| egybest.space/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.158.164 | 302 Found | 0 B |
URL GET HTTP/3egybest.space/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 25 Apr 2024 06:50:48 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k0x%2BJA2751fTo3hK%2FQSTPUj%2FKkhWmx9pS9p0DLv0K5RK59xtD%2BWiYthUSTJ53CH1PyNo05MmJSJCIsugzvs3X%2FWg%2FV9C2guclQclAaa3MIw39Yb95NyqiVBOMUpr6c8j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a5797e1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=UA-164474756-2 | 142.250.74.168 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-164474756-2 IP142.250.74.168:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hashc3cb30efdd82bfbd380654cf60940051 450a55ba66afcb035c46cea520711addd1490260 f55e6798299cb89217082e01c193126ebd407963bf8481b8e4252460766ca1be
GET /gtag/js?id=UA-164474756-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 06:50:48 GMT
expires: Thu, 25 Apr 2024 06:50:48 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| egybest.space/cdn-cgi/challenge-platform/h/b/jsd/r/879c66a1cf8c1c16 | 172.67.158.164 | 200 OK | 0 B |
URL POST HTTP/3egybest.space/cdn-cgi/challenge-platform/h/b/jsd/r/879c66a1cf8c1c16 IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/879c66a1cf8c1c16 HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12172
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/series/game-of-thrones/season/1
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ; path=/; expires=Fri, 25-Apr-25 06:50:48 GMT; domain=.egybest.space; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o3idQu%2FlixbwopbHVDSyFN752sPXdqlIDd86pwwv3r9iK6hDDEZdWxHuM1dGwFpNPB%2FzMyveUxUU0Qz3%2FhbZXULxT3RfTeA1FxhXWB6BxAOqfh4XQwquCSwp1VLiyXFe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a71a551bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| achcdn.com/script/ut.js?cb=1714027848506 | 172.67.152.53 | 200 OK | 54 kB |
URL GET HTTP/3achcdn.com/script/ut.js?cb=1714027848506 IP172.67.152.53:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectachcdn.com Fingerprint36:3E:93:7F:B5:6E:5D:6C:CA:31:2A:07:69:F2:95:9D:AB:33:35:F7 ValidityThu, 18 Apr 2024 18:07:12 GMT - Wed, 17 Jul 2024 18:07:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (63872), with no line terminators Hash0a7c64a82c113f2882fa44aaa43c133c 94bcccc409f543b5dcf93301cd4c73a33e5542d7 07306a38b0df9078349b4183e636d609fb225910c721e05870fda5f8170f5b08
GET /script/ut.js?cb=1714027848506 HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoyzQ5kinSZA6zpHHK3fo4_aNZkt8FS5lP3Gxk5RjIB_F9IHPwmMGGOVpoRaQr7vDOf5gWdwYzpDA
x-goog-generation: 1713948453577113
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 63909
x-goog-hash: crc32c=kq4lSA==, md5=CnxkqCwRPyiC+kSqpDwTPA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Thu, 25 Apr 2024 06:37:08 GMT
cache-control: public, max-age=14400
last-modified: Wed, 24 Apr 2024 08:47:33 GMT
etag: W/"0a7c64a82c113f2882fa44aaa43c133c"
age: 2796
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fBi0eBsitVKAzXCu3aZZjdaEDw38zxKEYFUnEHig8KZVSv5XqHWt821TkRWTwsVRyDRM887YXTxInfl1EezV34N8zwV6DNUnCoU9tzd6yaH9hFn1hRztcHmt8kND"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a52a030afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pl17659494.highcpmrevenuegate.com/87/62/66/8762664dd746beab2f5f44b19d05fae0.js | 192.243.59.20 | 200 OK | 16 kB |
URL GET HTTP/1.1pl17659494.highcpmrevenuegate.com/87/62/66/8762664dd746beab2f5f44b19d05fae0.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjecthighcpmrevenuegate.com Fingerprint39:91:56:A1:A4:D3:84:A5:5B:5C:6A:E2:3E:64:5C:F3:21:81:0C:F0 ValidityWed, 27 Mar 2024 07:16:22 GMT - Tue, 25 Jun 2024 07:16:21 GMT
File typeJavaScript source, ASCII text, with very long lines (44098), with no line terminators Hash106f5df7721f529b8eaf178970f2954b a0a611911eb1a18b91af7c40ac2bd1bad99f03d0 1e9b24e844601d36f0cec6b459e519bed7912a9a7890f595d81346588dd40cfa
GET /87/62/66/8762664dd746beab2f5f44b19d05fae0.js HTTP/1.1
Host: pl17659494.highcpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 06:50:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 891ff20d74692b8d262fb6dcda8f8118
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| egybest.space/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.158.164 | 302 Found | 0 B |
URL GET HTTP/3egybest.space/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 25 Apr 2024 06:50:49 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xD6e4%2BK2Dl9GpQ1U1WHMzRjrwAICiVCVq8h%2BJFRgGT6%2Fbbaw7EO2VqWIUZFBhFNCo0guROnjpr%2F4oSFHWvIO8nWMkPq3NbPlTfOzojnFVVKrP2aj7BkJnAqVElqCAu8M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66aa6c3b1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 35.158.46.84 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP35.158.46.84:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash859475a903607131ec898d88e5e2f649 464d5fe1d0ee63e8bf60c86e699a8b95711a2a60 a65135eb71c089067d2f5154712298960b74bab844f11f496691a9f2c9aa4512
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://egybest.space
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=47482613-a98c-4b4e-99c0-cae2af10006b:3:1; expires=Sun, 23 Apr 2034 06:50:49 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 35.158.46.84 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP35.158.46.84:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashc063b155d9bdd9f1600038c20e7cb23c 6c9ecd8ef659b0bf9e10cf0fef252c2953d776d7 5ba24774e888dbfd06f3b047201b7faae4e7f0d004066896f3f668dace3ab623
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://egybest.space
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; expires=Sun, 23 Apr 2034 06:50:49 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| pubtrky.com/ut/hb.php?cb=0.14489369669711316&v=1 | 172.67.188.110 | 204 No Content | 0 B |
URL POST HTTP/2pubtrky.com/ut/hb.php?cb=0.14489369669711316&v=1 IP172.67.188.110:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectpubtrky.com Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30 ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.14489369669711316&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 3316
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 25 Apr 2024 06:50:49 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uOxqQeCbbD9stU9IzlpUuGUxepYSEZZ94eHV192Ts2HnYgc%2FP1X0KhpsEZGp0O6zXdYf2RondD5%2BzvPo1vN4srJuW2KBFNX6PbAiy6LRSDhPzr0gOGHcHlVL9Shu0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aabf45568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| egybest.space/uploads/ss/644a70c6a0de5d14de283d4266d34fa0.jpg | 172.67.158.164 | 200 OK | 111 kB |
URL GET HTTP/3egybest.space/uploads/ss/644a70c6a0de5d14de283d4266d34fa0.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x411, components 3 Size111 kB (111196 bytes) Hashcae8ea3c83490e93b847b7d14eed07f7 b88e985879bbb8af7fb89ad381e3b726d7061b78 c2ee013f3860049f23a7ec5d1e30d4ee1912e60de917dcb2a223b1ae21538c0c
GET /uploads/ss/644a70c6a0de5d14de283d4266d34fa0.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-5782"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 647018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jAP9U9gK%2FGMLGDesxbjNHPmIQT1Ia3Dv4hARjRCh2kbizV7PTJ%2BojC%2BWY%2B5YkcEiHPTBwKlSbN5gVRG9CnlSMy%2BwB6MHz86rxE0fhPvUwaZzGyhTNFLEWlqptCBgivJh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aaec7b1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/push.php?r=7517574&ipp=1&mads=2&position=top&czid=kvq17wwrys&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=47.2-sw-atgv2&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&srs=c4ec308e375b2a4fa1d82e4403821f60&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits | 172.67.177.214 | 204 No Content | 0 B |
URL GET HTTP/3youradexchange.com/script/push.php?r=7517574&ipp=1&mads=2&position=top&czid=kvq17wwrys&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=47.2-sw-atgv2&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&srs=c4ec308e375b2a4fa1d82e4403821f60&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits IP172.67.177.214:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/push.php?r=7517574&ipp=1&mads=2&position=top&czid=kvq17wwrys&aggr=3&atag=1&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&atv=47.2-sw-atgv2&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&srs=c4ec308e375b2a4fa1d82e4403821f60&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Thu, 25 Apr 2024 06:50:49 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JsXAnkXcOP1OVNipZt1TP9IYHUbHLd0JFoS%2BLTb%2FQ0zRArtlHI8FYvhan4kaoEHXmEon5RVUgkxwLGH%2FitwiaKNdBTQjZfcxDkcXSwn6ExZu%2B3DNo6%2Fiwv4rp0oDjl0pCZtd91A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aadd63568e-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/a/84bdbb94eed51696b281161065a77898.jpg | 172.67.158.164 | 200 OK | 6.5 kB |
URL GET HTTP/3egybest.space/uploads/a/84bdbb94eed51696b281161065a77898.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hash7fe06f8a704730e83a0d9dadf5e8f5ae 1de5ad27d8b47f19d758a884b1ad4437ebbff583 a72992c80051247f0ca5b730ed2e557cf95fecd6242794fa7392daf7c83a4f97
GET /uploads/a/84bdbb94eed51696b281161065a77898.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-1744"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 108692
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJUscBzTPGkxeyQQs790EH%2FLg2oz6u68Bg%2FVitqhBWrzUofgKmBy8Sdls75u09FDOQ8nl0XPxN%2BZ4J7ORlyDpaPszX0LN6Fl0BoY5C6%2Bd8Id4xmcl5AwgcXakBqdU4%2B2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aaec7e1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/a/1cf1c86d930c84b856d60a34e3d88d14.jpg | 172.67.158.164 | 200 OK | 6.2 kB |
URL GET HTTP/3egybest.space/uploads/a/1cf1c86d930c84b856d60a34e3d88d14.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hashe900bbab8a6eaa50a152cd46d773559d 7fbc84e0f2bd12d47a93617df9cf30e1dec75e12 3bd1cc4743fb99333c14094b1e8c7646ff5a44da26c42c18e4f15f514b2711f4
GET /uploads/a/1cf1c86d930c84b856d60a34e3d88d14.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-181e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 926704
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A%2BuJo3Sfm9QRxxhNLNsEpeUX3XlrO%2FknwGiG2bKUfURm62wpohrpjfNAZQMyaVlIMgr5uOXrQagsISjLAeRHqRGkYILIEEPW5eIFTvK8fgQRabur1eGfOcda3RqGW29O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aafc831bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 172.67.158.164 | 200 OK | 12 kB |
URL GET HTTP/3egybest.space/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJavaScript source, ASCII text, with very long lines (7928), with no line terminators Hasha281e8fc057d2f4cef988e5a6e894f19 019aeac00482d3579cc2b48c58a6c837c0761d97 9e60933e45c04722d608270c27e0b5b256d32383a9b3569c4f5457257c17446c
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WH9PAOBoChwE4rckZwcRpDStagPYgh3asex%2B0fzqSwuPfmeU9BcMHUPOsmxdbWGjZYbmx%2B2mmQ%2FkJmFa5zq3LxY32LvUl5Fh81cBz2FTGLcZUWJ8HpJucOldPTk6qhk8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66ab0c8b1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/a/8d02d989608ddb3dc32da0502b094906.jpg | 172.67.158.164 | 200 OK | 12 kB |
URL GET HTTP/3egybest.space/uploads/a/8d02d989608ddb3dc32da0502b094906.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hashe2a326f57c18e4fb1f51da9af247cb8a 87c18c018fb008c2f8702b6be69b6a8995544a68 5d5077b3f16b3c42a9807a58184301635a09d96249b6542763a8874402f07e49
GET /uploads/a/8d02d989608ddb3dc32da0502b094906.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-1137"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 234297
