04:40:41 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip
66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun14-e1679744774988-320x180.jpg
66.29.129.121200 OK 10 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun14-e1679744774988-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash c93221865be4b9d763cc33ec75cfe006
901d6b1b126cdacd9b1a6771901c33a353949437
a5b6d72038e2c08eceb0d470809aeeda8ac41259df5d08f0ef0d3e3df2e80c5a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/B4L1CoupleFun14-e1679744774988-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 10129
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:13 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun15-e1679744868643-320x180.jpg
66.29.129.121200 OK 7.6 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun15-e1679744868643-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 7de198eafaa6c3a4c0eb84c0c796c996
d28616a8173887f8105ec4253bfa4c1e0233aab8
862a3a268dd6278033b44aceae1b1621630064d9987e42586a45bd75bb7cac98
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/B4L1CoupleFun15-e1679744868643-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 7649
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:13 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun13-e1679744630975-320x180.jpg
66.29.129.121200 OK 9.4 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun13-e1679744630975-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash db28dbd4927596bd1e4501991f35aaa9
f0017be6b2dd714347fee363ce9fb5ef6793f411
25140b356c05c3b845bb66badb785403ecf296cacec9608d27012c001dea1a19
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/B4L1CoupleFun13-e1679744630975-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 9390
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:12 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun12-e1679744258990-320x180.jpg
66.29.129.121200 OK 8.6 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun12-e1679744258990-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 718bc3e408250d16134af03891fbb207
aec9fa51a5980f005a410a561f26a6c0ebb2344f
11a30399a61d3929e8785e9a1a4a57efb317e2d8f3f02a8cbb5c6417cbd6037d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/B4L1CoupleFun12-e1679744258990-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 8620
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:12 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
push.services.mozilla.com/
52.32.48.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.32.48.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cpWSJzRum4K4nuGcmWve/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MfmKW7DQupG4LosJ2aqfCHYJwrw=
66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun11-e1679743015734-320x180.jpg
66.29.129.121200 OK 8.7 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/B4L1CoupleFun11-e1679743015734-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash ce632d314c29e14914f24b75742b515f
003254c9770cf4d73c08c1bbcd9ded2486aa1094
31d333378a6b75f12792b8477363f0aa50cb5e8360f2dd4376381211d07e5f60
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/B4L1CoupleFun11-e1679743015734-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 8746
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:12 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/Aurora05AVTub-e1679739022258-320x180.jpg
66.29.129.121200 OK 12 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/Aurora05AVTub-e1679739022258-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 6c5ddc5b363687f4bbffb5dde7816fa4
c6faab15217b101f8e28f0291632102e3529f3bc
110f5354762af342be1e9e01f851220093210f9860411b2548adf8b2e91eff59
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/Aurora05AVTub-e1679739022258-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 11475
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:11 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
poweredby.jads.co/adshow.php?adzone=1011739
185.94.236.244200 OK 1.5 kB URL HTTP/1.1 poweredby.jads.co/adshow.php?adzone=1011739
IP 185.94.236.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (417), with CRLF, LF line terminators
Hash a3e312e85cdd67e56056a1d419750350
dd4ef14e1d3f08d1554cbec013937ef531ac2a47
8c0bdab2d406a23689ed3b2579faa3946aad1074ecec6a1b60dbd21bf70ceace
GET /adshow.php?adzone=1011739 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=1e88f734ca7998c6fe8e3cb692259bb0; expires=Sun, 24-Mar-2024 23:21:00 GMT; Max-Age=31536000; path=/; domain=.jads.co
imps29764=1; expires=Sun, 26-Mar-2023 23:21:01 GMT; Max-Age=86400; path=/; domain=.jads.co
juicy_data_1=YToxOntpOjY5NjM1NDtpOjE2ODAwNDU2NjA7fQ%3D%3D; expires=Tue, 28-Mar-2023 23:21:00 GMT; Max-Age=259199; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 28-Mar-2023 23:21:00 GMT; Max-Age=259199; domain=jads.co
Content-Encoding: gzip
66.29.129.121/wp-content/uploads/2023/03/VioRBTCAKEP-e1679736535651-320x180.jpg
66.29.129.121200 OK 5.8 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/VioRBTCAKEP-e1679736535651-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash f2da77cafaf752fffa4138314926caf8
