| teasermovies.actor/?p=1306 |  63.250.43.138 | 200 OK | 43 kB |
URL User Request GET HTTP/2teasermovies.actor/?p=1306 IP63.250.43.138:443
CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8586), with CRLF, LF line terminators Hashfba09797d6bc8daebd7a0be2ed6bb0dd 7c820575726819d21b7e0f35f0d7d8b50a6364e0 dcc14d7554b7446b40b870eb7c7b0b13cfce0340470a5b83d874393bf57b73ee
GET /?p=1306 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:36:50 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://teasermovies.actor/xmlrpc.php
link: <https://teasermovies.actor/index.php?rest_route=/>; rel="https://api.w.org/", <https://teasermovies.actor/index.php?rest_route=/wp/v2/posts/1306>; rel="alternate"; type="application/json", <https://teasermovies.actor/?p=1306>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 28
accept-ranges: bytes
x-cache: HIT
content-length: 42913
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| static1.srcdn.com/wordpress/wp-content/uploads/2020/11/Gerard-Butler-night-has-fallen-.jpg |  194.242.11.186 | 200 OK | 160 kB |
URL GET HTTP/2static1.srcdn.com/wordpress/wp-content/uploads/2020/11/Gerard-Butler-night-has-fallen-.jpg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectstatic1.srcdn.com FingerprintFF:77:C3:87:1E:9A:A3:C9:4C:F8:A8:AA:62:C3:BC:C7:5D:17:F0:FF ValidityMon, 15 Apr 2024 10:10:14 GMT - Sun, 14 Jul 2024 10:10:13 GMT
Size160 kB (159546 bytes) Hash0493fb2a3cc0c29df5ad9e262b9ecc8e 917c801c0c292ae2b1a19227610b889b1320abad bc868418b3f9dc929bc14a3ce70315ff3c5216ee5b96e54d115bb167e38634a4
GET /wordpress/wp-content/uploads/2020/11/Gerard-Butler-night-has-fallen-.jpg HTTP/1.1
Host: static1.srcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:19 GMT
content-type: image/avif
content-length: 159546
server: BunnyCDN-NO1-830
cdn-pullzone: 1592192
cdn-uid: 1bdb6511-4d52-4155-8068-50426668f87a
cdn-requestcountrycode: NO
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "iIIBmFS3bc4DKcGNkYK1oXpSFsoVhWROI1E3KS5nvrk/RIl9TRHdGN2Z0eTUxY3FuVG1TV29XUkEi"
cdn-cachedat: 05/08/2024 06:25:41
x-request-id: U8WXR90FgjfRIgPJNk72Z
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
content-disposition: inline; filename="Gerard-Butler-night-has-fallen-.avif"
cdn-requestid: 49726dd703c6c521d2660fcd45c9c664
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 63.250.43.138 | 200 OK | 15 kB |
URL GET HTTP/2teasermovies.actor/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: text/css
last-modified: Tue, 27 Feb 2024 14:48:23 GMT
vary: Accept-Encoding
etag: W/"65ddf637-1bae5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 14991
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/css/fonts.css | 63.250.43.138 | 200 OK | 457 B |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/css/fonts.css IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
Hash53d02c162fa5e84278412d531f30d309 0d15e703464ccda2a90951c7b32633382c755365 439b33bd346fde1a965eaad8991a786bc771daa5c5a6dcf0b8a1d1fa1494f4f8
GET /wp-content/themes/hitmag/css/fonts.css HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: text/css
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-e02"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 457
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 | 63.250.43.138 | 200 OK | 22 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hashfbe604525dc7a004d505396511f906bd fa63685b75e0fbbe4b4e37534b9d57ad7c912370 2c051374591f7c373d512e10ab5538d9fdd17efeb861d7756933ad5b73ccab9f
GET /wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: text/css
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-190b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 22520
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/style.css?ver=1.3.8 | 63.250.43.138 | 200 OK | 13 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/style.css?ver=1.3.8 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (659) Hashb1a9952107f8a9b31a33bf45def93f76 9f9c65878b846eba015650dcda887e0b276392d7 da3a8a91709236fa91e72649a3575c047088707f2429d43474611d0f08497a8a
GET /wp-content/themes/hitmag/style.css?ver=1.3.8 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: text/css
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-1183f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 13086
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-67FRT7HHQ4 | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-67FRT7HHQ4 IP142.250.74.168:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101698 bytes) Hash07a1e3e3e69a58646d5c2e63a7b17d74 d34add743212154e503977ba845a9a428fe08ea3 034edb3cdbcbfae88a2fbc5280dc8c47991c3f87d72a821cb47553787d1f6940
GET /gtag/js?id=G-67FRT7HHQ4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 17:37:19 GMT
expires: Wed, 08 May 2024 17:37:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101698
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/css/magnific-popup.css?ver=6.5.3 | 63.250.43.138 | 200 OK | 1.8 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/css/magnific-popup.css?ver=6.5.3 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
Hash30b593b71d7672658f89bfea0ab360c9 d6963db6faa9294387bb3175813a61bc3f859437 45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e
GET /wp-content/themes/hitmag/css/magnific-popup.css?ver=6.5.3 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: text/css
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-1b27"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 1816
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 63.250.43.138 | 200 OK | 30 kB |
URL GET HTTP/2teasermovies.actor/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