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6bjSkYjWf%2BHOl%2BNHza57X%2FNdWUtUwZ%2BJihOmQETdoPr4uE9EqUdwayarWffP4Ks1WOqNavOLnyP1dkOCfs5zks9ur%2FrIpwupNbOz%2FsvM3buNm0nGDGWp9N7MueyUI53W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aafc841bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| proverbadmiraluphill.com/e6/39/2f/e6392f7ae29f8238c410813ca638ba36.js | 192.243.61.225 | 200 OK | 16 kB |
URL GET HTTP/1.1proverbadmiraluphill.com/e6/39/2f/e6392f7ae29f8238c410813ca638ba36.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectproverbadmiraluphill.com Fingerprint2D:E9:49:E1:73:02:7C:88:6B:7A:18:EB:86:8B:E9:F9:7D:73:2B:D1 ValidityTue, 23 Apr 2024 10:41:52 GMT - Mon, 22 Jul 2024 10:41:51 GMT
File typeJavaScript source, ASCII text, with very long lines (44092), with no line terminators Hash37095d7ee2f742ccce086ced305de3a6 5336542544d970e7ca1b05ed4fc5c5c219acfc0a 27619fb32b6a4ba6e9cc82a0d1c48617feb8161969dadc14f4c372d997325f45
GET /e6/39/2f/e6392f7ae29f8238c410813ca638ba36.js HTTP/1.1
Host: proverbadmiraluphill.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de431d5dc1eb86e5e22a51e790e25cdf
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| egybest.space/icons/favicon-16x16.png | 172.67.158.164 | 200 OK | 1.0 kB |
URL GET HTTP/3egybest.space/icons/favicon-16x16.png IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typePNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Hashed8a127bade9efb5314e4deb75ccf361 49e3536347747c861130ff6adcf7abbb865ad889 b2b20ac2ff8b02682b2ff12d12a677a7c80b83c55ea3bec5052e023530481cbf
GET /icons/favicon-16x16.png HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:50 GMT
content-type: image/png
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-21b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2364026
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CBkPUxtmkizaVV3J393sUOvjhIKgskTD2VQ0vfSk%2BJEo1QsZ%2FavRY%2FlBi8Y9rzDbcssH%2B%2B9%2FSWfAmA8BFF2eYdS5agRU4dXJE7kRb2tNW0W4dOYNVCOOiHv4p%2B5qocGE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66af6f4c1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| waterfallchequeomnipotent.com/sbar.json?key=8762664dd746beab2f5f44b19d05fae0&uuid=47482613-a98c-4b4e-99c0-cae2af10006b%3A3%3A1 | 172.240.108.68 | 200 OK | 7.8 kB |
URL GET HTTP/1.1waterfallchequeomnipotent.com/sbar.json?key=8762664dd746beab2f5f44b19d05fae0&uuid=47482613-a98c-4b4e-99c0-cae2af10006b%3A3%3A1 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectwaterfallchequeomnipotent.com Fingerprint10:02:FD:E1:42:43:0C:C7:37:B0:94:C6:F9:9A:80:1F:38:80:C0:6E ValidityTue, 23 Apr 2024 10:44:53 GMT - Mon, 22 Jul 2024 10:44:52 GMT
Hashda314ad8ea35c20cb6f232c374989d79 2dbe2995975f2ae0e232540b4c379620cf084e4d 2fe118c3af092a9205218a2ab337fcc152d2e43a119a3df44ee7b85319efd242
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=8762664dd746beab2f5f44b19d05fae0&uuid=47482613-a98c-4b4e-99c0-cae2af10006b%3A3%3A1 HTTP/1.1
Host: waterfallchequeomnipotent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:50 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://egybest.space
Access-Control-Allow-Origin: https://egybest.space
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17558995; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uid_id2=47482613-a98c-4b4e-99c0-cae2af10006b:3:1; expires=Thu, 02 May 2024 06:50:50 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dd7979b9eb245bee8ae023c2c3278ec4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| waterfallchequeomnipotent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzoa9LPzgJ3uThTl4cMVMuns6PTPuQYwxEjdull1FPUlVV%2FWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAzSWfCwIGT2NAfzH3gS9ibIjMHRd%2Bj3vve9hq%2B%2B9744KC6Ij4JO1t7Xe1IpurzSdBuvfux5txqbMi0GjUEn%2FDQMbjVM%2F41u2HRvNt4V0Y5e9l3PdT3Xa6xLI2I9WJ6SkNmTrtfsus3Ab3orAQbmv9gWDix1wPsX5CVIPl586lyHjGqkyXdrwu7kOnv9naRQNNcGfX78YbqT6jJFMi9j4yBOjy%2Bnoe35%2Bil0ejSTC93%2FZ5DJMXF%2BOQVLjy9FgvUPZzqZgkjB%2BDWU%2FRpC1ZC0RqQfQPJzAkQcd7aQJo%2FvaFPS3b9ZOmXHZPHFH5DlmCz%2Bdh1p8u2qkoPGfa2KXOrUYhBXkIMaslcjK86Q7y1AlmeI8s8h%2Ba9k%2BcUm0uRwyyoNySevBO2g44dea4l2O9FSwAKx1O1G7lJEhU9jz3XdkM0MkrKGjGsoMQS1V1BYB4V0UMQOisxBwieNyPO8tssj6na6UdTibcFC7nq0HXvUc8MOimj6hiHybIhIDRGZfWRmHztyCFP8DLtdwXIHNifo8wqlICgtQUkJSklQ5gRlvzriyvq2esyVLZh3mf3L3KpGOu8d0COd90RKQM0QhlcH2QX5%2F9RA59rvz7EjJo1OO%2FTDMOC8HYRMUObHK3EQMK%2FL3ZWYChdWVpB2AdQ62JNjcuPHQ2RyTK6eXgWjZ7DqDJF0QIsboGUFul1hLz0RvV0mbN5MBuC6QpYvIt91DtQFeXm2wNtffQkRPSOXgchUyEyFz%2BRTgp56OLqnS3J4T5eWfL%2BV5TKRe3S63Ps5zcXVk9tit9SGb6zZ4ddvRVNiWj75QNh8k6Zcpj1LvlmVnAuzrk0kyE8b9iPB7hZ2e7UwaZFt3n17fSPJjLBW6rQGleefPEIkx%2BR%2FP2zOrva1xgTS1DBFhaSYK5W6RpTtw2bzntUERs0xyxyURTUyPps3lSRQYo4pq2D%2Fhdm8Hhk6%2FZvK6sA%2BRM8sgOYPkCYV%2BqZCX1WgaghbXBnlmXn25vPWLMDUwogps3DIlFGPZiZPPyewctJot1ouDbsrXrtNRZsFficOPU6pH0wvgLaQ23F888%2F3%2FgIAAP%2F%2FAQAA%2F%2F85kjKKjwQAAA%3D%3D | 172.240.108.68 | 200 OK | 7 B |
URL GET HTTP/1.1waterfallchequeomnipotent.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzoa9LPzgJ3uThTl4cMVMuns6PTPuQYwxEjdull1FPUlVV%2FWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAzSWfCwIGT2NAfzH3gS9ibIjMHRd%2Bj3vve9hq%2B%2B9744KC6Ij4JO1t7Xe1IpurzSdBuvfux5txqbMi0GjUEn%2FDQMbjVM%2F41u2HRvNt4V0Y5e9l3PdT3Xa6xLI2I9WJ6SkNmTrtfsus3Ab3orAQbmv9gWDix1wPsX5CVIPl586lyHjGqkyXdrwu7kOnv9naRQNNcGfX78YbqT6jJFMi9j4yBOjy%2Bnoe35%2Bil0ejSTC93%2FZ5DJMXF%2BOQVLjy9FgvUPZzqZgkjB%2BDWU%2FRpC1ZC0RqQfQPJzAkQcd7aQJo%2FvaFPS3b9ZOmXHZPHFH5DlmCz%2Bdh1p8u2qkoPGfa2KXOrUYhBXkIMaslcjK86Q7y1AlmeI8s8h%2Ba9k%2BcUm0uRwyyoNySevBO2g44dea4l2O9FSwAKx1O1G7lJEhU9jz3XdkM0MkrKGjGsoMQS1V1BYB4V0UMQOisxBwieNyPO8tssj6na6UdTibcFC7nq0HXvUc8MOimj6hiHybIhIDRGZfWRmHztyCFP8DLtdwXIHNifo8wqlICgtQUkJSklQ5gRlvzriyvq2esyVLZh3mf3L3KpGOu8d0COd90RKQM0QhlcH2QX5%2F9RA59rvz7EjJo1OO%2FTDMOC8HYRMUObHK3EQMK%2FL3ZWYChdWVpB2AdQ62JNjcuPHQ2RyTK6eXgWjZ7DqDJF0QIsboGUFul1hLz0RvV0mbN5MBuC6QpYvIt91DtQFeXm2wNtffQkRPSOXgchUyEyFz%2BRTgp56OLqnS3J4T5eWfL%2BV5TKRe3S63Ps5zcXVk9tit9SGb6zZ4ddvRVNiWj75QNh8k6Zcpj1LvlmVnAuzrk0kyE8b9iPB7hZ2e7UwaZFt3n17fSPJjLBW6rQGleefPEIkx%2BR%2FP2zOrva1xgTS1DBFhaSYK5W6RpTtw2bzntUERs0xyxyURTUyPps3lSRQYo4pq2D%2Fhdm8Hhk6%2FZvK6sA%2BRM8sgOYPkCYV%2BqZCX1WgaghbXBnlmXn25vPWLMDUwogps3DIlFGPZiZPPyewctJot1ouDbsrXrtNRZsFficOPU6pH0wvgLaQ23F888%2F3%2FgIAAP%2F%2FAQAA%2F%2F85kjKKjwQAAA%3D%3D IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectwaterfallchequeomnipotent.com Fingerprint10:02:FD:E1:42:43:0C:C7:37:B0:94:C6:F9:9A:80:1F:38:80:C0:6E ValidityTue, 23 Apr 2024 10:44:53 GMT - Mon, 22 Jul 2024 10:44:52 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwWskxReuzoa9LPzgJ3uThTl4cMVMuns6PTPuQYwxEjdull1FPUlVV%2FWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAzSWfCwIGT2NAfzH3gS9ibIjMHRd%2Bj3vve9hq%2B%2B9744KC6Ij4JO1t7Xe1IpurzSdBuvfux5txqbMi0GjUEn%2FDQMbjVM%2F41u2HRvNt4V0Y5e9l3PdT3Xa6xLI2I9WJ6SkNmTrtfsus3Ab3orAQbmv9gWDix1wPsX5CVIPl586lyHjGqkyXdrwu7kOnv9naRQNNcGfX78YbqT6jJFMi9j4yBOjy%2Bnoe35%2Bil0ejSTC93%2FZ5DJMXF%2BOQVLjy9FgvUPZzqZgkjB%2BDWU%2FRpC1ZC0RqQfQPJzAkQcd7aQJo%2FvaFPS3b9ZOmXHZPHFH5DlmCz%2Bdh1p8u2qkoPGfa2KXOrUYhBXkIMaslcjK86Q7y1AlmeI8s8h%2Ba9k%2BcUm0uRwyyoNySevBO2g44dea4l2O9FSwAKx1O1G7lJEhU9jz3XdkM0MkrKGjGsoMQS1V1BYB4V0UMQOisxBwieNyPO8tssj6na6UdTibcFC7nq0HXvUc8MOimj6hiHybIhIDRGZfWRmHztyCFP8DLtdwXIHNifo8wqlICgtQUkJSklQ5gRlvzriyvq2esyVLZh3mf3L3KpGOu8d0COd90RKQM0QhlcH2QX5%2F9RA59rvz7EjJo1OO%2FTDMOC8HYRMUObHK3EQMK%2FL3ZWYChdWVpB2AdQ62JNjcuPHQ2RyTK6eXgWjZ7DqDJF0QIsboGUFul1hLz0RvV0mbN5MBuC6QpYvIt91DtQFeXm2wNtffQkRPSOXgchUyEyFz%2BRTgp56OLqnS3J4T5eWfL%2BV5TKRe3S63Ps5zcXVk9tit9SGb6zZ4ddvRVNiWj75QNh8k6Zcpj1LvlmVnAuzrk0kyE8b9iPB7hZ2e7UwaZFt3n17fSPJjLBW6rQGleefPEIkx%2BR%2FP2zOrva1xgTS1DBFhaSYK5W6RpTtw2bzntUERs0xyxyURTUyPps3lSRQYo4pq2D%2Fhdm8Hhk6%2FZvK6sA%2BRM8sgOYPkCYV%2BqZCX1WgaghbXBnlmXn25vPWLMDUwogps3DIlFGPZiZPPyewctJot1ouDbsrXrtNRZsFficOPU6pH0wvgLaQ23F888%2F3%2FgIAAP%2F%2FAQAA%2F%2F85kjKKjwQAAA%3D%3D HTTP/1.1
Host: waterfallchequeomnipotent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=17558995; uid_id2=47482613-a98c-4b4e-99c0-cae2af10006b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9a32a6cdc6009e6cc68123ec7f4b4257
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.youtube.com/s/player/9135c2ab/www-widgetapi.vflset/www-widgetapi.js | 216.58.207.206 | 200 OK | 68 kB |
URL GET HTTP/3www.youtube.com/s/player/9135c2ab/www-widgetapi.vflset/www-widgetapi.js IP216.58.207.206:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (531) Hashfb49c3c7d5ca52a516613b6947f7d016 b999b3683107b2f76e96f1689087ccbf1e819e62 63a3d01b852ed34867594ef2c007f0fcd1b8ec428d346154201739182d2f1911
GET /s/player/9135c2ab/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 68157
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:35:40 GMT
expires: Wed, 23 Apr 2025 07:35:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 170110
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| i.ytimg.com/vi/BpJYNVhGf1s/maxresdefault.jpg | 216.58.207.214 | 404 Not Found | 1.1 kB |
URL GET HTTP/2i.ytimg.com/vi/BpJYNVhGf1s/maxresdefault.jpg IP216.58.207.214:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8 ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3 Hashe2ddfee11ae7edcae257da47f3a78a70 6e902fa6302eb30cd204579bca6a59b37233e262 20e9aab22032d85684d7d916a1013f7c577a132a5b10ea3fd3578e8d0b28a711
GET /vi/BpJYNVhGf1s/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: image/jpeg
date: Thu, 25 Apr 2024 06:50:50 GMT
expires: Thu, 25 Apr 2024 06:51:20 GMT
cache-control: public, max-age=30
x-content-type-options: nosniff
server: sffe
content-length: 1097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/BpJYNVhGf1s/sddefault.jpg | 216.58.207.214 | 200 OK | 32 kB |
URL GET HTTP/3i.ytimg.com/vi/BpJYNVhGf1s/sddefault.jpg IP216.58.207.214:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8 ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hash4fd16e8804a4318173af7df58272e1b5 b185a0e8df12138d36fc3180e28de658658bfcd3 50ab1f9dcdb69085b77fa4db04ae171c4fd063d5cc5f1300c34cb2692ab618a7
GET /vi/BpJYNVhGf1s/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 31490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 05:50:26 GMT
expires: Thu, 25 Apr 2024 07:50:26 GMT
cache-control: public, max-age=7200
age: 3624
etag: "1377110035"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| septemberautomobile.com/sbar.json?key=e6392f7ae29f8238c410813ca638ba36&uuid=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1 | 172.240.108.68 | 200 OK | 7.8 kB |
URL GET HTTP/1.1septemberautomobile.com/sbar.json?key=e6392f7ae29f8238c410813ca638ba36&uuid=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hasha391c608f773721c1695d636b8bacc93 1615edae8f660d2ddb4c2fb594d34ca1631a997c 0fe7f6d4b1dfdd01fd55d3ab9de04ac63c165076ebed32d05055498366efd1a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=e6392f7ae29f8238c410813ca638ba36&uuid=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:50 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://egybest.space
Access-Control-Allow-Origin: https://egybest.space
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22420285; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; expires=Thu, 02 May 2024 06:50:50 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 26 Apr 2024 06:50:50 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 880b7c1309a51176cd51a573018ed955
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.youtube-nocookie.com/s/player/9135c2ab/www-player.css | 216.58.207.206 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube-nocookie.com/s/player/9135c2ab/www-player.css IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashc0aca454c0a9b539d3af1213a20c6625 9893a760290f6d8a9fed3a9f3129e7285b702430 13a3fa279a6816ddd952f42fd82f5bc170ac2ff89410d14d43954b342ad40040