11bee6c193c548c2942c57286e8193a199d25af9
33681eb84cc3887fca4959e0bb7b366be88ad2cab4ad46c6f990357b5c902e01
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/VioRBTCAKEP-e1679736535651-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 5836
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:11 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/ThreesomeLokal-e1679736272419-320x180.jpg
66.29.129.121200 OK 8.6 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/ThreesomeLokal-e1679736272419-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash eaa5468ad847dbed9a949c0ca3144c6d
4d64220320ed40fe3ef51101d268c225eacfc23d
7f22af7c59f1a8b431235526c1835625662fb686f502f061dbb7484178211c7a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/ThreesomeLokal-e1679736272419-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 8627
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:11 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/NgangkangTT-e1679736150368-320x180.jpg
66.29.129.121200 OK 16 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/NgangkangTT-e1679736150368-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 93957e94f813695374e744e1231f811e
6c1461beb912784af3127e69bb1f44210ed48b96
64f5fdcc61997e6d8ae85afb28beedc669adffc18c3df9dc2027399a2246a724
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/NgangkangTT-e1679736150368-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 15781
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:10 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/RaniDreamLV-e1679736046357-320x180.jpg
66.29.129.121200 OK 13 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/RaniDreamLV-e1679736046357-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash dde62650f50eadad3e54d1ff0350ace9
4d78eb2db2b10514cf74f0739221e45c7437524b
2343f3586de7b333a0438b1d016e48fd2c2fca939a6aab892907b1ca0405916c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/RaniDreamLV-e1679736046357-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:00 GMT
Content-Type: image/jpeg
Content-Length: 12811
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:10 GMT
Expires: Wed, 24 May 2023 23:21:00 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
i.jads.co/network/user22416/29763-1538683038-0288228001538683038.JPG
69.16.175.10200 OK 29 kB URL HTTP/1.1 i.jads.co/network/user22416/29763-1538683038-0288228001538683038.JPG
IP 69.16.175.10:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2018:10:04 22:54:48], baseline, precision 8, 300x100, components 3\012- data
Hash 2235012f836a8a68845d2cb20f177fda
4ea38fd00ca881818615a9806737123f36003925
46a81382ce72820c6c6b3d815585d09185f507ba5ee189e08e8f3b410bb764e3
GET /network/user22416/29763-1538683038-0288228001538683038.JPG HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://poweredby.jads.co/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:21:01 GMT
Connection: Keep-Alive
ETag: "1538683038"
Cache-Control: max-age=21527714
Content-Length: 28930
Content-Type: image/jpeg
Last-Modified: Thu, 04 Oct 2018 19:57:18 GMT
Accept-Ranges: bytes
X-HW: 1679786461.dop215.sk1.t,1679786461.cds212.sk1.c
66.29.129.121/wp-content/uploads/2023/03/PrankOjolTT-e1679735908586-320x180.jpg
66.29.129.121200 OK 12 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/PrankOjolTT-e1679735908586-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 16bfa6d086b173eaad1f8f0413f23ea6
075f5b692b36b83ccae249bfd9d4e312ea2baa7f
a1c751c0129321eecb0ef7689bf1c4da419ea21f266862508e09e59bb4cf31e8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/PrankOjolTT-e1679735908586-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11662
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:10 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/RaniML-e1679735493565-320x180.jpg
66.29.129.121200 OK 7.5 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/RaniML-e1679735493565-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 73b44a0916d9358adf726b66f41ae8ca
c2ba922b07df2308d235ed481d89244856a6f349
4f448e4be1790734521686a7bf1abf6f74c8b973277aa457c6a53af5f28293ec
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/RaniML-e1679735493565-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 7475
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:10 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/BianiJilbabTT-e1679735340898-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/BianiJilbabTT-e1679735340898-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 55be9f6b6d41dfc7f89896b702867aeb
bd72a8d978a0560b1097b1b8e8ce8025c40e925e
756e04b95a9b5d1cca55cae6574b9e5905311769a904727022ba0349c0d547f3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/BianiJilbabTT-e1679735340898-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11048