vary: Accept-Encoding
etag: W/"64ecd5ef-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 30419
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 63.250.43.138 | 200 OK | 4.9 kB |
URL GET HTTP/2teasermovies.actor/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
etag: W/"6482bd64-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 4872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/uploads/2024/05/thumbnail-1426-735x400.jpeg | 63.250.43.138 | 200 OK | 53 kB |
URL GET HTTP/2teasermovies.actor/wp-content/uploads/2024/05/thumbnail-1426-735x400.jpeg IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 735x400, components 3 Hash771dbae23b04178cbba7e428f6c5be92 4ba7c244d80139366c55452bfc92c6e8156824b0 00c63485c151e53758e1056b2fb9be9134c84948871b70066acd083c574cbcc8
GET /wp-content/uploads/2024/05/thumbnail-1426-735x400.jpeg HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:40 GMT
content-type: image/jpeg
content-length: 53029
last-modified: Wed, 08 May 2024 05:56:03 GMT
etag: "663b13f3-cf25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 218
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/js/navigation.js?ver=20151215 | 63.250.43.138 | 200 OK | 1.4 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/js/navigation.js?ver=20151215 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hashf5d9d209852795da2a237895e87f2d72 521c90e7aa1c335bc5df2120a144ab800bac1644 ccabeb2cb5391e2956a1866ea45523a82f4117cbfc70e46b2aac5aaa6d3d359a
GET /wp-content/themes/hitmag/js/navigation.js?ver=20151215 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-f05"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 1356
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 | 63.250.43.138 | 200 OK | 416 B |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
GET /wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-2ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 416
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.5.3 | 63.250.43.138 | 200 OK | 7.3 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.5.3 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (20087) Hashba6cf724c8bb1cf5b084e79ff230626e f455c5f153f872e52265f87a644ff89fe14a6fb6 3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4
GET /wp-content/themes/hitmag/js/jquery.magnific-popup.min.js?ver=6.5.3 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-4ef8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 7346
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 | 63.250.43.138 | 200 OK | 747 B |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashecd38109e66a9585ef36104f99e16bfa 9bab8fd305f8ac47a5bd530c88f9760042489cde 215c0fae44ee1668bfaa892d62dbc7974b9bffd8d51b53ded1d1b786292b3f3a
GET /wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
vary: Accept-Encoding
etag: W/"662dd56f-a9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 747
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-includes/js/comment-reply.min.js?ver=6.5.3 | 63.250.43.138 | 200 OK | 1.4 kB |
URL GET HTTP/2teasermovies.actor/wp-includes/js/comment-reply.min.js?ver=6.5.3 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (2946) Hash492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js?ver=6.5.3 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: application/javascript
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
vary: Accept-Encoding
etag: W/"625095f6-ba5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
content-length: 1351
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 | 63.250.43.138 | 200 OK | 29 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29320, version 1.0 Hash523215f3b621ae9406e84e39e7976e67 3ff9b171c3ccbd71c73121b803da01b62c033ed9 78cfcd698660fe6904cdccf493e82f639a1a08707c35df07be4566e511bb04cc
GET /wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 29320
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-7288"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 | 63.250.43.138 | 200 OK | 24 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 23580
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-5c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 | 63.250.43.138 | 200 OK | 19 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18992, version 1.0 Hash8b1081927e10196dfa2642487a7b2e8c b9b32eabae814e96e10c20e43d87a5cafc4dc0d4 c3980ea8f019855a578aef98e57530e78df585bce65b79b9f86a3356fa748bf3
GET /wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 18992
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-4a30"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| catererdiarrhoeaapproach.com/84/9c/e9/849ce9e4c6ad11f66dce9435ed361721.js | 172.240.253.132 | 200 OK | 16 kB |
URL GET HTTP/1.1catererdiarrhoeaapproach.com/84/9c/e9/849ce9e4c6ad11f66dce9435ed361721.js IP172.240.253.132:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectcatererdiarrhoeaapproach.com FingerprintF1:97:0D:5B:24:3E:C7:E4:E5:0C:C1:07:E7:DF:C4:76:32:C7:92:F9 ValidityMon, 22 Apr 2024 09:30:31 GMT - Sun, 21 Jul 2024 09:30:30 GMT
File typeJavaScript source, ASCII text, with very long lines (44080), with no line terminators Hashd9fd5362dd9e6a6bd7c6c2e4af4173e8 2d9089740773341e82f706c086126652850d12bd f8ef08faf7c942deee7c0252e7d464baceb912336c4716d37f0b7bf0985583b4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /84/9c/e9/849ce9e4c6ad11f66dce9435ed361721.js HTTP/1.1
Host: catererdiarrhoeaapproach.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a728d5bc39d4202cd4b966c9d847c3ae