GET /s/player/9135c2ab/www-player.css HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48109
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:37:01 GMT
expires: Wed, 23 Apr 2025 07:37:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 170029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube-nocookie.com/s/player/9135c2ab/player_ias.vflset/en_US/embed.js | 216.58.207.206 | 200 OK | 18 kB |
URL GET HTTP/3www.youtube-nocookie.com/s/player/9135c2ab/player_ias.vflset/en_US/embed.js IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash8908762cb1a2c9b3c1f5ca78ee779bf9 c14c75ff1f0bc588ea3d95d2a0edd5658f5bc980 95779bc0979b5224a9e8a7ef995e0f3320cef36b62c20d6816b865cd68d3cd6a
GET /s/player/9135c2ab/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18293
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:41:49 GMT
expires: Wed, 23 Apr 2025 07:41:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 169741
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 125 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Size125 kB (124724 bytes) Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 44245620b96ac1fd9a4beb0e62b9c285
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 25 Apr 2024 06:50:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j5Uh38YzGyCR7wWAvh0FG26Z5s1ps5%2Bmpvx0KCjsk8nzFjS6dFIJ2lPsVSebIicrvRBo%2F9u%2BB16g5tBwyte3nBcNbLhOm78WKBlkOAayhAOa34AJVR9wrnaFqHfYAeHhq8T%2Bh%2FZkOMoy4HfCKRY5kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66aa9841b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| septemberautomobile.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR%2FzPTMuIi4xkjcuFl2%2FXmS6qrqSZnqrqaqe3qSU3BB9jjk4rXzTbLBuIhePAgG6Sx4WBAynnIwf4IXYW%2BCzBgcfVD13ve%2BV%2FC99%2BrL%2FeKC%2BCjo%2Bcr7ekcqRZfbTbfxyieed7OxLtNi2Bh2w8%2FC1s2GGbzeC5vujca7gm3pZd%2F1XNdzvcaqNCLWw%2BUpCZk97nnNntts%2BU2v3cLQ%2FB%2FbwoGlDvjggrwEySeLT5yrkKxGmny3IuxWrrPX3kkKRXNtMOBHH6ZbqS5TJPMwNg7i9OiyGtqerZ5Ap4czudCDfwsjOSHOLyeI0qNLkYgGBzOdkYJIEfHnUQ5qCFVD0hpMP4DkZwRgHHc2kCaP7mhT0u1%2FWDplJ2Tx2Z%2BQ5YQs%2Fn4VafLtLSWHjftaFbnUqcUwriCHNWS%2FRlacIt9ZgCxPwfIvIPmvZPnZOtLkYMMqDcnPX6ac9ngsukudHguWWnG7tRT5UbQUB203aHPR6nqd2YCkrCHjGkqMQK2DYnqkgyJ2UGQOEn7eYJ7ndVzOqNvtMRbwjohC7nq0E3vUc8MuCjbtYYQ8G4GpEZjZRWZ2sSVHMMXPsJsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOurG%2BrR1zZIvIuvX%2Fpg2qs8%2F4%2BPdR5X6QE1IxgeLWfXZAXpwN0Prr2BrbEeUOEQc%2BPO1T4vbjrB13W8tyuFzAaBt2IBiGsrCDtwqzdHTkh1388QCYn5MrJFUT0FFadgkkHtLgOWlagmxV20mPR346EzZvJEFxXyPJF5NvOvrog12YLvP3VMQR7Si4NzFTITIXP5ROCvno4vqdLcnBPl5Z8v5HlMpE7dLrc%2BznNxZXj22K71IavrdjR12%2BxKTENH38gbL5OUy7TviXf3JKcC7OqDRPkpzX7sYjuFnbzVmHSIlu%2F%2B%2FbqWpIZYa3UaQ0qzz7dA5MT8sIP67Nf%2B2rjD0hTwxQVkmKuVOoaLNuFzeY5qwmMmuMoc1AW1dj40TypJIESc0yjCvY%2FOJrHY0Onr6ms9u1D9M0CaP4AaVJhYCoMVAWqRrDFc%2BM8M0%2Ff%2FC2YGSK1MI6UWTiIlFF7syFPrz1Yed7oBIFLw17b63So6EQtvxuHHqfUb4V%2BGNIAuZ3EN%2F56728AAAD%2F%2FwEAAP%2F%2FwaYpxY8EAAA%3D | 172.240.108.68 | 200 OK | 7 B |
URL GET HTTP/1.1septemberautomobile.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR%2FzPTMuIi4xkjcuFl2%2FXmS6qrqSZnqrqaqe3qSU3BB9jjk4rXzTbLBuIhePAgG6Sx4WBAynnIwf4IXYW%2BCzBgcfVD13ve%2BV%2FC99%2BrL%2FeKC%2BCjo%2Bcr7ekcqRZfbTbfxyieed7OxLtNi2Bh2w8%2FC1s2GGbzeC5vujca7gm3pZd%2F1XNdzvcaqNCLWw%2BUpCZk97nnNntts%2BU2v3cLQ%2FB%2FbwoGlDvjggrwEySeLT5yrkKxGmny3IuxWrrPX3kkKRXNtMOBHH6ZbqS5TJPMwNg7i9OiyGtqerZ5Ap4czudCDfwsjOSHOLyeI0qNLkYgGBzOdkYJIEfHnUQ5qCFVD0hpMP4DkZwRgHHc2kCaP7mhT0u1%2FWDplJ2Tx2Z%2BQ5YQs%2Fn4VafLtLSWHjftaFbnUqcUwriCHNWS%2FRlacIt9ZgCxPwfIvIPmvZPnZOtLkYMMqDcnPX6ac9ngsukudHguWWnG7tRT5UbQUB203aHPR6nqd2YCkrCHjGkqMQK2DYnqkgyJ2UGQOEn7eYJ7ndVzOqNvtMRbwjohC7nq0E3vUc8MuCjbtYYQ8G4GpEZjZRWZ2sSVHMMXPsJsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOurG%2BrR1zZIvIuvX%2Fpg2qs8%2F4%2BPdR5X6QE1IxgeLWfXZAXpwN0Prr2BrbEeUOEQc%2BPO1T4vbjrB13W8tyuFzAaBt2IBiGsrCDtwqzdHTkh1388QCYn5MrJFUT0FFadgkkHtLgOWlagmxV20mPR346EzZvJEFxXyPJF5NvOvrog12YLvP3VMQR7Si4NzFTITIXP5ROCvno4vqdLcnBPl5Z8v5HlMpE7dLrc%2BznNxZXj22K71IavrdjR12%2BxKTENH38gbL5OUy7TviXf3JKcC7OqDRPkpzX7sYjuFnbzVmHSIlu%2F%2B%2FbqWpIZYa3UaQ0qzz7dA5MT8sIP67Nf%2B2rjD0hTwxQVkmKuVOoaLNuFzeY5qwmMmuMoc1AW1dj40TypJIESc0yjCvY%2FOJrHY0Onr6ms9u1D9M0CaP4AaVJhYCoMVAWqRrDFc%2BM8M0%2Ff%2FC2YGSK1MI6UWTiIlFF7syFPrz1Yed7oBIFLw17b63So6EQtvxuHHqfUb4V%2BGNIAuZ3EN%2F56728AAAD%2F%2FwEAAP%2F%2FwaYpxY8EAAA%3D IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR%2FzPTMuIi4xkjcuFl2%2FXmS6qrqSZnqrqaqe3qSU3BB9jjk4rXzTbLBuIhePAgG6Sx4WBAynnIwf4IXYW%2BCzBgcfVD13ve%2BV%2FC99%2BrL%2FeKC%2BCjo%2Bcr7ekcqRZfbTbfxyieed7OxLtNi2Bh2w8%2FC1s2GGbzeC5vujca7gm3pZd%2F1XNdzvcaqNCLWw%2BUpCZk97nnNntts%2BU2v3cLQ%2FB%2FbwoGlDvjggrwEySeLT5yrkKxGmny3IuxWrrPX3kkKRXNtMOBHH6ZbqS5TJPMwNg7i9OiyGtqerZ5Ap4czudCDfwsjOSHOLyeI0qNLkYgGBzOdkYJIEfHnUQ5qCFVD0hpMP4DkZwRgHHc2kCaP7mhT0u1%2FWDplJ2Tx2Z%2BQ5YQs%2Fn4VafLtLSWHjftaFbnUqcUwriCHNWS%2FRlacIt9ZgCxPwfIvIPmvZPnZOtLkYMMqDcnPX6ac9ngsukudHguWWnG7tRT5UbQUB203aHPR6nqd2YCkrCHjGkqMQK2DYnqkgyJ2UGQOEn7eYJ7ndVzOqNvtMRbwjohC7nq0E3vUc8MuCjbtYYQ8G4GpEZjZRWZ2sSVHMMXPsJsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOurG%2BrR1zZIvIuvX%2Fpg2qs8%2F4%2BPdR5X6QE1IxgeLWfXZAXpwN0Prr2BrbEeUOEQc%2BPO1T4vbjrB13W8tyuFzAaBt2IBiGsrCDtwqzdHTkh1388QCYn5MrJFUT0FFadgkkHtLgOWlagmxV20mPR346EzZvJEFxXyPJF5NvOvrog12YLvP3VMQR7Si4NzFTITIXP5ROCvno4vqdLcnBPl5Z8v5HlMpE7dLrc%2BznNxZXj22K71IavrdjR12%2BxKTENH38gbL5OUy7TviXf3JKcC7OqDRPkpzX7sYjuFnbzVmHSIlu%2F%2B%2FbqWpIZYa3UaQ0qzz7dA5MT8sIP67Nf%2B2rjD0hTwxQVkmKuVOoaLNuFzeY5qwmMmuMoc1AW1dj40TypJIESc0yjCvY%2FOJrHY0Onr6ms9u1D9M0CaP4AaVJhYCoMVAWqRrDFc%2BM8M0%2Ff%2FC2YGSK1MI6UWTiIlFF7syFPrz1Yed7oBIFLw17b63So6EQtvxuHHqfUb4V%2BGNIAuZ3EN%2F56728AAAD%2F%2FwEAAP%2F%2FwaYpxY8EAAA%3D HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f284877654f0625bd8831e3db8b6745e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.youtube-nocookie.com/s/player/9135c2ab/player_ias.vflset/en_US/base.js | 216.58.207.206 | 200 OK | 810 kB |
URL GET HTTP/3www.youtube-nocookie.com/s/player/9135c2ab/player_ias.vflset/en_US/base.js IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size810 kB (809527 bytes) Hash91d5fcfcb441e6966feed5a3f5e95644 117f9a8fb5a86b70e007876a7fa9941f31c3834b c090253b46de68d84dacc263c152648fd296b4e8ffff418f5ff2dda06018c9e7
GET /s/player/9135c2ab/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809527
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:41:49 GMT
expires: Wed, 23 Apr 2025 07:41:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 169741
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 566744
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:43:03 GMT
expires: Fri, 25 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 14868
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| egybest.space/static/css/owl.carousel.min.css?version=v1 | 172.67.158.164 | 200 OK | 79 kB |
URL GET HTTP/3egybest.space/static/css/owl.carousel.min.css?version=v1 IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeASCII text, with very long lines (4025) Hashd5db522fc1d6b19fcf5e601428af89f6 872441c53ea0b0e65c4e76384fc2dd0fdbdcdaff a04594854e623ef57d34af0bb23deb6257c431e44ac06fe18e93e09d38e68083
GET /static/css/owl.carousel.min.css?version=v1 HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/css
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-10f3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365689
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PuB0B4ZNQFrBhbnDeULM0Yh9JfMr9tdYcNqve7%2BHqt1kaugA3IPfeaUbTi6U%2BAjKq6%2FaMW1X1IHoWqM5P0B8VFKyrmtFAPWm66H7tHDYEYemWWJNGEK64sM3%2FGYb9mI0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a408981bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg | 188.114.97.1 | 200 OK | 28 kB |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3 Hashbd0c89fce24a7f947251ba177af6860b fae114743fd16313d63c5cc99a220831f88290e6 830443fe11ab663a8c20e09560e69a4a29c8d0266175efc235c3d9882123f209
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: image/jpeg
content-length: 28348
last-modified: Thu, 01 Feb 2024 14:55:05 GMT
etag: "65bbb0c9-6ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6108476
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xZIF7zd39FCpFjoFhlpJcxl4DBNScwXI3dgpMkgeNdoxxjn1tS7YQVPlvCogt%2Bap4WC7qG9Yr%2FxQRKHA2i95OFe1RDxw1%2BWoSXEUYGPz1aol1ON%2F%2FfWJYy1MI%2F7kyvTcPt6uR8ltSXJr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b89f8f1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=98 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=98 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=98 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| achcdn.com/script/atg.js | 172.67.152.53 | | 66 kB |
IP172.67.152.53:0
CertificateIssuerGoogle Trust Services LLC Subjectachcdn.com Fingerprint36:3E:93:7F:B5:6E:5D:6C:CA:31:2A:07:69:F2:95:9D:AB:33:35:F7 ValidityThu, 18 Apr 2024 18:07:12 GMT - Wed, 17 Jul 2024 18:07:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators Hashb4bec658999ad5d00d378ad78b2315fc 2534625b0dc0075b9fd9ab2a791896fd543db104 3fb7799f41bc55f15797ef31960398dd2b95226b11d50cdf564354d2314e6dbd
GET /script/atg.js HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPplEnK27O250BCPgjJ70DBlWcsTioWRTU5aixD1Q2VACv_eGlEScFp3LTMDxCdfHLazehM
expires: Thu, 25 Apr 2024 07:11:03 GMT
cache-control: public, max-age=14400
last-modified: Wed, 24 Apr 2024 08:40:45 GMT
etag: W/"b4bec658999ad5d00d378ad78b2315fc"
x-goog-generation: 1713948045458977
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125872
x-goog-hash: crc32c=9KYM/g==, md5=tL7GWJma1dANN4rXiyMV/A==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
cf-cache-status: HIT
age: 1280
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I9d%2F6Q8wwZxmWVjFt7WZuJPsqkVNGOW2QNg2hHZCQcnM5vqcux8VzXQ5bSGQ6HbcU%2BxrnC9cqvZDvT4rfoJTDAZ4oqE%2FAk99TZHqk1cyJFjb%2BCNK2droJ%2B3yr8gX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a439490b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/img/1.jpg | 188.114.97.1 | 200 OK | 22 kB |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/img/1.jpg IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3 Hash7bcc800a4957dac955e91ce1ee3b73cd b1fae2cacecc790a22f91e2320077f89707473b1 760783cbcd04b3b7ef5f6b10a24878869d061709e4511ccada113b532833243d
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: image/jpeg
content-length: 21597
last-modified: Thu, 01 Feb 2024 14:55:47 GMT
etag: "65bbb0f3-545d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3046090
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dxFUf6sv2rO7uuN7JEyxug6bdLya9Yjrnk3hld42BUSGTkA93fOGmI9YzhbJh3L3dmuHrnpj6wE0hBXILgmB%2B%2FI5Z5yu%2BBQfEZMSjxwuV%2B72mA3hclUazrEI018R99KvgWv1DnGKSx%2FH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b9e8431bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i.ytimg.com/vi/BpJYNVhGf1s/sddefault.jpg | 216.58.207.214 | 200 OK | 32 kB |
URL GET HTTP/3i.ytimg.com/vi/BpJYNVhGf1s/sddefault.jpg IP216.58.207.214:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8 ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hash4fd16e8804a4318173af7df58272e1b5 b185a0e8df12138d36fc3180e28de658658bfcd3 50ab1f9dcdb69085b77fa4db04ae171c4fd063d5cc5f1300c34cb2692ab618a7
GET /vi/BpJYNVhGf1s/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 31490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 05:50:26 GMT
expires: Thu, 25 Apr 2024 07:50:26 GMT
cache-control: public, max-age=7200
age: 3625