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 11:50:09 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/Mirna-Jilbab-Sange-e1679639529888-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/Mirna-Jilbab-Sange-e1679639529888-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash b209bae85ad237a67bde0f881ee13dc2
d81a0d4a34f4c92938501caa73b5f0e2a28ee004
4284f1afef395c2403e58a1330ff4871ad138de648b633a9d6e9729992a56436
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/Mirna-Jilbab-Sange-e1679639529888-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 10901
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 09:37:23 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/UkhtyNakal01-e1679636499105-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/UkhtyNakal01-e1679636499105-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 658875df21790d0cd809f94a223ce557
9cf647efb1002f6051e6a8366bd4d55738d4b5bf
bd3390c81e468907003d6ee25a6441c0527ecd446072789187f9a1c148e79a5d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/UkhtyNakal01-e1679636499105-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11419
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 09:37:21 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/UkhtySangeBJ-e1679636079927-320x180.jpg
66.29.129.121200 OK 9.2 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/UkhtySangeBJ-e1679636079927-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 2e7c65577a52bf47d60320cb8c04a91f
ab90d6e918b8f1055cd04463d8767cc205938a46
e220ea9f0dd51367c702ae8504f975fb07afadd78c69d4c06f82df39cf2cfa08
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/UkhtySangeBJ-e1679636079927-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9216
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 09:37:20 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/MeiAVTub-e1679559459418-320x180.jpg
66.29.129.121200 OK 12 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/MeiAVTub-e1679559459418-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash e36c6c99f71f40d25d74fcf2552972bd
72d26390e74bdfa3b637ceb7c7afe807c79ba764
d7fd8946ac618cc80620b81be666ac7d850b776d6bf686e3c759bdf6d28452a2
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/MeiAVTub-e1679559459418-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 12087
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 11:59:31 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/UkhtySangeTT-e1679559157158-320x180.jpg
66.29.129.121200 OK 8.9 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/UkhtySangeTT-e1679559157158-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash bc389dd9b065b01bb221edacf04a6534
fdf70c8460291a76898e4f991d5e97a0f93ee109
888bb7bfef31971de6d777131fff41bfb58ca6c4b09c33bfc483b4e94ed43846
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/UkhtySangeTT-e1679559157158-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 8883
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 11:59:31 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/UkhtySangeYA-e1679559050767-320x180.jpg
66.29.129.121200 OK 14 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/UkhtySangeYA-e1679559050767-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash cc3c16f34e6cd6429332f66df30cf78d
133ad5fc42d2457179ade8a46cf46326ff7304fe
242acb62a3c1320f8f4602dd56cada76c80e5e61ee8b70d03f780a98435c80ff
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/UkhtySangeYA-e1679559050767-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 14418
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 11:59:30 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/UkhtyNakal02-e1679557982428-320x180.jpg
66.29.129.121200 OK 14 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/UkhtyNakal02-e1679557982428-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 7820506e3eebc72e05c654fb8d0f0903
6dd14a6a465dad4d4951deb16c5726ee0f26ac20
8423db9733472dd2e02b4df190b922090562f7d60f572ab5430cc4fe7a1f9a46
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/UkhtyNakal02-e1679557982428-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 13750
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 11:59:28 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/NSFS-151-e1679396429433-320x180.jpg
66.29.129.121200 OK 25 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/NSFS-151-e1679396429433-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash bf03f33f6706e48adc9946f42bbabc44
2d0bbe2d64af1f7663f1cdc94e9b40e666fb2241
f6289c9b50f9c3365c3bed23962b1071cec81dc421a1320d6bdd380988e31d93
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/NSFS-151-e1679396429433-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 24660
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 11:09:56 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/ALDN-124-e1679396283984-320x180.jpg
66.29.129.121200 OK 26 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/ALDN-124-e1679396283984-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 37bfdc39fbbbf6f9da2e05971aa55926
671f6c09709978cf22dbd5c508ea580ffb0846f5