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| proftrafficcounter.com/stats |  18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b740d714cb684326fc5fda1a4358e94 686029fe58423f7a9e2b5f72ecd866c8039504eb 94cc4a93f148ab74461ae42b93679dc0ae0d3e59b500d904a1e03cdaf689f476
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:20 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://teasermovies.actor
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; expires=Sat, 06 May 2034 17:37:20 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/fa-solid-900.woff2 | 63.250.43.138 | 200 OK | 156 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/fa-solid-900.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 156496, version 773.768 Size156 kB (156496 bytes) Hash6c4eee562650e53cee32496bdfbe534b 1aae708e3b94ee981b452a918d28ed037fbb5e18 9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
GET /wp-content/themes/hitmag/fonts/fa-solid-900.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 156496
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-26350"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 | 63.250.43.138 | 200 OK | 29 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28592, version 1.0 Hasha72bbb5a10e8ff13010604a1bb4a4037 4accf5cfaa94279c6cfdf8cda1c75270e8278761 c07bdac3cac751c087419fb7be13f75451845e648c0c67376ce388216693265c
GET /wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 28592
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-6fb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 | 63.250.43.138 | 200 OK | 23 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 23040
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-5a00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/embed.js | 216.58.207.238 | 200 OK | 20 kB |
URL GET HTTP/3www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/embed.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash6b1e9f0504828607a4f59e3e04a43bd7 fcbb02f80b1d031640be70840dd0fd6f60c87a3c 0844cf3b7743e155d22eff4e535fa5290b077f189210f6fc26c1c72b19f6f1f0
GET /s/player/178de1f2/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 07:26:55 GMT
expires: Wed, 07 May 2025 07:26:55 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 May 2024 04:18:47 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 123025
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/178de1f2/www-player.css | 216.58.207.238 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/178de1f2/www-player.css IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash69c6c2a25cfac2a8ab7182b8a91325da 76d6c2b5a85fd1cedf7ab5022084cc982ef6f11c e4ea3085c10ebdcee3f4b16dd370f467847e40aba7fcae77d60eed0024155864
GET /s/player/178de1f2/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 47612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 07:20:34 GMT
expires: Wed, 07 May 2025 07:20:34 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 May 2024 04:18:47 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 123406
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/lato-bold-latin-italic.woff2 | 63.250.43.138 | 200 OK | 24 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/lato-bold-latin-italic.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24448, version 1.0 Hash865e46af816320c9f32234e8968558d0 6791e9f732fcbde0f375f84ccbc14c4ac72795a3 6c84348296ebe2e2a0830c3962eb02156419d9bc76371c2eadaf7329d827d550
GET /wp-content/themes/hitmag/fonts/lato-bold-latin-italic.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 24448
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-5f80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 | 63.250.43.138 | 200 OK | 24 kB |
URL GET HTTP/2teasermovies.actor/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24408, version 1.0 Hashefee2d080d7bebdd2e0aeb2e030813a0 f8d38f9f9584e48c2e469877ebd94232265585f1 bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://teasermovies.actor/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:30 GMT
content-type: font/woff2
content-length: 24408
last-modified: Sun, 28 Apr 2024 04:49:51 GMT
etag: "662dd56f-5f58"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 229
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 | 63.250.43.138 | 200 OK | 5.1 kB |
URL GET HTTP/2teasermovies.actor/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:33:50 GMT
content-type: application/javascript
last-modified: Tue, 13 Feb 2024 14:36:07 GMT
vary: Accept-Encoding
etag: W/"65cb7e57-4926"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 209
accept-ranges: bytes
x-cache: HIT
content-length: 5056
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/178de1f2/www-embed-player.vflset/www-embed-player.js | 216.58.207.238 | 200 OK | 97 kB |
URL GET HTTP/3www.youtube.com/s/player/178de1f2/www-embed-player.vflset/www-embed-player.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (829) Hash313f662ec66b3cb94106e411fba15e0d 39becc293c40b248ce60fafca7413f567d34fa03 d2d3f5afdcae3fd0b7ba628ff725ffc86cb50322d0f0900158ea19e2de701d5b
GET /s/player/178de1f2/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97382
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 07:20:52 GMT
expires: Wed, 07 May 2025 07:20:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 May 2024 04:18:47 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 123388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/base.js | 216.58.207.238 | 200 OK | 813 kB |
URL GET HTTP/3www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/base.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size813 kB (813434 bytes) Hash5ebe39f943e9d7346eaf44c56f463112 ad47f985f0bee2bc75b616d6bab087e8fee187aa 1ce835d53b199d552ef2e014c6b08754d901d4638eddf97ee2c58249de0fd863