etag: "1377110035"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fanimate.css&l=79245&fd=57 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fanimate.css&l=79245&fd=57 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fanimate.css&l=79245&fd=57 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 172.217.21.170 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP172.217.21.170:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 172.217.21.170 | 200 OK | 42 kB |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP172.217.21.170:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash2191e8825a3edfa756abd53c3ebc661f c54a8f5ade8578c841e37f2fdeff62ef58c09018 3febfc68a03fe73f5142f31daa94457ef933981aefa38b0c51440e856b26af20
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 06:50:51 GMT
server: ESF
cache-control: private
content-length: 41467
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fjs%2Fscript.js&l=386&fd=53 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fjs%2Fscript.js&l=386&fd=53 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fjs%2Fscript.js&l=386&fd=53 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=546 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=546 IP172.240.127.234:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=546 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js IP142.250.74.164:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeJavaScript source, ASCII text, with very long lines (51575) Hash75aaf723d5862a8eb3eb263cef614157 c62cf17173a0c4155902b80f13f360936de119f9 f0c097534008ae8dbfd3fae61abc109220a293170c9817d192307a9af4ba4db6
GET /js/th/8MCXU0AIro2_0_rmGrwQkiCikxcMmBfRkjB6mvS6TbY.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 11:06:15 GMT
expires: Sat, 19 Apr 2025 11:06:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 503077
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| egybest.space/series/game-of-thrones/season/1 | 172.67.158.164 | | 5.4 kB |
URL egybest.space/series/game-of-thrones/season/1 IP172.67.158.164:0
CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1267) Hash907a04ebc77abfa2190b825faa4dd347 3a6698deb7e0e6f26003709bce4924a5cbf678a9 d9dcac14f28a80ac37d8db027a4591f3240ce9b7bdd6cd93f4ec63c1b90cd4b6
GET /series/game-of-thrones/season/1 HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; expires=Thu, 25-Apr-2024 08:50:48 GMT; Max-Age=7200; path=/
egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; expires=Thu, 25-Apr-2024 08:50:48 GMT; Max-Age=7200; path=/; httponly
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c6e7e8ADBkwlrmEBy6E9yiueQuGkpb%2FRMa%2FX1Um9iwesOGXZGbG7GYDXlnDfhntSou6gGtVMLiGJgWSAuUxzdUN%2F%2Fg90G843MngjWzIjmjR72YLK8OA9czwL18CiWuC4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a1cf8c1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| noembed.com/embed?url=https://www.youtube.com/watch?v=BpJYNVhGf1s | 151.101.1.91 | 200 OK | 817 B |
URL GET HTTP/2noembed.com/embed?url=https://www.youtube.com/watch?v=BpJYNVhGf1s IP151.101.1.91:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectnoembed.com Fingerprint12:00:86:5C:47:E0:74:E9:4A:59:EC:F6:BA:4A:94:CE:FF:25:F7:02 ValiditySun, 25 Feb 2024 16:21:30 GMT - Sat, 25 May 2024 16:21:29 GMT
Hash71d77f08055844b540e54f38273b49d9 165c5b79f529672c5809335724e17c6abd8f6a7d 956b6c19e18c2079fc4404f48c8d20b7d7ebd1d24737db2dadd0c54e6a22cd88
GET /embed?url=https://www.youtube.com/watch?v=BpJYNVhGf1s HTTP/1.1
Host: noembed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Thu, 25 Apr 2024 06:50:52 GMT
x-served-by: cache-chi-kigq8000094-CHI, cache-hel1410031-HEL
x-cache: HIT, MISS
x-cache-hits: 47, 0
x-timer: S1714027852.959604,VS0,VE108
access-control-allow-headers: Origin, Accept, Content-Type
access-control-allow-methods: GET
access-control-allow-origin: *
content-length: 817
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/ytc/AIdro_lIAbjrpaBdIh2xyaHrXJ4M8fgD0hkPIsIaUjg7GJ-ZtvU=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 2.8 kB |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_lIAbjrpaBdIh2xyaHrXJ4M8fgD0hkPIsIaUjg7GJ-ZtvU=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47 ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3 Hash4f0d372344216380825a8465d5d47124 3187b6daeef28573ec3c703216ba98d7f58e9273 17e7704f521e817482274029d9112e6657db6e54676d140dadba6f82f35caf71
GET /ytc/AIdro_lIAbjrpaBdIh2xyaHrXJ4M8fgD0hkPIsIaUjg7GJ-ZtvU=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2772
x-xss-protection: 0
date: Thu, 25 Apr 2024 05:47:40 GMT
expires: Fri, 26 Apr 2024 05:47:40 GMT
cache-control: public, max-age=86400, no-transform
age: 3792
etag: "v4b3"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fstyle.css&l=3630&fd=57 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fstyle.css&l=3630&fd=57 IP172.240.127.234:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Fcss%2Fstyle.css&l=3630&fd=57 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 138194
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 190581
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 138194
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 190581
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| waterfallchequeomnipotent.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzoZcFgRlb7IwBw%2BumEn3TM8v9yDGGIkbN8uuop6kfvWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAwyWfCwIGT2NAfzH3gS9ibIjMFx36He%2B973Cr76Xn11kF%2BQGnI6WfvQ7Cmt6Uqj6lde%2FzQIblY2VZL3K%2F128%2FNmeLNie291mlX%2FRuV9yXfMSs0PfD%2Fwg8q6sjIy%2FZUpCZU%2B7gTVjl8Na9WgEaJvX8Qu9%2BCoB9G7IK9AifHiE%2B8aFB8hiX9Yk24nM%2Bmb78W5ppmx6Injj5OdxBQJ4nkZWQ9Rcnw5DePO109hkqOZXJjef4NMjYn32ylYcnwpEqx3ONPJNGQCJq6i6I0g9QiKjsDNfShxTgAucHsLSfzotrEF3f2XpVN2TBaf%2FwVVjMniH9eQxN%2BvatWv3DM6z5RJHPpRCdUfQXVHSPMzZHsLUMUZePYllPidrDzfRBIfbjltoMTktbAVtmvNoL5MO22%2BHLJQLnc63F%2FmVNZoFPi%2B32Qzg5QaQUUjaDkAdVeQOw%2B58pBHHvLUQywmFR4EQcsXnPrtDud10ZKsKfyAtqKABn6zjZxP3zBAlg7A9QDc7iO1%2B9hRA9j8V7jtEk54cBlBT5QoJEHhCApKUCiCIiMoeuWR0K7mykdCu5wFl7l2mevl0GTdA3pksq5MCKgdwIryIL0gL08N9K7%2B%2BQw7clJpt5q1ZjMUohU2maSsFjWiMGRBR%2FiNiEofTpVQbgHUedhTY3L950OkakyWTpfA6BmcPgNXHmh%2BHbQoQbdL7CUnsrvLpMuqcR%2FClEizRWS73oG%2BIK%2FOFnjrm68h%2BVNyGeC2RGpLfKGeEHT1g%2BFdU5DDu6Zw5MetNFOx2qPT5d7LaCaXTm7J3cJYsbHmBt%2B%2Bw6fEtHz8kXTZJk2ESrqOfLeqhJB23VguyS8b7hPJ7uRuezW3SZ5u3nl3fSNOrXROmWQEqs4%2FewiuxuSlnzZnv%2FaNygTKjmDzEnE%2BV6rMCDzdh0vnPWcIrJ5jlnoo8nJoa2ze1IpAyzmmrIT7H2bzemjp9DZV5YF7gK5dAM3uI4lL9GyJni5B9QAuvzLMUvv07Wf1WYDphSHTduGQaasfzkyeHidwalKp%2B6LFZCRbTIaNMJJcsEaD%2BTzirC7abY7MjaMbf3%2FwDwAAAP%2F%2FAQAA%2F%2F%2B5RudijwQAAA%3D%3D | 172.240.108.68 | 200 OK | 7 B |
URL GET HTTP/1.1waterfallchequeomnipotent.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzoZcFgRlb7IwBw%2BumEn3TM8v9yDGGIkbN8uuop6kfvWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAwyWfCwIGT2NAfzH3gS9ibIjMFx36He%2B973Cr76Xn11kF%2BQGnI6WfvQ7Cmt6Uqj6lde%2FzQIblY2VZL3K%2F128%2FNmeLNie291mlX%2FRuV9yXfMSs0PfD%2Fwg8q6sjIy%2FZUpCZU%2B7gTVjl8Na9WgEaJvX8Qu9%2BCoB9G7IK9AifHiE%2B8aFB8hiX9Yk24nM%2Bmb78W5ppmx6Injj5OdxBQJ4nkZWQ9Rcnw5DePO109hkqOZXJjef4NMjYn32ylYcnwpEqx3ONPJNGQCJq6i6I0g9QiKjsDNfShxTgAucHsLSfzotrEF3f2XpVN2TBaf%2FwVVjMniH9eQxN%2BvatWv3DM6z5RJHPpRCdUfQXVHSPMzZHsLUMUZePYllPidrDzfRBIfbjltoMTktbAVtmvNoL5MO22%2BHLJQLnc63F%2FmVNZoFPi%2B32Qzg5QaQUUjaDkAdVeQOw%2B58pBHHvLUQywmFR4EQcsXnPrtDud10ZKsKfyAtqKABn6zjZxP3zBAlg7A9QDc7iO1%2B9hRA9j8V7jtEk54cBlBT5QoJEHhCApKUCiCIiMoeuWR0K7mykdCu5wFl7l2mevl0GTdA3pksq5MCKgdwIryIL0gL08N9K7%2B%2BQw7clJpt5q1ZjMUohU2maSsFjWiMGRBR%2FiNiEofTpVQbgHUedhTY3L950OkakyWTpfA6BmcPgNXHmh%2BHbQoQbdL7CUnsrvLpMuqcR%2FClEizRWS73oG%2BIK%2FOFnjrm68h%2BVNyGeC2RGpLfKGeEHT1g%2BFdU5DDu6Zw5MetNFOx2qPT5d7LaCaXTm7J3cJYsbHmBt%2B%2Bw6fEtHz8kXTZJk2ESrqOfLeqhJB23VguyS8b7hPJ7uRuezW3SZ5u3nl3fSNOrXROmWQEqs4%2FewiuxuSlnzZnv%2FaNygTKjmDzEnE%2BV6rMCDzdh0vnPWcIrJ5jlnoo8nJoa2ze1IpAyzmmrIT7H2bzemjp9DZV5YF7gK5dAM3uI4lL9GyJni5B9QAuvzLMUvv07Wf1WYDphSHTduGQaasfzkyeHidwalKp%2B6LFZCRbTIaNMJJcsEaD%2BTzirC7abY7MjaMbf3%2FwDwAAAP%2F%2FAQAA%2F%2F%2B5RudijwQAAA%3D%3D IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectwaterfallchequeomnipotent.com Fingerprint10:02:FD:E1:42:43:0C:C7:37:B0:94:C6:F9:9A:80:1F:38:80:C0:6E ValidityTue, 23 Apr 2024 10:44:53 GMT - Mon, 22 Jul 2024 10:44:52 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzoZcFgRlb7IwBw%2BumEn3TM8v9yDGGIkbN8uuop6kfvWkTHVXU9U9PckpuCB7HBbEa%2BebZINxEb14EAwyWfCwIGT2NAfzH3gS9ibIjMFx36He%2B973Cr76Xn11kF%2BQGnI6WfvQ7Cmt6Uqj6lde%2FzQIblY2VZL3K%2F128%2FNmeLNie291mlX%2FRuV9yXfMSs0PfD%2Fwg8q6sjIy%2FZUpCZU%2B7gTVjl8Na9WgEaJvX8Qu9%2BCoB9G7IK9AifHiE%2B8aFB8hiX9Yk24nM%2Bmb78W5ppmx6Injj5OdxBQJ4nkZWQ9Rcnw5DePO109hkqOZXJjef4NMjYn32ylYcnwpEqx3ONPJNGQCJq6i6I0g9QiKjsDNfShxTgAucHsLSfzotrEF3f2XpVN2TBaf%2FwVVjMniH9eQxN%2BvatWv3DM6z5RJHPpRCdUfQXVHSPMzZHsLUMUZePYllPidrDzfRBIfbjltoMTktbAVtmvNoL5MO22%2BHLJQLnc63F%2FmVNZoFPi%2B32Qzg5QaQUUjaDkAdVeQOw%2B58pBHHvLUQywmFR4EQcsXnPrtDud10ZKsKfyAtqKABn6zjZxP3zBAlg7A9QDc7iO1%2B9hRA9j8V7jtEk54cBlBT5QoJEHhCApKUCiCIiMoeuWR0K7mykdCu5wFl7l2mevl0GTdA3pksq5MCKgdwIryIL0gL08N9K7%2B%2BQw7clJpt5q1ZjMUohU2maSsFjWiMGRBR%2FiNiEofTpVQbgHUedhTY3L950OkakyWTpfA6BmcPgNXHmh%2BHbQoQbdL7CUnsrvLpMuqcR%2FClEizRWS73oG%2BIK%2FOFnjrm68h%2BVNyGeC2RGpLfKGeEHT1g%2BFdU5DDu6Zw5MetNFOx2qPT5d7LaCaXTm7J3cJYsbHmBt%2B%2Bw6fEtHz8kXTZJk2ESrqOfLeqhJB23VguyS8b7hPJ7uRuezW3SZ5u3nl3fSNOrXROmWQEqs4%2FewiuxuSlnzZnv%2FaNygTKjmDzEnE%2BV6rMCDzdh0vnPWcIrJ5jlnoo8nJoa2ze1IpAyzmmrIT7H2bzemjp9DZV5YF7gK5dAM3uI4lL9GyJni5B9QAuvzLMUvv07Wf1WYDphSHTduGQaasfzkyeHidwalKp%2B6LFZCRbTIaNMJJcsEaD%2BTzirC7abY7MjaMbf3%2FwDwAAAP%2F%2FAQAA%2F%2F%2B5RudijwQAAA%3D%3D HTTP/1.1
Host: waterfallchequeomnipotent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=17558995; uid_id2=47482613-a98c-4b4e-99c0-cae2af10006b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d653ee5fc7eee05dba34b4a31dd6da97
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 0 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.106 | 200 OK | 114 B |
URL OPTIONS HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.106:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash811f7737dd69b169668f88a5a7e3fe9b 288334e480d95ad46bc61b89f51af8b5b3b0bfa1 36f730b2f7528f527d84763842a91d8f15362610c3f71b14d78cf1c0e38b45fc
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1274
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 Apr 2024 06:50:52 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| septemberautomobile.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR7en66iLjGSNy4WXb9eZL61ZMy1V1NVff0JKfgguxxyMVr55tkg3ERvXgQDNJZ8LAgZDzlYP4EL8LeBJkxOPqg6r3vfa%2Fge%2B%2FVl%2Fv5BWkgp%2Bcr75sdpTVdbtX92iufBMHN2rpK8mFt2G1%2F1m7erNnB67123b9Re1fyLbPc8APfD%2FygtqqsjMxweUpCpY97Qb3n15uNetBqYmj%2Fj13uwVEPYnBBXoISk8Un3lUoXiGJv1uRbisz6WvvxLmmmbEYiKMPk63EFAnieRhZD1FydFkN485WT2CSw5lcmMG%2FhUxNiPfLCVhydCkSbHAw08k0ZAImnkcxqCB1BUUrcPMASpwRgAvc2UASP7pjbEG3%2F2HplJ2QxWd%2FQhUTsvj7VSTxt7e0GtbuG51nyiQOw6iEGlZQ%2FQppfopsZwGqOAXPvoASv5LlZ%2BtI4oMNpw2UOH%2BZCtoTkewudXo8XGpGreYSazC2FIUtP2wJ2ewGndmAlKqgogpajkCdh3x6lIc88pCnHmJxXuNBEHR8wanf7XEeio5kbeEHtBMFNPDbXeR82sMIWToC1yNwu4vU7mJLjWDzn%2BE2SzjhwWUEA1GikASFIygoQaEIioygGJSHQruGKx8J7XIWXPrGpQ%2FLscn6%2B%2FTQZH2ZEFA7ghXlfnpBXpwO0Pvo2hvYkuc12Q57jahDZaMXdRthlzcDvxuEnLbDLqNhG06VUG5h1u6OmpDrPx4gVRNy5eQKGD2F06fgygPNr4MWJehmiZ3kWPa3mXRZPR5CmBJptohs29vXF%2BTabIG3vzqG5E%2FJpYHbEqkt8bl6QtDXD8f3TEEO7pnCke830kzFaodOl3s%2Fo5m8cnxbbhfGirUVN%2Fr6LT4lpuHjD6TL1mkiVNJ35JtbSghpV43lkvy05j6W7G7uNm%2FlNsnT9btvr67FqZXOKZNUoOrs0z1wNSEv%2FLA%2B%2B7Wv1v6AshVsXiLO50qVqcDTXbh0nnOGwOo5ZqmHIi%2FHtsHmSa0ItJxjykq4%2F2A2j8eWTl9TVe67h%2BjbBdDsAZK4xMCWGOgSVI%2Fg8ufGWWqfvvlbODMwvTBm2i4cMG313mzI02sPTp3XQl90mIxkh8lmqxlJLlirxXwecRaKbpcjc5Poxl%2Fv%2FQ0AAP%2F%2FAQAA%2F%2F9BcvwtjwQAAA%3D%3D | 172.240.108.68 | 200 OK | 7 B |