0deb02b399e6eac99a6257bdeb9dc6a783bc6c7cfb759550caac6bca50dd68d5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/ALDN-124-e1679396283984-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 25769
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 11:09:56 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/SSIS-574-e1679396120792-320x180.jpg
66.29.129.121200 OK 22 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/SSIS-574-e1679396120792-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash ac813279e8de86b36d4a825ee2825d5c
5834b4ab9820eaff9ed2dcf3879e8fad6a89b38f
9526df104a83c1b589be220b2c0cef6f2e0b5057f1683067d5b1714448e375bd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/SSIS-574-e1679396120792-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 22035
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 11:09:55 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/PPPE-099-e1678774459972-320x180.jpg
66.29.129.121200 OK 23 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/PPPE-099-e1678774459972-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 062e43387f616bd888ed23c3e79452ea
8f07411074d320ccb4853e86763a64aafd3d706e
3c51b78645b1aaf616deb10b14821c17051beaf3fdb9906624abb5770ae225bf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/PPPE-099-e1678774459972-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 22915
Connection: keep-alive
Last-Modified: Tue, 14 Mar 2023 07:48:13 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/IPX-945-e1678774320763-320x180.jpg
66.29.129.121200 OK 22 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/IPX-945-e1678774320763-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash bdf43d20389f80a5a9eb699678fcb6dd
50cad8f7f049e166dcb2417d62e368f464392274
6589a63b37a5e5df864f764c16da24ebf7edd4cc951a94e90e6c15b193485a74
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/IPX-945-e1678774320763-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 21944
Connection: keep-alive
Last-Modified: Tue, 14 Mar 2023 07:48:13 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/ADN-420-e1678773974174-320x180.jpg
66.29.129.121200 OK 19 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/ADN-420-e1678773974174-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 49c384bd5fda36aba1afbe472f5dc917
412d61ce581c08d1c644720fe4cfada08b75beb4
11f150792b31a01d02801cefac2b9ed673ab2c3fc62e638aa83d543e9c791e64
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/ADN-420-e1678773974174-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 18935
Connection: keep-alive
Last-Modified: Tue, 14 Mar 2023 07:48:13 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/JUL-451-e1678357534752-320x180.jpg
66.29.129.121200 OK 26 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/JUL-451-e1678357534752-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 74c7d4f81fe45f3960fa9dc712d22815
4b66d53fec1f0319a1f448b9d3f16e7735596d35
6e06601915c4d1a49f6cb4f0289cd3aeb3c59df4dc1cdf7898f6d5df952d49b6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/JUL-451-e1678357534752-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 26407
Connection: keep-alive
Last-Modified: Thu, 09 Mar 2023 11:26:59 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/03/ADN-244-e1678341122675-320x180.jpg
66.29.129.121200 OK 26 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/03/ADN-244-e1678341122675-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash addb09a98e4367cf6f7c286418df5469
eefe232f0afba645111481f4639c85741da83cf3
3886fec9ee539bbb1822728f7caf256fc69efd1f51ea22ab0f276eeedb67e961
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/03/ADN-244-e1678341122675-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 25765
Connection: keep-alive
Last-Modified: Thu, 09 Mar 2023 11:26:55 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDMoeMoe23-e1676801640479-320x180.jpg
66.29.129.121200 OK 8.4 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDMoeMoe23-e1676801640479-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 5aa28a7a4ed04a26e854a939e16a5e74
ed61889b508bcfdfb9c0903bbc41ac60be33daf1
79c51d076342d7eb1cff87628d199fb027ce894ddfa5d921ed75ab2a02a94d5e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDMoeMoe23-e1676801640479-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 8430
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:34 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDSoe2023-e1676801370371-320x180.jpg
66.29.129.121200 OK 8.4 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDSoe2023-e1676801370371-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash fa2ff056a9f879a5d24c3bf6c7eca233
622fee834f89a61983e468dc524d2368ad720cfb
775c9e6e126f3137a30730ab68c88f4c9f4a99a7dcfec8fce04c63cc160fe4df
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDSoe2023-e1676801370371-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 8359
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:33 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDChitChit23-e1676801225170-320x180.jpg