GET /s/player/178de1f2/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 813434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 07:22:56 GMT
expires: Wed, 07 May 2025 07:22:56 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 May 2024 04:18:47 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 123264
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| restedfeatures.com/31/7b/2c/317b2c1ce8e35b537fd56a65c085a537.js | 172.240.108.84 | 200 OK | 30 kB |
URL GET HTTP/1.1restedfeatures.com/31/7b/2c/317b2c1ce8e35b537fd56a65c085a537.js IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashd4324917958f19691959bb8c6c99e869 a8646c075f8f61e4284da1becfe7102a5a6b1c09 da0a3e269eaae4b06a95c8f3816e02f59537c2a4460a14bbcfc587cee87be6f5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /31/7b/2c/317b2c1ce8e35b537fd56a65c085a537.js HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3b300b092e89dfdff8eb3727303ba3a1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 575189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 435977
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| teasermovies.actor/favicon.ico | 63.250.43.138 | 204 No Content | 0 B |
URL GET HTTP/2teasermovies.actor/favicon.ico IP63.250.43.138:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerSectigo Limited Subjectteasermovies.actor Fingerprint74:BC:FC:BB:99:C1:0D:5A:CC:E8:18:CA:57:4F:62:5A:BD:AC:6C:0C ValidityThu, 18 Apr 2024 00:00:00 GMT - Fri, 18 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: teasermovies.actor
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/?p=1306
DNT: 1
Connection: keep-alive
Cookie: _ga_67FRT7HHQ4=GS1.1.1715189840.1.0.1715189840.0.0.0; _ga=GA1.1.1255098476.1715189841; dom3ic8zudi28v8lr6fgphwffqoz0j6c=59aaed41-554d-4f72-9d68-65273df7dc5e%3A2%3A1; sb_page_849ce9e4c6ad11f66dce9435ed361721=1; sb_onpage_849ce9e4c6ad11f66dce9435ed361721=1; sb_main_849ce9e4c6ad11f66dce9435ed361721=1; sb_count_849ce9e4c6ad11f66dce9435ed361721=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 08 May 2024 17:33:33 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 227
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| restedfeatures.com/sbar.json?key=849ce9e4c6ad11f66dce9435ed361721&uuid=59aaed41-554d-4f72-9d68-65273df7dc5e%3A2%3A1 | 172.240.108.84 | 200 OK | 8.1 kB |
URL GET HTTP/1.1restedfeatures.com/sbar.json?key=849ce9e4c6ad11f66dce9435ed361721&uuid=59aaed41-554d-4f72-9d68-65273df7dc5e%3A2%3A1 IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hasha16c0949a4eacf4bb62b8c38cddee289 6c681475f9527b4b53ebdaaa8f41a3981ec86d2b cb58df548be096f60576e451989b91df625c88dff8c9cda3b6528822e9c3571b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=849ce9e4c6ad11f66dce9435ed361721&uuid=59aaed41-554d-4f72-9d68-65273df7dc5e%3A2%3A1 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:21 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teasermovies.actor
Access-Control-Allow-Origin: https://teasermovies.actor
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22091615; expires=Thu, 09 May 2024 17:37:21 GMT; secure; SameSite=None
uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; expires=Wed, 15 May 2024 17:37:21 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 09 May 2024 17:37:21 GMT; secure; SameSite=None
uncs=1; expires=Thu, 09 May 2024 17:37:21 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 09 May 2024 17:37:21 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 09 May 2024 17:37:21 GMT; secure; SameSite=None
slec849ce9e4c6ad11f66dce9435ed361721=[5210994]; expires=Wed, 08 May 2024 17:37:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a1ad0a81c7f6786656d4bee705959f6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| i.ytimg.com/vi_webp/Qoyk4jKV1dw/maxresdefault.webp | 142.250.74.118 | 200 OK | 62 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/Qoyk4jKV1dw/maxresdefault.webp IP142.250.74.118:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintD2:2C:3D:05:38:12:27:20:C9:64:22:58:3A:99:D5:43:6E:BD:3B:D2 ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp Hasheefc6145933bc62130ea15f7359426b2 4baee46e8f15ab6daecc91275ddf51df57b6d18c dfc51c75412e30fc842044dde5a4efc802670fdd82fd55f5e76c832075647605
GET /vi_webp/Qoyk4jKV1dw/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 61534
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 17:37:21 GMT
expires: Wed, 08 May 2024 19:37:21 GMT
cache-control: public, max-age=7200
etag: "1712855650"
content-type: image/webp
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js |  188.114.97.1 | 200 OK | 28 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:21 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4f5606550e6c15fbcaf3b0cfbd06ce8a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 08 May 2024 17:37:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ofb3R5rU7k6tX81C2rk749cBJRz722qUVYtLvsH3jYMjGA8oyjFliztVu8xfeu4psOHbKRICNwPqryE6IQ685DDYwCE6WPTWMH0d2LSZGjljXcvhFsg9O77jlVoxPZXUMp20kiF6hqS0antMXXsuJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b3796cfa60b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/remote.js | 216.58.207.238 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube.com/s/player/178de1f2/player_ias.vflset/en_US/remote.js IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hash949182fbd070ffe02417f214d18899e1 88205a6a179c2299a147de7c604caacfbb8df98d 3edf4e35228c643453b189122dc6ee087c43a389ca3919f3118be1b9fa11bab0
GET /s/player/178de1f2/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33663