URL GET HTTP/1.1septemberautomobile.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR7en66iLjGSNy4WXb9eZL61ZMy1V1NVff0JKfgguxxyMVr55tkg3ERvXgQDNJZ8LAgZDzlYP4EL8LeBJkxOPqg6r3vfa%2Fge%2B%2FVl%2Fv5BWkgp%2Bcr75sdpTVdbtX92iufBMHN2rpK8mFt2G1%2F1m7erNnB67123b9Re1fyLbPc8APfD%2FygtqqsjMxweUpCpY97Qb3n15uNetBqYmj%2Fj13uwVEPYnBBXoISk8Un3lUoXiGJv1uRbisz6WvvxLmmmbEYiKMPk63EFAnieRhZD1FydFkN485WT2CSw5lcmMG%2FhUxNiPfLCVhydCkSbHAw08k0ZAImnkcxqCB1BUUrcPMASpwRgAvc2UASP7pjbEG3%2F2HplJ2QxWd%2FQhUTsvj7VSTxt7e0GtbuG51nyiQOw6iEGlZQ%2FQppfopsZwGqOAXPvoASv5LlZ%2BtI4oMNpw2UOH%2BZCtoTkewudXo8XGpGreYSazC2FIUtP2wJ2ewGndmAlKqgogpajkCdh3x6lIc88pCnHmJxXuNBEHR8wanf7XEeio5kbeEHtBMFNPDbXeR82sMIWToC1yNwu4vU7mJLjWDzn%2BE2SzjhwWUEA1GikASFIygoQaEIioygGJSHQruGKx8J7XIWXPrGpQ%2FLscn6%2B%2FTQZH2ZEFA7ghXlfnpBXpwO0Pvo2hvYkuc12Q57jahDZaMXdRthlzcDvxuEnLbDLqNhG06VUG5h1u6OmpDrPx4gVRNy5eQKGD2F06fgygPNr4MWJehmiZ3kWPa3mXRZPR5CmBJptohs29vXF%2BTabIG3vzqG5E%2FJpYHbEqkt8bl6QtDXD8f3TEEO7pnCke830kzFaodOl3s%2Fo5m8cnxbbhfGirUVN%2Fr6LT4lpuHjD6TL1mkiVNJ35JtbSghpV43lkvy05j6W7G7uNm%2FlNsnT9btvr67FqZXOKZNUoOrs0z1wNSEv%2FLA%2B%2B7Wv1v6AshVsXiLO50qVqcDTXbh0nnOGwOo5ZqmHIi%2FHtsHmSa0ItJxjykq4%2F2A2j8eWTl9TVe67h%2BjbBdDsAZK4xMCWGOgSVI%2Fg8ufGWWqfvvlbODMwvTBm2i4cMG313mzI02sPTp3XQl90mIxkh8lmqxlJLlirxXwecRaKbpcjc5Poxl%2Fv%2FQ0AAP%2F%2FAQAA%2F%2F9BcvwtjwQAAA%3D%3D IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSujmEvgqDsbVmYgwdXzKR7en66iLjGSNy4WXb9eZL61ZMy1V1NVff0JKfgguxxyMVr55tkg3ERvXgQDNJZ8LAgZDzlYP4EL8LeBJkxOPqg6r3vfa%2Fge%2B%2FVl%2Fv5BWkgp%2Bcr75sdpTVdbtX92iufBMHN2rpK8mFt2G1%2F1m7erNnB67123b9Re1fyLbPc8APfD%2FygtqqsjMxweUpCpY97Qb3n15uNetBqYmj%2Fj13uwVEPYnBBXoISk8Un3lUoXiGJv1uRbisz6WvvxLmmmbEYiKMPk63EFAnieRhZD1FydFkN485WT2CSw5lcmMG%2FhUxNiPfLCVhydCkSbHAw08k0ZAImnkcxqCB1BUUrcPMASpwRgAvc2UASP7pjbEG3%2F2HplJ2QxWd%2FQhUTsvj7VSTxt7e0GtbuG51nyiQOw6iEGlZQ%2FQppfopsZwGqOAXPvoASv5LlZ%2BtI4oMNpw2UOH%2BZCtoTkewudXo8XGpGreYSazC2FIUtP2wJ2ewGndmAlKqgogpajkCdh3x6lIc88pCnHmJxXuNBEHR8wanf7XEeio5kbeEHtBMFNPDbXeR82sMIWToC1yNwu4vU7mJLjWDzn%2BE2SzjhwWUEA1GikASFIygoQaEIioygGJSHQruGKx8J7XIWXPrGpQ%2FLscn6%2B%2FTQZH2ZEFA7ghXlfnpBXpwO0Pvo2hvYkuc12Q57jahDZaMXdRthlzcDvxuEnLbDLqNhG06VUG5h1u6OmpDrPx4gVRNy5eQKGD2F06fgygPNr4MWJehmiZ3kWPa3mXRZPR5CmBJptohs29vXF%2BTabIG3vzqG5E%2FJpYHbEqkt8bl6QtDXD8f3TEEO7pnCke830kzFaodOl3s%2Fo5m8cnxbbhfGirUVN%2Fr6LT4lpuHjD6TL1mkiVNJ35JtbSghpV43lkvy05j6W7G7uNm%2FlNsnT9btvr67FqZXOKZNUoOrs0z1wNSEv%2FLA%2B%2B7Wv1v6AshVsXiLO50qVqcDTXbh0nnOGwOo5ZqmHIi%2FHtsHmSa0ItJxjykq4%2F2A2j8eWTl9TVe67h%2BjbBdDsAZK4xMCWGOgSVI%2Fg8ufGWWqfvvlbODMwvTBm2i4cMG313mzI02sPTp3XQl90mIxkh8lmqxlJLlirxXwecRaKbpcjc5Poxl%2Fv%2FQ0AAP%2F%2FAQAA%2F%2F9BcvwtjwQAAA%3D%3D HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 55e5476fc66adb586a71d3040e1cdcfc
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| septemberautomobile.com/pixel/sbs?c=1 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbs?c=1 IP172.240.127.234:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.youtube-nocookie.com/generate_204?xALxPA | 216.58.207.206 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube-nocookie.com/generate_204?xALxPA IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?xALxPA HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 06:50:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| waterfallchequeomnipotent.com/pixel/sbs?c=1 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1waterfallchequeomnipotent.com/pixel/sbs?c=1 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectwaterfallchequeomnipotent.com Fingerprint10:02:FD:E1:42:43:0C:C7:37:B0:94:C6:F9:9A:80:1F:38:80:C0:6E ValidityTue, 23 Apr 2024 10:44:53 GMT - Mon, 22 Jul 2024 10:44:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: waterfallchequeomnipotent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=17558995; uid_id2=47482613-a98c-4b4e-99c0-cae2af10006b:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| egybest.space/uploads/a/f0aea383822c207e567f228eeb321c26.jpg | 172.67.158.164 | 200 OK | 21 kB |
URL GET HTTP/3egybest.space/uploads/a/f0aea383822c207e567f228eeb321c26.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hash63722c9d513f5c60683b653709422e26 8bc98148dccee6377807594e3db073c1d8cda430 96a6640f1c0518025a51ec694aa06f2938a7af320e38a7e56f871c7c0c1bbe4f
GET /uploads/a/f0aea383822c207e567f228eeb321c26.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-15d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 647018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Za5cMy1dyAag9xRYFXcbyxY%2BCHpQOzj4zdLbePx%2Fgd0nC06i9%2BRTgngdIW7N8XqhNot%2B8dBJ84yua6ccdfTthVFGe%2BJWtW4L1XLc9meVoIO7VanuDJuGrPlFCfWshmov"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdafc61bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/a/940b80d3d2b663c3678c5a7c407ac3b2.jpg | 172.67.158.164 | 200 OK | 11 kB |
URL GET HTTP/3egybest.space/uploads/a/940b80d3d2b663c3678c5a7c407ac3b2.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hashd721a9b5dc0e44b2bf43eb33b0577fc4 745f85231636966f60d8ae8c263b73b1f4073e72 5067a673e4091762820a8b077da3cd406d2bd31ea5950bdb0d81ca1b7997ec9d
GET /uploads/a/940b80d3d2b663c3678c5a7c407ac3b2.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-120f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 926707
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4MQTtl30hCYf6wv7K%2BtUGeEWa%2BSVQgk%2F9cShBTXgSf6n1E%2BMBi8M9RKyge1ZJqYuUjIhW12mBJ82uCFmDVpH9GFoE6l9GxVqu9w88K9YJizWW99Md3ny3LmS6EXxiuyj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdafce1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.207.206 | 200 OK | 31 B |
URL POST HTTP/3www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1714027875707
Content-Type: application/json
X-Goog-Visitor-Id: Cgt6bU1fNzJGTmh6TSjK-qexBjIOCgJOTxIIEgQSAgsMICA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240422.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1714027851099&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C758%2C428&vis=1&wgl=true&ca_type=image
Content-Length: 964
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 25 Apr 2024 06:51:15 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pubtrky.com/ut/hb.php?cb=0.8023604964524557&v=1 | 172.67.188.110 | | 0 B |
URL pubtrky.com/ut/hb.php?cb=0.8023604964524557&v=1 IP172.67.188.110:0
CertificateIssuerGoogle Trust Services LLC Subjectpubtrky.com Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30 ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.8023604964524557&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 3317
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
date: Thu, 25 Apr 2024 06:51:15 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tX6soXPU%2FcgG%2B3FoomVSbQrjnPdXqvXZwOaEatRH%2F8kBs86zzuaiXbUbs52UFqE0tIDhmnZXIRFGKRtI5pdfi4j580pd2cWZlYx%2BT%2FIAgQ%2FpWJzA%2By1OiEGWtQxTJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c674f3a941c0a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/suurl5.php?r=7517578&atag=1&cbur=0.8478792861182574&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%E2%80%93%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&cbdescription=%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9&cbkeywords=%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D9%85%D9%88%D9%82%D8%B9%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20egybest%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%81%D9%8A%D9%84%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%89%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D8%AC%D8%AF%D9%8A%D8%AF%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%85%D8%B3%D9%84%D8%B3%D9%84%2C%20%D9%85%D8%AA%D8%B1%D8%AC%D9%85%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D9%88%D9%86%20%D9%84%D8%A7%D9%8A%D9%86%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D8%AC%D9%86%D8%A8%D9%89%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D9%82%D8%AF%D9%8A%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D9%8A%D8%B3%D8%AA&cbcdn=achcdn.com&ts=1714027849076&atv=47.2-sw-atgv2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=c4ec308e375b2a4fa1d82e4403821f60&aggr=3&czid=kvq17wwrys&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 | 172.67.177.214 | 200 OK | 1.1 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=7517578&atag=1&cbur=0.8478792861182574&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%E2%80%93%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&cbdescription=%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9&cbkeywords=%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D9%85%D9%88%D9%82%D8%B9%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20egybest%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%81%D9%8A%D9%84%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%89%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D8%AC%D8%AF%D9%8A%D8%AF%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%85%D8%B3%D9%84%D8%B3%D9%84%2C%20%D9%85%D8%AA%D8%B1%D8%AC%D9%85%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D9%88%D9%86%20%D9%84%D8%A7%D9%8A%D9%86%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D8%AC%D9%86%D8%A8%D9%89%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D9%82%D8%AF%D9%8A%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D9%8A%D8%B3%D8%AA&cbcdn=achcdn.com&ts=1714027849076&atv=47.2-sw-atgv2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=c4ec308e375b2a4fa1d82e4403821f60&aggr=3&czid=kvq17wwrys&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 IP172.67.177.214:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1107), with no line terminators Hashe48cf11270f0f52d12fe18510bfba7ba d98800274478b52dd86897a1cbf349b32af0934d efd06745b70771722806ebbee7658cc468c44a0e4722de5bead447c3dfd38bb7
GET /script/suurl5.php?r=7517578&atag=1&cbur=0.8478792861182574&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%E2%80%93%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA&cbpage=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&cbref=&cbdescription=%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20%D9%88%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D8%A8%D8%AC%D9%88%D8%AF%D8%A9%20%D8%B9%D8%A7%D9%84%D9%8A%D8%A9%20%D8%AA%D8%AD%D9%85%D9%8A%D9%84%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D8%B1%D8%A7%D8%A8%D8%B7%20%D9%85%D8%A8%D8%A7%D8%B4%D8%B1%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20Game%20of%20Thrones%20%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85%20%D8%A7%D9%84%D8%A7%D9%88%D9%84%20%D9%85%D8%AC%D8%A7%D9%86%D8%A7%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9&cbkeywords=%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D9%85%D9%88%D9%82%D8%B9%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20egybest%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%81%D9%8A%D9%84%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%89%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D8%AC%D8%AF%D9%8A%D8%AF%2C%20%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9%20%D9%85%D8%B3%D9%84%D8%B3%D9%84%2C%20%D9%85%D8%AA%D8%B1%D8%AC%D9%85%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D9%88%D9%86%20%D9%84%D8%A7%D9%8A%D9%86%2C%20%D8%A7%D9%81%D9%84%D8%A7%D9%85%20%D8%A7%D8%AC%D9%86%D8%A8%D9%89%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%20%D8%A7%D9%84%D9%82%D8%AF%D9%8A%D9%85%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D8%B3%D8%AA%2C%20%D8%A7%D9%8A%D8%AC%D9%8A%20%D8%A8%D9%8A%D8%B3%D8%AA&cbcdn=achcdn.com&ts=1714027849076&atv=47.2-sw-atgv2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&srs=c4ec308e375b2a4fa1d82e4403821f60&aggr=3&czid=kvq17wwrys&ppv=1&ab_test=AdOpt_B_nocapping-2021-12-08v1&cap=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2EZaOHxIlp7aJ%2BursSArnzzDDeSUnL%2F1FJLhZc87i1SUlFUVN7Lmn%2Bp5k4WpS5Mq6oRFYhgKJ4PMzmZTtaYrnIu6rXVX%2FTz2QXfoFH5gP%2B0o%2B1E5q68ZZfCN9Oc9SSGsH2%2FFZ64%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a8ce8656c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| egybest.space/uploads/ss/d9d5c05eca0f04c66d4c9a703021ad88.jpg | 172.67.158.164 | 200 OK | 26 kB |