66.29.129.121200 OK 8.2 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDChitChit23-e1676801225170-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 9ddb4b9946a5be2a412ea019aab5fbdb
ecce278c9eb9d8e15e12b86c9f14c391594635b9
a1ec009fd7edd456233e4afff12793665f79c9c7938ceee7613c9770404c5ead
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDChitChit23-e1676801225170-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 8245
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:33 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDChitChitII-e1676801054615-320x180.jpg
66.29.129.121200 OK 8.5 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDChitChitII-e1676801054615-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 0063c6d72b50e8b6320245645a7ef6e4
9ebe28e9bab97f7c78511af72311d0906117c9b4
e2a18067a97365fb5bdffcb516635b0e6e0e4391aaa018c60205bd5de6b4e2ee
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDChitChitII-e1676801054615-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 8534
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:32 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDMya2023-e1676800698854-320x180.jpg
66.29.129.121200 OK 9.4 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDMya2023-e1676800698854-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 4b0c2f3dcba95c1af9b5785051e7a4f0
bb7982f9a9ed3d0a2ddb81953e58d7151b10a762
2a3d4c529293253a0a705e3eed60e4fd80404e35be6549e7a91ee0ec5d6bdddf
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDMya2023-e1676800698854-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9361
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:32 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDMyaFeb2023-e1676800568972-320x180.jpg
66.29.129.121200 OK 9.6 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDMyaFeb2023-e1676800568972-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash fd250e6eff7a8916d6bd0da891424906
ad1dd2dc047fa5b4d4393e11ce6141947afaae68
aaa802b4bb8dd535f97d04150d0f3575b695d8666354996a67a71f93a198d0fa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDMyaFeb2023-e1676800568972-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9551
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:31 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDCat23Bag3-e1676800370659-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDCat23Bag3-e1676800370659-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 276df5f8eac950e6ffdeb768162858d0
88b699c2de3d113e236de786ad241b85f33d2b23
0666cf7e24738c50bdc496d3f65d0fde8e13c7b9a2f07376132d05c5a87e7e31
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDCat23Bag3-e1676800370659-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11029
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:30 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/02/ASDCat23Bag2-e1676800201525-320x180.jpg
66.29.129.121200 OK 10 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/02/ASDCat23Bag2-e1676800201525-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash aee1ccb7ab88192cedff34bbc025eae3
e171ee695538d76d8e7e4ba114ddf5b596bf47d2
54b3821189204df7eede2807d0ece0681b1ce958108f795eabcfabf72f84bace
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/02/ASDCat23Bag2-e1676800201525-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9991
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 08:09:30 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/01/ItsDaniDay-Anal-e1673183772509-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/01/ItsDaniDay-Anal-e1673183772509-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash d29dcf42dcab6c6af22834ccff08e7fb
b059e1efc2c551b7fac43db26a0dd487143a1c31
13f66cb0385329a5974a045cc34c6f4d40d652bb4501ed9f2fe40bedc8f9f892
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/01/ItsDaniDay-Anal-e1673183772509-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11285
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:25:53 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/01/Foursome-OnlyFans-e1673183484270-320x180.jpg
66.29.129.121200 OK 9.5 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/01/Foursome-OnlyFans-e1673183484270-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 1ab533e3a4cf9f8a5eec293514234faf
d16b37802554d7cef46725fe53f2751439a3dcb8
27fca399374a718356453a09852463f1e1fac3fa9fdc282afa40eb9f8ccb63ab
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/01/Foursome-OnlyFans-e1673183484270-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9506
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:25:53 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/01/onlyfans-sky-bri-e1673183207147-320x180.jpg
66.29.129.121200 OK 10 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/01/onlyfans-sky-bri-e1673183207147-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 6bb060b1ba5fe6c2a701d1f61d2eed07
70378054b6187224c273df60f64e19238eaa349e
f9fb4b18bcc5cc2920f79299016871a7227f048f53abd51d26699ab20dfbe9e8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/01/onlyfans-sky-bri-e1673183207147-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 10497