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 07:29:37 GMT
expires: Wed, 07 May 2025 07:29:37 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 May 2024 04:18:47 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 122864
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.barscreative1.com/sb/interstitial/sweep/default/stories/1/index.html | 45.133.44.4 | 200 OK | 861 B |
URL GET HTTP/2cdn.barscreative1.com/sb/interstitial/sweep/default/stories/1/index.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typegzip compressed data, from Unix Hashd92e1088646307b76f82fbaebe97b493 2ad32490b6d7ae602741e74d5b9d076962cebda3 01ae2c24ce7149561d69a7d32be507bd5cc972dd3588f454e3f80a31a39eec48
GET /sb/interstitial/sweep/default/stories/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:21 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-465"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 08 May 2024 18:37:21 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/uf0DFwv37i7Coqsz6gUkPB1RV7xbrcf8g2186gEBC-RBEsmu9dfyHT-V0nZSgJ6rdE3hXFZXMw=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.9 kB |
URL GET HTTP/2yt3.ggpht.com/uf0DFwv37i7Coqsz6gUkPB1RV7xbrcf8g2186gEBC-RBEsmu9dfyHT-V0nZSgJ6rdE3hXFZXMw=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash44eaf73184c8bc0659b73196f9201e0d eabd88bf23f5dc6eec6868c1e33249209b51297c c9475a89f94dd1e85a5ff7cce0a9fbc9aba007ad8d2c2cbc9fe69fa6f9948fa9
GET /uf0DFwv37i7Coqsz6gUkPB1RV7xbrcf8g2186gEBC-RBEsmu9dfyHT-V0nZSgJ6rdE3hXFZXMw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2869
x-xss-protection: 0
cross-origin-resource-policy: cross-origin
date: Wed, 08 May 2024 16:33:34 GMT
expires: Thu, 09 May 2024 16:33:34 GMT
cache-control: public, max-age=86400, no-transform
age: 3827
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.202 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.202:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 May 2024 17:37:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| customarydesolate.com/pixel/purst?dl=0&th=0&sc=0&rs=3186&rd=3186&fd=1165&bv=24.5.6485&tmpl=136 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1customarydesolate.com/pixel/purst?dl=0&th=0&sc=0&rs=3186&rd=3186&fd=1165&bv=24.5.6485&tmpl=136 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectcustomarydesolate.com Fingerprint00:D2:0D:86:8E:FB:C8:79:46:C6:0E:E5:71:C7:50:AC:0E:C1:D1:F8 ValidityMon, 06 May 2024 08:18:02 GMT - Sun, 04 Aug 2024 08:18:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=3186&rd=3186&fd=1165&bv=24.5.6485&tmpl=136 HTTP/1.1
Host: customarydesolate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=128 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=128 IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=128 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.google.com/js/th/LvMrC3vzHFP8SzxjvqNWRksbkOPiJTf11ILX4Pq8Ybc.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/LvMrC3vzHFP8SzxjvqNWRksbkOPiJTf11ILX4Pq8Ybc.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeJavaScript source, ASCII text, with very long lines (51583) Hash8168176decd4ee149cd33fb0db48f5f5 b541726598ee936f690683f68551bb4e8fb01439 2ef32b0b7bf31c53fc4b3c63bea356464b1b90e3e22537f5d482d7e0fabc61b7
GET /js/th/LvMrC3vzHFP8SzxjvqNWRksbkOPiJTf11ILX4Pq8Ybc.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20283
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 01:06:51 GMT
expires: Sat, 03 May 2025 01:06:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 491431
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.202 | 200 OK | 42 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.202:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash95519826b4fdd4698a70c37282ef3f8c 14fb36852b00df0392e6e5b3c88af8024e9bf4d8 844291b81fdc31a8d15710565a36437ec84ce9a2b169c150adef192bf316f485
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 08 May 2024 17:37:22 GMT
server: ESF
cache-control: private
content-length: 41493
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/icon.png | 188.114.97.1 | 200 OK | 12 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/icon.png IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 230 x 253, 8-bit colormap, non-interlaced Hashb1f546ae7b0fbf8f3d19946146456d8a 37792f4d6fb3482b3d0281139a61e2e426fa3056 2a0b851026a70a5da3b5f2fe9e7f5d098c4126c035a68de8e90f8408bab6fd33
GET /sb/interstitial/sweep/default/stories/1/img/icon.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: image/png
content-length: 11963
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: "65aa847c-2ebb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 695962
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2BzCoVMb5QiF835UHvqoOpCk%2F8Sl9SxRtFLYXFAugnIy2z8LnFgAviSWjzD40UehjWJAR2xiFWj82hb5R0UWRXwjAcQGzkw3wjlL18dTjFMitF7raG9L10NaFh9ZvrlRD%2BMpERb1ZRJe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a30f26b4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=92 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=92 IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=92 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=93 | 192.243.61.225 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=93 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=93 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.youtube.com/generate_204?QfjERw | 216.58.207.238 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?QfjERw IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?QfjERw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Wed, 08 May 2024 17:37:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 216.58.207.202 | 200 OK | 717 B |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP216.58.207.202:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash5e48f11f5e65274412215f94f73f8c49 4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7 40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 17:37:22 GMT