URL GET HTTP/3egybest.space/uploads/ss/d9d5c05eca0f04c66d4c9a703021ad88.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x474, components 3 Hash33bc80a0ec85aa8ef8f0cf32cdbbce70 671daa3fbe975281901a5def5f01e0010842d7d1 7d8df318fa541ec14cd547d115d0cca1b2f6e8264c9e0aa9a043cda6a4add783
GET /uploads/ss/d9d5c05eca0f04c66d4c9a703021ad88.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-6653"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 108693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2CKD%2BR8O%2Be2z5EqHFc3cBerj513x4p7glppUIQGTbAx8KiAsaFMremjRF5L%2F8%2F1G239P8IsJeDghMSlp986sE330IKvxNOHJj%2BoSehMjjTs%2BezTTNN4mBMeI24NN%2Flc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdeffb1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/ad/czcf.php?cz=kvq17wwrys | 172.67.177.214 | 200 OK | 891 B |
URL GET HTTP/2youradexchange.com/ad/czcf.php?cz=kvq17wwrys IP172.67.177.214:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1042), with no line terminators Hashd82978ff7dcc804a7d48322a41c3b782 e0da6b399c07e882acf7451e34278d9269649540 4efe2fbf6aab275e90b1ad74f730bee8cc8ffda485ba43c7e61280dbb9a41c5f
GET /ad/czcf.php?cz=kvq17wwrys HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WWC8jcMYZAUQca05unIKnqZzmkvBgjCTwk%2FaErLL7iGyLNJ%2F2nDA80iw%2Fmbnzy26R8a%2FuaXNwkk4IB%2Bjzd9Rpv%2BDRYbbAZRTdw%2Ba5JOZ8QLmR7KU%2BgU6JRsaBt8%2BpVFQDIojwFA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a55b1656c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js | 188.114.97.1 | 200 OK | 386 B |
URL GET HTTP/2cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (399), with no line terminators Hash022602a468da44628060800173771da2 9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c 6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:06 GMT
etag: W/"65bbb0ca-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8I97ymwpg7AwJjUxNVOCY42orp%2Ft6%2Bol3%2B6T7G7GjcYXZi3xFvetEqZcpzU7nW6OatthG23Ex6wBHIg2iuIGk60z%2F5eSJcRiVkgt3yb1LKpLbwjWHAuxc8jaG2B4486VGYWIIiu%2FPKf%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b5bf0e0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-V6G4S9QXLK&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 250 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-V6G4S9QXLK&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size250 kB (250122 bytes) Hash43ac2a882fcd0dda544fb10fdc40393d baba885e5221049038225d743eefea4dc2a14c63 89d8a70d50f60adacc1d87b436b35e8b6c3bf6aa521d20a6b6a93bd50ecc4583
GET /gtag/js?id=G-V6G4S9QXLK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 06:50:49 GMT
expires: Thu, 25 Apr 2024 06:50:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88794
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/index.html | 172.67.74.218 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/index.html IP172.67.74.218:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1660), with no line terminators Hash0029b7cb4d5550c5233f931c816165ea 31298b092158bb9ce60a8e9bf497c5bd1f562a11 26ba2ea9cf182d890d03039af9052b75e71a92a6f3a9a386e955428677907062
GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:44 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s2BKSuM4sXFTAgTZgcnCpflyIkHDFt0aINLSb1oh%2FcewvlhJKQuR3u0gV0pVeJLY2v9THr1Q5X6L7h2sIiHt%2F4PI3ETeaho4QlBDn0Dt0KvPnpKQjs%2Ff0ECE%2F86sYULUgDexH4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b43c990b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html | 172.67.74.218 | 200 OK | 1.6 kB |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html IP172.67.74.218:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1656), with no line terminators Hash2a523dc3cb7314caf663b351ca42bb98 533eb671476d6199a2dd46c37445b41cb67979ec beabb332b0ae2b66f893c34d6a805a306c127f4342c115097d188e0451851f67
GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:50 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jrNhowYv8ryFcPwVhBYMZ67syPHE4MsPuwG%2BX7At%2B3fJt6V6Ki0CsBfr4Ea72XY%2FceELu3XIZygRYgdoi5venfzevcsJOKU4XYNUMNNw2%2B5R3MTrODZzt4YF1teswwkoITEa4PM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b0fafc0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 | 216.58.207.206 | 200 OK | 92 kB |
URL GET HTTP/3www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 IP216.58.207.206:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 06:50:50 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="YOUTUBE_NOCOOKIE_DOMAIN"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
origin-trial: AsnbWYr3bqK88n/C2BgXPMpBC+msV4jf6vsgnAir+gFnHw3zXZEKmz271E4vhxTja+7SD2q3dr2BxZlHzvj9HA0AAACBeyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUtbm9jb29raWUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
report-to: {"group":"YOUTUBE_NOCOOKIE_DOMAIN","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/YOUTUBE_NOCOOKIE_DOMAIN"}]}
content-encoding: br
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| egybest.space/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 172.67.158.164 | 200 OK | 12 kB |
URL GET HTTP/3egybest.space/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJavaScript source, ASCII text, with very long lines (12331) Hash88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: application/javascript
last-modified: Fri, 19 Apr 2024 20:54:07 GMT
etag: W/"6622d9ef-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2Cyu1HcRCzV3ww4p2FdrkMH9BMDCmx1JvKRgn9Tz0vjZZXDfrwoCpD3OA5haPi0v%2FeIMgG9qspCNj%2FETtxas7pi6c5vqDLjb%2FF7kDNdRvGT4hSbnkgyvgoou72P0HDTZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a4189d1bfa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 27 Apr 2024 06:50:48 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| egybest.space/uploads/a/624b40405a97abc95af67e750feee1a4.jpg | 172.67.158.164 | 200 OK | 4.8 kB |
URL GET HTTP/3egybest.space/uploads/a/624b40405a97abc95af67e750feee1a4.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hash6dc096b66bd1f9be8e0e93fb5b270e65 8eaab6438ee55b13a951cfcdbbe2d5fa31bd4355 1de7aa656426fff86f366d60a81f9f0ecf9dacbbbd22a27eb3111f5c68cbec00
GET /uploads/a/624b40405a97abc95af67e750feee1a4.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-12e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 647015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tcdI0yKmyfN0Y2BlEXZ8fNGN%2FZKBaHBj%2FMF0vqF8wVL2kzx2M1GET7VlkTPt5mREaGTrogIlypuQnZOrvveXVMiakCdoWLpISK%2FoY9EgOifsGdu6gIbCieCwGHUwt%2BIF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aafc891bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=689 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=689 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=689 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Findex.html&l=1571&fd=706 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Findex.html&l=1571&fd=706 IP172.240.127.234:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F4%2Findex.html&l=1571&fd=706 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/js/script.js | 188.114.97.1 | 200 OK | 386 B |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/js/script.js IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (399), with no line terminators Hash022602a468da44628060800173771da2 9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c 6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:49 GMT
etag: W/"65bbb0f5-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 556790
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vKd6e%2FADWlFygGTqoL4B1CZ8urZXKSPPM0GZmrUHZ1ZD4X38A06GHjutNr1PxUCkaaf6fPMddHFGfYYgkrT7vz2STFINePIXn20y5EoNnUjYoGcEUkKezk4I26lS3eHhm%2BUZmYeKsK4P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b8ffbe1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ctrtrk.com/ut/ctr.php | 104.21.85.92 | 200 OK | 166 B |
IP104.21.85.92:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectctrtrk.com Fingerprint58:E6:48:48:DD:46:49:F1:8C:B7:7C:F4:88:92:84:58:15:D5:01:AD ValiditySat, 16 Mar 2024 06:41:09 GMT - Fri, 14 Jun 2024 06:41:08 GMT
File typeHTML document, ASCII text, with no line terminators Hashd67fbbbd639a85bfce821ab440bf36a5 d7c3379ee13f88bd5934c5f2f9e74006adfcb0a9 6be955e5f1a67d7c22479a3a62365ce5adb580d63e99ef0c6d909d96a5cca95b
GET /ut/ctr.php HTTP/1.1
Host: ctrtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
set-cookie: uniqid=cb5c455d-79a4-4ed0-ae77-71a9a6acf322; path=/; SameSite=None; Secure; Max-Age=1745563848; HttpOnly
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82vgX3VYqYhDoFSp6%2B33yIFwFbJZyFwDDr2ctHuv8PmPXAx184h9gMcZ5veYeMsg1XLkH9%2FiXa8by3TR6IgPuq7QB96yoeyKN8zpG0y00Hj9HmD4YeSnBjhys7ZK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a5ec885695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=105 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1septemberautomobile.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=105 IP172.240.108.68:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjectseptemberautomobile.com FingerprintBB:DF:D9:75:80:49:19:F3:9F:67:73:72:47:67:E6:1B:0C:FB:C1:C0 ValidityTue, 23 Apr 2024 10:50:08 GMT - Mon, 22 Jul 2024 10:50:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=105 HTTP/1.1
Host: septemberautomobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=22420285; uid_id2=ada9dfe8-79c3-4f54-b2bb-f35035de4817:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 06:50:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| egybest.space/uploads/ss/16b0ac69e2e1b3b9f2d195c8305d5b5b.jpg | 172.67.158.164 | 200 OK | 24 kB |
URL GET HTTP/3egybest.space/uploads/ss/16b0ac69e2e1b3b9f2d195c8305d5b5b.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x434, components 3 Hashf8fc4534f8228f6490ace1e5f76b78ed 812536d3f0143d20497e598de0cb991e1dddf8b7 18a39542d8bbc551a48414b3a6ceabe5c02bd5b8b130e9658bbdb4c08fcc8540
GET /uploads/ss/16b0ac69e2e1b3b9f2d195c8305d5b5b.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-5fbf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 108693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VE1f6pUYItsMbBFztAk0XLEu4kw0sIkArUXnd52Fmu8vQjOYmidY85ASRnzcGxq0niKnc%2FxXblpsuvkgKGyGPz%2FoppmwTvkqWrIzE6W4fA037cNheJiZjAksNMJeYNZG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdf8101bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| achcdn.com/script/atagv2.js | 172.67.152.53 | 200 OK | 100 kB |
URL GET HTTP/3achcdn.com/script/atagv2.js IP172.67.152.53:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectachcdn.com Fingerprint36:3E:93:7F:B5:6E:5D:6C:CA:31:2A:07:69:F2:95:9D:AB:33:35:F7 ValidityThu, 18 Apr 2024 18:07:12 GMT - Wed, 17 Jul 2024 18:07:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/atagv2.js HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPpbb-elI7YB_8Vd93f34MJwvPN1DFxd3n4024QEtVu913lJOZXwONqe880f0KOMxFqEUVg7I5U7pQ
x-goog-generation: 1713948037652964
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 99978
x-goog-hash: crc32c=Y0zAPg==, md5=a39lAxjqH6gZmpZetniS0Q==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Thu, 25 Apr 2024 07:50:48 GMT
cache-control: public, max-age=14400
last-modified: Wed, 24 Apr 2024 08:40:37 GMT
etag: W/"6b7f650318ea1fa8199a965eb67892d1"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJ00dKhbGYyvVv8w%2FA1uk5UI2ulnF4nzkobNcANrfN6venyagzLrOZyotQhSHD1lqHodkulcbRAgYbui7Yg8QEsCwOaFSIgQ1JLcEgTPniCkVBasOQD6wM%2BXf7aR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a7ab850afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/frontend/css/app.css?version=v1.0.4} | 172.67.158.164 | 200 OK | 230 kB |