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:25:53 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2023/01/OF-Kimmy-Granger-e1673183092301-320x180.jpg
66.29.129.121200 OK 10 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2023/01/OF-Kimmy-Granger-e1673183092301-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash afc6681470f64d2bf2f7e33982f09f0a
805d66b8b635bf50ab9935a493a2f889329df81b
8195fb61bc9c36ffd45b264045122da07e07664654edee2bd5d6d0aad7cef317
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2023/01/OF-Kimmy-Granger-e1673183092301-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 10333
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 13:25:53 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2022/10/Defloration-Marlenka-Durova-e1667040808375-320x180.jpg
66.29.129.121200 OK 12 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/10/Defloration-Marlenka-Durova-e1667040808375-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 0179daae70c5ba5f06e4f72056df95aa
2f7e60b649e30f18a617cd045adef28eceb9e786
b18c141043c8bd47ff3d3af967f8ab35adeacc28033ab59c44bc6d9318b9941d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/Defloration-Marlenka-Durova-e1667040808375-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11914
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 09:38:06 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2022/10/Defloration-Greta-Polack-e1667040591590-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/10/Defloration-Greta-Polack-e1667040591590-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash d618f99d2aa9fc8c8babeb2ce1dc622c
5ad64f14ed95ce35bc710f0eff67f9e2dc98903d
21ff8617415c0bdc4d106c68d9c277fb99fb2fbcb47448d49fff661529a4735c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/Defloration-Greta-Polack-e1667040591590-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11174
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 09:38:06 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2022/10/Defloration-Aziza-Zabitova-e1667040358378-320x180.jpg
66.29.129.121200 OK 11 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/10/Defloration-Aziza-Zabitova-e1667040358378-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 0d513ebacd5555868ace9bd8869d9912
9f23a5867fdb92bcffd78b500f5406eddb0096a2
c19800e3d253344309c01490d4330ca99552fb1d69620d71c2c2cb55863e7a2b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/Defloration-Aziza-Zabitova-e1667040358378-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 11242
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 09:38:05 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
66.29.129.121/wp-content/uploads/2022/10/Izolda-Craft-e1666705944185-320x180.jpg
66.29.129.121200 OK 9.3 kB URL HTTP/1.1 66.29.129.121/wp-content/uploads/2022/10/Izolda-Craft-e1666705944185-320x180.jpg
IP 66.29.129.121:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x180, components 3\012- data
Hash 9c655003eb2612c95bbab298b206ee93
996afb43dbe4a19553c1cb7308807ff1962e5db6
2fd2477e3bfe6c48ebfe79fcafb1dbc82e068113f0d1fbece77bf9b6b880c5bb
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/10/Izolda-Craft-e1666705944185-320x180.jpg HTTP/1.1
Host: 66.29.129.121
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://66.29.129.121/
Cookie: HstCfa4735590=1679786474850; HstCla4735590=1679786474850; HstCmu4735590=1679786474850; HstPn4735590=1; HstPt4735590=1; HstCnv4735590=1; HstCns4735590=1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 23:21:01 GMT
Content-Type: image/jpeg
Content-Length: 9261
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 14:03:58 GMT
Expires: Wed, 24 May 2023 23:21:01 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Sun, 26 Mar 2023 01:53:16 GMT
Date: Sat, 25 Mar 2023 23:21:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Sun, 26 Mar 2023 01:53:16 GMT
Date: Sat, 25 Mar 2023 23:21:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Sun, 26 Mar 2023 01:53:16 GMT
Date: Sat, 25 Mar 2023 23:21:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Sun, 26 Mar 2023 01:53:16 GMT
Date: Sat, 25 Mar 2023 23:21:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 52196
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6530dbbc16d84b7047fa4bc66364fbf4
a53e0919923151e009e12010c60acb5a9175d37e
e64a2699e763d75a068ee6ceafd4eb2a1922488dc2e052699fb4242f0bf20524
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9486
x-amzn-requestid: b0324b5e-303e-485a-ae57-c001378aa401
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2eRHjaoAMF74w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6ac1-27f002da252bd7ee19802f3d;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:42:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UITJqHB2zehWwMWUVkWr9hpp5-c0IJgLmHvvpAj_UeM4fJgRP-feLA==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:08:31 GMT
etag: "a53e0919923151e009e12010c60acb5a9175d37e"
content-type: image/jpeg
age: 4351