date: Wed, 08 May 2024 17:37:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.202 | 200 OK | 0 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.202:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 May 2024 17:37:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/animate.css | 188.114.97.1 | 200 OK | 5.0 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/animate.css IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash5982c5377696d20476871062646b253f 8bf2c93fa9ccc908f7df0fb7abb911bbac3e4242 4e23a6449e6ef4614f0107cecf5c9eda75d2041c7c71f4a55d45f2a7e75450f4
GET /sb/interstitial/sweep/default/stories/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 637700
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8RL602QmzeEFjANLarqAwzVvomJtqq9z0dxZfjuqygA6N0JQYFFBUfhGK7ESa8V1mIq%2FoppRmwICmINhd8%2BJJLAJ7iLHWy0bQ%2FBH7q1TdC%2BYO0Ow%2BFcBsmL4KcPeV6D5w775xz8dXdda"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a09c63b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 374926
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| restedfeatures.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl9%2BXjyIsiIowhz2oLCZdM%2F0fLmH1ZiNBONmPxQFhaW6qnpSTnVXU9Ufk5yCAdnj4MWjnWeSDeoi8ebFVSYrHgJCxlMOm4v%2BB%2BKeZcZhg8%2Flfd96noKnnrc%2B38vOSR0ZPVt5T29LpehSs%2BZWX%2FvI865W12WcDaqDTutuy79aNfkb3VbNfb36jmB9vVR3Pdf1XK%2B6Ko0I9WBpSkImD7perevW%2FHrNa%2FoYmP%2FONnNgqQOen5MXIPlk4ZFzCZKNEUdHK8L2U51cuR5liqbaIOeHH8T9WBcxoos2NA7C%2BHCuhranqw%2Bh44OZXej8qTCQE%2BL8%2BhBBfDg3iSDfn%2FkMFESMgD%2BLIh9DqDEkHYPpXUh%2BSgDGcWMDcXT%2FhjYF3fqXpVN2Qhae%2FAVZTMjC40uIo%2B%2BWlRxU72iVpVLHFoOwhByMIXtjJNkx0u0KZHEMln4GyX8jS0%2FWEUf7G1ZpSH52udmlVHDfW2w2fb7oh%2B36Ype3OoutZr3d4GGbs6aYBSTlGDIcQ4khqK0gsw4y6SALHWSJg4ifVZnneW2XM%2Bp2uow1eFsELe56tB161HNbHWRs%2BoYh0mQIpoZgZgeJ2UFfDmGyn2E3S1juwKYEOS9RCILCEhSUoJAERUpQ5OUBV7Zuy%2Ftc2Szw5rU%2Br41ypNPeHj3QaU%2FEBNQMYXi5l5yT56cBOrdeuou%2BOKt2%2FC4TXeGzFuWeF7ZanImu32gK3mh57boHK0tIWwG1DrblhLjFL0jkhLzY%2BAoBPYZVx2DSAc1eBS1K0M0S2%2FFRQVO2GelcCr9fYzoC1yWSdAHplrOnzskrszVu7BoIdvLmApkBzJRITIlP5SOCnro3uq0Lsn9bF5Z8v5GkMpLbdLriOylNxf%2B%2FeVdsFdrwtRU7%2FPotNiWm7YP3hU3Xacxl3LPk22XJuTCr2jBBflyzH4rgZmY3lzMTZ8n6zbdX16LECGuljseg8vT6l2ByQp776ZPZ373y8Z%2BQZgyTlYiyEzIHpD4GS3Zgk5NrfzRmgNUERl1ogsRBkZUjUw8uDpUkUOJipkEJK06u%2Ff3M5cdLL5cIxNM4RoZOb1NZ7tl76JkKaLqLOCqRmxK5KkHVEDb73yhNzMm13%2Bc2AlUZBcpU9gNl1BezkCdkbeMIVp5VGy5vByIU7UD4TT8UjAfNZuCykAUN3ukwpHYSXv3h1j8AAAD%2F%2FwEAAP%2F%2FH2WhmJUEAAA%3D | 172.240.108.84 | 200 OK | 7 B |
URL GET HTTP/1.1restedfeatures.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl9%2BXjyIsiIowhz2oLCZdM%2F0fLmH1ZiNBONmPxQFhaW6qnpSTnVXU9Ufk5yCAdnj4MWjnWeSDeoi8ebFVSYrHgJCxlMOm4v%2BB%2BKeZcZhg8%2Flfd96noKnnrc%2B38vOSR0ZPVt5T29LpehSs%2BZWX%2FvI865W12WcDaqDTutuy79aNfkb3VbNfb36jmB9vVR3Pdf1XK%2B6Ko0I9WBpSkImD7perevW%2FHrNa%2FoYmP%2FONnNgqQOen5MXIPlk4ZFzCZKNEUdHK8L2U51cuR5liqbaIOeHH8T9WBcxoos2NA7C%2BHCuhranqw%2Bh44OZXej8qTCQE%2BL8%2BhBBfDg3iSDfn%2FkMFESMgD%2BLIh9DqDEkHYPpXUh%2BSgDGcWMDcXT%2FhjYF3fqXpVN2Qhae%2FAVZTMjC40uIo%2B%2BWlRxU72iVpVLHFoOwhByMIXtjJNkx0u0KZHEMln4GyX8jS0%2FWEUf7G1ZpSH52udmlVHDfW2w2fb7oh%2B36Ype3OoutZr3d4GGbs6aYBSTlGDIcQ4khqK0gsw4y6SALHWSJg4ifVZnneW2XM%2Bp2uow1eFsELe56tB161HNbHWRs%2BoYh0mQIpoZgZgeJ2UFfDmGyn2E3S1juwKYEOS9RCILCEhSUoJAERUpQ5OUBV7Zuy%2Ftc2Szw5rU%2Br41ypNPeHj3QaU%2FEBNQMYXi5l5yT56cBOrdeuou%2BOKt2%2FC4TXeGzFuWeF7ZanImu32gK3mh57boHK0tIWwG1DrblhLjFL0jkhLzY%2BAoBPYZVx2DSAc1eBS1K0M0S2%2FFRQVO2GelcCr9fYzoC1yWSdAHplrOnzskrszVu7BoIdvLmApkBzJRITIlP5SOCnro3uq0Lsn9bF5Z8v5GkMpLbdLriOylNxf%2B%2FeVdsFdrwtRU7%2FPotNiWm7YP3hU3Xacxl3LPk22XJuTCr2jBBflyzH4rgZmY3lzMTZ8n6zbdX16LECGuljseg8vT6l2ByQp776ZPZ373y8Z%2BQZgyTlYiyEzIHpD4GS3Zgk5NrfzRmgNUERl1ogsRBkZUjUw8uDpUkUOJipkEJK06u%2Ff3M5cdLL5cIxNM4RoZOb1NZ7tl76JkKaLqLOCqRmxK5KkHVEDb73yhNzMm13%2Bc2AlUZBcpU9gNl1BezkCdkbeMIVp5VGy5vByIU7UD4TT8UjAfNZuCykAUN3ukwpHYSXv3h1j8AAAD%2F%2FwEAAP%2F%2FH2WhmJUEAAA%3D IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuunl9%2BXjyIsiIowhz2oLCZdM%2F0fLmH1ZiNBONmPxQFhaW6qnpSTnVXU9Ufk5yCAdnj4MWjnWeSDeoi8ebFVSYrHgJCxlMOm4v%2BB%2BKeZcZhg8%2Flfd96noKnnrc%2B38vOSR0ZPVt5T29LpehSs%2BZWX%2FvI865W12WcDaqDTutuy79aNfkb3VbNfb36jmB9vVR3Pdf1XK%2B6Ko0I9WBpSkImD7perevW%2FHrNa%2FoYmP%2FONnNgqQOen5MXIPlk4ZFzCZKNEUdHK8L2U51cuR5liqbaIOeHH8T9WBcxoos2NA7C%2BHCuhranqw%2Bh44OZXej8qTCQE%2BL8%2BhBBfDg3iSDfn%2FkMFESMgD%2BLIh9DqDEkHYPpXUh%2BSgDGcWMDcXT%2FhjYF3fqXpVN2Qhae%2FAVZTMjC40uIo%2B%2BWlRxU72iVpVLHFoOwhByMIXtjJNkx0u0KZHEMln4GyX8jS0%2FWEUf7G1ZpSH52udmlVHDfW2w2fb7oh%2B36Ype3OoutZr3d4GGbs6aYBSTlGDIcQ4khqK0gsw4y6SALHWSJg4ifVZnneW2XM%2Bp2uow1eFsELe56tB161HNbHWRs%2BoYh0mQIpoZgZgeJ2UFfDmGyn2E3S1juwKYEOS9RCILCEhSUoJAERUpQ5OUBV7Zuy%2Ftc2Szw5rU%2Br41ypNPeHj3QaU%2FEBNQMYXi5l5yT56cBOrdeuou%2BOKt2%2FC4TXeGzFuWeF7ZanImu32gK3mh57boHK0tIWwG1DrblhLjFL0jkhLzY%2BAoBPYZVx2DSAc1eBS1K0M0S2%2FFRQVO2GelcCr9fYzoC1yWSdAHplrOnzskrszVu7BoIdvLmApkBzJRITIlP5SOCnro3uq0Lsn9bF5Z8v5GkMpLbdLriOylNxf%2B%2FeVdsFdrwtRU7%2FPotNiWm7YP3hU3Xacxl3LPk22XJuTCr2jBBflyzH4rgZmY3lzMTZ8n6zbdX16LECGuljseg8vT6l2ByQp776ZPZ373y8Z%2BQZgyTlYiyEzIHpD4GS3Zgk5NrfzRmgNUERl1ogsRBkZUjUw8uDpUkUOJipkEJK06u%2Ff3M5cdLL5cIxNM4RoZOb1NZ7tl76JkKaLqLOCqRmxK5KkHVEDb73yhNzMm13%2Bc2AlUZBcpU9gNl1BezkCdkbeMIVp5VGy5vByIU7UD4TT8UjAfNZuCykAUN3ukwpHYSXv3h1j8AAAD%2F%2FwEAAP%2F%2FH2WhmJUEAAA%3D HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:23 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 96124cbeb88da33b66c186e5dea07bad