URL GET HTTP/3egybest.space/frontend/css/app.css?version=v1.0.4} IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size230 kB (230429 bytes) Hash51ce2f54e570a10bf21b5e6e7509b97f 062f1561a23066bdc979d06bad78e437ff43cc46 4337861f7c71c06f6a97fbfa1c15b8c2d6a715ac2fd370835249f3fea18481e5
GET /frontend/css/app.css?version=v1.0.4} HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=230444
etag: W/"65146a53-3842c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 27 Sep 2023 17:45:55 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 825483
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=361U5H4nbb%2BIn3ampPcnMFGw7ehKPgeNAL9d8dFgE4W7B%2BJ6C%2FeCfp9zVxWlTYMR6wg8e7FhXi5EFn18slI7g5jjoHxXZn8A728cTs4MVK5sTOLVfj4ye7htdyurcPQN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a4089b1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/iframe_api | 216.58.207.206 | 200 OK | 1.1 kB |
URL GET HTTP/2www.youtube.com/iframe_api IP216.58.207.206:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (1087), with no line terminators Hasha6e967ef935b093206709cba4b82f02a 94e12727f298743d32fe78ceca0289ca579deb58 efbf1f4fa95714004de4eab86833198fa8ad3e82a8f357b715e56939c8b0a46a
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 25 Apr 2024 06:50:50 GMT
date: Thu, 25 Apr 2024 06:50:50 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=B2Z-qOk1tlI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=WVOQhq7rtqw; Domain=.youtube.com; Expires=Tue, 22-Oct-2024 06:50:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIGQ%3D; Domain=.youtube.com; Expires=Tue, 22-Oct-2024 06:50:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css | 188.114.97.1 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash80047eaa13ebd50c50e8a9753621e430 9c503e07d130572a0eaf51f7c02cbd4cf6213fe3 3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
etag: W/"65bbb0c5-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 164041
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3sdX8PVYg8yD%2BZq6A5ObvvScrv%2FA2bKdD7H8Dg5UD%2FPpyZCRW1veOk1h4QozoCdUn%2FKp2HL5QhVVE%2BfRs%2Bo8iPV6xaVflFMVy7xx%2FPiEiUQ3sptO8tSTtrFf%2F45Gw3ENsvnlU3iNrQ2h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b5cf1b0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| egybest.space/frontend/js/main.js?version=v1.0.4 | 172.67.158.164 | 200 OK | 7.1 kB |
URL GET HTTP/3egybest.space/frontend/js/main.js?version=v1.0.4 IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJavaScript source, ASCII text, with very long lines (7200), with no line terminators Hash94be4eaea6d2ee641e3a37f723373f73 8729e13248429b74cd41fb6564e0ce3d5f3de39a 81d6ee056f410fe65418ec4f977c2d5c4ed37f8d9c1a77fd10db8b6317ec21f0
GET /frontend/js/main.js?version=v1.0.4 HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=13473
etag: W/"65146a53-34a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 27 Sep 2023 17:45:55 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2365688
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UsKx%2B%2BhCf%2FiYQ9D9w%2BWozpH6ezWA26PCsLYBD7M1ARgUQRoiBVHUOBIiHPnvXqkQfmemoQcBFPSVn2FAciQVO9DxQO%2FEFcpQOp0ZY%2F0GKSJSq0ITACjhP20Q06QC9mwc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a5696d1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pl17852881.highcpmrevenuegate.com/55/db/5a/55db5ae4529f5681ab18b6f96d179058.js | 192.243.59.20 | 200 OK | 84 kB |
URL GET HTTP/1.1pl17852881.highcpmrevenuegate.com/55/db/5a/55db5ae4529f5681ab18b6f96d179058.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerLet's Encrypt Subjecthighcpmrevenuegate.com Fingerprint39:91:56:A1:A4:D3:84:A5:5B:5C:6A:E2:3E:64:5C:F3:21:81:0C:F0 ValidityWed, 27 Mar 2024 07:16:22 GMT - Tue, 25 Jun 2024 07:16:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash26f59e905e2acb14f6d355b1a64c5f21 46c6072f2070bdcbe7d9768ee7ac2bbd43038142 78032326d4be284f9501e584a688ad7e28b3a8c10e6474403fffe6eb0e7bef77
GET /55/db/5a/55db5ae4529f5681ab18b6f96d179058.js HTTP/1.1
Host: pl17852881.highcpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 06:50:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_layer=1; expires=Sun, 28 Apr 2024 06:50:49 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 762ed459a9893d19b44f835d691ce61b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| achcdn.com/script/ippg.js | 172.67.152.53 | 200 OK | 106 kB |
URL GET HTTP/3achcdn.com/script/ippg.js IP172.67.152.53:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectachcdn.com Fingerprint36:3E:93:7F:B5:6E:5D:6C:CA:31:2A:07:69:F2:95:9D:AB:33:35:F7 ValidityThu, 18 Apr 2024 18:07:12 GMT - Wed, 17 Jul 2024 18:07:11 GMT
Size106 kB (106476 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ippg.js HTTP/1.1
Host: achcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoZK18N3qJOqoyDk5mN-zhaW55ldgQtcJpgbm4_5_jA7x4BqE4by7h8Frviw0GcHep5AhDN8ZnMxw
expires: Thu, 25 Apr 2024 07:28:34 GMT
cache-control: public, max-age=14400
last-modified: Wed, 24 Apr 2024 08:43:26 GMT
etag: W/"398b8db6d2d7d6f7640505a8f5e77e50"
x-goog-generation: 1713948206855488
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 106476
x-goog-hash: crc32c=yW/g/g==, md5=OYuNttLX1vdkBQWo9ed+UA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
cf-cache-status: HIT
age: 397
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jyzWGYz2%2BLt2xVSf2%2F0Fo48Vfg1TWY4RYMdqAEg4LqXY7KsHlMUzbrGUSl27BdLMrECWQWQh50f5%2B4fIVhvLUdCi%2BSVU0kKA%2Fh6QX%2FRNJUWoWFxyii%2B3Z%2B%2F4zxHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66a8bc1d0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/a/e7b0a083203df650d769dd0edbbff535.jpg | 172.67.158.164 | 200 OK | 4.1 kB |
URL GET HTTP/3egybest.space/uploads/a/e7b0a083203df650d769dd0edbbff535.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 120x179, components 3 Hashd6af58d992f1094d03af9bdc8d429984 2eb334dd15365d5ff85b382825de014a7969eba7 43c67e7f02da54d1ffd64dd67abccd73430745a7fef6cb40f5343d2e99536e93
GET /uploads/a/e7b0a083203df650d769dd0edbbff535.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-1019"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 234299
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o53%2BFiSl8aHV2QkJcrzjwgy2A4IbfEqxT4F9hJZG7x5pIqcBJLVbogQl5i6nWMAO5xG3DGLBijFSlkHLzT1rW8ppkj3HFD%2BDGfBYhTyl%2FSx7zHPUHO8dq3QQCjJ%2FUpFX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdbfe71bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.plyr.io/3.6.2/plyr.svg | 104.27.195.88 | 200 OK | 5.8 kB |
URL GET HTTP/2cdn.plyr.io/3.6.2/plyr.svg IP104.27.195.88:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerCloudflare, Inc. Subjectcdn.plyr.io Fingerprint82:12:FB:B3:64:22:F5:22:7D:BA:01:9C:97:81:CF:4F:55:01:08:95 ValidityMon, 11 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash0515cfb132a7e4e063467814f50e32c4 2d89955170c71b3c1678526168318edd55e16996 f5322aaaaa48e83be4443010300845989622757a8b98ccab908f1e650171e4e2
GET /3.6.2/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
etag: W/"3a727a9b7eef825081d78cc6e48aaadf"
last-modified: Thu, 20 Apr 2023 10:33:43 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 2362022
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u31Or8TMDYXsCa6nfL3eGLOPwVbyk9biONB6NwMpIBV8120t7zEx%2FEQnPcEWHRl66rNWe43KBeiz1vcSN7BFx2DMjI6rzcbg%2FVAtIhZmCf3ryouOpbLf22GhZJ4j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bacd5d712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| egybest.space/icons/android-chrome-192x192.png | 172.67.158.164 | 200 OK | 13 kB |
URL GET HTTP/3egybest.space/icons/android-chrome-192x192.png IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typePNG image data, 192 x 192, 8-bit/color RGB, non-interlaced Hashf16462a7181546b9a326f1928f00857b 036fcb5ceeff22273f18143b4238d42b210e540d 0e0604044dff62e2b54f49ac097f7a180dfc2c0830cc50f3e66e785e787c19f4
GET /icons/android-chrome-192x192.png HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:50 GMT
content-type: image/png
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-3124"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365689
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2b%2BjPG6JeXoyyG7Nh6rrCHvnTTyrteOYSnLGFG01i6r2L8juZ%2BBQArXqyjj6kHNnLXT3YhQ87AuyuXDEaPt0z6n8ldHTR9%2F5NoiDSPg0HxCH8iT1IY9rhxOsVtNAqVy8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66af6f481bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/serve/movies/src-default-x300.jpg | 172.67.158.164 | 200 OK | 26 kB |
URL GET HTTP/3egybest.space/serve/movies/src-default-x300.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=450, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 300x450, components 3 Hash636fbbb4c73dc5ccc6464227d94e3fe5 f66d86a8b8fa21c10cc2e43479702ea177427817 5a27975c737b43de4dd8953e93af1c70eaa2c3bcc89543fc7448d132c1288580
GET /serve/movies/src-default-x300.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/frontend/css/app.css?version=v1.0.4}
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:55 GMT
vary: Accept-Encoding
etag: W/"65146a53-6638"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109215
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q6nXimkIz5IRxD9ebQeoJ5iy2Q2hkit4F7MnKwp%2BVt%2BCqBiv2jbVQt3tUCiaVC7FEItiGufE6TutDhZRh9UTJil5ghEX8lrajtppklERcMCbN19YXHXQNIE9jpuTBpMU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a498d91bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/serve/movies/src-default-x140.jpg | 172.67.158.164 | 200 OK | 23 kB |
URL GET HTTP/3egybest.space/serve/movies/src-default-x140.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=210, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=140], progressive, precision 8, 140x210, components 3 Hasha3630f2d691aa95cd521b47f945b24c7 160d83594d42888de6aa0cbc6e8bd576540ad690 1605769b040eb858de140aa22496f495ca082927e803b5704c934e7a09e3a980
GET /serve/movies/src-default-x140.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/frontend/css/app.css?version=v1.0.4}
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=h7DzjJLprmtQhWOa4cPoHpQGnZJ8mMqn4YUYuDOAZZk-1714027848-1.0.1.1-WodAKYGhzZEtnlKcMzIGSCY6abaSxUWeNGaWymDbLVJq3Ew_bXtuR4W62TQvAwBlVk17GKKcx4h.OCA8pa3EqQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:49 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:55 GMT
vary: Accept-Encoding
etag: W/"65146a53-5a57"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365688
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hxBC5%2FvlsXMp4Lp%2Fb45Q60yuzn%2BoNOnAnbJONYd7PxQYTKRYF%2BxPMgNilG9%2FP5EJGbb6d8tgzfoafNQaXRu990naAC2i5adMkVrUTMqSbyKVbo5R1QQ55apneUVEPbDM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66aa9c5c1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/ss/8d71d7f9dcb37fe56d814d1ee6a138d8.jpg | 172.67.158.164 | 200 OK | 22 kB |
URL GET HTTP/3egybest.space/uploads/ss/8d71d7f9dcb37fe56d814d1ee6a138d8.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x448, components 3 Hashe35ba716d296a7876052427a9c9d6266 21332da65f04d2bdcd18f7c46b4d6c81906486fc bd210d1c41a5dfcdd71c680cf301c6bfaf07420315e694d39041df5d4c660a31
GET /uploads/ss/8d71d7f9dcb37fe56d814d1ee6a138d8.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:59 GMT
vary: Accept-Encoding