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e19767dbe464134f0ab81b0eadb98fa
007758853c1d1605db69131eb50ff433a4da5f8c
63f1f08cd038e7b6d3316bbdc59a598b01c3bedd1ef04ba1986152e239fa128c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12991
x-amzn-requestid: 16bc16bf-b87e-4ed7-a559-3e900595928e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smH_kIAMF5oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-21e7ce61788315866c752f28;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 0XTrJJ-Z6-GCn2VJUUt8tqhvG4E8b_TYTBiDBu1Qr35g7THOqp5Zkg==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:13 GMT
age: 5389
etag: "007758853c1d1605db69131eb50ff433a4da5f8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Olik0rOopNpu03_GQWvvGeuS0D579nAdtuk9RGWUQSopMavKHDn1cQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:53:15 GMT
age: 5267
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 073d7b39a5d1d400fce97accc61209ea
83e31c1bda5551eb05d926bc4b16b7a2f5920ab0
3336340f79556f7effd3a56536e49d4951bc40447c4ef549af185d13900ec9cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9192
x-amzn-requestid: 973b7d1d-0726-4b07-bf31-f17f700950cc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uKHYOoAMFrkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f698d-079fc061602811d02e9fa3a5;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9vrtImPAqDiD0Bso0YlkYkBjoSh2C5PtEA5T3BN9P71RsT4qQOVRPg==
via: 1.1 0a166b53605851fe961f5a2952e5a748.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:52:09 GMT
age: 5333
etag: "83e31c1bda5551eb05d926bc4b16b7a2f5920ab0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1782dd235045315ec9b8d127a4a61dfd
4242d3ff0a1ca9f76166585532a815c4b1f15175
c404e097daf50098edf2d46b1d314fb2ab95f1d655293f0a9e123867fc11a982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7778
x-amzn-requestid: 5794fe13-ddf8-4a4d-86e3-53da34af0c98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2QAF91IAMFoNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6a66-1f6247aa2651e9a35dbccec7;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:40:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ym5ku830id9iQl1QzIRpIo1jrMq7KILCx91VgOKApAkkDpEdLi_lug==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:12:28 GMT
age: 4114
etag: "4242d3ff0a1ca9f76166585532a815c4b1f15175"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 31a770089d4b03031629d127b14d742f
1418dece9354a831234effa2bd4e443f3b366031
6e7939c245e882881117ba7dbe2c0a1f63d64edb34260e78f12bd3365eee3172
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E7939C245E882881117BA7DBE2C0A1F63D64EDB34260E78F12BD3365EEE3172"
Last-Modified: Sat, 25 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7553
Expires: Sun, 26 Mar 2023 01:26:55 GMT
Date: Sat, 25 Mar 2023 23:21:02 GMT
Connection: keep-alive
s4.histats.com/stats/0.php?4735590&@f16&@g1&@h1&@i1&@j1679786474850&@k0&@l1&@mAVTub%20-%20Video%20BOKEPSIN%20Terbaru&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42379269&@b3:1679786475&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2F66.29.129.121%2F&@w
149.56.240.129200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?4735590&@f16&@g1&@h1&@i1&@j1679786474850&@k0&@l1&@mAVTub%20-%20Video%20BOKEPSIN%20Terbaru&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42379269&@b3:1679786475&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2F66.29.129.121%2F&@w
IP 149.56.240.129:0
File type ASCII text, with no line terminators
Hash 6aacc808efe1de974a5a5599e58f59ab
82f72878b25d81fb30eec70f7a931f9c46068bf8
1641c85b2808165469a8112007ed2d2b9cf76f2cc2f646a4c31fe85587524a7c
GET /stats/0.php?4735590&@f16&@g1&@h1&@i1&@j1679786474850&@k0&@l1&@mAVTub%20-%20Video%20BOKEPSIN%20Terbaru&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42379269&@b3:1679786475&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2F66.29.129.121%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://66.29.129.121/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:21:02 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381b1b42-2394-4e4e-bb0a-986511a19bd1.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381b1b42-2394-4e4e-bb0a-986511a19bd1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8dc799aaa2f69ef1109501a605dbdcfd
58cefa986d580ee408fbca288e3e45ba86fb97ac
54fa967d6b96b456416c62140a4eb9b6cda29b80d5083b5d1321b1fb89b3455f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381b1b42-2394-4e4e-bb0a-986511a19bd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9124
x-amzn-requestid: 30a39bb7-d3cc-473a-a5f9-4921367832c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kUESiIAMFVEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-6c9bb97512fc3c8a3ecedc43;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: _4VxID1v_auG0Vuzp87FJoPbgJovhYYYa1fpzQZze51I6HwFKbja6w==
via: 1.1 6af36c6902a46beec743522a9bbb3ab0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:50:36 GMT
age: 5432
etag: "58cefa986d580ee408fbca288e3e45ba86fb97ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2