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| restedfeatures.com/pixel/sbs?c=1 | 192.243.61.225 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/pixel/sbs?c=1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| unseenreport.com/pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=849ce9e4c6ad11f66dce9435ed361721&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=849ce9e4c6ad11f66dce9435ed361721&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=849ce9e4c6ad11f66dce9435ed361721&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 08 May 2024 17:37:23 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cbd09fa21a2cb37b840283f6588bf772
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=317b2c1ce8e35b537fd56a65c085a537&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=317b2c1ce8e35b537fd56a65c085a537&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=59aaed41-554d-4f72-9d68-65273df7dc5e&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=317b2c1ce8e35b537fd56a65c085a537&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 08 May 2024 17:37:23 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 15695870a5e76c7c9addcc10801c8a01
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.207.238 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715189844538
Content-Type: application/json
X-Goog-Visitor-Id: CgtCUFh5SmloOUVQMCjQ8O6xBjIOCgJOTxIIEgQSAgsMIEg%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240506.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715189840974&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C735%2C413&vis=1&wgl=true&ca_type=image
Content-Length: 11272
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 08 May 2024 17:37:24 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.207.238 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.207.238:443
Requested byhttps://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715189865700
Content-Type: application/json
X-Goog-Visitor-Id: CgtCUFh5SmloOUVQMCjQ8O6xBjIOCgJOTxIIEgQSAgsMIEg%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240506.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715189840974&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C735%2C413&vis=1&wgl=true&ca_type=image
Content-Length: 1058
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Wed, 08 May 2024 17:37:45 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/close.svg | 188.114.97.1 | 200 OK | 1.3 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/close.svg IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeSVG Scalable Vector Graphics image Hash5ff33e884803785a8002a2aa5fa03b0e a04406f2592e23e648bee499477f823da0c48362 6ba65121162b5b03e75501501ddaa928f73be8d1fe81c032a4879561de63ff58
GET /sb/interstitial/sweep/default/stories/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1985064
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jrzfGQgfxBo1NlA0lXKQq%2F0mEdGy4EGYnuD1QdmYc%2BOosltYq3VwjSZIxU3KL3c7pRg%2BjoIOLGHTXbXmFFBzoXpKSYfR9dGsWGTN%2F2S8cqJhdbBUJt6Z7Y%2BJuM6r%2B2Xnt73GOUJbBIEU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a30f25b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/jquery.min.js | 188.114.97.1 | 200 OK | 87 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /sb/interstitial/sweep/default/stories/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-15283"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 695962
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HiZPePbfnnSsLyecAL8R1nnpAtb5QE7PJLcnsBS9SpxC2fWGqxsAk%2F%2FdLouB0FsToY2GQHc4ghEHLwNA7dk8Etudjp%2FvWcyAwZnPZWI2uSVR%2FTVjHJJl7T2q94h5RIZdZFFVKtogZKZ7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a30f2ab4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=24 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=24 IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=24 HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed | 216.58.207.238 | 200 OK | 93 kB |
URL GET HTTP/2www.youtube.com/embed/Qoyk4jKV1dw?feature=oembed IP216.58.207.238:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/Qoyk4jKV1dw?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 17:37:20 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=tBcFAY7nntI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=BPXyJih9EP0; Domain=.youtube.com; Expires=Mon, 04-Nov-2024 17:37:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIEg%3D; Domain=.youtube.com; Expires=Mon, 04-Nov-2024 17:37:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/style.css | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/style.css IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (1523), with no line terminators Hashaf8b297e908242d66890c4650aaffdd2 45fe0a1587b11f77bf71085d15dbae9750a97179 cc03ce0e52d2d5b339b37554d900c6ec631929d4d729ffbd1fb200eba267d5ad
GET /sb/interstitial/sweep/default/stories/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-59a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 637700
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cN32Oi0CP6wQBHyM9FD4wmKpx315SXZP05uW8oPOrSXpzZG4LIsDIxDdNOI9iol8QYMxxE4Hs02Sb%2F%2Ff5c88jkmr7l1wXZl2CczfHyiXi1xufoQTBcte%2BH5NunDGXn%2BdIdZDOajlm2EF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a09c69b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/script.js | 188.114.97.1 | 200 OK | 321 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/script.js IP188.114.97.1:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (343), with no line terminators Hash4f46dc256e627bbc1fa54e2996e30b25 56ff1d7676599e3d1ddbee84dad29f2a2bece6ce 6933ea1db439c96d670e6ce25bcbfa19052ce0626fee500df36d11167636d6c3