etag: W/"65146a57-5762"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 647018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2raeJLnYpH6dH58kCgVTW1BfcWBcEqXU0GumL28IYjAB%2B9MJzM51%2F%2F0RjhaKyXhyaBwYY1bQ129JqKH2LCYYLwllB1rmb651dqUu5OmBvL9Y7XWOPlDF1EI1gKWzLdN%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdf8141bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/animate.css | 188.114.97.1 | 200 OK | 79 kB |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/animate.css IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash80047eaa13ebd50c50e8a9753621e430 9c503e07d130572a0eaf51f7c02cbd4cf6213fe3 3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:44 GMT
etag: W/"65bbb0f0-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 556790
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dc91a0o8kp%2FmV8%2FdN20a8QTMuEAXqie3yXfiH2V2H5rev9lhs8S7ZK6%2FuOvRzyvlj%2Bk6wytk94fTwIhTMrX6wuO5gnnIl4be13v6BPJIoqxqcDi6azxfpQEPW%2FADcMrngckWkus52RFc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b8ffb81bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/style.css | 188.114.97.1 | 200 OK | 3.6 kB |
URL GET HTTP/3cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/style.css IP188.114.97.1:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (3854), with no line terminators Hash1ef6c40dc9237f64e46f930e4b26d112 7e94a725845a7101b17bfc0ff488e27c12060c1d e23167c1f14d771e6eb40f86085c2f04f52010a5e934cff3f9e214aab984f4b4
GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/4/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://egybest.space
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:51 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:46 GMT
etag: W/"65bbb0f2-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 556790
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=etCtVk2lIiW2Cm8XH1Up%2FnWExY4kxnp0OQEl3nuj4RM4MDWKl0b4j3aslWtVRdguksNOIu%2BeDb5mp9OfEMdZpiH3erbGgNemVA%2BRsXLV89qzVaW%2BozVp8Qt3WkeHvF3eXr%2B6aKxkRH8X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c66b8ffbb1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/ss/13ea8a9165ff876f62298b2905b9c196.jpg | 172.67.158.164 | 200 OK | 25 kB |
URL GET HTTP/3egybest.space/uploads/ss/13ea8a9165ff876f62298b2905b9c196.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x457, components 3 Hash555f32846994378a70b744823d0ab860 75477875aa0d6ffbffc4310dd1a28b9674396452 d1b26ba32311d4d5c7fbc26738c3591fd66cc6f3cc049ec92959af2760f8e04e
GET /uploads/ss/13ea8a9165ff876f62298b2905b9c196.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:00 GMT
vary: Accept-Encoding
etag: W/"65146a58-6225"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 234299
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8aBrYifnpwZNzWUGRxSris9SBBJjcb2YL7F9luJ2nGshjUmEb%2BOusJhFpGuRF%2Frw5cH6MbDYh48bdFwtqbSU%2BUWRxe0v88U%2BjteyrTGc5bDYVqbgVxXpvlLdtzeN67OX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66be08171bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/ss/3383b5983b9317adfb277aed5624498d.jpg | 172.67.158.164 | 200 OK | 15 kB |
URL GET HTTP/3egybest.space/uploads/ss/3383b5983b9317adfb277aed5624498d.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x474, components 3 Hash80bc3945c98887ee8853fb7bfd4d86bd d431216a23b6ad4b1a388fa4cfc00d2954d1cdd1 ed2839db7d4ff6ed923e0f6ab904af8151ed93c41e44baef64d840a827ff67a0
GET /uploads/ss/3383b5983b9317adfb277aed5624498d.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:00 GMT
vary: Accept-Encoding
etag: W/"65146a58-3af6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 647018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hRYe6YWgyI29NReN0aJ5IoolLYdxpB2Uu4YnucfES7dm6suPzXvI2w2r2B4Ote4EnUdD0VTFWkBfQpzBICqb2XQ9%2BWeem9Ph4Yc6I6E7O4AapQkTvl3YgM2T7TlxZTNk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdeffe1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/uploads/ss/408470eda513315a41f0652986d5230c.jpg | 172.67.158.164 | 200 OK | 39 kB |
URL GET HTTP/3egybest.space/uploads/ss/408470eda513315a41f0652986d5230c.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x435, components 3 Hash09d15bce5842bab5daacdfa796657f95 d463ded74de996e56569e8bdf47e6c90ccac8d83 e5365036f512d58248e5472093562543f70f56d4fb22ec771488901565444eaa
GET /uploads/ss/408470eda513315a41f0652986d5230c.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:00 GMT
vary: Accept-Encoding
etag: W/"65146a58-9768"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=igbUfRIAMP95RMZjlZpvA2DEe378JQg8mZxCw4by3Ryhc7C1syAlcjDD8aoRLKc%2FIjUjbB7xndYLcI9%2FDBm88Gbyl4s5MrQ5PZKe0UWhzKLzj6x3gVzshV3GXerAfb7U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdf80d1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 06:50:51 GMT
date: Thu, 25 Apr 2024 06:50:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| egybest.space/serve/movies/src-default-x175.jpg | 172.67.158.164 | 200 OK | 26 kB |
URL GET HTTP/3egybest.space/serve/movies/src-default-x175.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=263, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=175], progressive, precision 8, 175x263, components 3 Hash1026da5ee3d9ff2a867d2994dfb2c901 bdda22a0432d665bee199f3afc1ce1140674984b 3995c20dd70d934eb9e9899c0a68a489eb116a34d85917d1fbd2bfcc38c2aca3
GET /serve/movies/src-default-x175.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/frontend/css/app.css?version=v1.0.4}
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:45:55 GMT
vary: Accept-Encoding
etag: W/"65146a53-6626"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RhjovwGNXRQyTz4mGe8AT3XaV8ARJwwniZXEIKiifgUQgUmOuZDEgXRDclb21KNRfrTquOE8bZ7s%2Bvk33kc2eIhWNYZe06eVRRKWsh2KjVpbgS1G5vb9ygnhEo4in1kM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a498db1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube-nocookie.com/s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js | 216.58.207.206 | 200 OK | 327 kB |
URL GET HTTP/3www.youtube-nocookie.com/s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js IP216.58.207.206:443
Requested byhttps://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typeJavaScript source, ASCII text, with very long lines (829) Size327 kB (326810 bytes) Hash0aed35a162e11be7d10ed66aa72e2e58 166c7428c266750580495281f8da7d304954393c fc1254ce66294f56ad43e8e7dfbdc65093e2732764c0b8baba5536291699a96a
GET /s/player/9135c2ab/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/BpJYNVhGf1s?autoplay=0&controls=0&disablekb=1&playsinline=1&cc_load_policy=0&cc_lang_pref=auto&widget_referrer=https%3A%2F%2Fegybest.space%2Fseries%2Fgame-of-thrones%2Fseason%2F1&noCookie=true&rel=0&showinfo=0&iv_load_policy=3&modestbranding=1&enablejsapi=1&origin=https%3A%2F%2Fegybest.space&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97263
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:37:01 GMT
expires: Wed, 23 Apr 2025 07:37:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 04:19:55 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 170029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| egybest.space/uploads/ss/9756df0844bf381cc1c1ba685a84bf1e.jpg | 172.67.158.164 | 200 OK | 25 kB |
URL GET HTTP/3egybest.space/uploads/ss/9756df0844bf381cc1c1ba685a84bf1e.jpg IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 75", baseline, precision 8, 320x435, components 3 Hash26abce4488b3d55b9f7b5b000a2ff594 e2a9bd4014c2252c282cff248871d4da15885aea ff12c7c812423d856f5cfaaf7d78483b9cf486068936fa9f8314b433e13e044f
GET /uploads/ss/9756df0844bf381cc1c1ba685a84bf1e.jpg HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://egybest.space/series/game-of-thrones/season/1
DNT: 1
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D; cf_clearance=LVBewza9ndTsQNq.K6.5G7lNGn.vbSeNiFA0Y3amRhk-1714027849-1.0.1.1-nvgsm4LFvhSo26xj9C6hsWuzbF._ccvK6Bb.mogHiU.zz5eRrppEK9nLErtXBgnoTBHmmj.opH2UdZfZDBr4CA; dom3ic8zudi28v8lr6fgphwffqoz0j6c=ada9dfe8-79c3-4f54-b2bb-f35035de4817%3A1%3A1; _ga_V6G4S9QXLK=GS1.1.1714027849.1.0.1714027849.0.0.0; _ga=GA1.1.239062908.1714027850; pp_main_55db5ae4529f5681ab18b6f96d179058=1; sb_main_8762664dd746beab2f5f44b19d05fae0=1; sb_count_8762664dd746beab2f5f44b19d05fae0=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=septemberautomobile.com; sb_main_e6392f7ae29f8238c410813ca638ba36=1; sb_count_e6392f7ae29f8238c410813ca638ba36=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:52 GMT
content-type: image/jpeg
last-modified: Wed, 27 Sep 2023 17:46:00 GMT
vary: Accept-Encoding
etag: W/"65146a58-634d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 926704
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dx3Hv2twTSan%2FvvqdyLmaN884abYY7nERoCDz5iJxohDs84lNj%2FBj%2FS42WAvWZDi9WSF1rbukPbU18lltEoVWf9wYnOMIqgOI6Jz4VDVPC50hV%2BW2t9rG%2FBtWLpVvg55"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66bdf8081bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| egybest.space/static/global/flags.png | 172.67.158.164 | 200 OK | 78 kB |
URL GET HTTP/3egybest.space/static/global/flags.png IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typePNG image data, 256 x 176, 8-bit/color RGBA, non-interlaced Hash9a380c5cafff6d9b0f05310e675626e8 cff6945d63aeecace0adc9b0545cc0ad4f09f73f bc5ec18c76effd50aa72439e9e1f38316dc022328addf292608442e0262160d7
GET /static/global/flags.png HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/frontend/css/app.css?version=v1.0.4}
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: image/png
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-12f7f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z0yxJn0qYLlSc8fh9KHMb2k%2FNOErFzz2j%2BmaqW5JtPIdUD%2BMoU%2BkelUsTq%2FAOCNe%2FjHlTK8EmGCizywustFwScUGyrw84LEaqwzAkpum%2FM4%2FZ29mDV47gX08tOQ01GF4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a498da1bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 06:50:51 GMT
date: Thu, 25 Apr 2024 06:50:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| egybest.space/static/img/egybest_logo.png | 172.67.158.164 | 200 OK | 1.8 kB |
URL GET HTTP/3egybest.space/static/img/egybest_logo.png IP172.67.158.164:443
Requested byhttps://egybest.space/series/game-of-thrones/season/1 CertificateIssuerGoogle Trust Services LLC Subjectegybest.space FingerprintFB:11:7F:17:26:A4:4E:1A:3B:25:72:BA:A9:6C:B9:34:C9:10:7B:E4 ValidityThu, 28 Mar 2024 15:16:01 GMT - Wed, 26 Jun 2024 15:16:00 GMT
File typePNG image data, 130 x 35, 8-bit/color RGBA, non-interlaced Hash0aa6138eefd5e3e3c73dc16350ee20a3 97bb39169a5379092171610c3422565db94e43ed 75b238ce539dc4f7c58316044f5c3b43839fb1cd9ab0044c0f79774bed6ee162
GET /static/img/egybest_logo.png HTTP/1.1
Host: egybest.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://egybest.space/frontend/css/app.css?version=v1.0.4}
Cookie: XSRF-TOKEN=eyJpdiI6ImVRUWMrSmdvOHpFVmZXTlZPc01UY3c9PSIsInZhbHVlIjoibXc4ZVNibmpTTXdpQmdEVmlJWXFUMm0xU3FySUpLSlJaMW5LZU1Qd1wvcXJiOWFzekVHekVvNmZnZUNJXC9mUzd2aVdnOTd0OGRGVmlVMFY4cWNSbWpjOENnM1wvbE1Jc0NhOVRIREhyekl6VHhIc2pZa2ZVRUE3NFZUeStxUWtPRzEiLCJtYWMiOiI0N2UxZDQ3ODlmN2UyNTQ3NWQyOTQ2Y2E5MTIwNWYzMDExYTRiOTY1M2Q2YTk2ZmI1MTc0MzMwMTE2NmU1NDVkIn0%3D; egybest_session=eyJpdiI6IjRBWDd2bDZtMnY1ZGZveXBNZWk0XC9RPT0iLCJ2YWx1ZSI6IjFkRW9zbjVjdDZQdDM3VWw4XC9pZU5BT0s0eDliXC8yeHZPQmVyZytHSmRjcE04b1JrWUN3YUFzNWRqT3BGRW1LM1RXZHhBUkw0N0x4Q3pNTE5YNTE1VUowUm5KQ0JcLzRXNWJEd3FoVWxHY2V2OU9SVkpcL29FNFFiaGdvNTFQMnNGXC8iLCJtYWMiOiI4MzZhY2E5ODAyM2UxOWM4M2NhZmVkZjhiNDU4YTk5MmIwMGU0MzU5ZDc5YTBkMWI4ODRmODRhNGI0M2E0YTRkIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:50:48 GMT
content-type: image/png
last-modified: Wed, 27 Sep 2023 17:46:04 GMT
vary: Accept-Encoding
etag: W/"65146a5c-70b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2365074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nl4uZX7IU52QM6kb1oJ3rAbEKstVx6loWl%2BSCGx%2BynYh57Q%2BJYKiPmg7Vq8MsoBQ3cc0O4spd%2B%2Bz7kxwYiO%2BzcLcCHO8PxFbITTwJLBLphjqK1xF3CuWOy7mkfGs5GOl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c66a498d81bfa-OSL
alt-svc: h3=":443"; ma=86400
|
|