GET /sb/interstitial/sweep/default/stories/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
Origin: https://teasermovies.actor
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 17:37:22 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-141"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 557219
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HpPpLHK3FWP7bsYaj0MbA30RYZxkCtu1FxNlgf99IK0ci%2FKM5mpMNnF07eXpxMW2fuRFZ1lDlCe5fQS%2FHWtHkPOZaX7c46TVstmO%2FOxp1CxmqfCiexo3VGcJuGS2A7xgRZuaf%2FtmFjk2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b37a37803b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| restedfeatures.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2Bd9TdfLhwQqAgJhORDDyA1zu56vbbpoVDaoIjQ9AcIJJCq2ZlZZ%2FDszmpm1%2BvmVBEJ9Whx4cjmOWkEVCjcuFCQU8QhElLMKYfmAv8BomdkYzXiXT6fz7w30pv3mc93ilPio6AnV97TW1IputJquPXXPvK8i%2FV1mRbD%2BrAT3g6Di3UzeKMbNtzX6%2B8I1tcrvuu5rud69VVpRKyHKzMSMnvQ9RpdtxH4Da8VYGj%2BO9vCgaUO%2BOCUvADJp0uPnHOQbII0ObgibD%2FX2YWrSaForg0GfP%2BDtJ%2FqMkVy1sbGQZzuL9TQ9nj1IXS6N7cLPXgqjOSUOL8%2BRJTuL0wiGuzOfUYKIkXEn0U5mECoCSSdgOltSH5MAMZxbQNpcv%2BaNiW98y9LZ%2ByULD35C7KckqXH55Am311Wcli%2FpVWRS51aDOMKcjiB7E2QFYfIt2qQ5SFY%2Fhkk%2F42sPFlHmuxuWKUh%2Bcn5VpdSwQNvudUK%2BHIQt%2F3lLg87y2HLbzd53OasJeYBSTmBjCdQYgRqayisg0I6KGIHReYg4Sd15nle2%2BWMup0uY03eFlHIXY%2B2Y496bthBwWZvGCHPRmBqBGbuIjN30ZcjmOJn2M0KljuwOcGAVygFQWkJSkpQSoIyJygH1R5X1rfVfa5sEXmL6i9qsxrrvLdD93TeEykBNSMYXu1kp%2BT5WYDOjZduoy9O6p2gy0RXBCyk3PPiMORMdINmS%2FBm6LV9D1ZWkLYGah1sySlxy1%2BQySl5sfkVInoIqw7BpANavApaVqCbFbbSg5LmbDPRAymCfoPpBFxXyPIl5HecHXVKXpmvcWPbQLCjN5fIHGCmQmYqfCofEfTUvfFNXZLdm7q05PuNLJeJ3KKzFd%2FKaS7%2B%2F8274k6pDV%2B7Ykdfv8VmxKx98L6w%2BTpNuUx7lnx7WXIuzKo2TJAf1%2ByHIrpe2M3LhUmLbP3626trSWaEtVKnE1B5fPVLMDklz%2F30yfzvXvj4T0gzgSkqJMURWQBSH4Jld2Gzo0t%2FNOeA1QRGnWmizEFZVGPjR2eHShIocTbTqIIVR5f%2Bfub845WXK0TiaRxjQ2e3qax27D30TA0030aaVBiYCgNVgaoRbPG%2FcZ6Zo0u%2FL2xEqjaOlKntRsqoL%2BYhT8naxgGsPKm3m02Xht2W125T0Y4CvxOHHqfUD0I%2FDGkTuZ3GF3%2B48Q8AAAD%2F%2FwEAAP%2F%2Fn7F0cJUEAAA%3D | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1restedfeatures.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2Bd9TdfLhwQqAgJhORDDyA1zu56vbbpoVDaoIjQ9AcIJJCq2ZlZZ%2FDszmpm1%2BvmVBEJ9Whx4cjmOWkEVCjcuFCQU8QhElLMKYfmAv8BomdkYzXiXT6fz7w30pv3mc93ilPio6AnV97TW1IputJquPXXPvK8i%2FV1mRbD%2BrAT3g6Di3UzeKMbNtzX6%2B8I1tcrvuu5rud69VVpRKyHKzMSMnvQ9RpdtxH4Da8VYGj%2BO9vCgaUO%2BOCUvADJp0uPnHOQbII0ObgibD%2FX2YWrSaForg0GfP%2BDtJ%2FqMkVy1sbGQZzuL9TQ9nj1IXS6N7cLPXgqjOSUOL8%2BRJTuL0wiGuzOfUYKIkXEn0U5mECoCSSdgOltSH5MAMZxbQNpcv%2BaNiW98y9LZ%2ByULD35C7KckqXH55Am311Wcli%2FpVWRS51aDOMKcjiB7E2QFYfIt2qQ5SFY%2Fhkk%2F42sPFlHmuxuWKUh%2Bcn5VpdSwQNvudUK%2BHIQt%2F3lLg87y2HLbzd53OasJeYBSTmBjCdQYgRqayisg0I6KGIHReYg4Sd15nle2%2BWMup0uY03eFlHIXY%2B2Y496bthBwWZvGCHPRmBqBGbuIjN30ZcjmOJn2M0KljuwOcGAVygFQWkJSkpQSoIyJygH1R5X1rfVfa5sEXmL6i9qsxrrvLdD93TeEykBNSMYXu1kp%2BT5WYDOjZduoy9O6p2gy0RXBCyk3PPiMORMdINmS%2FBm6LV9D1ZWkLYGah1sySlxy1%2BQySl5sfkVInoIqw7BpANavApaVqCbFbbSg5LmbDPRAymCfoPpBFxXyPIl5HecHXVKXpmvcWPbQLCjN5fIHGCmQmYqfCofEfTUvfFNXZLdm7q05PuNLJeJ3KKzFd%2FKaS7%2B%2F8274k6pDV%2B7Ykdfv8VmxKx98L6w%2BTpNuUx7lnx7WXIuzKo2TJAf1%2ByHIrpe2M3LhUmLbP3626trSWaEtVKnE1B5fPVLMDklz%2F30yfzvXvj4T0gzgSkqJMURWQBSH4Jld2Gzo0t%2FNOeA1QRGnWmizEFZVGPjR2eHShIocTbTqIIVR5f%2Bfub845WXK0TiaRxjQ2e3qax27D30TA0030aaVBiYCgNVgaoRbPG%2FcZ6Zo0u%2FL2xEqjaOlKntRsqoL%2BYhT8naxgGsPKm3m02Xht2W125T0Y4CvxOHHqfUD0I%2FDGkTuZ3GF3%2B48Q8AAAD%2F%2FwEAAP%2F%2Fn7F0cJUEAAA%3D IP172.240.108.84:443
Requested byhttps://teasermovies.actor/?p=1306 CertificateIssuerLet's Encrypt Subjectrestedfeatures.com Fingerprint99:6A:08:24:87:8D:99:4B:3C:DF:AF:B1:28:8C:E3:55:1C:28:74:EA ValidityMon, 06 May 2024 12:47:15 GMT - Sun, 04 Aug 2024 12:47:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2Bd9TdfLhwQqAgJhORDDyA1zu56vbbpoVDaoIjQ9AcIJJCq2ZlZZ%2FDszmpm1%2BvmVBEJ9Whx4cjmOWkEVCjcuFCQU8QhElLMKYfmAv8BomdkYzXiXT6fz7w30pv3mc93ilPio6AnV97TW1IputJquPXXPvK8i%2FV1mRbD%2BrAT3g6Di3UzeKMbNtzX6%2B8I1tcrvuu5rud69VVpRKyHKzMSMnvQ9RpdtxH4Da8VYGj%2BO9vCgaUO%2BOCUvADJp0uPnHOQbII0ObgibD%2FX2YWrSaForg0GfP%2BDtJ%2FqMkVy1sbGQZzuL9TQ9nj1IXS6N7cLPXgqjOSUOL8%2BRJTuL0wiGuzOfUYKIkXEn0U5mECoCSSdgOltSH5MAMZxbQNpcv%2BaNiW98y9LZ%2ByULD35C7KckqXH55Am311Wcli%2FpVWRS51aDOMKcjiB7E2QFYfIt2qQ5SFY%2Fhkk%2F42sPFlHmuxuWKUh%2Bcn5VpdSwQNvudUK%2BHIQt%2F3lLg87y2HLbzd53OasJeYBSTmBjCdQYgRqayisg0I6KGIHReYg4Sd15nle2%2BWMup0uY03eFlHIXY%2B2Y496bthBwWZvGCHPRmBqBGbuIjN30ZcjmOJn2M0KljuwOcGAVygFQWkJSkpQSoIyJygH1R5X1rfVfa5sEXmL6i9qsxrrvLdD93TeEykBNSMYXu1kp%2BT5WYDOjZduoy9O6p2gy0RXBCyk3PPiMORMdINmS%2FBm6LV9D1ZWkLYGah1sySlxy1%2BQySl5sfkVInoIqw7BpANavApaVqCbFbbSg5LmbDPRAymCfoPpBFxXyPIl5HecHXVKXpmvcWPbQLCjN5fIHGCmQmYqfCofEfTUvfFNXZLdm7q05PuNLJeJ3KKzFd%2FKaS7%2B%2F8274k6pDV%2B7Ykdfv8VmxKx98L6w%2BTpNuUx7lnx7WXIuzKo2TJAf1%2ByHIrpe2M3LhUmLbP3626trSWaEtVKnE1B5fPVLMDklz%2F30yfzvXvj4T0gzgSkqJMURWQBSH4Jld2Gzo0t%2FNOeA1QRGnWmizEFZVGPjR2eHShIocTbTqIIVR5f%2Bfub845WXK0TiaRxjQ2e3qax27D30TA0030aaVBiYCgNVgaoRbPG%2FcZ6Zo0u%2FL2xEqjaOlKntRsqoL%2BYhT8naxgGsPKm3m02Xht2W125T0Y4CvxOHHqfUD0I%2FDGkTuZ3GF3%2B48Q8AAAD%2F%2FwEAAP%2F%2Fn7F0cJUEAAA%3D HTTP/1.1
Host: restedfeatures.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teasermovies.actor/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22091615; uid_id2=59aaed41-554d-4f72-9d68-65273df7dc5e:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec849ce9e4c6ad11f66dce9435ed361721=[5210994]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 08 May 2024 17:37:21 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2dbea8d0b26eaec45e0d7068d95bf6a0
Strict-Transport-Security: max-age=0; includeSubdomains
|
|